Respectfully,

Jim

Best and kind regards.
Per Ottosen.

• They try to stop the attack as it reaches your PC. Gatekeeper stops it before it gets to your PC. It’s like stopping a burglar outside your house vs. stopping him in your living room.
• They run on top of Windows OS and therefore are vulnerable to Windows vulnerabilities. While Windows is a great general purpose OS it is designed to support applications developed in the past, today’s and tomorrow’s applications. Therefore, it is less secure than a hardened, dedicated and secured OS with a single purpose – to run security applications.
• When a hacker exploits a new or known Windows vulnerability, he can easily attack the HIPS application, and a very common situation is that the attack prevents the HIPS from getting new signature updates. This makes the attack immune to security applications. This situation is not common on external security devices such as the Gatekeeper since the attack cannot reach it.
• Performance: offloading the 13 security applications to the Gatekeeper releases many cycles of your PC, so your productivity applications can benefit from better PC performance.
• Annoying pop up messages: HIPS solutions tend to pop up security related messages to the user who lack the expertise to understand them. End users also lack the knowledge to set up and customize them and usually simply ignore them or worse – stop the HIPS. Gatekeeper’s IDS and IPS operate independently and it’s built-in MLA – Multi Layer Security Agent – takes care of false positives and reduce them to a minimum. The end result is high security level with near zero user intervention.

In general Gatekeeper was designed to provide the end user with the highest level of security, usually found in enterprise networks. Gatekeeper comes with full SNORT implementation, a smart IDS/IPS system that usually is not found on end user desktop and dramatically improves overall security and performance with minimal user interference.

Thanks Yuval

First of all thank you for the kind words. We are always very happy and proud to meet satisfied Yoggie customers.
Thank you also for providing us with this valuable feedback. After checking with the SurfControl Web Filtering database servers, we’ve discovered it’s simply a matter of a delay in the database update. This has now been solved, and the sites you’ve mentioned, along with all the rest of the sites in the database are categorized properly.

I attach to this reply after seeing that is about web filtering.
I think that more than a bug on the web filter is a problem caused from some skilled web master to make the site insensible to categorization… you can take for example this (adult) website: http://www.tiavastube.com it is categorized from surf control but seams accessible also if in yoggie the adult cat is blocked… but if you use the direct ip:64.111.210.230 you found it blocked … so I think it’s a trick from the web site owner… maybe you can analyze the fact in this way … making yoggie impossible to trick…

my best compliments for your blog and for yoggie i was waiting it from many times!
best regards

Thank you for providing us with this valuable feedback. After checking with the SurfControl Web Filtering database servers, we’ve indeed discovered an issue which delayed the updates of the servers’ database. This has now been solved, and the sites you’ve mentioned, along with all the rest of the sites in the database are categorized properly.

Cheers,
Shlomo.

802.1X is available on certain network switches, and can be configured to authenticate hosts which are equipped with supplicant software, denying unauthorized access to the network at the data link layer.

One feature that I would love to see in yoggie endpoint products would be an 802.1x client, this would make this device a complete solution to corporates wanting to deploy tighter edge security on their LAN’s

Regards,
George