 |
| Outpost Pro 2008 Beta 1 |
附:Outpost Firewall Pro 2008内测分为三个阶段,目前正是第一阶段。
首先看看Outpost Firewall Pro 2008第一测试版的新特性:
Security
• Three-level program architecture (driver-service-GUI) allows to prevent permissions escalation using Win32 GUI subsystem
• Fully functional operation under user with restricted rights (including situations with no permissions on driver opening)
• More strict isolation of Outpost Firewall processes from external actions (by means of self-protection)
• More secure SHA256 algorithms are used in Component Control
• Optimization of checksums recalculation algorithms allows to reduce computer load
• Fully functional operation in background mode (automatic application of rules, etc.)
• Support of 100% invisible mode—no alerts, etc.
Usability
• New GUI allows novice users to get control over product features
• Redesigned settings interface allows to specify one of the predefined security levels as well as customize each component
• Integrated event viewer facilitates access to log system without consumption of additional resources
• Full support of Fast User Switching technology
• Simplified autoconfiguration
• Databases and presets are updated during the installation process
Control
• Rules Wizard prompt on port opening (allows to detect network activity before the connection with this port is established)
• Open format of self-protection restrictions (allows Power users to protect any process in the system)
Compatibility
• Windows Vista support
• IPv6 protocol support
• Open format of logs files (allows to use third-party software to process Outpost logs)
• Filtering of HTTP traffic encoded with transport encodings GZIP and Chunk
• Redesigned installation procedure allows to detect partially incompatible products during installation and disable conflicting functionality
Resources requirements
• Background mode requirements are reduced due to service and GUI dilution
• Simplified log system allows to reduce memory requirements for the service
More
• Fine tuning of update tasks
• Ability to specify self-protection exclusions
• Associated events in the log are highlighted by the same color
• Low-level rules allow to control transit traffic (including virtual machines traffic)
• Ability to temporarily disable protection and enable it at the specified time allows to disable protection during installation or configuring of critical software
• Process Activity panel allows to view and unblock processes blocked by Component Control
• Online Activity panel displays real-time content filter activity and decoded objects
Restrictions
• No Windows 9x support
• DNS Cache plug-in is removed
Supported platforms: Windows 2000/XP/2003/Vista
Known Issues and Version Restrictions
• Preliminary GUI design and text resources
• ID Block does not work
• Restricted Applications panel does not work
• Anti-leak kernel-mode hooks are incompletely implemented (some of them are implemented in user-mode)
• Signature-based malware scanner interface is not implemented
• Content filtering is performed at LSP level (interception will be implemented in kernel-mode and filtering will be implemented in user-mode)
• Under Windows Vista x86, Anti-Leak Control false positives are possible on starting processes
• If rules autocreation is disabled, search for applications is not performed
• Spysites database is limited to a small number of sites
• OLE intercommunication is not intercepted
• Under Windows Vista x86, if self-protection is enabled, program cannot be uninstalled
• Flag allowing NAT for subnet is not supported
• Third-party plug-ins are not supported. We will work together with plug-in authors to support their plug-ins by the release of OSS2008/OFP50
• Plug-ins SDK is not implemented
• Only English language is available
• No integration with Windows Security Center
没有评论:
发表评论