Recent Posts

Pages: 1 2 3 4 5 6 7 8 9 10
ReHIPS / Re: Air vpn
« Last post by fixer on August 15, 2018, 11:43:13 am »
After some investigation looks like it was AirVPN issue that has nothing to do with ReHIPS. And as far as I know it was already addressed and fixed by AirVPN developers. So this one is solved.
Developers' Blog / [FAQ] ReHIPS best practices (part 6)
« Last post by fixer on August 13, 2018, 03:55:27 pm »
13. Don't do something unless you're sure of what you're doing. I know, I know, there already are literary tons of articles about this. But user-awareness is still one of the major reasons of why security incidents happen. This section includes all the advices of not to execute programs from untrusted sources, don't visit suspicious sites, etc. Even if you have all the top-notch security, do you really want to get in a battle against unknown adversary? I believe the best outcome of a battle is battle avoided.

14. Mind Trusted Users. ReHIPS Trusted Users are some kind of non-official administrators. So really think twice or better three times before you add someone there.

15. It's a good idea to know the instruments you're using well. To help know ReHIPS we made this blog subforum, so it's recommended to read it. At least topics marked with "FAQ", they're all listed here They contain some ReHIPS internals, best practices, non-obvious tricks and other useful advices to help use ReHIPS to the fullest extent of its capabilities creating ultimate protection.
Developers' Blog / [FAQ] ReHIPS best practices (part 5)
« Last post by fixer on August 06, 2018, 03:55:29 pm »
10. Don't use Open File Access feature. This feature was already discussed in one of the previous blogposts here If you want to build a safe and secure system, don't use it.

11. Keep your software number to a minimum. Each and every software may have bugs, including security ones. The problem with security software is that they usually require highest privileges possible. And it means when they're exploited, the whole system is subverted, not just a single user. And there are enough published papers showing how vulnerable some security software is, that having it installed exposes your system to a higher risk compared to a bare system without any security software at all. So the less programs you have installed and running, the less attack surface you have.

12. Move files you're working on in isolation in respective ReHIPS subfolder. ReHIPS folder was already discussed in one of the previous blogposts here The best practice here is as follows. At usual times your ReHIPS subfolders are empty. When for example you download some file with an isolated browser into ReHIPS subfolder, you move it into your user profile folder right away. When you need to view or edit some document with an isolated program you move it from user profile folder (as you should keep it there along with other private data) into respective ReHIPS subfolder, view/edit it with the isolated program and move back. Bothersome? Probably. But safe and secure.
ReHIPS / Re: Air vpn
« Last post by aDVll on August 04, 2018, 04:11:52 pm »
it's not airvpn as i am using it forever with rehips without issues.

You need to allow a few files from airvpn though or whitelist in trusted vendors AIR DI PAOLO BRINI and if you decide to use beta version you need AIR DI PAOLO BRINI and Simon Tatham.

Also need these few command lines. I added them in the xml format as it's easier but make sure i didn't miss any. Take a note at rehi[s logs when airvpn connects to see if you have any blocks.

<TrustedCmdLine CmdLine="netsh  interface ipv4 set dns name=&quot;*&quot; source=static address=* register=primary validate=no" />
<TrustedCmdLine CmdLine="&quot;cmd.exe&quot; /c netsh interface ipv4 set dns name=&quot;Ethernet*&quot; source=static address=* register=primary validate=no" />
<TrustedCmdLine CmdLine="&quot;cmd.exe&quot; /c ipconfig /flushdns" />
<TrustedCmdLine CmdLine="&quot;cmd.exe&quot; /c ipconfig /registerdns" />
<TrustedCmdLine CmdLine="&quot;cmd.exe&quot; /c route -? PRINT" />
<TrustedCmdLine CmdLine="&quot;cmd.exe&quot; /c route add * mask * if 19" />
<TrustedCmdLine CmdLine="&quot;cmd.exe&quot; /c route delete * if 19" />
Developers' Blog / [FAQ] ReHIPS best practices (part 4)
« Last post by fixer on July 31, 2018, 11:40:01 am »
7. Keep all your executable files in secure locations. By default Windows tries to provide security. That's why it suggests you to install software in either Program Files (for system-wide installation) or in user profile folder (for user-wide installation). User profile folder is already discussed in the previous paragraph, so it can be called a secure loction. Program Files (also Program Files (x86), Windows, System32 or SysWOW64 folders) are also secure locations. It means no isolated program can write there, meaning all your executable files will be perfectly safe and not tampered with.

8. Use Expert Mode. It's always preferred to use Expert Mode. Yes, you'll get more alerts. At first. But once all the programs that are often started are in ReHIPS database, there will be no more programs to alert of. And that's not a high price to pay for security, right?

9. Use separate desktops. This feature was already discussed in one of the previous blogposts here In short words: it's always more secure to use separate desktops even when desktop hooks aren't allowed.
ReHIPS / Re: Air vpn
« Last post by fixer on July 30, 2018, 02:23:32 pm »
Thank you for the log. But unfortunately looks like you copy-pasted it from ReHIPS Log tab, it doesn't have older events like when AirVPN crashed. That's why I asked to go to Event Log and save all events. This way it'll also have events of past days. In the current log I don't see Eddie-UI crashing.
ReHIPS / Re: Air vpn
« Last post by Denis on July 30, 2018, 10:49:50 am »
Was not sure how to send it, so i email it ;D
ReHIPS / Re: Air vpn
« Last post by fixer on July 30, 2018, 10:00:06 am »
Could you send me ReHIPS log? ReHIPS Control Center main window->Log tab->Open system Event Log button and save all events in a file. You can upload it and send me a link via PM.
Thank you for your time.
ReHIPS / Re: Air vpn
« Last post by Denis on July 30, 2018, 09:20:11 am »
Eddie version: 2.15.2
Eddie OS build: windows_x64
Eddie architecture: x64
OS type: Windows
OS name: Windows 10 Pro
OS version: Microsoft Windows NT 10.0.17134.0
OS architecture: x64
W 2018.07.30 07:51:37 - Recovery. Unexpected crash?
Rehips 2.4.0
Installing and rebooting is all i have to do for reproducing it. i am on the vpn on this moment and leaking.

ReHIPS / Re: Air vpn
« Last post by fixer on July 30, 2018, 07:05:04 am »
Hello, Denis. Thank you for your interest in our product and welcome to our forum.

Just to make sure we're on the same page.
What OS do you use, Windows 10 Pro x86 or x64?
Air vpn 2.15.2? x86 or x64?
What ReHIPS version do you have, 2.4.0?

I guess your IP leaks because air vpn is crashing. How does it happen? Any particular steps to reproduce it?
Pages: 1 2 3 4 5 6 7 8 9 10