BluePoint Security product Q&A

I tested BPS today. It never ended the first scan. After reboot I tried scanning again. It was stuck again. Then it froze my system. After reboot it happened again. I had to finally uninstall it in safe mode.

Could you please check compatibility with DW, Prevx, and Winpatrol?

 

I tested BPS, as I think the best security is obtained with a combination of sandboxing (for me now Defencewall 3.0 beta) and whitelisting (for me now Prevx with age/population heuristics "high"). I'm however interested to alternatives to Prevx, as at the moment it does not YET work exactly to the way it should in my opinion (ie. as a true whitelisting anti-executable). The next version 4 may correct this though.

I of course took system backup before testing - just in case....

 

Well, this sounds bad!

 

Always keep in mind guys the scanning communicates with the cloud. The first scan of your computer may take a few hours depending on your connection speed. If it appears to be frozen it's most likely just taking awhile to scan. After the first initial scan it will complete much faster as we utilize a few caching methods to speed things up. To be honest with you I wouldn't recommend running our product with 3 other security products installed, there's no real point in that. It's not that you can't, just the fact that you'll probably end up with system instability. Our product is really meant to be run as a standalone. If your testing things in a vm, use BluePoint alone, that way you can fairly judge how things are working. BluePoint is perfectly capable of protecting you without any additional products, in fact that was one of the reasons for developing the product.

 

I don't believe Online Armor ++ is considered a true whitelisting solution as far as I'm aware. Leaving out the whitelisting is like leaving your doors unlocked imho.

Most of what makes our product perform so well at prevention (whether we know about the threat or not) is our implemenation of the technology. It's easy to slap a whitelisting or antiexecutable label on a product and call it good. It's quite another to design one that is capable of stopping everything without an infection, including scripts. It baffles me why anyone would run anything other than a whitelisting type of solution (ours or not).

Personally speaking, I have yet to find another product that is able to prevent everything I can throw at it and I'm always looking. Most of the product failures I see in my own lab tests are due to one simple fact; They allow code to execute BEFORE analyzing the executable, this is a big no no. Keep in mind in about 3 lines of code I can wipe an os! If a product allows me to run any code at all unchecked, it's over. I've recently tested a few of the newer "whitelisting" type products out there and that was the result. Nothing official here, just installing products in a vm and attempting to slip things past them (threats i've written in a lab environment).


Just sharing my opinion, I'm a huge fan of the whitelisting approach and have been for many years.

 

ssj100:

Try scanning with the settings set to executables only, that should really speed up the scan.

 

Sounds good, let me know. I do really appreciate everyones efforts to test things out, the product has already improved directly from your efforts! Keep it up!

 

Well I was able to get it installed and run a scan without a problem. My issue is the fact that it will not start automatically and it will not enable the protection?

 

Sent you an email

 

i knew it i have prevx and bps and same as you when i run a full scan with eitheir one

 

no,no,no BPS alone is fine fast here using same xp i think the problem it's with prevx i think

 

I installed BPS into clean, updated virtual machine. Here's the result
Perhaps there is still some work to be done
Hopefully it works some day, the idea is very appealing to me.

 

Very strange! I've never seen any issues in a clean vm. It does that right after install? Would you mind sending us the data from the error report -> support@bluepointsecurity.com

We'll be testing prevx and a few other products to make sure they play nice together if possible this week.

 

With all the good review about this product, and with this site testing it out. Makes me want to buy the product as this site always tells the truth here. But I to run the same good programs as most here do. I can't see paying for this product yet while the bugs are getting worked out here. Maybe later I'll put my money out for it too.

 

I'm having the team ensure BluePoint works with a few of the popular products such as sandboxie, defensewall and prevx. We can't control how other vendors work with us but we'll do our best.

As far as running the product as a standalone you should be fine, most of the issues we've seen are with running multiple products at the same time. While you may be more secure running multiple products, it can be a delicate dance as far as stability goes as many of the products play in the same areas of the os.

I'll keep you posted.

 

yes Blue Point Alone is fine, fast scaning and without freezing

 

Please put Winpatrol on this list. It is a very handy adminstrative tool against many nasties, as can be seen below

 

Born to be optimist?

 

HOLY ~snip - Possibly Offensive Phrase Removed as per TOS~, ive never seen soooo many startup programs on 1 system ako....

 

Well, everyone tries to make their software autorun nowadays.

 

very tru, thats why im always pruning my autoruns and services with WinPatrol since everything tries to auto start as u said. thats why WinPatrol is so irreplaceable for me

 

Right after install.

 

I seem to have been able to fix my original problem with an uninstall and reinstall. I am now seeing the same issue as ako (absent the VM). I am getting the error report during the running or updating of other programs. I ran ccleaner and encountered the error and again when I updated SUPERAntiSpyware (which is not running realtime).

 

I look forward to Prevx 4.0. It could give a reasonably clever (big enough database) white-listing anti-exe.