Friday, December 11, 2009

Outpost 7.0 – moving towards the public beta. Preview

Now that there are a few weeks left before the public beta of Agnitum's new product line we'd like to share a preview of new features and improvements to constitute the final Outpost Pro 7.0 expected in Q1 2010.

This blog posting is the first in a series where you'll find descriptions of the novelties we’re making as we develop the Outpost Pro 7.0 products, which are soon going into beta. We’re encouraging everyone to get to know the new versions gradually as soon as they'll become available, learning all aspects of what’s new and what’s better, so we can get your concurrent feedback. Many of the improvements in our products are suggested by our users, so you might find your idea in a future blog posts in this series.


Here's a very brief overview of how Outpost products evolved:

New!
Outpost Protected Objects

Outpost Protected Objects (working name) module enables protection of locally-stored assets (Protected Objects) from corruption or access by malware. With just a few clicks, you can simply highlight a folder or file using Outpost’s Advanced menu and set a password. This simple action ensures private, secret or otherwise sensitive content is kept safe from children, colleagues or other users of the computer, as well as from external threats, such as spyware and other nefarious programs.

New! System and Application Guard

Outpost 7.0 users will benefit from System and Application Guard (working name), sibling of Outpost's Critical objects controller, which adds another layer of defense to Agnitum's paradigm. This new feature protects sensitive personal data (cached login details and passwords, electronic wallet IDs, etc.) stored by instant messengers, browsers and electronic payment processors from being accessed and hijacked by unauthorized non-related applications – a wide-spread technique employed by modern malware-makers. Outpost will be equipped with predefined access limitations so that only ICQ would be able to retrieve personal ICQ credentials, only Internet Explorer would be granted access to its cookies and so forth.

Improved! Anti-Malware engine

The Anti-malware engine has been enhanced with new detection and remediation capabilities and also underwent the following improvements:

• In compliance with antivirus protection standards, the option to automatically cure infected objects detected by the real-time monitor is now set as default action
• An updated heuristic analyzer, part of the Antimalware module, turns visible in the interface and more flexible due to adjustable sensitivity levels (normal/high)
• Actionable Quarantine facilitates decision-making regarding neutralized suspicious objects; quarantined files can be easily restored right from the new menu or exterminated in a couple of clicks

New! Monitor of file and registry activity

An invaluable assistant to advanced users, this tool provides a big picture of current file and registry activity. The user may opt to take a snapshot of the monitor's records for deeper analysis or, if necessary, terminate a suspicious process right from the list.

Improved! Updated anti-leak capabilities

Like the previous versions Outpost 7.0 has furthermore enhanced its anti-leak arsenal addressing the latest zero-day threats and data leakage techniques employed by sophisticated malware.

New! Revamped user interface

The solutions were redesigned to reflect the modern Windows 7 look and provide better visibility of product notifications.

Improved! Optimized performance

Outpost 2010 solutions deliver improved performance and use fewer system resources thanks to a number of measures:

• New! Tolerant filtration of P2P currents, such as video and audio streams
• Improved! More efficient anti-malware update process due to new local servers and decreased update volume - without prejudice to consistency and content
• Improved! Friendly interoperability with applications and web-sites using Middle and Far East language characters due to ImproveNet advancements

New! Extended compatibility

Outpost 2010 is fully compatible with Windows 7, Vista (up to SP2), Windows XP (up to SP3), Windows Server 2003 and 2008, and , as well as all previous 32-bit versions from Windows 2000 onwards and all 64-bit Windows. All Outpost solutions are fully compatible with the Microsoft Action Center in both Windows 7 and Windows Vista.

That's it for now. We'll elaborate the descriptions and give you more information on every feature and improvement in further blog postings. Keep your eyes open for the updates and expect the notification of publicly available versions!

Stay tuned!

Pavel Goryakin, Agnitum

31 comments:

Shaheryar said...

Agnitum Is the best product it evolve quickly and turned to be a gem of a product

1 suggestion i have to give you guys can you make it possible to run the outpost fully functional in safe mode because some virus can not remove in normal mode lke vundo variants etc so it much better to have an option to scan and remove malware.

Anonymous said...

I am a lifetime customer of outpost security suite. From what I read, I did'nt see one of the major threat protector which should be included in the security suite, as it is considered as a one stop from all security threats. Data leak through usb ports, cd writers are very common, that I face from my family members, which I cant stop. So it will be helpful to see a usb port blocker, harddisk hider and also locking of cd dvd drives etc etc

Conrad.TDI said...

I look forward to the first betas of version 7! Your firewall has proven flawless in several weeks of use with Windows 7 64-bit, and presents a light load when running entertainment software.

Anonymous said...

Indeed some very interesting new features here.
Looking forward to join actively to the public beta of this new version.

I'm looking forward to see how the new file monitor and the Application Guard work.

Keep up the Outstanding work guys :)

Anonymous said...

I can't wait for it !!Go Agnitum, go ;-) I'm totally statisfied with your security solutions.
Personally I'm using your Outpost Pro Firewall.
Keep up that impressive work!

Merry X-mas and a Happy new year!

Alexx

Agnitum BLOG said...

Hi everyone,

Thank you for warm wishes and comments!

We'll consider all your suggestions. As for USB port blocker we already have it in our solution for enterprises - Outpost Network Security. Chances are we'll add the same functionality to the consumer products in one of the next iterations. HDD hider and CD/DVD locking also sound reasonable to us, will think about it.

Pavel Goryakin
Agnitum Ltd.

Anonymous said...

Hopefully Agnitum has AMD support fixed in 2010. Currently outpost v7 (beta) does not work on any AMD processor platform. This was a problem with the current version of Outpost until just a few months ago, when after half a year, they finally fixed the AMD processor issue.

Anonymous said...

Hello,

I own a lifetime license, too.
I would very much appreciate if to the "Web Control" module something like a "Code word controlled Black List" was added. This Black List should block web sites by a word. This means i.e., if you add the term "*Potter*" to the mentioned Black List, every URL which contains the word "Potter" will be blocked by OSS. This is the best way for parents to block specific web sites which shall not be visited by their children.
Some Security Suites, regular or in beta status, are working in this way. It´s really the only thing I lack. All other things are perfect in OSS to me.

Anonymous said...

Please bring back support for 3rd party plugins

Anonymous said...

Agnitum is a very good and solid profuct

1 feature i like to add is the gaming mode in which all the updates,scanning and popup stops and gamer can enjoy a full gaming experience.

Anonymous said...

Process Hacker can kill OSS's service 'acs.exe'. I just hope the new version is INVULNERABLE !

Anonymous said...

What I would like to see is user selectable location for logs folder,
now the logs are all over C drive.
Also, since Outpost supervises a program installation, wouldn't that be nice to gether all installation information to aid cleaning up after uninstallation ??

Guven said...

I'm a lifetime user of OSS, too.
I'm sad with program blocks internet completely in random times. I watched its outbound and inbound block process, then i've found a solution for it to not to block internet completely.
Solution steps:
1-) Create this rule in "System-Wide Rules" under "Global Rules"
-> Where the Protocol is UDP and Remote Address is and Remote Port is DOMAIN Allow It <-
2-) Move it up to "Applied before application rules"
3-) Create the same rule under "Low-Level Rules" and move it up to highest.
4-) Under "Low-Level Rules", create these 2 rules, too.
I: -> Where the Protocol is IP and protocol type is IGMP and Remote Address is , Allow It and High Priority <- (Choosing "Mark this rule as High Priority" is very important!)
II: -> Where the Protocol is UDP and Remote Address is , and Remote Port is 5355 Allow It <-
5-) Move them up to highest.

I see, some of this rules applied to svchost.exe automatic by OSS. But these are needed for N/A (IP) and SYSTEM connections for not blocking internet completely.

I wish the Outpost software team, read this and make these-like solution automatic in the next (7) version.

Anonymous said...

I'm a lifetime user of OSS, too.
I'm sad with program blocks internet completely in random times. I watched its outbound and inbound block process, then i've found a solution for it to not to block internet completely.
Solution steps:
1-) Create this rule in "System-Wide Rules" under "Global Rules"
-> Where the Protocol is UDP and Remote Address is and Remote Port is DOMAIN Allow It <-
2-) Move it up to "Applied before application rules"
3-) Create the same rule under "Low-Level Rules" and move it up to highest.
4-) Under "Low-Level Rules", create these 2 rules, too.
I: -> Where the Protocol is IP and protocol type is IGMP and Remote Address is , Allow It and High Priority <- (Choosing "Mark this rule as High Priority" is very important!)
II: -> Where the Protocol is UDP and Remote Address is , and Remote Port is 5355 Allow It <-
5-) Move them up to highest.

I see, some of this rules applied to svchost.exe automatic by OSS. But these are needed for N/A (IP) and SYSTEM connections for not blocking internet completely.

I wish the Outpost software team, read this and make these-like solution automatic in the next (7) version.

Lukas said...

Please add again 3rd party plugin option or just a list with retrieved URLs. I am not understand, why this feature was removed in 2006.

Anonymous said...

And this is a list of features which are not so important as previous one.

1. To make finding IP range easily, it would be great, if Outpost would have an internal module, which would be able to detect IP range. You just need to type an address, like www.facebook.com and it will shows facebook's IP range.
2. It will be very useful to add a check mark in Outpost settings for automatically deleting logs after Outpost restarts (or system restarts). Because it is boring every time manually delete all the logs.
3. It will be great if Outpost will support Autorun Management, DNS Checker, Host Checker and Cookie Manager, to cut potentially dangerous cookies, that store password and user name, as well as control autorun, check DNS etc. All those features are available in Online Armor, but as Outpost is much better, why don't add this features as well to leave Online Armor "no chances"?
4. Outpost update bugs - it is many years that i am using Outpost but it never gets the latest version with its build-in update function. Moreover, the configuration updates for Outpost come very often, which is not good. Solving this problem will be very good.

Well, that's all for now. I can't remember more. If i will remember, i will post it here. Please, take into consideration this features and bugs. It is very important not only for me, but for all Outpost users as well.

Thank you in advance. I am looking forward to seeing Outpost 2010 soon.

Anonymous said...

5. It is boring, but Outpsot recognize different IP address for the same website. For example, it will recognize absolutely different IP for http://www.yahoo.com and for www.yahoo.com. But generally http://www.yahoo.com and www.yahoo.com are the same. Thus, it is boring and it is very uncomfortable in working with "IP Blocklist" in this case, because if you will add www.yahoo.com and then you will enter http://www.yahoo.com, Outpost will ALLOW it. Thus, you need to add both http://www.yahoo.com and www.yahoo.com, which is very uncomfortable. I think that it is serious security issue and it must be solved. Even if http://www.yahoo.com and www.yahoo.com in real have different IP's (but this is strange, because both goes to yahoo website), the Outpost need to have "smart" detection, in case, that if you add www.yahoo.com into blacklist, Outpost should automatically add http://www.yahoo.com as well. Not every user aware of this "bug" and it is really dangerous.
6. If in "IP Blocking" a user will import a list of IP's and then will import another list of IP's, Outpost will automatically clear the first list of IP's and will add only the last imported one, which is very uncomfortable. Generally, Outpost should not delete the old list (which can be dramatically different from new IP list), but add this list starting from the end of old list and automatically remove dublicate names. In case, that user wants to replace the list, not to continue it with a new one, it will be useful to add a check mark in IP Blocking List section, something like "Import new IP list without erasing the old one?". If user wants to keep his old IP list and add a new list, he should check this mark. Otherwise, the old list will be deleted and a new list will be added instead of old list (it is that Outpost does now).
7. It will be great to "teach" Outpost not to block captcha and control pictures during the registration process in some websites. Because, even if Web Control is disabled, firewall still blocks captcha and control pictures with numbers that are necessary for completing registration. The only solution is to exit Outpost, register and then run Outpost again. But this is not a good idea, in case of security.
8. When its set to "Blocking Mode" sometimes the log shows the following (with blue letters): "Allow request for learning mode" but Outpost is set to "Blocking Mode" and user did not switch into "Learning Mode". Tricky!
9. Add more rules for more applications, such as Avira AntiVir Premium (Webguard, Update, Shed.exe, Antivir Guard etc).
10. Even when a user sets his rules for an application (permit all internet activities and permit all actions in the system), Outpost still shows that application as "Unknown" (double click on Outpost icon, the "Active Processes" section). This is boring too.

Anonymous said...

As many years' Outpost user, I want to thank Agnitum LTD for their products, which are incredibly strong and flexible, and provide greater protection against cyber criminals. Thank you guys, you are doing right job!
Second, I would like to write here some suggestions about some bugs and new features, which I would like to see in Outpost Firewall Pro 2010. I hope, that Agnitum representatives will take them into consideration. Well, let's start then.

All those comments are actual for the latest version of Outpost (6.7.1). The features which are very important to have:

1. Add "IP Range" in Web Control and in Personal Data Protection. There are many websites, especially social websites, that have their IP range and use different IP every time a person log in. And it is boring to every time add this site into exceptions of Web Control and Personal Data Protection. If IP range will be available, it will be very easy to add a website whit its IP range once and forget about it forever.
2. Solve boring Outpost password bug: when you set a password, for example, in English and if you change your keyboard language into, for example, Spanish language and type the password in Spanish, Outpost will accept it. In other words, i set my password to "Virginia", have changed my language type into french, type the same "Virginia" which will be different from English type of "Virginia", because of french letters, but Outpost accept it! It is not right and can be very dangerous in case of security. Try to do the thing and you will see that Outpost accept the password, even if it was written in other language.
3. Add banner bin and Outpost "window", which is available only in IE, as a plug-in for other popular browsers, like Mozilla and Opera, so a user will be able to "drag and drop" banners, suspicious urls and so on within Opera and Mozilla. Also add a protection in adding and modifying home urls for that browsers, etc (the same, which is available for IE in Local Security - Settings - Critical Objects Control).
4. Solve problems in "Used Ports" and "Network Activity" (double click on Outpost icon, the items right after "Firewall") . For example, svchost has a rule and in "Used Ports" and "Network Activity" it shows that svchost established a legal connection, according to Outpost rules (Outpost adds rules for svchost automatically), but it also shows "NO RULE" for svchost (svchost.exe TCP local:any NO RULES). This is a mistake, because svchost has that rule. The same can be for other applications, like Firefox (Firefox.exe TCP localhost:loopback 1050 NO RULES). But in real there are rules for it, otherwise it will won't connect to the internet and send/receive an information (Outpost will block it).

Anonymous said...

Hello,

There are many rules on software that accumulate over time.
It would add a configurable option, 30 days ... 60 days .... that the rules are not used for a period of time, automatically clears.

Diana S. licenced

Anonymous said...

I'd actually like to see the old UI (Outpost ver 4) back. In my opinion it was much more informative and easy to use than the one that's currently in OP2009.

Anonymous said...

I'd like to see Anti-spam work with Mozilla's Thunderbird. I know they have there own antispam, but its always nice to have a choice.

Agnitum BLOG said...

Many thanks for the comments!

As before we'll take everything into account. A good number of your suggestions do supplement our development wishlist, so you may be able to find your specific requirements fullfiled in one of the next iterations.

BB said...

A few years ago I was looking for a firewall. I had tested many of them and found the OF was the best one. I used the trial version and after it expired I used free version for some time. A year ago I bought the OSS and I could not find the module for blocking flash ads. Fortunately I use FF with NoScript, but I feel the lack of that module if I have to use other browser. I am not sure, maybe this module disables services like YouTube? But the module can be disabled by default and user can enable it and add any exception by himself.

Ganesh said...

These improvements are great!!! Many new features are great! And Outpost Protected Objects and System and Application Guard sounds most promising!!! Eagerly waiting for the new version and I hope Outpost 7 works on WinXP!!!! I have been using OPFW since version 4.0!!! Keep up the great work!!

Ganesh said...

Hi BB, NoScript is very good. But sometimes it can be pain in the neck. I use FlashBlock and it works like charm and it only blocks Flash objects (and never touches scripts). I feel with OPFW installed, NoScript may be a overkill! But still if you are paranoid about security (like me) then use NoScript Else FlashBlock does a great job!

Anonymous said...

and where is the new lineup in the Beta (bts) area, the last update was in November?

Anonymous said...

Any plans to add in Outpost 7:

1. File protection where Windows System Folders are protected against write action of the executables contained within them.
-- With option to prompt an alert, if write to them is attempted, from an unknown/untrusted application pgm/process ?

2. Also, an option where user can specify folders that are protected with a user choice of both write access protection and read access protection.

Agnitum BLOG said...

Once again, many thanks to all who left feedback! We study your suggestions and put them on our development wishlist.

As for our development schedule, the public beta of Outpost 7.0 is expected later this quarter and should be closely followed by the final release.

Responding to the latest commentary: yes, you actually read our mind :-) Both points will be covered with features code-named Application Guard and File & Folder Lock. We'll tell you about them later in this blog.

Anonymous said...

I am not a Geek with computers and anitivirus it all. But whenever the Name Agnitum was mentioned it was said to the last line of defense with respect to virus malware and all the negatives of the Internet. One thing all of us used to say is that Install Agnitum and that's it you don't have to use any other performance enhancing software in you computer.
By the way I believe that the word Agnitum is derived from the Sanskrit word Agni Stumb meaning a pillar of Fire.

Thank you

Anonymous said...

I am not a Geek with computers and anitivirus it all. But whenever the Name Agnitum was mentioned it was said to the last line of defense with respect to virus malware and all the negatives of the Internet. One thing all of us used to say is that Install Agnitum and that's it you don't have to use any other performance enhancing software in you computer.
By the way I believe that the word Agnitum is derived from the Sanskrit word Agni Stumb meaning a pillar of Fire.

Thank you

Anonymous said...

Have to say, really impressed with your GUI. It's clean, well laid out, and standards based. Nice job.