Kaspersky
Question

[3820261]Firewall apps rules: impossible to add new app to a subgroup (existing or new) [Plan publish fix in 2020 patch G Dec. 9]

  • 8 November 2019
  • 43 replies
  • 11819 views

Win 10pro/64-1909; after installing NIS, I added to the firewall some apps new rules and everything was ok, the firewall allowing to make changes without any special user confirmation; I also added new trustworthy subgroups and related apps to be ruled, this operation also led without any problem. From yesterday  I found that something has changed, when I try to apply a new rule to an app a pop up ask me for “user confirmation……….”; also, and this is really strange and worrying, the insertion of a new app  is not allowed (NIS firewall opens the window to make the app (.exe) choice, but then nothing is added to the subgroup). What has happened? I don’t think it’s virus related, after making a deep scan nothing suspect was found

Please help


43 replies

Userlevel 7
Badge +6

Hello  @Mikhail Shakhov 

This Attention (Kaspersky)

for the simple “Clean up” function,  surely the Kaspersky application has enough “smarts” to know “what” instigated the Clean up?

Userlevel 2

Hello  @Mikhail Shakhov ,

Why is it necessary for a simple function like “Clean up” to have require a UAC permission?

Clean up has no configurable options. 

& why is it necessary for us to seek confirmation from the developers for an unnecessary change made by Kaspersky? 

Thank you. 

 

  1. This windows names “Secure Desktop”. It is not UAC. I can suppose, that it uses to make sure the customer makes these actions but not malware, for example.
  2. It is not necessary.
Userlevel 7
Badge +6

Hello  @Mikhail Shakhov ,

Why is it necessary for a simple function like “Clean up” to have require a UAC permission?

Clean up has no configurable options. 

& why is it necessary for us to seek confirmation from the developers for an unnecessary & unwelcome change made by Kaspersky? 

Thank you. 

Userlevel 2

Hello,

 

I`ve reproduced the “problem” with patch G and it reproduces with patch F as well. I think it by design and the “Clean up” button just was protected by our developers using Secure Desktop(it is not UAC).

 

I do not see the big problem here. You can create the request to support in order to get the confirmation from developers about this feature.

 

Thank you.

 

 

 

 

Userlevel 7
Badge +6

@FLOOD  Exactly this is my problem. UAC pop up everytime i try to add something to trusted in firewall or use  KTS, Manage Applications, Clean up.

Please send me the number of your incident. Thank you.

Hello  @Mikhail Shakhov,

A simple Manage Applications, Clean Up, requiring “permission” seems like overkill:thinking: .

There are no configurable choices when Clean Up is selected, for example, after selecting Clean Up, there is no followup screen showing, “ found  x apps, tick :ballot_box_with_check:which ones should be “cleaned up.” 

Cleanup process is fully automated… 

Kaspersky Lab employee has replicated the issue on his system, I’ve replicated on 3 systems with different Kaspersky Home AV v20 solutions, KIS, KTS & KSecurity Cloud, & as @Sib3riX has advised, for him: KIS20, is it really necessary for all of us to be raising tickets? 

Thank you.

Userlevel 2

Hello,

Sorry for late response. I never created ticket for this problem. Should be easy to see and replicate. This only happens in KIS 2020.

 

Thank you!

Userlevel 2

@FLOOD  Exactly this is my problem. UAC pop up everytime i try to add something to trusted in firewall or use  KTS, Manage Applications, Clean up.

 

Please send me the number of your incident.

 

Thank you.

Userlevel 7
Badge +6

Hello  @Sib3riX,

Hmmm, yes, I understand, now :thumbsup_tone3:

The Clean Up has never before pushed a UAC prompt, neither should it, it’s not a change…. 

FW add, I’ll test tomorrow, not that I need to really, now you’ve confirmed. 

PIA, means, data collection, logging it with the Lab etc:confounded:

Let me know if you get any feedback? 

I’ll do the same. 

Thank you:pray_tone3:

 

Userlevel 2

@FLOOD  Exactly this is my problem. UAC pop up everytime i try to add something to trusted in firewall or use  KTS, Manage Applications, Clean up.

 

UAC pop up is same as yours in picture number 2

Userlevel 7
Badge +6

Hello   @Mikhail Shakhov,

I can see what @Sib3riX is concerned about:

(for example) KTS, Manage Applications, Clean up

 

:warning: UAC popup displays (that’s not normal)

  • Previous to patch g, selecting Clean up has never propmpted a UAC
  • Cancel UAC, don’t grant consent, GUI presents “List is up to date” 

 

:thinking:

 

Userlevel 2

Hello,

I have just tested subgroup creation via Firewall → Configure application rules and via Application Control → Manage Applications with patch G installed. All works fine. Subgroups are creating in both sections.

Sib3riX seems has another issue and should follow to Flood instructions.

Thank you.

Userlevel 7
Badge +6

Hello  @Sib3riX,

Welcome back!

Thank you for the update. 

:warning: The UAC Attention alert (from the image you posted from the Author’s image) is simply asking for “consent” to make changes:warning:

:arrow_right: It’s a normal component of all Kaspersky AV software.

:arrow_right: To make any changes to the Kaspersky software, consent must be granted, otherwise, the “change” process will be terminated. 

:arrow_right: Have you used the image as being representative of the issue you’re experiencing? :thinking:

:octagonal_sign: Please show us an image of the actual issue from your system:octagonal_sign:

&, if there’s an issue other than “consent” (which is not an issue) & you haven’t already, please raise a case with Kaspersky Lab Technical Support, include a GSI&Windows Logs, detailed history, images from your system, include the information provided by  @Mikhail Shakhov. Support may ask for Traces, captured as the issue is replicated, they will guide you with the procedure/s. 

Please let us know the outcome?

Thank you:pray_tone3:

Userlevel 2

Im using public patch G for KIS 2020 and still not fixed with firewall

 

This error pop up. I took this from creator of this post.

Userlevel 2

Hello,

We are testing patch G now.

Planned publish date:

09.12.2019

Thank you.

 

Userlevel 2

Patch is still not up but im ok with that. Let them test patch before pushing to live version. I dont want more problems :D

Userlevel 7
Badge +4

please forgive my outburst.

 

No excuses of course, you are always welcome.

Userlevel 7
Badge +6

Hello  @momo,

We experience the same frustration(s), not making excuses, oftentimes we’re impacted by the same issues; as Community members we do everything we can to help.

Best regards. 

@momoThis is a User Forum , please contact K-Lab Technical Support.

Anyway…….thank you all for your support and attention, and please forgive my outburst.

I think the best one to contact is Amazon to buy a security suite from another producer

 

 

Userlevel 7
Badge +4

@momo This is a User Forum , please contact K-Lab Technical Support.

I see that Patch “G”  for KAVKISKTSKFA 2020 / KS 3.0 / VPN 4.0 / KSOS 7.0 is available for testing in the Beta Section. Let’s wait for more release details from @Mikhail Shakhov 

Great…...come on guys, maybe with many other hidden ones, but this bug was absent in 2019 version, that worked flawlessly inside Win 10pro/64 1909.

Userlevel 7
Badge +4

@momo I see that Patch “G”  for KAVKISKTSKFA 2020 / KS 3.0 / VPN 4.0 / KSOS 7.0 is available for testing in the Beta Section. Let’s wait to obtain more release details from @Mikhail Shakhov 

Hello   @momo,

Patch f has just been released: KIS Release notes, Patches A – F for version 20.0.14.1085

@Mikhail Shakhov’s advice says “The bug will be fixed in patch G, which will be published on servers after the 29th of November 2019.

Distribution of patches is always staggered, and, the Developers do advise, the schedule may change. 

Vulnerability Report: List of Advisories, issued on 25th November, 2019

Best regards

Hi Flood, let me say that this is really funny :sweat_smile: : I don’t know where these guys have worked till now, anyone who has worked in serious companies knows that deadlines are programmed and announced "within" and not after a date.

Perhaps we will have a solution by the end of 2020? Just in time to change to 2021 version?

@momo  Please wait, a Patch is always progressively released.


Do you think that 22 days isn’t a sufficient progression?

Userlevel 7
Badge +6

Hello   @momo,

Patch f has just been released: KIS Release notes, Patches A – F for version 20.0.14.1085

@Mikhail Shakhov’s advice says “The bug will be fixed in patch G, which will be published on servers after the 29th of November 2019.

Distribution of patches is always staggered, and, the Developers do advise, the schedule may change. 

Vulnerability Report: List of Advisories, issued on 25th November, 2019

Best regards

Userlevel 7
Badge +4

@momo  Please wait, a Patch is always progressively released.

Reply / Ответить