Jump to content


Most Valued Members
  • Content Count

  • Joined

  • Last visited

  • Days Won


Everything posted by rugk

  1. Why is that? Previously you just had to confirm your mail. Or is the mail verification still broken?
  2. BTW I have to praise you for reconfiguring HTTPS at forum.eset.com. Now it got scored much better than the last time: https://www.ssllabs.com/ssltest/analyze.html?d=forum.eset.com You finally get A-. (Previously it was C if I remember correctly and this was a really out-of-date config) But you can still improve your config... As far as I see the cipher suite (especially the order) might be optimized and if you also apply the HSTS header you can also get an A+ from SSLLabs.
  3. Actually you can access it through a desktop shortcut created when installing v9 or - in case you deleted it or it was no0t created - you can add it back by adding this shortcut: "%programfiles%\ESET\ESET Smart Security\ecmd.exe" /startprotectedbrowser Depending on your installation path you may have to adjust this value.
  4. Personally I don't really like the P2P updates... However in your situation you could use the business products from ESET where you can make an update mirror on one PC in your network. However the PCs with ESET Endpoint Protection have to belong to you of course. The only thing you can currently do for other computers is using the latest version of the installer, which also has all VSD updates included (at the time where it was released). (And also use the offline installer so it doesn't have to download the installer file every time)
  5. Just FYI: As for svchost.exe you can choose the service which a rule should cover in v9 of ESS and NOD32.
  6. Yes they monitor the forum. You can see all ESET moderators listed here. Their posts are marked with a green background.
  7. BTW another note about your HTTPS connection: Besides disabling the weak Diffi-Hellmann cipher suites you may also want to activate ECDHE cipher suites, because they are much faster and more secure than RSA cipher, use less processing speed and are supported by all recent versions of major browsers.
  8. @TomFace Don't forget to include your time zone... No, I think it would be indeed quite useful to make this feature available for regular users. But i can also live without it.
  9. Yes, it is. Here is a direct link: https://forum.eset.com/topic/51-future-changes-to-eset-smart-security/page-8#entry15062
  10. @itman Nice idea. But if I'm remembering correctly in v8 you can include and exclude applications for SSL scanning, so this may solve your problem.
  11. No it won't be better if you use a wrong-written version of enhanced instead of AI. And no, you don't need to try it with advanced next time... But if it amuses you...
  12. Thanks @SweX and @kakashi no I'm not hating you. I'm just showing that most of your ideas are not "simple ideas in order to make a better product" in an ironical way. So if I'm suggestion something I would at first try to write at least in decent English. I'm not an native English speaker too and my English is not nearly perfect, but anyway you can at least try to put the spaces, commas and other things at the correct position. Additionally you can even just use an online translator tool like Google Translator or - if you want to write it yourself - an (Online) dictionary for English to look up words (especially the spelling) and installing an English spell checker in your browser should also not be that difficult. Secondly I'd like to remember you about my "suggestions" for you I posted some time ago: Also you can't just add some nice sounding words to a feature to improve the feature. Even if ESET adds a "super-intelligent smart enhanced advanced ultra-power-heuristics-engine AI with super turbo fast implementation protection" this doesn't change anything. Calling things like this may be impressive in pokémon games, but in reality that's just gibberish. And these are the obvious things which make your post (to say it polite) not that useful, so it also won't help you if add things like "don't ignore this this is important for all the security users" like you did in your last post. And I don't want to get into detail now, but in my first reply to your post you can already get some ideas of how useful or reasonable some of your ideas are - and most of the post just consists of quotes from you. Anyway just keep in mind that I'm not saying you shouldn't express your suggestions here and of course I'm not hating you. You just have to suggest features which are not taken from a pokémon game and most importantly they have to make sense! And you have to explain your features, just throwing words around doesn't help anybody and as I "explained" your ideas in my first reply you can see what they look like. Or tell it as Arey wrote, because I doubt you read the first post (although I've linked several times to it now):
  13. @kakashi Just shut off your computer then you have the protection you are suggesting. And your computer will be "turbo speed blocking" any "anti stealth protection" and "criptolokers" (yeah crispy lockers, bad things) and "dont slow down the pc performance" while blocking "any malware can bypass this". Don't forget you will have a "dns encryption" ("nothing" is quite undistinguishable I think, so that's encrypted), a "new secure" "ssl" "protocol" "that cant be intercepted"¹ and of course a very "low hardware and harddrive impact". The "Ai header engine" can take a header if water is in your computer so everything spouts out. The "Ai smart anti exploit mitigation" will protect you from software which tries to mitigate exploits, which is the only useful thing to do because it would be bad if you miss heroic deeds. And all "software holes ,like bios,cpu,hardware" will be blocked too of course. So all this software holes are not needed anymore. Just uninstall your BIOS, CPU or hardware. No problem! Additionally "bugs" will be smashed as these crawling critters don't have a warm and comfortable environment in your computer. And the "keyboard" blocking is by default of course - no one needs a keyboard. "4 firewall" will protect you from "artificial intelligence technology" - just image all these AIs which try to kill people. All of them will be barbecued! (There's only one problem: What will happen to the other AIs like the "Ai forensics engine"?) The "smart engine anti publishing" is not really new but very effective - usually it's called "control my brain". But of course it's improved as it's smart now. Now it will not only control the brain of one user it will also try to control other users brains with whom the user spoke. "Add a new fast intelligence run package" - Yes of course the next NSA marathon will come soon! "Fix eset driver crash" - No the ESET drivers are reliable, there driver's license was never revoked at all and all "Add low impact starting up" - Until you are not hitting your shutdowned computer you already have a low impact. ¹ (quite difficult to bring the words into the right order while still quoting correctly...)
  14. It seems to be something wrong with your search and your SSL/TLS connection. If I search something Firefox displays this warning: That seems to be because it is initally loading hxxp://forum.eset.com/index.php?app=core&module=search&do=search&fromMainBar=1 (not HTTPS). After this it's redirected correctly to the HTTPS version and then it displays this error message: Note that I just searched for 'test'. BTW: The advanced search is working. Additionally you forum.eset.com is vulnerable to the Logjam attack. (SSLLabs, More information about logjam) And it doesn't support Forward Secrecy - somewhere I already complained about this. However I think Logjam is (mainly) an attack on Forward Secrecy, but nevertheless you should fix this problem - and of course to support Forward Secrecy would be nice.
  15. Well... the researcher (alias the author of the blog post) mentioned that none of the AVs he tested would do this. So all would not scan EV certificates. As for ESET this is wrong as I showed in the topic I linked. However back to your suggestion. Even some guys who want to spread malicious files could register a EV-certificate. It would be quite expensive for them and they would maybe have to hide behind a (fake) company, but it could be possible. Or just think of the file hosters which use an EV certificate. However on the other hand of course sites which host static content (or at least no user-submitted files) could be excluded this way. So I would agree to have an option in the SSL scanning settings to exclude all EV certificates from SSL scanning, but not to do this automatically. The user should be able to choose whom he trusts and whom not.
  16. Yes the important point there is: (the same is valid for OCSP stapling too BTW) BTW here is the complete topic about this: https://forum.eset.com/topic/4806-ways-anti-virus-software-lowers-your-https-security/
  17. Even if the file would stick in the same directory and would just be replaced you would get a notification from ESS everytime the file was changed. This happens because otherwise malware could just replace a file of which it believes that it has an allow firewall rule and would be able to communicate without permission.
  18. @cutting_edgetech If you have a firewall rule you can enable logging for it. So if it's a firewall rule which blocks the communication for an application then you should get such logs.
  19. Yes, like the other buttons (at the bottom) too...
  20. @planet Ah, thanks for the tip. I've never noticed this (second) edit button at the top. Yeah, I also thought I might be the only one, so it was e.g. caused by browser-related things, but after I tried it with IE I was sure this wasn't an issue on my side. I also thought ESET might already be aware of it... However now they know it and maybe they can fix it. And even if not then I got a nice tip how I can prevent to reload the site, so this way I'm okay with it - although I would of course very much appreciate a fix.
  21. There is another annoying bug: If I click on the "Edit" button (between "Report" and "Hide") then I can edit my post. So I saved it and it's all okay. But if I'm trying to edit it another time then it doesn't work. If I click on it just nothing happens. Then I have two ways: Either open the edit link in a new tab, so I use the full editor or reload the whole page, so that I can edit my post again one time again. I've tested this with Firefox and IE.
  22. It's already there. Just click on "configure HIPS" and you'll get a huge rules editor where you can add very specific rules. Yes, that's expected. But nobody forces you to use the interactive mode. And if you create some rules (e.g. with the learning mode like you did) then you get less prompts. If a rule was correctly created then it shouldn't be blocked. If it still does then it surely wasn't created correctly or only a similar rule was created which doesn't cover the actions the application did later. For troubleshooting this we would need to know the exact application, HIPS rule(s) and more information about how you Yes, this is expected in the policy-based mode. In this mode HIPS only applies the rules and blocks every other action. And again if you want to receive a prompt you have to use the interactive mode of course. Great, so you found the mode(s) which fit's to you. That's the sense of these modes. Use the one you like. And as you complained about the crowd of messages from interactive mode I would have recommend you the Smart mode anyway. There you have a huge "whitelist", so you will only be prompted for very suspicious actions.
  • Create New...