locushop 0 Posted May 10, 2020 Share Posted May 10, 2020 hello i have an IPMI system (allowing me to remotely access servers) which still uses jnlp files (java web start or something like that). So, if i install ESET Smart Security, i can not download eny jnlp file! If i uninstall it - it works ok - i can download and use. If i install it - doesn't download a file. I've tried disabling everything (except HIPS because it requires a restart) - no luck. How can i whitelist .jnlp files? Link to comment Share on other sites More sharing options...
Administrators Marcos 4,919 Posted May 10, 2020 Administrators Share Posted May 10, 2020 Do you get an alert from ESET? If not, does temporarily disabling protocol filtering or pausing the firewall make a difference? Link to comment Share on other sites More sharing options...
locushop 0 Posted May 10, 2020 Author Share Posted May 10, 2020 no, i get no alert. disabling everything except HIPS also doesn't work as i've stated... it's really weird Link to comment Share on other sites More sharing options...
Administrators Marcos 4,919 Posted May 10, 2020 Administrators Share Posted May 10, 2020 Just to make sure, did you really disable this setting? Link to comment Share on other sites More sharing options...
locushop 0 Posted May 10, 2020 Author Share Posted May 10, 2020 this is what i get if i try to download with wget: Link to comment Share on other sites More sharing options...
locushop 0 Posted May 10, 2020 Author Share Posted May 10, 2020 4 minutes ago, Marcos said: Just to make sure, did you really disable this setting? here are the screens: in which menu can i find your screenshot? Link to comment Share on other sites More sharing options...
itman 1,629 Posted May 10, 2020 Share Posted May 10, 2020 As I see it, there's a security issue here regardless of the Eset factor: Quote Any information accessed remotely via Java Web Start is acquired only using the standard web protocol, HTTP. https://techspirited.com/what-is-jnlp-file-how-to-open-it Link to comment Share on other sites More sharing options...
locushop 0 Posted May 10, 2020 Author Share Posted May 10, 2020 1 hour ago, Marcos said: Just to make sure, did you really disable this setting? I've found this setting in the "Advanced Setup" (P.S. it is a bit misleading that have i turned all the knobs off there were still some active protections....) Anyways, after i've disabled Protocol Filtering - only first 2169 bytes are being downloaded... @itmanI fully acknowledge the security issue here. The JNLP file is accessed via HTTP, the rest is downloaded via HTTPS. Nevertheless, i think i should not uninstall ESET if i want to use my unsecure stuff, right? Link to comment Share on other sites More sharing options...
Administrators Marcos 4,919 Posted May 10, 2020 Administrators Share Posted May 10, 2020 Does temporarily uninstalling EIS and installing ESET NOD32 Antivirus make a difference? With EAV installed, the only protection feature that might cause issues with http(s) communication is protocol filtering. Link to comment Share on other sites More sharing options...
itman 1,629 Posted May 10, 2020 Share Posted May 10, 2020 (edited) 5 hours ago, locushop said: i have an IPMI system (allowing me to remotely access servers) Based on what I am reading here about IPMI: https://en.wikipedia.org/wiki/Intelligent_Platform_Management_Interface , the real question is if Eset compatible with this system configuration? I have my doubts it is. Edited May 10, 2020 by itman Link to comment Share on other sites More sharing options...
Recommended Posts