Summary of UltraViewer's security information
Code Signing
As an additional security feature, all of our software is digitally signed via Sectigo. In this manner, the executable files (EXE / Binary / Installers) of the software are always easy to identify whether they have been released by the correct manufacturer. If the software has been changed later, the digital signature will automatically become invalid. Avoid cases where hackers insert malicious code into software.

Brute-Force Protection
UltraViewer uses an intelligent password detection mechanism based on the compromised computer, the number of incorrect logins and the IP address. With the scenarios are planned as follows:- When someone log in the wrong password to your computer (or different computers) many times, the system will block that person's IP & ID for a period of 15 minutes, if after 15 minutes of that person If you keep entering wrongly some more times, the blocking time will be increased, like 15, 30, 60 minutes ...
- Prevent Botnet from detecting passwords with multiple IPs: When many people log in with the wrong password to your computer multiple times in the past 24 hours, the system will recognize that your computer is being compromised and give your computer a safer areas:
+ The number of times allowed to type the wrong password is much less.
+ Block for a longer time period many times.
+ Check that IP on the International Blacklist database / Proxy / Socks List to prevent it.
+ Check that IP / ID based on black history many days or months ago in the past to stop immediately.
+ A captcha code can be displayed.
+ Lock the random password, a popup message requires the partner to change the random password to continue.
+ And some extra privacy mechanisms are not published to ensure the security of the system.
ENCRYPTION AND AUTHENTICATION
UltraViewer connections when connecting to the server and partner computer are secured using public / private RSA key and AES (256-bit) session encryption. This technology is used in HTTPS / SSL web platform and is considered to be completely safe according to current international standards.
Because the private key is generated only by the user, the process ensures that connected computers including UltraViewer servers cannot decode the data stream. Even UltraViewer employees, or computer network operators, cannot read the encrypted signal flow between two computers. Prevent hacker man-in-the-middle attacks.
BlackList & Whitelist
Features blacklist & whitelist, act as a firewall, you can block certain IP or ID.
You can also block all computers from connecting to only certain computers with specific IDs or IP addresses that are allowed to connect to your computer.
Logs
UltraViewer is equipped with a diary which will record the ID number, the computer name of the person connected to, the time it was connected so that you can easily monitor and know if a stranger enters your computer.

To view the log of who is connected to your computer. You go to File menu> select View log

The log records who is connected to your computer and when it was connected

The controller cannot delete logs while in control, because UltraViewer anticipates and blocks the deletion of the file. Log files can only be deleted when UltraVIewer is turned off.
Administrator Privileges for sensitive settings
Features considered to be sensitive (such as the hidden feature in Winlogon, the feature Running with Windows, the ability to set a separate password ..) will require the Administrator's rights to ensure only the admin of new machines installed with important configurations.

UltraViewer Ports - The connection port of UltraViewer
UltraViewer uses 2 ports that you can choose to use:
- Port 443
- Port 2112
Domain / IP connection to allow on firewall.
UltraVIewer uses a system of many servers for seamless connectivity, so it is difficult for UltraVIewer to provide a list of IP server ranges while the IP is regularly added and can be changed. So UltraViewer uses domain names such as server1.ultraviewer.net, server2.ultraviewer.net, server1000.ultraviewer.net ... to point to the IP. You can add the * .ultraviewer.net domain name to the whitelist list on the firewall
Good work!
Reply