bbahes
-
Posts
521 -
Joined
-
Last visited
-
Days Won
5
Posts posted by bbahes
-
-
-
Is renew possible strictly through regional reseller?
-
Is there option to pay renewal online?
-
Hi,
Not sure if it's right forum, if not feel free to move it...
I'm considering license renewal as home user, however I don't see that ESET ever made online store for users in Croatia. Instead we are redirected to Croatian reseller from who we receive offer which we pay via normal banking account.
I won't go into prices of renewal, but does ESET consider making online purchase normal thing?
Thanks.
-
14 hours ago, MartinK said:
Just out of curiosity, what would be your preferred Linux distribution for future? Asking as there is not many "free" distributions guaranteeing reasonably long support and stability of environment for future migrations.
I wonder, would you consider RHEL as security vendor? If not why not?
-
On 6/8/2019 at 8:15 AM, Marcos said:
Does disabling QUIC protocol in Chrome make a difference? https://support.eset.com/kb6757
Will new application filtering feature announced for future 7.x version of endpoint clients be able to control these situations?
We have situations where clients roam outside corporate network and we would want to be able to control things on application level.Thanks!
-
1 minute ago, Marcos said:
So it happened just once or he or she can reproduce it by closing and opening the lid at any time?
We did not try to reproduce problem. I will ask user to repeat same process and give you feedback.
-
1 minute ago, Marcos said:
Seems to be the same issue probably with registering callouts to Windows Filtering Platform. Please provide logs from the machine as per the instructions above.
What user did in the end is restarted machine. After that alerts went away. We talked to user and he told us that he did not shutdown notebook in Start > Shutdown way but he just closed lid. After he resumed notebook from sleep state this alert started.
-
Maybe related....but I have one client (Endpoint v7) that has this alert in ESMC:
-
HI!
We got today a event in THREATS:
However, I see action as Detected. If we wanted to change action for this types of threats, which specific policy/rule would we need to modify?
Thanks!
-
Description : Add variable for COMPUTER DESCRIPTION
Details: We use COMPUTER DESCRIPTION to denote workstation position and/or users and would like to include this field in notification messages.
-
This is what I see in /var/log/httpd/error_log file:
[Mon May 06 09:16:32.930991 2019] [proxy_http:error] [pid 29607] (70007)The timeout specified has expired: [client 192.168.224.8:49679] AH01102: error reading status line from remote server update.eset.com:80
[Mon May 06 09:16:32.931042 2019] [proxy:error] [pid 29607] [client 192.168.224.8:49679] AH00898: Error reading from remote server returned by hxxp://update.eset.com/ep7-dll-rel-lb/mod_049_horusdb_4350/em049_64_l0.dll.nup
[Mon May 06 09:29:08.351585 2019] [proxy_http:error] [pid 4953] (70007)The timeout specified has expired: [client 192.168.224.8:50128] AH01102: error reading status line from remote server update.eset.com:80
[Mon May 06 09:29:08.351623 2019] [proxy:error] [pid 4953] [client 192.168.224.8:50128] AH00898: Error reading from remote server returned by hxxp://update.eset.com/ep7-dll-rel-stop1/mod_049_horusdb_4350/em049_64_l0.dll.nup
[Tue May 07 09:07:03.708265 2019] [proxy:error] [pid 4185] [client 192.168.224.8:49861] AH00898: DNS lookup failure for: i3.c.eset.com returned by hxxp://i3.c.eset.com:80/
192.168.224.8 was client that had problem with update on monday.
Also I see many (not too many) messages about DNS lookup failure. Is this something I should look on my side, ISP side?
cat error_log | grep -o "DNS lookup failure" | wc -l
64 -
1 hour ago, JB Puig said:
A simple reboot on the server has solved the problem.
Many thanks !
Still...I would be nice to know what really happened. Maybe you could anonymize trace file with https://www.tracewrangler.com/ and share it...
-
-
This was only on one new client. After I logged in as Administrator it downloaded module updates correctly.
Proxy policy is same for all clients in company. All others working fine.
-
I had similar problem minutes ago. Maybe it's similar problem?
-
I don't know does this matter, but I've logged in as administrator on client PC and started module update manually:
-
Hi!
Deploying EES 7.1 further to new clients. On latest we have problem:
Agent is connecting to ESMC:
-
25 minutes ago, MartinK said:
Could you please double-check filters used to show threats of this device in console? Especially time interval and severity filter should be set in a way all threats are shown. It is possible that it has no "information" severity and thus possibly not shown in console by default.
Could you also check "Filtered websites" tab in client logs? This one is collected by ESMC, but not shown in threats view (was integrated to future release).
You are right! Default filter is to filter resolved threats. In this case, JS/AdWare.Agent.AF was resolved on client by connection termination so it did not show up in Threats page.
Thanks @MartinK
-
Hi!
After deploying EES 7.1 to 50 clients we have one reporting (notification to e-mail for Malicious file detected (trojan / worm / virus / application) enabled in Notifications) "Malicious file JS/Adware.Agent.AF was detected on computer ..."
However, I don't see threat reported in THREATS page in ESMC, but neither on client details > alerts page.
We are using default policies and have only 3 that Append firewall rules:
Is there something else we need to configure ?
-
Did you apply both Proxy policy for Agent and Product?
-
30 minutes ago, Zurd said:
You should have posted this before or just answered my questions better and we wouldn't have wasted so much time.
You should add this information about IDS exceptions of duplicate IP in your knowledge base, that will save time for others: https://support.eset.com/kb3430/?viewlocale=en_US
Not siding with ESET support, however, this is basic networking knowledge, not ESET endpoint problem.
-
1 hour ago, Marcos said:
You can accomplish this by enabling advanced security in the ESMC server setup and re-regenerating CA and peer certificates.
If I do this now, what steps would I need to take in order for current clients to communicate correctly with ESMC?
Second question, why is this not on by default?
Maybe you could make checkbox in initial wizard to ask during deployment for protocol TLS 1.0, TLS 1.1 or TLS 1.2 ?
-
9 minutes ago, bbahes said:
Hi!
I think this was posted before, but I can't find post.
We are deploying EES 7.1 clients and we have problem with IP address column in ESMC . It displays IP address of network adapter that is connected to LAN. However, some of our clients use VPN connections. In ERA v5 we got updated with this information as this is address that client uses to communicate on Layer 3.
Is there a option to show/update all IP addresses from clients in ESMC interface?
I see there is column REMOTE HOST that shows VPN IP's. I will try and use information from that column.
ESET products - online purchase
in General Discussion
Posted · Edited by bbahes
Hi Tomo,
Yes I had contact with your sales already.
The form just sends your team my order and I receive offer I can pay using bank account.
I was asking for renewal payments via VISA cards, Paypal...etc...
Boris.
PS. One benefit of this would be to auto charge my card when license is about to expire.