14.7 Controlling File Downloads by the Filr Desktop Applications

Path to Configuration Page: Filr Administration Console > System > Desktop Application > Application Whitelist/Blacklist

14.7.1 Why File-Download Control Is Important

Filr can download large numbers of online files when workstation-based applications, such as antivirus scanners and backup software, request access to them. Downloading the files stored in Net Folders can quickly fill up a local disk.

14.7.2 How File-Download Control Works

To let you control application-driven downloads and prevent Filr from filling up local disks, Filr provides the Application Whitelist/Blacklist dialog and the following options:

NOTE:for more information regarding the user experience, see Preventing Application-Driven Downloads From Filling Up the Local Disk in the Desktop Quick Start for Windows and the Desktop Quick Start for Mac.

  • No Restrictions: All applications, including antivirus scanners and backup software, are allowed to download files to the workstation’s local disk.

  • Blacklists (default): Filr ships with two administrator-configurable application blacklists (one each for Windows and Mac). Blacklisted applications are blocked from downloading files through Filr. All unlisted applications are allowed to download.

    When an application that is blacklisted attempts to download files, a system alert displays stating that the download is blocked by an administrative setting.

  • Whitelists: Filr also lets administrators create whitelists that identify the only approved-to-download applications.

    When an application that is not whitelisted attempts to download files, a system alert displays stating that the download is blocked by an administrative setting.

  • Blacklist and Whitelist: The final option is to use both lists. Blacklisted applications are always blocked; whitelisted applications are always allowed.

    Filr notifies users when unidentified applications try to download files, and it adds the application to a list of blocked applications. Users can allow downloading by the applications through their Filr console.

14.7.3 Managing File Downloading

If your organization deploys the Filr desktop application, we recommend that you identify a file-download control strategy by doing the following:

  1. Log in to the Filr administration console and navigate to System > Desktop Application > Application Whitelist/Blacklist.

  2. Review the list of applications that are blocked by default for the desktop platforms (Windows and Mac) that your organization uses.

  3. If you want to only block certain applications from downloading files through Filr, ensure that the applications are listed in the appropriate Windows and Mac blacklists.

    For example, if you know that a specific set of company-approved virus scanners are the only applications that could trigger mass downloads, then simply ensure that those scanners are in your blacklists.

    Download requests from applications that are listed, such as virus scanners, will trigger a system alert to users.

    If you add entries to the blacklists, use the existing entries as a pattern. Windows and Mac have unique requirements for identifying the applications to be blocked.

  4. If you want to control exactly which applications can download files through Filr, you should create a whitelist.

    For example, if your users are only authorized to work with the applications in an office suite, then you should create a whitelist with only those applications listed.

    Applications that are not listed, such as virus scanners, will trigger a system alert to users. Attempts to open any online-only files by unauthorized applications will fail.

    As you create a whitelist, use the existing blacklist entries as a pattern. Windows and Mac have unique requirements for identifying the applications to be allowed.

  5. If you want a flexible approach that allows downloading by specified applications, blocks downloading by other applications, and lets users deny or approve download requests by unlisted applications, then deploy both a whitelist and a blacklist.

  6. Periodically review and update your file-download strategy. Make sure that new antivirus and backup software is included. Consult with users about applications that they have allowed or blocked, and consider adding these to your lists as applicable.