Jump to content

kasper148

Members
  • Content Count

    67
  • Joined

  • Last visited

About kasper148

  • Rank
    Candidate

Recent Profile Visitors

356 profile views
  1. Hello, on a Windows 2008 R2 server KSOS-5 is installed, so origin windows firewall is replaced by KSOS-5. Server owns two network interface cards NIC: 192.168.1.100 grants access to local internal lan, local clients are attached here. 192.168.2.100 is used for connecting German Medical Telematik infrastructure TI. 192.168.2.100 connects to TI-VPN-blackbox/192.168.2.2 ('Konnektor') only. Only TI outgoing connections from server are routed via server/192.168.2.100 and TI-VPN-blackbox/192.168.2.2. How to prevent any incoming requests from TI-VPN via TI-VPN-blackbox/192.168.2.2 to server/192.168.2.100 (and internal lan 192.168.1.x also...) ? It is possible to add KSOS-5 firewall rules by adding a packet rule which only affects the dedicated server interface/192.168.2.100 with TI-VPN-blackbox/192.168.2.2 attached? What must be inserted in remote adress and local adress? Thanks for help + regards!
  2. Thanks for all hints! No laptop, no full-screen-mode => options disabled. Today tooltip shows "Databases release date" (e.g. updates) at 05:53h and 16:13h. This means: Update request has been done every 2 hours, but it did find new databases only at 05:53h and 16:13h? Update log shows requests every 2 hours, that's right. Thx + regards, k.
  3. Hello, update settings in KAS Internet security 16.0.1x is set to 'automatically'. There seems to be only one update per day, is it normal? (for example today 22.7., 05:53h, yesterday 08:38h only) Other av software (coming from Bitdefender/ Gdata, shame on me...) is searching for updates more frequent. How to setup update request more frequent? Thx + regards, K.
  4. Tech support cannot bring back dropped features... In my opinion it is on duty for product management !
  5. KSOS 4 is missing some features... http://forum.kaspersky.com/index.php?showtopic=325397
  6. Hello, we are running KSOS3 on Win2008R2-Server with remote desktop services RDP enabled. Users are accessing internet by browser, started in rdp session. No client computer has any access to internet, not wanted and blocked by hardware firewall! Only the server has internet access allowed. For access control even for RDP browser users we are using 'antibanner' and 'https network control' in recent KSOS3, plese see attached screenshots. It works like a content filter! Both functions are missing in new KSOS4, aren't it? How to substitute this functionality for http and https connections?? Thx + regards...
  7. Support seems to be annoying, sorry... "Leider ist der Fehler noch nicht behoben. Wir müssen bis zur Veröffentlichung der neuer Version KSOS 4 warten. Die kommerzielle Version sollte Mitte oder Ende des Frühjahr veröffentlicht werden, entweder im März oder April." And new version KSOS-4 seems to be another product, missing most of the extended features from KSOS-3: http://forum.kaspersky.com/index.php?showt...p;#entry2323008 :dash1:
  8. Thanks, I did read this statement some days ago, but it doesn't cover if or if not an unsecure connection is possible from MITM-KSOS ssl proxy to web server. Kas Security center 10 for example did get new crypto dlls, pls refer to: http://support.kaspersky.com/11591 And what's about the modified Poodle attack against TLS ? https://en.wikipedia.org/wiki/POODLE#POODLE...ack_against_TLS Regards!
  9. Actual browsers like FF 35 doesn't support fall back to SSLv3 protocol. But: If encrypted SSL scanning is enabled, KSOS works as MITM and "looks" into ssl content, so browsers security features are superseeded, because KSOS itself connects to web server and browser connect to KSOS as a proxy. German magazin c't did warn about an issue, Kaspersky would affect browsers TLS connection if ssl scan is enabled. Is KSOS v3 [13.0.4.233 patch c] vulnerable against Poodle attacks, if ssl scanning is enabled? http://support.kaspersky.com/10466#block0 Whats about the modified Poodle attack against TLS (!) fall back? Testsites: https://www.poodletest.com/ https://zmap.io/sslv3/ https://www.howsmyssl.com/ https://www.ssllabs.com/ssltest/viewMyClient.html Thx...
  10. Thank you, Kas-SOS 3.0 seems to be fully supported: http://support.kaspersky.com/support/support_table#soho Click "Support lifecycle of applications for small & medium business" But: Why is this one year old bug still NOT fixed although it has been report by tickets several times? http://forum.kaspersky.com/index.php?showtopic=292140 And: Is there a alternative for Win2008-Terminalservers including requested/needed features (pls refer to OP). Thx once more, regards!
  11. If new KAS-SOS 2015 has several functions disabled http://forum.kaspersky.com/index.php?s=&am...t&p=2323008 which version does support following features: - Win2008R2 Standard/Enterprise with terminal services enabled (RDP) - No client KAS needed, all users are working on server by RDP only, no internet access for clients, no removable drives! - Content filtering (like anti-banner) and ip packet filtering for all RDP users needed. Is it possible to use Kas-SOS 3.0 (actual version 13.x) furthermore if Kas-SOS-2015 is released? Updates provided? Thx...
×
×
  • Create New...

Important Information

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.