Robert Varga

Member
  • Content Count

    7
  • Joined

  • Last visited

Community Reputation

0 Neutral

About Robert Varga

  • Rank
    New Member
  1. Setting an exclusion if I would be able to pinpoint it more specifically than just the directory would be equivalent in security as a specific exclusion if the name was not changing. So I think OA should provide a way to specify an exclusion not only on a directory granularity, but also something like directory + filename starting part, or something like a regex against the full path instead of the directory only (although this later can affect performance). Thanks and best regards, Robert
  2. Hi All, another slightly annoying behaviour from Online Armor is that whenever I run maven (development tool remotely similar in purpose to make) with a goal which would run a test, OnlineArmor asks me if I want to allow cmd.exe to run a module C:\Users\robvarga\AppData\Local\Temp\surefire<randomnumber>.jar where <randomnumber> is a random number (or timestamp). Since the number is always different therefore earlier trusting a differently named temporary jar file does not make a difference. Unfortunately I can't configure an exclusion for this, as I don't want to allow running everything from my temp directory as obviously that is a security hole, and you can only specify a directory for exclusion. Is there any way I can tell Online Armor to not jump for this? Best regards, Robert
  3. Too late for that. Also, had I done that, what would happen with the stuff which Office installs into Autoruns? Would those start to trigger questions upon the following startup?
  4. Thanks, so that is where the culprit was... Ports had some deny settings... programs had it on Allowed and Trusted. After changing the Port entries to Allow, Skype works fine now. Don't understand why that loop with the dialog happened, though. Any idea about my other question: what to do with all the rubbish looking entries in Autorun/Programs which were added when I installed Office 2010? Thanks and best regards, Robert
  5. Hi All, Online Armor is starting to mess with my nerves once again (twice again, actually). Since the latest update of Skype (it updated itself), Online Armor prevents it from signing in. What has happened is that Skype updated itself, and then Online Armor just continuously (read it showed a new dialog immediately after pressing Allow) asked me whether I want to allow Skype to connect to the internet because it did not recognize it, After a seemingly endless series of this dialog (I have pressed Allow for at least 30 times) I pressed Block to end this farce. Since then Skype is not able to sign in. I tried to take back the setting Online Armor recorded for it, but I can't find it. The application is marked as Allowed and Trusted (I even untrusted and trusted it again), but still Skype is not able to sign in anymore. It is 100% that it is Onine Armor preventing it, because when I shutdown OA and started Skype again, it was able to sign in immediately. Then after restarting OA and then Skype, Skype was again unable to sign in thereafter. Please install Skype versions properly in the applications database and bring out a fix which solves this issue. Also, when I installed Office 2010 it just hit me with a few hundred of do I want to allow this and that autostart to run with garbage like program names, and such program names and paths now pollute my Programs and Autoruns list. I don't think Office 2010 and Skype would be so niche programs that Online Armor should not be able to support them properly, for God's sake. Make a proper application recognition routine for Autoruns installed by Microsoft Office components and clean up that crap which most likely resides in every Office users Programs/Autoruns list. I use Online Armor paying version 5.5.0.1616, latest updates (I explicitly updated during trying to fix the Skype issue) and Windows 7 SP1 Professional 64 bit. The Office problem I have seen with several versions of Office (it happened also with Office 2003 on Windows XP). Best regards, Robert
  6. It was an upgrade, to be honest, I am not even sure if it was from 4.5... it may have been an earlier version... I will try a reinstall. Should I disable NOD32 while installing? Thanks and best regards, Robert
  7. Hi All, I also seem to have the same problem (and have had it for ages, probably). I have XP SP3, NOD 32 4.2 (recently upgraded from 4.0), OA Premium latest. Problem manifests with all of IE8, FF(3&4), Chrome. All of them are marked as Trusted in OA. Hardware is a Thinkpad T60 notebook with Core 2 Duo (2 core, 2.16 Ghz), home network is Ethernet to the router, Cable in one environment, ADSL2+ in another afterwards, so there are no speed issues with the uplink connection itself. What I managed to find out is: 0. When the error happens (practically whenever there is internet traffic), oasrv.exe is shown with ~50% cpu usage (fully consumes a core on its own, sometimes a few percent less, almost never more than that single core). All other processes practically don't use the CPU at all, the other CPU core is idle (fortunately, as the machine would be totally unresponsive if OA grabbed the other core, too), which means that they are most likely waiting for oasrv.exe to finish whatever it is doing. This happens with very light internet usage, e.g. a single news portal being opened in Firefox can trigger it), too, and even in that case, loading that single page lasts dozens of seconds, each box in the portal (probably fetched with independent asynchronous requests from different sources) takes a second or two to load. Note, this is not the fault of the server, switching OA off, the entire page with all boxes always loads within 2-3 second. Firefox shows that at that time it is looking up this or that address, and it takes several seconds. Then it shows connected for about a second (actual response time for the request), and then it shows looking up message for a different address... 1. This has nothing to do with NOD32. It was happening continuously when NOD32 was disabled, too. OA directory and also the executables specfically are excluded from NOD32 checking. NOD32 executables Ekrn.exe, egui.exe, etc. were excluded from OA checking. 2. Disabling Web Shield definitely helps, but the error remains to a much smaller degree. Switching Firewall off as well makes the problem go away. 3. It possibly has something to do with DNS lookups or affect those as well, because - the behaviour Firefox 4 shows suggests that it is spending most of the time in DNS lookups - Chrome and FF very frequently reports cannot resolve web page errors, and also when I switched on debug logging I saw lots of logged ICMP destination unreachable errors trying to go to the DNS servers (and probably caught by OA because the rule is not allowed). Note that this cannot be a problem with the DNS service because it happened with 3 different environments (two home networks with different DNS, and also when manually setting the DNS server to be the router instead of the ISP configured via DHCP), and the problem disappeared when switching off Web Shield or Online Armor entirely. All environments I tested in were behind a SOHO router (two different models in the two physical environment: Linksys WRT54GL / Thomson TG 585v7) . Unfortunately logs seem to be deleted when I rebooted, or when I switched off firewall logging or because 2 days elapsed, but I can't find some of my earlier log files about the ICMP destination unreachable log messages. I would really like this problem to go away, so please give further instructions on what information to collect to diagnose and fix this issue, but let's get this done, because it is ridiculous that a firewall software makes internet usage impossible if the firewall and web shield is switched on. Thanks and best regards, Robert Varga