What are some recommendations for managing such a large list? What would you like to manage - the uploading of the list - "Prohibit List"<> "Manage Prohibited Sites"; by choosing "Add Multiple Prohibited Sites" you can upload the entire list.
I check with trustedsource.org. Other sources to validate site rating: VirusTotal - Free Online Virus, Malware and URL Scanner , Safe Browsing Site Status – Transparency Report – Google , McAfee - Check Single URL or Online Webpage Scanning for Malware Attacks | Web Inspector Online Scan
...do I still need to explicitly put it in the policy - Every environment is different; some are driven by IT Policies, others are driven by Best Practices and everyone else is somewhere in the middle.
Thanks for your response. I'm familiar with the procedure but was just wondering about any potential adverse impact of having thousands of sites in the policy. Eventually though, this list will be managed from webproxy server which is the better way to manage.
In order to guard against adverse performance due to having to check against 1000s of urls in a blocklist, we load and read the list from memory.
As a test, you could check on an endpoint with and without the block list enabled to see if there is any visible/noticeable browsing impact.