Welcome
Welcome to vistafirewallcontrol

You are currently viewing our boards as a guest, which gives you limited access to view most discussions and access our other features. By joining our free community, you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content, and access many other special features. In addition, registered members also see less advertisements. Registration is fast, simple, and absolutely free, so please, join our community today!

Hijacking. Manage the application.

Re: Hijacking. Manage the application.

Postby metal450 » Mon Dec 26, 2016 8:13 pm

Chrome doesn't have any By-Name rules, but other apps do (but probably no Google-specific rules running at that time). A large portion of my rules are by-name, for what it's worth. i.e. Outlook has a rule that only lets it talk to GMail, OneNote has a rule that only lets it talk to my SharePoint server (by-name), etc.
metal450
 
Posts: 50
Joined: Tue Dec 20, 2016 6:19 pm

Re: Hijacking. Manage the application.

Postby VistaFirewallControl » Tue Dec 27, 2016 5:46 pm

Actually we are looking for a reasonable scenario to reproduce, i.e. for a set of by-name rules that may cause massive by-IP rules changes. In that case there may be a delay (we are looking for) that causes false “Hijacking” alarm…. It’s false of course.
For now the internal related timeout is just increased.
VistaFirewallControl
Site Admin
 
Posts: 1479
Joined: Fri Mar 27, 2009 11:25 am

Re: Hijacking. Manage the application.

Postby metal450 » Sat Dec 31, 2016 10:22 am

I just got another one of these, for a different app: http://screencast.com/t/IbWzPeKiX

Kodi was not running at the time of the notification, & hadn't been running for at least several hours. Here's its Zone: http://screencast.com/t/tn5Snwr0vHi, http://screencast.com/t/xqL78J9Tu (most are by-name)

I didn't manage the firewall for at least 20-30 minutes before that. No other software was installed today.

I started watching a YouTube video in Chrome just shortly before it popped up; however, Chrome doesn't have any domain-specific rules (its zone is OutgoingOnly). Also running at the same time: iTunes (localhost only zone), Outlook (name-based rules), Jing (name-based), SyncBackPro (name-based), QSync (name-based), ManicTime (name-based). Visual Studio had been running a few minutes earlier, but wasn't at the time of the notification.
metal450
 
Posts: 50
Joined: Tue Dec 20, 2016 6:19 pm

Re: Hijacking. Manage the application.

Postby VistaFirewallControl » Sat Dec 31, 2016 2:17 pm

Might we ask you to make Settings/Export and send the file to support referring the thread?
We would need all the by-name rules superposition to continue.
All our previous “simple” experiments did not reveal the problem unfortunately.
VistaFirewallControl
Site Admin
 
Posts: 1479
Joined: Fri Mar 27, 2009 11:25 am

Re: Hijacking. Manage the application.

Postby metal450 » Sat Dec 31, 2016 7:57 pm

Sent.
metal450
 
Posts: 50
Joined: Tue Dec 20, 2016 6:19 pm

Re: Hijacking. Manage the application.

Postby VistaFirewallControl » Sun Jan 01, 2017 11:04 am

Thank you and Happy New Year!
VistaFirewallControl
Site Admin
 
Posts: 1479
Joined: Fri Mar 27, 2009 11:25 am

Re: Hijacking. Manage the application.

Postby metal450 » Sun Jan 01, 2017 6:05 pm

You too :)
metal450
 
Posts: 50
Joined: Tue Dec 20, 2016 6:19 pm

Re: Hijacking. Manage the application.

Postby VistaFirewallControl » Tue Jan 03, 2017 4:34 pm

Please try 8.1.0.21 and keep us informed
VistaFirewallControl
Site Admin
 
Posts: 1479
Joined: Fri Mar 27, 2009 11:25 am

Re: Hijacking. Manage the application.

Postby metal450 » Tue Jan 03, 2017 6:11 pm

Will do :)
metal450
 
Posts: 50
Joined: Tue Dec 20, 2016 6:19 pm

Re: Hijacking. Manage the application.

Postby metal450 » Wed Jan 04, 2017 11:40 pm

Happened again; the popup appeared the instant I woke the PC up from sleep (on Windows 7): http://screencast.com/t/w6QIeqsh
metal450
 
Posts: 50
Joined: Tue Dec 20, 2016 6:19 pm

PreviousNext

Return to Specific behavior

Who is online

Users browsing this forum: No registered users and 0 guests

suspicion-preferred