Osprey: Browser Protection

I would have preferred OpenBLD disabled at default......

 

It's not possible to implement. If a provider doesn't have an option to report false positives, it won't be included.

 

...which makes perfect sense to me.

 

OK.

 

Osprey doesn't handle updates - Chrome or your browser does. I don't know the answer myself.

 

@stapp
Set an externally installed extension to automatically update - Microsoft Edge Developer documentation | Microsoft Learn

 

Clicked on a link in Yahoo...and got this.



So, I disabled AdGuard Family DNS, and tried the same link, and it was then OK

 

The family/adult/kids protection providers are disabled by default, AdGuard Family DNS being one of them. I will keep them all disabled for the time being.

 

Family protections are only needed for libraries, schools, and kids' computers, really.

 

A new version of Osprey was just released:

Changes in 1.3.1

• Added copyright notice headers to the codebase
• Improved alphaMountain service configuration
• Improved local IP detection and suffix handling
• Improved error protections across the codebase
• Fixed context menu parity after restoring defaults
• Fixed continue URLs for detected frame navigations
• Fixed issues with certain policies not working
• Improved JSHint compliance
• Cleaned up codebase

This update has been submitted to all extension stores.

https://github.com/Foulest/Osprey/releases/tag/1.3.1

PS: The latest version is already available for Firefox.

 

Changes in 1.3.2

• Allow site button now permanently adds to allowed cache
• Fixed blocked cache integration with alphaMountain
• Disabled Norton Safe Web by default due to false positives
• Cleaned up code

This update has been submitted to all extension stores.

https://github.com/Foulest/Osprey/releases/tag/1.3.2

The current version is already available for Firefox.

 

It is interesting to be able to verify that HTTPS malwares that exploit known platforms are blocked (when they are blocked) by one or a few PPs.

This malware that is distributed with the ImgBB platform is only blocked by GData:

https://urlhaus.abuse.ch/url/3585947/

I have noticed that malware distributed from Github is often blocked only by PrecisionSec Web Protection:

https://urlhaus.abuse.ch/url/3584994/

 

This is the reason why all security-related protection options are enabled here. Different providers often find different things...

 

It depends on your needs.
I despite occasionally do some Fake Sites testing,I have no need for scam protection.
I consider my protection (browser + DNS) against phishing more than adequate.
So I only have a need for protection against malwares.
With my rule for blocking (even malicious) HTTP downloads the percentage of HTTPS malicious links is about 38%.
I have noticed that this 38% is often reduced to a lower percentage by NextDNS' malicious link blocking action.
Then there are my 2 lists always at the DNS level that help to further reduce that percentage.


Osprey has too many PPs enabled by default for my needs.

 

...which can be disabled effortlessly at any time.

 

@Foulest

I have noticed that Osprey overlaps any malicious web page blocking at especially DNS level.

Would it be possible to make a change to the Osprey code that in case of DNS-level blocking would not display the extension blocking page?

Perhaps this option could be enabled or not by users.

 

I'm afraid not. When dealing with race conditions like that, there's no way to solve that problem, or even detect it, as far as I'm concerned.

 

Version 1.3.3 was released earlier today.

Changes in 1.3.3

• Disabled OpenDNS Security DNS by default due to response times
• Changed OpenDNS's false positive support email
• Added missing SmartScreen threat categories
• Reduced false positives with alphaMountain
• Fixed issues with warning page
• Fixed issues with popup page
• Fixed issues with blocked cache
• Cleaned up code

This update has been submitted to all extension stores.

The current version is already available for Firefox.

 

Kees1958 and I have noticed that Alphamountain has improved significantly in detecting malicious links.
The partnership with Osprey has probably enhanced the AI's learning from various tests carried out by users.

 

That's good. AlphaMountain is a fantastic partner to work with.