rugk
-
Posts
1,716 -
Joined
-
Last visited
-
Days Won
54
Posts posted by rugk
-
-
It's a home user. So nothing with ERA.
And if ESET works correctly (see my scenario), because no overuse occurred?
-
Thanks Swex.
@Arakasi: I overlooked your answer... Sorry.
-
Original Poster
quote for trash:
impossible to put the app in the trash.In OSX, you drag applications and files to the trash bin.
OK then I understand.
By the way: What means OP?
-
So back to topic.
I only wanted to link to this topic because here @novice complains about the fact that we didn't get good answers to this topic in a appropriate time...
I reckon they gave as good answers as they could with the information they had available, its not just to push a button and there we go. And I don't believe they are willing to test a new update system using their actual customers, without doing a lot of in-house testing first wich of course will also take...time.
Of course it needs testing and time. I don't said that they have to develop it in a few weeks.
The bad thing that we got answers that means quite this:
"No the license data is send not encrypted and we don't want to change this. This isn't serious!"
Another strange thing was that they said the network traffic would be encrypted, but in truth it isn't encrypted!
See my post before.
But now it seem like they want to (optionally) encrypt the license data in future versions of the ESET products. So maybe this problem is solved!
-
Just another scenario:
I bought a multi device license with 5 devices. Now I get a username and a password:
* username: EAV-0215366499
password: **********
This licence now I can use for up to 5 devices. So after this I activated it on this 3 devices (and I want to activate the remaining devices later):
- PC: ESS
- Notebook: ESS
- Mobile: EMS for Android
So then I use a public (unknown) WLAN. Theoretically someone who uses the same WLAN could read out this license data (because it's sent unencrypted!). After this he can use it for some other devices.
But if he is clever he don't activates 10 other devices with this license, because then of course an overuse will be detected. So he just activates 2 ESET products. And then we have a problem:
- I: I don't know that my license data was stolen, because nowhere I can see it.
- ESET: In this case ESET also don't knows that the license data was stolen, because it isn't overused. Only 5 of 5 devices are using the license.
Effects:
And what this effects are I already described in another post.
I have 100+ license under my belt that i take care of so far and if anything was going on i would know about it.
No! How you should know? A license could be stolen and you don't notice it. That's the system of Man-in-the-middle attacks.
The solution:
sounds quite simple. Of course it isn't such simple because you have to improve the update and license system in many things, but it must be...
Encrypt the license data or at least the password!
And what Marcos said sounds quite good!
Maybe in the future there will be an option to switch to https but this should be optional not only because of adding balancers responsinble for SSL offloading to update servers but also to make it possible to use http and capture the traffic for analysis in the case of an update issue which would be impossible to do with https.
If they encrypt the update traffic in newer version this problem is solved.
And I also advocate to make it optional (for the reasons he said). But it should be set by default, because you should only disable HTTPS for troubleshooting and then you can switch back to the secure alternative.
* Of course this licence data is faked...
-
So back to topic.
I only wanted to link to this topic because here @novice complains about the fact that we didn't get good answers to this topic in a appropriate time...
-
OK I think I understood something wrong.
Windows Mobile and Symbian are not Android OS, based on java and using a linux kernel.I thought: "Windows Mobile and Symbian are not Android OS, but they (WM and S) based on java and using a linux kernel."
And that's right: "Windows Mobile and Symbian are not Android OS - Android OS based on java and using a linux kernel."
So Windows Mobile and Symbian of course are not based on Linux!
OK so I can summary...
- Firewall: You would need root and it's not such important.
- Web protection: I'm still waiting for an answer from @dwomack...
-
Privacy Advisor: There are two meanings of this...
- as something that provides advice for cybersecurity and privacy: ESET Cybersecurity training, ESET blog (WeLiveSecurity)
- as something that provides advice whether to remove apps or not: already included (Security Audit).
- Backup: It would be quite extensive to include it.
- Parental control: Maybe this will included in the future.
-
This is an easier solution :
1) download the ISO from here hxxp://download.eset.com/special/sysrescue-iso/eset-sysrescue.1.0.9.0.enu.iso
2) for a CD, burn the image. For a bootable USB, use YUMI or SYSLINUX
Here you are downloading ESET SysRescue Live (like @CB530 recommend)). But instead of burning the ISO manually you can also use the ESET SysRescue Live "installer". (IMO it's much easier to use)
If you want to create an ESET SysRescue (Windows PE based) rescue disk then you have to create in from your ESET product.
More about the differences of both SysRescue versions you can find here.
-
Of course windows has a trashbin - ok it's namend "Recycle bin" and not "Trash bin".
But of course you can't (or better: you shouldn't) put programs into it, but use the uninstaller.
By the way: What means OP?
-
Hey, before doing something we of course need to know which ESET software you use. (Then maybe a moderator can also move it in the right forum.)
You are talking of an "app" so maybe you also mean ESET Mobile Security.*
If you want to uninstall this, follow the instructions in this kb article.
* Before somebody says that this couldn't be, because you have no trash on Android... Yeah - just take it for completeness.
-
Thanks a lot... I can just agree to you @SweX.
-
So now some questions to you to ESET. (some of them I already asked but here they are summarized.)
You had the intention to make this training available worldwide. This would be great!1. Will you made this?
2. If so how will you solve the problem with the videos? Will you remake all? (or do you put subtitles into it?)
Refereed to my post before:
3. What's this strange French kb article? It's quite useless, because all Frence people which follow this article will get an error message.
And now a new question get in my mind:
4. Why not allowing access for British ESET customers? They of course can understand it. I know there are many differences between American and British English, but they would understand it...
-
Yeah of course you have to remake it... (and translate all text, speech and so on)
But I don't know what videos that are. With text included or is it just the speech which have to be translated...?
And I also think that there aren't only videos in the training...
But that's the problem. I can only think... I can't test it (at my own risk that I don't understand it)
-
While the external DNS you are using will be inputted into the router, or in your lan adapter, this address cannot be blocked or you won't have internet, lol.
I think this is the intention of @decoder. He only want to have access to the LAN (with IE) and he want to block all other network connections.
-
I think the language translation is there available on almost all pages, for all languages etc, depending on where you are located.
Ehm... no... just look at the right. There you can see in what language the article is available...
How fair would it be if you could not see what was going on in your own language.
This article is also only translated to French... So to say it in your words: It's unfair to all other ESET users, except of users in US/Canada and France.
I also don't find it unfair. Actually they can't access the training anyway... so why should they read this instruction? They can't use it!
However keep in mind, the videos that are in the training are in full English, so simply giving access would not work.New videos would need to be created in the appropriate language.
Yeah, but why not giving access yet? Just for the interested people... and for they they can understand English. (Like many in this forum - For many people in this forum English isn't their native language.)
But of course to made the training available to the (large) public, it is necessary to translate all the stuff...
-
Yes it is only available in USA/Canada and the Caribbean.
I also note this in this topic and then @dwomack said that they intent to made it available worldwide
.So maybe you have to wait a bit...
-
Can it be that this training is also available in France? (Because I saw that the kb article is translate to French.)
So it would be really useless to provide instructions for accessing a service that you can't access (in the language that the instructions are)...
-
But if so what means the zone "DNS servers" in the settings?
-
That's strange, but you blocked only 1.1.1.9-... so some IP adresses (1.1.1.1 - 1.1.1.10) may be allowed. But of course it should also block quite all IP addresses.
So I tested to only allow 192.168.0.0 - 192.168.255.255. And it worked.
After this I tried to display a local IP and this worked.
And also the block of all IPs (1.1.1.1 - 255.255.255.255) worked:
But then I tried to test a workaround. I wanted to block all DNS servers (so you can only access the sites you know the IP) and for this I used the zone "DNS Servers".
But in this screenshot you can see that it doesn't work.
-
Add an option to Internet Banking
If you want to an on-screen-keybord just enter "osk.exe" in the start menu (Windows 7) or in the box that appears if you press Windows key+R.
And there are many other programs for saving passwords in a password safe.
Option to completely exit the ESET
Why you should do something? Actually you can pause the protection until the next restart.
Sandbox
This was already suggested.
Option to detect the malware to exclude him.
You can already exclude files or folders in the options.
-
Windows Mobile and Symbian are not Android OS, based on java and using a linux kernel.
Because they have more vulnerabilities, no linux kernel, barely any security, i can go on.....
So what? Have they a linux kernel or not?
P.S.: Anroid is also using a Linux kernel.
-
Yeah, but if it is
On Android Device it is not possible to run firewall and it is not necessary to run.on an Android device. Why should it be necessary to run it on Windows Mobile or Symbian?
-
Firewall: Not possible without rooting the phone; EMS will not install properly (often at all) on a rooted phone; we strongly discourage even trying
Anti-phishing: as you stated this is already included in the Premium version of EMS
Privacy advisor: EMS does contain Device Monitoring and Application Audits. If you are asking for advice on privacy, there's plenty of relevant posts on WeLiveSecurity - if something else, please explain more clearly.
Parental Control: This might be a useful feature in the future. We'll look into it.
I'll inquire internally about the Web Protection request. If another ESET staff member has deeper insight about it, they can feel free to respond if I am unable to reply before they are.
-
Firewall: OK if it isn't possible then we can't do anything.
But just a question (I already asked it in the first post): EMS for Windows Mobile and for Symbian have a firewall (according to the Wikipedia article). Is it true or is it a mistake in the Wikipedia article?
- Anti-phising: Yes you're right. It is already included.
- Web Protection: I'm looking forward to hear from you...
- Privacy advisor: I don't know what they mean, because I don't asked - I only referred to the Wikipedia article. So look into the Wikipedia article. There 9 mobile security apps should have such a "thing".
- Parental Control: OK.
-
Firewall: OK if it isn't possible then we can't do anything.
-
Maybe you can find some logs here:
But I wasn't able to test it - fortunately.
Picture gallery of ESET robot/android - CD/DVD Cover for ESET SysRescue (Live) - ESET Wallpaper
in General Discussion
Posted · Edited by rugk
So the last point of this topic wasn't "solved" yet: "CD/DVD Cover for ESET SysRescue (Live)". (If you don't already know about this you can check out this page - it's about ESET SysRescue Live, which is a Linux based rescue cd.)
And because of this I created this CD/DVD inlays. They have a size of 12x12 cm (this is a standard size for jewel cases) and you can print them by yourself.
For printing you can use the pictures, but if so you have to make sure that you print it in the right size. To solve this I also uploaded the PPTX-files (PowerPoint Presentation files) - there you can print a whole A4 page. Another advantage of this is that you can easily edit the text before printing.
By the way: I used the PPTX format because most people can open PPTX files (mostly with PowerPoint) and so they can easily edit it. I also uploaded it in the old PPT format.
So this file contain:
And here you can download it (PPT(X) file and the pictures):
Download
(alternative downloadlink)
You can see the normal files and the "ready to print"-files. The normal files are designed to be edited before you print it - so you can (and maybe also should) adjust some things there.
The "ready-to-print" files are designed to be printed directly without changing anything - they are basically the same as the PNG-pictures which I also uploaded.
And here the Virustotal scans of the files:
I hope you'll find it useful.
Edit: Minor changes in the files, uploaded "ready to print" files, added alternative downloadlink.
Edit2: Changed alternative download link, because the old hoster added PUA to their site, which was detected by ESET.
Edit3: Changed Mega download link to new site used.