iOS Threats DOH

Started by stalane, August 14, 2024, 11:25:36 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 14, 2024, 11:25:36 AM
How to stop DOH threats from iOS devices? Is there a way to stop all DOH threats from imacting the charts and data?

August 14, 2024, 02:28:27 PM #1
You can turn off DOH threats from Security in Policy.

To prevent DoH threats from appearing in the reports, you can Exclude DoH from the filters. Our permanent filter feature will come at the end of the year.
You can follow the updates

Additionally, there is an iCloud private relay feature on iOS and it acts as a proxy. In this case, it also blocks traffic from coming to Zenarmor.

To turn it off, you can block App Controls - Proxy - iCloud Private Relay.
August 14, 2024, 03:08:43 PM #2
Hi there. With DNS over HTTPS set to Allowed in Default Security Policy it is still manically being classified as a threat. So far 14,000 and counting... :-) Is there a way to stop the threat count?
August 20, 2024, 10:05:03 AM #3 Last Edit: August 20, 2024, 10:08:40 AM by tangofan
Quote from: IHK on August 14, 2024, 02:28:27 PM
You can turn off DOH threats from Security in Policy.

To prevent DoH threats from appearing in the reports, you can Exclude DoH from the filters. Our permanent filter feature will come at the end of the year.

I am not convinced that permanent filters are the best solution for this. For one they would also need to be available in the Dashboard, which currently doesn't offer any filtering at all. Also all these event are still logged, even though the user doesn't care about them.

IMHO a better solution would be to make the allowed/blocked toggle (e.g. in the policy threat configurations) into a 3-way toggle, e.g. passed/logged/blocked. Then the user can choose for each option how they want to handle them and no logs are written that the user doesn't care about. And there is no upgrade problem either, the current "allowed" setting would be equivalent to "logged", so there is no behavior change upon upgrade.
August 20, 2024, 12:57:36 PM #4
Hi,

Thanks for your valuable feedback. This is well-noted, and I'm going to share with the product team.
August 20, 2024, 06:05:12 PM #5
Quote from: sy on August 20, 2024, 12:57:36 PM
Hi,

Thanks for your valuable feedback. This is well-noted, and I'm going to share with the product team.

Thank YOU for listening and forwarding this feedback. As a former software developer I understand that not all feedback can be acted upon (for one reason or another), but as a (now-paying) user I greatly appreciate that you are actively gathering and considering user-feedback.
August 22, 2024, 01:19:28 PM #6
Hi,

It is our pleasure to offer a wonderful journey to our fellow Zenarmor users. The suggestion has been forwarded to the product team and I hope it will be implemented.

Print
Go Up Pages1
User actions