Jump to content

Multiple Notifications of exact same type


Recommended Posts

HI all,

Network protection blocks a particular site. It blocks subsequent attempts to same site. Is there a way to prevent repeated messages for the same site?  It is a chore to see 5 or more popups for the same site.

 

Thanks

Link to post
Share on other sites
  • Administrators

Do you mean to silently block malware as well as access to malicious websites for a while and only the attempts ? It might not help anyways in cases when something was continually attempting to access malicious files or websites, e.g. a malicious browser add-on.

Link to post
Share on other sites

Ah...but if multiple, similar notifications are required then faith in the product is lacking.  If confidence runs high for the NOD engine then what need for constant reminders?

At the very least, an option - for the confident user - to run silent after one of a particular URL has been displayed would be nice.

Link to post
Share on other sites
4 hours ago, Hpoonis said:

Network protection blocks a particular site. It blocks subsequent attempts to same site. Is there a way to prevent repeated messages for the same site?  It is a chore to see 5 or more popups for the same site.

I suggest adding the web site URL as *.badsite.com/* where badsite.com is the offending domain name to Eset's Web Access Protection "List of blocked addresses." Then research why your browser keeps redirecting you to this web site.

Link to post
Share on other sites

I know exactly why this site has attempts on it. That is not the issue, is it? I know it is blocked and therefore would appreciate NOT being reminded of it on every occasion.  The ability to limit notifications would be great.

Link to post
Share on other sites

Thanks but irrelevant. As I previously wrote, I KNOW what these site blocks are for. This entire post was about having the ability to limit repetitive notifications.

Edited by Hpoonis
Link to post
Share on other sites
2 hours ago, Hpoonis said:

I know exactly why this site has attempts on it. That is not the issue, is it? I know it is blocked and therefore would appreciate NOT being reminded of it on every occasion.  The ability to limit notifications would be great.

The only way to do this is by methods employed by browser extension ad blockers and the like. They do so silently w/o alert by predefined block list capability prior to the web page being displayed as I previously suggested .

Eset and other like AV products have no way of determining if this is the first attempted access to the site or subsequent access.

What Eset could provide is the ability similar to that provided in its PUA alerts. That is to allow the user to add the web site to its existing Eset block list or a user created block list via global specification; e.g. *.badsite.com/* , This could be automated somewhat by showing the block option as "hide future web site alerts and silently block" or something on this order.

 

Edited by itman
Link to post
Share on other sites
  • Administrators

The above has a missing condition for aggregation of same alerts generated in the last 1-2 seconds. If the same alert was to be generated a while later, it would have to be displayed. Without that the user would not know that the machine is infected and the AV is blocking something silently in the background.

Link to post
Share on other sites

Now you are mixing site blocking with actual infections.  Once again, the abillity to limit notifictions would be a nice feature, regardless of whether the user is an idiot, or someone that has half an idea they know what they are doing.

 

Thanks anyway.  I'll have done with it. This conversation is becoming circular.

Link to post
Share on other sites
  • Administrators

Site blocking is often interconnected with malware being active on a machine. E.g. if there's an undetected downloader running on a machine that continually attempts to download payload from a url that is blocked by Web access protection, alerts about blocked urls give the user an indication that something bad is going on there which should be looked at.

Link to post
Share on other sites
12 minutes ago, Marcos said:

E.g. if there's an undetected downloader running on a machine

Just out of curiosity, from a logical point of view.

If ESET blocks the site , that means ESET is aware about the downloader , so why ESET wouldn't detect the malicious downloader?

Link to post
Share on other sites
  • Administrators

If a process accesses a blocked website it doesn't automatically mean that
- the url / host is 100% malicious
- the process is 100% malicious.

While we are aware of the majority of urls with malware, it can be even an innocuous application (e.g. browser) that accessed it.

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...