Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 19 subscribers
  • Views 12757 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Feature Suggestion: SES Web Protection allow list

WhatHappened

It would be nice to see, in Web Protection settings (Configure anti-virus and HIPS > Web Protection), instead of turning it simply off and on an area where we can allow certain programs through Web Protection. 

Example: Viewing a Security Camera System's web interface. Often they will require plug-ins for browsers. Recently occured and was found that Sophos' Web Protection > Download Scanner needed to be switched off to allow the Camera System's web interface to work. Would have been happy to leave it set to on but allow the one plug-in to bypass. 

:54265


This thread was automatically locked due to age.
  • 0

    Hello WhatHappened,

    I'm not sure I understand correctly - a permanent plug-in (not some, e.g. Java, component downloaded on the fly)  is required to access the SCS's web interface and additionally Download Scanning has to be turned off as the interface is unresponsive or just doing nothing but you don't get any alerts? With the plug-in installed and enabled browsing to other sites works though?

    The question is whether the LSP/WFP component doesn't handle the downloaded content correctly or protection and the plug-in somehow interfere. I don't think that the filter could determine the plug-in requesting (or sending) the data. 

    Anyway, Authorizing (Configure anti-virus and HIPS > Authorization > Websites) the SCS should exempt it from download scanning.  

    Christian

    :54301
  • 0

    QC, did not get any alerts. Just the DVR's web interface stating it failed to connect. Turning off download scanning allowed us to connect. 

    And, yes, with download scanning enabled browsing other web sites works perfectly. This is the only time I've ever encountered Sophos and another application (plug-in) not working together. We did add the plug-in's install directory and it's files to the excluded list but that didn't do the trick. Disabling download scanning did the trick. 

    I will check into Authorizing the DVR's web interface address and see if that works. 

    :54483

    [I hit the CTRL key, but I'm still not in control!]

  • 0

    Looks like adding the DVR's web site address to the Authorization Manager > Websites works. And that is with download scanning turned on. 

    :54485

    [I hit the CTRL key, but I'm still not in control!]

  • 0

    Hello WhatHappened,

    I see you have solved the problem. Anyway I'd like to add a small remark:

    We did add the plug-in's install directory and it's files to the excluded list

    this "just" excludes the files from on-access scanning. In case of connection errors in an otherwise apparently working application on-access is very unlikely the cause.

    Christian

    :54521
Unfiltered HTML