Re: Confused re IPS component of Firefox 3.5 toolbar hotfix

Tony_Weiss · ‎04-07-2008

bjm_ wrote:

The first sentence states proudly "browser protection and IPS capability works on FF3.5" and the second sentence states "IPS is incompatible at this time". So, IPS is capable of working on FF3.5 it's just not compatible at this time on FF3.5. IPS is capable of working but it is not yet compatible. Is that it?

That's right. I removed that confusing bits to Athena's previous statement, so it's much clearer that IPS is not compatible at this time. Thanks for letting me know about the confusing wording.

Tony Weiss
Norton Forums Global Community Manager
Symantec Corporation

Tryer · ‎03-23-2009

I note we are still protected by IPS against drive-by malware according to this post:

http://community.norton.com/norton/board/message?board.id=nis_feedback&thread.id=61120&jump=true

...but I thought it was the IPS browser extension that performed this function? What does that part do if not that? Still not sure what we are missing in view of the post. Is it just anti-phishing protection?

I browse within a sandbox (Sandboxie) normally, so the system isn't likely to be infected via drive-by malware anyway. Just sometimes though, I find I''ve opened Firefox outside of the sandbox. Am I still adequately protected against drive-by malware even though the IPS extension isn't working?

huwyngr · ‎04-13-2008

Tony has corrected that confusing statement -- see other thread.

Hugh

Tryer · ‎03-23-2009

I'll settle for that and just wait for the update ..but since protection is said to good be without the extension working, I'm still not sure why it's there, or exactly what it does if not giving drive-by and phishing protection (sorry).

Ameya · ‎04-24-2009

Hello,

This is Ameya from the IPS team at Symantec.

Current NIS/NAV/N360 customers are experiencing this incompatibility issue with the IPS engine and Firefox 3.5 version. I would like to assure users that the exposure due to the incompatibility is not severe at all. The Firefox IPS plug-in is our last line of defense for the Firefox browser. We have other protection technologies in place for threats targetting Firefox vulnerabilities and they are equally effecttive in providing protection.

Even if you uninstall and reinstall the Firefox browser version 3.5, the plug-in won't work for existing customers for that particular version of the browser. With previous versions of the browser the plug-in is compatible.

NIS/NAV 2010 BETA customers should not face this incompatibility problem.

Please stay tuned for more information on this and related fixes coming out in the field, later today.

Thanks for your patience with this.

-Ameya

redlabour · ‎01-13-2009

Thanks for the Toolbar-Hotfix.

But i still can't understand after Months of Beta's and RC's why only Symantec was unable to send Hotfixes all the Time over the Firefox-Development Process?

All other Security-Suites do so.

Why did we still have to wait for a IPS Hotfix that should be allready done since Months?

Ardmore · ‎04-30-2009

Ameya wrote:
Hello,

This is Ameya from the IPS team at Symantec.

Current NIS/NAV/N360 customers are experiencing this incompatibility issue with the IPS engine and Firefox 3.5 version. I would like to assure users that the exposure due to the incompatibility is not severe at all. The Firefox IPS plug-in is our last line of defense for the Firefox browser. We have other protection technologies in place for threats targetting Firefox vulnerabilities and they are equally effecttive in providing protection.

Even if you uninstall and reinstall the Firefox browser version 3.5, the plug-in won't work for existing customers for that particular version of the browser. With previous versions of the browser the plug-in is compatible.

NIS/NAV 2010 BETA customers should not face this incompatibility problem.

Please stay tuned for more information on this and related fixes coming out in the field, later today.

Thanks for your patience with this.

-Ameya

Thanks so much for this crystal clear summarization of the key information we want/need!

tufe · ‎02-10-2009

Ameya wrote:
Hello,

This is Ameya from the IPS team at Symantec.

Current NIS/NAV/N360 customers are experiencing this incompatibility issue with the IPS engine and Firefox 3.5 version. I would like to assure users that the exposure due to the incompatibility is not severe at all. The Firefox IPS plug-in is our last line of defense for the Firefox browser. We have other protection technologies in place for threats targetting Firefox vulnerabilities and they are equally effecttive in providing protection.

Even if you uninstall and reinstall the Firefox browser version 3.5, the plug-in won't work for existing customers for that particular version of the browser. With previous versions of the browser the plug-in is compatible.

NIS/NAV 2010 BETA customers should not face this incompatibility problem.

Please stay tuned for more information on this and related fixes coming out in the field, later today.

Thanks for your patience with this.

-Ameya

As Ameya said:

"IPS 1.0" works fine in NIS2010_beta so It seems to me that FF3.5 it is not the problem.

By the way, Why in NIS2010_beta the "Norton TOOLBAR" is "4.0" and in NIS2009 it is "3.5.1"??

But In the other hand, IPS in booth NIS2010_beta and NIS2009 are still the same "IPS 1.0", but NIS2009 IPS doesn't work with FF3.5???

I have also try with the new release "FF3.5.1" and IPS (NIS2009) still not work with FF.

It will be very nice to have the release of the HOTFIX for IPS release here,

or at lease an inmediate advice-notice-alert here of the new release, because it is hard to keep update

when the release are made in a complety new tread and the advice-notices-alert are made like two days later
as it has happened with the HOTFIX release for Toolbar (or even better it will more nice to have automatically update release by Norton LIVEUPDATE, or maybe you prefer first to release here and have feedback before massive update).

By the way even there are now a "Hot Issues & Hot Topics" Official Tread for HotFixes, it is really little or nothing clear when the hotfixes had been release because all the diferent release are post it as been made in 30/April/2009. I mean each Hotfix have no date notice of when they had been release each one, so it will nice to have this "date" information more clear for us. (sorry my poor gramatic or english language).

I also don't understand why tooks you so much time to update Symantec products to FF 3.5 but that is not the case for IE8,

upto what I remmember Microsoft use Macfee service so I hope this has nothing to do with Microsoft tricks.

Just one more thing to think about, I know you have been working with Windows7 compatibility since WIn7Beta (there was a NIS2009_beta version for Win7_beta (not even Win7_RC)) so I don't like why you do this difference of priority)

Best Regards

Tufe

gara56 · ‎07-18-2009

The Norton patch will correct your toolbar problem if you're using Firefox 3.5 or the recently released 3.5.1. Unfortunately, Norton IPS loses its compatibility--again--if you go to Firefox 3.5.1. (which corrected a Java security issue).

gara56 · ‎07-18-2009

@Ardmore

Issue addressed a week ago? Yes (Great support by Norton). But Firefox 3.5.1. (version just released to correct a Java security issue) is not compatible with Norton IPS.

Message Edited by gara56 on 07-18-2009 06:02 AM

Message Edited by gara56 on 07-18-2009 06:03 AM