Online Armor - Public Beta

www.matousec.com
perfudp, perftcp

Edit: but you need to turn off web shield to get correct result with published beta. I reported this bug to Mike and he said it will be fixed before release.

 

Has anyone used this OA beta while surfing with Firefox or K-meleon in Sandboxie? I seemed to lose my connections at such times. Anyone else?

 

I think he was just joking!

 

Hi Mike, don,t take my comments serious. It was more of a joke( but the features of OA I mentioned really I liked a lot).

About clean PC mode, it,s a great idea indeed. I really like it. There is one small issue. What if I want to trust only my OS partition/ drive( C). I have many malware samples collected on no-OS partitions. MAy be an idea for some future version.

BTW please have a look on my post about pop ups GUI. It will be really nice to make applications involved bold and prominant just like SSM, EQS, PS etc do. U can read application anme n icon just on a glance. I am not sure if u can agree with this or not?

 

Seems to be difficult for companies to adapt to 64 bit. Comodo still far ahead.

 

Hi Aigle,

We're not going to change popups before release - but it is on our TODO list to improve them. Aside from bolding and emphasis, we want to improve them in other ways too.


Mike

 

Many vendors do not offer a 64 bit version for various reasons.
But I assume it's basically caused by the market share of 64-Bit Windows.
Not every company can afford to develop software only to keep their fanboys happy.

Cheers

 

I wouldn't know - we haven't even looked at this yet.

 

No one cares about Comodo. go post your fan boy crap elsewhere.

 

I agree, Comodo is far ahead in resources it can give away. But their "result / resources" ratio is close to zero taking in account that lot of useless toys they developed.

 

Then my mistake.


I agree with you on that point.

- Stem

 

I'm glad to see this in beta & sorry I'm not home to install it , look forward to giving it a go, good job getting it to this point...it seems very stable from what I have read any problems with either threatfire or SAS?

 

I don't use Sandboxie at present, but I do use OA and Ffox 3.0.1 (NoScript, AdBlocker, Keyscrambler, Customize Google, Secure Log-in, WOT, and several others which should *not* impact surfing). Ever since the last several builds of OA and the advent of Ffox 3.x I've had slow downs in browser connections with many time-outs. More than 50% of all site calls are timing out on me. Never happened in earlier builds of OA when I was running Fox 2.xx. I've been trying to find the problem for some weeks now, but have yet to pinpoint it. So I'm not sure your issue is Sanboxie-related as much as it is something in the newer OA builds + the new Firefox engine (and/or extensions I mentioned).

Sam

 

Disable NetBIOS and that should go away. That's assuming you don't need it.

 

The first thing I'd try is to turn off web shield. If it helps then the problem is there. Web shield used to be a ... a bit troublesome part. BTW, you run it on XP or Vista ?

 

That,s ok.

And what about this?

Thanks

 

Hi Aigle,

We don't have a clean pc mode per-se, what we have is a "Trust everything found in the wizard". We dont do a full disk scan an literally trust everything on the disk.

Cheers

Mike

 

So it,s not possible to trust everything just on OS partition/ disk?

Thanks

 

No, not possible. Unless you have your samples stored in a certain set of locations scanned by our safety check wizard (or run them during startup) they would not be trusted.

I think in your case though, you would be a candidate for running the full wizard

 

Thanks Mike.

 

Hi,

OA v3 comes with this new feature 'Direct disk access control'.
But how do we know that it is working?
Exactly... Trojan.Win32.KillMBR.f (Kaspersky)



Seems to work, at least with this rascal.

Cheers

 

A number of HIPS have this function. I would prefer that this would either be split to a read/write action, or simply have alert to write. Quite a number of applications will attempt to read low level disk simply to play media, but to allow them to also write would be of concern (of course IMHO)


- Stem

 

We did alert on read in early builds, but this has been changed now so that we only alert on writes.