nod32 v3 breaks vista outbound http firewall rules

Discussion in 'ESET NOD32 Antivirus' started by snappingturtle, Jul 21, 2008.

Thread Status:
Not open for further replies.
  1. snappingturtle

    snappingturtle Registered Member

    Joined:
    Jul 21, 2008
    Posts:
    2
    My apologies if this is FAQ, but I could not find it anywhere.

    I was looking into restricting outbound http requests to my web browser application when I discovered that any application could fetch files from other machines over http even though my outgoing default rule is to block. When I use tcpview, this seems to be because http requests are proxied through nod32 via localhost. https is of course not proxied and is properly blocked.

    This seems like a very bad side effect if you really want to control what leaves your machine and you are depending on firewall rules to work. :argh:

    Are there any known workarounds for this? I'm guessing nod32 v2.7 or something else entirely might be the answer. :doubt:

    Thanks.
     
  2. snappingturtle

    snappingturtle Registered Member

    Joined:
    Jul 21, 2008
    Posts:
    2
    Sorry guys. Just my luck. Right after I posted I discovered that protocol filtering could be limited to specified applications under "Web access protection"->"protocol filtering". This does seem to have the desired result.

    However, I think the current default is potentially dangerous for installations that don't expect their firewall rules to be ignored.
     
Thread Status:
Not open for further replies.