Jump to content

rgoldman

Members
  • Posts

    55
  • Joined

  • Last visited

About rgoldman

  • Rank
    Newbie
    Newbie

Profile Information

  • Location
    USA

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hi Is there no way to protect this with ESET SA? I have OWA working with ESET SA, but if I have Outlook Desktop App I can just access without 2FA..
  2. I understand. I was just wanting to exclude one of my domains, not powershell completely. Thanks!
  3. No but I didn't want to post it here, it's xxxxx.
  4. An Event Log notification has occurred with the following parameters: Process Name: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe Object URI: https://mydomain.dom/s/MTx56fiz7kKC4No/download Severity: Warning Detection Type: Detection Name: Blocked Object Type: file Action Performed: Connection terminated Restart: no Circumstances: Event occurred during an attempt to access the web.
  5. <?xml version="1.0" encoding="utf-8" ?> <ESET> <LOG> <RECORD> <COLUMN NAME="Time">9/8/2021 10:09:10 AM</COLUMN> <COLUMN NAME="Scanner">HTTP filter</COLUMN> <COLUMN NAME="Object type">file</COLUMN> <COLUMN NAME="Object">https://mydomain.dom/s/MTx56fiz7kKC4No/download</COLUMN> <COLUMN NAME="Detection">Blocked Object</COLUMN> <COLUMN NAME="Action">connection terminated</COLUMN> <COLUMN NAME="User">SHOPTECH\user</COLUMN> <COLUMN NAME="Information">Event occurred during an attempt to access the web by the application: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (F43D9BB316E30AE1A3494AC5B0624F6BEA1BF054).</COLUMN> <COLUMN NAME="Hash">35D8C4E86ECF41973D340BCC02B7DAEC4077106B</COLUMN> <COLUMN NAME="First seen here">8/11/2021 10:09:14 AM</COLUMN> </RECORD> </LOG> </ESET> export.txt
  6. Hi and thanks It says its the HTTP filter, so I'm thinking I need to create a new policy and refresh it.
  7. Hi Recently I have an issue with ESET blocking powershell from downloading a file on my domain/url. It's a bginfo script. I need to allow this to execute but I don't want to allow powershell access to everything, so I need to just allow my domain/url. First I added it to allowed/excluded in Web Protection but doesn't seem to allow it. Now I've attempted to create a firewall rule to see if that works. Any other ideas? Thanks
  8. Thanks @Marcos i called myself searching for this tool. ive accidentally installed Domino security instead of Exchange
  9. Hello Mail Security will not uninstall from Management Center and not listed in Add/Remove Programs. Can someone send me a manual procedure to uninstall Mail Security for IBM? Thanks
  10. Hello Needing a script to run in my management tool to see if Endpoint Security is installed or not. Thanks
  11. Yes I’m hoping we don’t have to reboot after every installation/upgrade. I understand why but as said updates are coming pretty frequent and requiring reboots, which is partially on MS yes. End users need to work and not worry about fixing their computer all the time (@ MS not necessarily ESET). (I feel like a beta tester for MS at this point) It appears to me protection is not active until rebooted, at least on the recent 7x versions (I haven’t tried 8x for this reason yet). And the SSL/TLS issue is still up in the air.
  12. Anyone ever seen Endpoint show the last update check a time in the future and console says "not updated recently"? Thanks
  13. It's something to do with the SSL/TLS I think, I disabled protocol filtering and it's been working fine for over 2 weeks.
×
×
  • Create New...