[ESET web protection not working properly]

1 hour ago, micasayyo said:

New version of Eset 17.1.9.0 in preview of its release😀

@micasayyo Really appreciate That update! 17.1.9.0 Preview Block occurs with - network.http.http3.enabled - EITHER TRUE OR FALSE.

FF 124 DoH Max setting with Quad 9

[ESET web protection not working properly]

47 minutes ago, itman said:

Ahh .............. You poor soul! That is also my ISP.

First, you can't change any DNS server info on AT&T gateways/routers. They have locked the settings from modification.

Do as I did. Remove any third party DNS server settings from your IPv4/IPv6 connections. Now you are using AT&T DNS servers assigned via DHCP. Reboot Windows. Retest with http.http3.enable set to false in Firefox.

I was going to plug Those Gateway #s into the IPv4/IPv6 blocks of my W10 Network module (Network/ Change Adaptor Options/ Ethernet / IPv4 & 6 .

Both Blocks Blank / Re-Start ... and I still get the test site page. I'll live with it & Thanks for the How-To.....

[ESET web protection not working properly]

16 hours ago, itman said:

In my case, the key element was switching back to my ISP DNS servers as my Win DNS servers.

One last attempt & I'll leave you alone  .... To do what you did with Win servers .....I'm looking at my AT&T Uverse Gateway data and in the Broadband Tab/Current Internet Connection .... I see Primary and Secondary DNS numbers ... Is THAT what I'd plug into the slots where Quad 9 data had been? ..... Obtain DNS Servers Automatically was my first guess that failed at making a Block.

[ESET web protection not working properly]

18 hours ago, itman said:

Just retested.

Eset nows blocks the domain with network.http.http3.enable set to false. DoH set to maximum level using default Cloudflare servers. I am also now using my ISP DNS servers as Win DNS servers.

Still No Block for me. False setting & Quad 9 to Cloudflare (default) and that crackingpatch site still shows. I even changed the -- xxx.enable_0rrt -- expression to false but No Block. I'll live with it til 17.1.....

[ESET web protection not working properly]

Thanks, itman. I saw a ghacks post from 2020 How to enable HTTP3 in FF plus a few other articles (2019 How To Geeks: HTTP/3 is becoming more widespread) ....and just presumed..... Not sure I'd see the difference anyway....

[ESET web protection not working properly]

Not a big deal .... but FF 124 with (about:config) -- network.http.http3.enabled -- changed to False I still get the -- https://crackingpatching.com/  -- site with DoH Enabled ...... Edge DoH Enabled but HTTP3 DISabled.....  Blocks that site 3 times in a row.

Will await 17.1 .....

 

[ESET Web Protection doesn't block websites on Firefox]

PDF Link @itman just provided .... Interesting 5 Browser Vendors Plan NO Changes ....

@ itman, Surely you saw this SO, per Below .... Still No DoH in Browsers Or Windows? Low-tech'ers wouldn't likely conclude that - so the clarification helps....

We reported our observations via the vulnerability disclosure
systems to the 6 browser vendors, together with our sugges-
tions to better manage the threat of downgrade attacks. We
have received responses from all of them except Microsoft
Edge........ Among the ones replied, none consider a fix is neces-
sary in order to prevent DoH from being attacked.

According to the reply from Firefox, that DoH is vulnerable under down-
grade attacks is an expected feature of Opportunistic Privacy
profile. Firefox believes this setting still protects the users
against passive adversaries most of the time. Chrome claims
that the issue is the “intended, designed, and documented be-
havior” of current Chrome DoH. In fact, Chrome uses plain-
text DNS until a DoH resolver can be reliably connected and
then upgrade all DNS communications to DoH in opportunis-
tic mode. The communication falls back to plaintext DNS
if any connection issue happens. For other browsers whose
DoH implementation is provided entirely by the Chromium
browser engine, the responses are similar or expected to be.

While given all browsers follow RFC 8310 [35], which
has mentioned the possibility of attacks, it is unsurprising
that none of the browsers will make a step to address our
attacks. However, we are concerned that the user notification
is deliberately ignored and none of the browser vendors plan
to adopt it even though the integration into browser UI should
incur moderate effort and overhead (e.g., using Notification
API [28,31]). We believe users should be put into the decision
loop, so they can choose to avoid sensitive communications
(e.g., visiting a controversial website) in a hostile environment
when necessary.

[Nitpicky BPP Page Question]

Great & Thanks, Marcos. I just assumed X'ing the Icon was to remove BPP & No Green = No BPP ...

[Nitpicky BPP Page Question]

Using Firefox ... Ref the e X icon (below) on BPP page's Far Rt Border ... Once you purposely or accidentally Clk the X and Remove BPP, can you Restore BPP without Close / Re-Open Browser? .... Some guys post they have 50 tabs open at once - Seems they'd go nuts Closing & Re-Open All 50 ...

This started when (few times) I accidentally activated the FF Web Developer Tool Module in FF AND amazingly the X to Close the Dev Module is COVERED by ESET's e X Icon. Initially I X'd the BPP Icon, then Dev Tool X  = No BPP now .... But discovered FF Menu/ More Tools / Unchk Dev Tool works = 3 Clks.

I can easily live with this BUT Wish the BPP e X Icon was placed 2 inches higher OR a way exists to Re-enable BPP after X Off......

What's the reality?  Thanks as always.....

 

[Problem with VPN]

By Now you hopefully found the Aus Form,  BUT IF No....

My OK attempt - for Australia - Form went like this ....

Eset Home Pg / Top Rt - Support Btn / Choose Country = Aus / Support Btn / Choose an Option / Home User/ Other Issue or Feedback / Feedback Other/ Red Btn = No I Still Need Tech Sppt / Form appears .... It's as simple as That!

[Scheduled Scan Not Running]

Glad it worked out. I DID NOT have Wake Timer Enabled in Control panel Power Options and THAT seemed to fix my issue. I think I previously Disabled it fighting Sleep waking-up on its own repeatedly. Windows comes on about 20 seconds before the Set Time and No evidence of the app, BUT it did Wake-up.

We both learned something.

[Scheduled Scan Not Running]

I can't get a "Start a Program" Test of this to work trying - WizTree64.exe - as the Program to start.

Can you try a Test Setup Now for 10 minutes later to see if Your Setup works?

I realize I don't understand the actual Trigger to wake-up Windows as when I manually dbl-clk -- WizTree64.exe (or any exe) ... I Then MUST OK UAC ... which I don't have a script for in Task Mgr. Does That Delay Computer Wake-up? I don't know.

There IS a Box to name Which Windows AND one to chk in the Conditions tab -- Wake-Up Computer - I first did not see - Be sure you chk'd them.

Can't miss logic and execution via Task Mgr are two different things as I have shown. Good Luck!

[Scheduled Scan Not Running]

Could you not use Task Scheduler to Wake-up the computer at 7:50 PM to Run an insignificant App and Then let Eset's scheduler run independently at 8 PM? I can't write the necessary Script needed to start App 1 but it seems logical to consider.

[BPS Extension in FF and BPP Green Border 2nd Window]

Thanks for the reply, and itman's statement makes sense now after reading the After Update to EIS17 data.

I DO get the Green border when clking a BPP shortcut I put in my Taskbar - it didn't sink in at first that the Old Way to define BPP sites was removed and that getting the Green border window from clking a previously named site in a normal Firefox window is gone.

I'll use the BPP shortcut and build new shortcuts from within it. Thanks again to you both!

[BPS Extension in FF and BPP Green Border 2nd Window]

1 hour ago, COStark26 said:

Sorry, Marcos .....it wasn't the 2nd of Two Green border windows BUT a 2nd window with a green border.

That 2nd window with a green border no longer occurs and I don't know if That means BPP is Not Active as a result.

OK, I Uninstalled the Extension and STILL No 2nd Window with Green Border.

I know I was getting the 2nd Window in BPP BUT cannot remember IF I got it After the 17.0.15 Update but before the extension.

How should BPP work now with 17.0.15 and No extension?

How WITH the Extension?

[BPS Extension in FF and BPP Green Border 2nd Window]

Sorry, Marcos .....it wasn't the 2nd of Two Green border windows BUT a 2nd window with a green border.

That 2nd window with a green border no longer occurs and I don't know if That means BPP is Not Active as a result.

[BPS Extension in FF and BPP Green Border 2nd Window]

Thanks for that ... my only clue that BPP is working is the 2nd Green Border Window, so I'll ask Marcos / constexpr, etc. to clarify What its absence means for BPP.... does No Green With BPS ext mean No BPP. Forgot to say the obvious ... the Green Border Box IS chk'd....

@itman, I'm guessing that you don't plan to use it. I've found no "use examples" & (ie) What you see IF a Search result nets a Red Flag ..... For a non-techie it reads like a logical Security Aid, admin tool, etc., ....  BUT we're off to a very slow start.

[BPS Extension in FF and BPP Green Border 2nd Window]

Willing to try it ... In my FF 120 I installed the BPS extension today with a shallow understanding of it ... but find that the typical BPP Green Border 2nd Window for named financial sites, etc., ... doesn't occur now.

Is THAT related to the new extension  or is something amiss. Thanks as always....

 

[Banking Ridirection Not Working]

I got the -- GREEN BPP Window -- for a bank site after  FF 118 was installed... All appears well.

[Banking Ridirection Not Working]

On 9/7/2023 at 1:38 AM, Marcos said:

There could be differences between x86 and x64 versions of Firefox. For me it didn't work with Firefox v116 x64 if I remember well. The current version of Firefox is 117 where redirection doesn't work.

We have reported a bug to Mozilla which will be addressed in v118 in which redirection should work again with SAB turned off.

Tomorrow is FF 118 day that is ....... supposed to fix the BPP redirect issue.

Anyone who knows how to get it - OR its testing equivalent - early - should do so, test it, and advise the rest. Fingers crossed.

 

[Revisit Phantom Scan That's Not Scanning]

 

EDIT - I just found my February Posts about the same thing and we never got anywhere.

I'll just live with it and -- delete this Thread if you can.

Still running 3 hours later in Sys Tray - I clk'd in Task Mgr - End Task - for  the - ESET Proxy GUI - and it's still spinning as a Scan.

3 Hours. and NOTHING Shows in the Computer Scan Module.

[Revisit Phantom Scan That's Not Scanning]

Just starting a Macrium Image I noticed in the system tray the ESET - e - icon with Spinning green Scan bar.

Opened ESET Scan Module to Stop it and - Nothing is there - as in the past (sometimes). ONLY Sched'd Scan is 7 am on 4 days.......

I notice in Task Mgr that - ESET Proxy GUI - has a "choppy" Spinning Green Bar around an e Icon -

Anyone know WHAT this is about -  AND is THAT why I see the System Tray Phantom Scanning that doesn't exist?

[Banking Ridirection Not Working]

Really appreciate the How-To... easily restored and safe again....

[Banking Ridirection Not Working]

[ "or using the......  isolated browser accessible via the BPP desktop shortcut."   ]

Can someone remind me how I get that page?  -  Always seen when I don't need it.... I'm FF105.0.2, also ....

[Banking Ridirection Not Working]

+1  Edge nets Green Border BUT FF 115.0.1 Does Not.

Correct Setup verified in ESET for my bank.