Avast WEBforum
Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: Lisandro on August 21, 2010, 02:47:08 PM
-
I've got a run on CIS 5 RC to test the sandboxing options of it.
Although it has more configurations and seems to allow more flexibility, I couldn't run Firefox + customized profile folder + Comodo sandbox.
I was discussing this here (for registered Comodo forum users: https://forums.comodo.com/beta-corner-cis/sandboxing-of-firefox-t60671.0.html).
I really couldn't manage it. I lost all my addons and theme.
I've asked a long time ago a way to make exceptions to file extensions and not only for folders.
I need to open Excel files (.xlsx) of my intranet, accessing through the browser, downloading it to temporary folder, open it).
I know I can save it to a non-sandboxed folder and run it from there. But it's quite annoying.
I know I can manage (customize) the temporary folder for Internet applications. But this won't help, as all files will be there and I don't want to un-sandbox the whole file. I just want to open Excel files.
Is there any way to exclude files of sandboxing?
-
Use sandboxie..!! ;)
http://www.sandboxie.com/
asyn
-
Use sandboxie..!! ;)
I won't pay for it...
-
Use sandboxie..!! ;)
I won't pay for it...
You don't have to pay for it..!! ;)
http://www.sandboxie.com/index.php?FAQ_Licensing
asyn
-
For some reason, I gave up on it before.
Will give it a try. But I don't think it has the feature I'm looking for.
Thanks Asyn.
-
For some reason, I gave up on it before.
Will give it a try. But I don't think it has the feature I'm looking for.
Thanks Asyn.
No problem..!
It's a good sandbox, imo.. Just test it.
asyn
-
It's a good sandbox, imo.. Just test it.
avast gives me more flexibility... I need flexibility. If "everything" is sandboxed, I can't browse like I ever did.
For protection I have avast and Comodo Time Machine :)
-
http://www.sandboxie.com/index.php?GettingStarted
http://www.sandboxie.com/phpbb/
asyn
-
Thanks for the effort... but sandboxie does not have the minimal features I need/want.
-
Thanks for the effort... but sandboxie does not have the minimal features I need/want.
Ok, Tech...!
If you don't need it, we forget about it... ;)
asyn
-
https://forums.comodo.com/beta-corner-cis/comodo-internet-security-501573021066-beta-bug-reports-t60015.0.html;msg422811#msg422811
https://forums.comodo.com/beta-corner-cis/comodo-internet-security-501588361079-beta-bug-reports-t60360.0.html;msg423783#msg423783
This said I gave up with CIS 5, so I can't tell about the RC that I didn't even try.
-
https://forums.comodo.com/beta-corner-cis/comodo-internet-security-501573021066-beta-bug-reports-t60015.0.html;msg422811#msg422811
https://forums.comodo.com/beta-corner-cis/comodo-internet-security-501588361079-beta-bug-reports-t60360.0.html;msg423783#msg423783
This said I gave up with CIS 5, so I can't tell about the RC that I didn't even try.
Exactly the same behavior :'(
-
Exactly the same behavior :'(
I respect you persistence, but maybe it's better to give in here.
At least at the moment... ;)
asyn
-
I respect you persistence, but maybe it's better to give in here.
No, I won't stay here.
avast sandbox is BSODing my computer.
And avast support for this problem is a crap.
I've posted a long time ago...
aswSnx.sys
0x00000050 (0xBEE79024, 0x00000000, 0x8B922512, 0x00000000)
-
Use sandboxie..!! ;)
Problems...
-
all I can say is that the Avast sandbox works much better here on my system than CIS 4/5 sandbox does... ???
-
Problems...
See reply #7.
The second link leads to the forum...
asyn
-
Please, no... Another forum... ... ...
-
PGP has already been an issue when I got BSODs with Avast (just once or twice during the beta testing)..so may be that's a hint...no idea why and how though.
You can use GnuPG...
http://www.gnupg.org/index.en.html
asyn
-
Please, no... Another forum... ... ...
Sorry Tech,
as I have had no problems with it, I can only give you this advice...
asyn
-
Asyn, no problem.
My concern is that if I do not receive help here in avast forum, would I need to post 50+ posts to receive help of avast sandbox BSODing in another forum?
-
I manage it to work with CIS 5 RC.
Only that is necessary to remove the system virtualization.
I can sandbox Firefox in two levels: partially limited and limited.
Continue to test. Seems I'll say bye bye to AIS... At least until we can fix it (BSODs and some lack of configurability: exclusion of file types).
I can't live with BSODs
-
Tech, why don't you ask Petr for help ???
I get the impression you only ( try to ) communicate thru the forum, and not directly with the developers :-\ You should try it ;)
Greetz, Red.
-
Tech, why don't you ask Petr for help ???
I got the impression you only ( try to ) communicate thru the forum, and not directly with the developers :-\ You should try it ;)
Greetz, Red.
+1. I also had experienced a couple of BSODs recently. I don't know about you Tech, but I sent my minidump files to pk and he quickly fixed the issue in the internal build. ;)
-
Tech, why don't you ask Petr for help ???
Do you think I didn't?
I got the impression you only ( try to ) communicate thru the forum, and not directly with the developers :-\ You should try it ;)
Red, I've done it.
I offered remote connection to my machine.
It could be tested in a virtual environment.
The only handicap is the absence of the dump (due to CTM). I know it's a huge absence, but they could have tried to simulate this.
-
Asyn, no problem.
My concern is that if I do not receive help here in avast forum, would I need to post 50+ posts to receive help of avast sandbox BSODing in another forum?
No. :( (Am not happy about this lag either..!!)
asyn
-
okay, I've never used CTM, but I'm learning now that it prevents the creation of memory dumps after bsods ??? CMIIW but I suppose this is related to an automatic system restoration by CTM when the system crashes...wow...
back to topic >>> how could Avast devs detect what goes wrong without any dump files, obviously impossible. Okay you know it...
As to simulate it...how? just curious...if they could reproduce on their systems the conditions in which your system failed (while sandboxing), this would mean they already know the cause.
-
Tech,
If you have those BSOD's with CTM installed, maybe you should ask the Comodo Devs for help. I have tested CTM from even before the first public BETA ( thnx to one of the Comodo Mods ) but it is a very risky and troublesome technic in my opinion.
Greetz, Red.
-
yes, not mentioning that indeed CTM could be behind the crashes...
-
but it is a very risky and troublesome technic in my opinion.
It sure is, heard many complaints, till this day...
asyn
-
but I suppose this is related to an automatic system restoration by CTM when the system crashes...wow...
No. When the system crashes, merely nothing is loaded and Windows saves the dump.
But CTM technology needs access to the disk and need to prevent this writing to avoid the snapshots break.
It's necessary for the technology to work.
I can test CIS and change to AIS in a common boot + 15 seconds. That's the technology.
back to topic >>> how could Avast devs detect what goes wrong without any dump files, obviously impossible. Okay you know it...
Well... I wish they could find a way...
As to simulate it...how? just curious...if they could reproduce on their systems the conditions in which your system failed (while sandboxing), this would mean they already know the cause.
Nor really. The problem is a conflict between the CTM driver and the avast sandbox one. They need to interact for the problem (BSOD) to happen.
-
If you have those BSOD's with CTM installed, maybe you should ask the Comodo Devs for help.
I've done. No answer also.
https://forums.comodo.com/bug-reports-ctm/ctmfltsys-bsods-0x000000f7-with-175-beta-t58907.0.html
I'm not here to blame nobody. Just to receive some help (I avoid the word, but, maybe, I deserve it... don't you think?).
-
okay I had no idea how CTM works, thanks for the heads up.
Nor really. The problem is a conflict between the CTM driver and the avast sandbox one. They need to interact for the problem (BSOD) to happen.
so you're just confirming what me and Asyn supposed here, that CTM is behind it. What do they say at Comodo? may be they can solve the conflict (although I doubt they would even try ;D )...well my opinion is that Avast shouldn't take care of that (that's my opinion ok, no intent to conflict with you here)...why...because Avast is primarily needed on a system, and CTM, for those who want it, comes next...far behind...
And like Asyn said, CTM has such a reputation of breaking systems, I don't get why you stick to it...
-
I've done. No answer also
just what I said in my last post ;) they will never bother trying to resolve a conflict with a competitor. Your issue is between one of their products and one that competes with something they provide too, an IS suite...forget it.
-
although I doubt they would even try ;D
I see no reason for they not do it. It's difficult for both. In fact, they've tried and I've in contact with the developers as here with pk.
By "answer" in my post, I meant, solution. Sorry, the post was not fair neither with Comodo nor avast teams.
just what I said in my last post ;) they will never bother trying to resolve a conflict with a competitor. Your issue is between one of their products and one that competes with something they provide too, an IS suite...forget it.
You really do not trust them. It will be hard for me to convince you.
I believe in freewares. I believe in software development. I try to help when I can.
-
they will never bother trying to resolve a conflict with a competitor.
Seems that you're wrong...
https://forums.comodo.com/bug-reports-ctm/ctmfltsys-bsods-0x000000f7-with-175-beta-t58907.0.html;msg427131#msg427131
-
they will never bother trying to resolve a conflict with a competitor.
Seems that you're wrong...
https://forums.comodo.com/bug-reports-ctm/ctmfltsys-bsods-0x000000f7-with-175-beta-t58907.0.html;msg427131#msg427131
wow, I'm a bit amazed, let's wait for your feedback when the next release is out then ;D
-
New Pre-Release Build (http://forum.avast.com/index.php?topic=63151.0) is now available. I emailed pk and he said he fixed a BSOD issue in this build (if your issue is the same as mine).
-
let's wait for your feedback when the next release is out then ;D
They acknowledged it and will fix in next version. Check their forum for details.
It was a problem in the CTM driver and not on the avast sandbox one.
-
let's wait for your feedback when the next release is out then ;D
They acknowledged it and will fix in next version. Check their forum for details.
It was a problem in the CTM driver and not on the avast sandbox one.
oh I had no doubt that the issue was on Comodo side ;D
-
It would be great if avast team develop a guide called "how to use the sandbox and virtualization" for browsers and email clients. What to do, what to set, etc.
The help files describe what avast settings do but NOT the final situation of a process sandboxed (what you can do, what you can't, what will work, what will not..., the advantages of doing so, how is the user protected against malware in these conditions).
Shortly: sell to me the use of the sandbox...
What is being sandboxed *exactly* when Firefox runs into the sandbox?
-
It would be great if avast team develop a guide called "how to use the sandbox and virtualization" for browsers and email clients. What to do, what to set, etc.
The help files describe what avast settings do but NOT the final situation of a process sandboxed (what you can do, what you can't, what will work, what will not..., the advantages of doing so, how is the user protected against malware in these conditions).
Shortly: sell to me the use of the sandbox...
What is being sandboxed *exactly* when Firefox runs into the sandbox?
well obviously the program itself + plugins and your profile (including add-ons). Are excepted from the sandbox everything you design as not being sandboxed from the expert settings, and this can be almost anything you want. Don't know about you but I can't get flashplayer run sandboxed at all. It starts to work as soon as I exclude it.
You know what, I wouldn't mind a fusion of CIS sandbox and Avast sandbox ;D each one has features that the other doesn't have...okay :-X ...and anyway Avast would need a HIPS or special behavioral component for auto-sandboxing. There's still this so far unexplained bit about process control in the firewall help files (Avast) ;D
-
It still does not crash with the 668 beta version. Let see how it works overnight...
I'm not being able to install addons updates, although it's marked to be allowed.
Is it a bug? Is it by design?
-
1. Now Firefox sandboxed crashed... Got a black screen and then a white one... Weird...
2. Besides the OS and hidden files options are checked, the sandbox appears on one of my drivers.
3. The addons updates couldn't be applied. I'm getting an error each time I load Firefox.
Of course, it does not happen in the non-sandboxed Firefox, where the addons could get updated.
-
Another annoyance of the sandboxed Firefox.
Sessions of Tab Mix Plus aren't saved. Each time I open FF, the last session is always the latest before I started sandboxing FF :P
-
- Sessions of Tab Mix Plus aren't saved. Each time I open FF, the last session is always the latest before I started sandboxing FF Tongue
- 3. The addons updates couldn't be applied. I'm getting an error each time I load Firefox.
web browsers checkboxes in UI didn't support all browsers - I've already implemented it today for the most web browsers; will be fixed in next version, thanks
1. Now Firefox sandboxed crashed... Got a black screen and then a white one... Weird...
the best thing is to generate user-mode crash dump: start Task Manager, find firefox.exe in Processes tab, right-click on it, Create Dump File
2. Besides the OS and hidden files options are checked, the sandbox appears on one of my drivers.
please check snx_lconfig.xml file in avast data folder, what's "HideTarget" value? (0=don't hide sandbox folder, 1=hide)
if you have "1" value set, what's F: volume? (fixed drive, or USB, ...?)
-
Web browsers checkboxes in UI didn't support all browsers - I've already implemented it today for the most web browsers; will be fixed in next version, thanks
Thanks.
the best thing is to generate user-mode crash dump: start Task Manager, find firefox.exe in Processes tab, right-click on it, Create Dump File
Will do it next time. Right now, without the sandbox, it's working.
please check snx_lconfig.xml file in avast data folder, what's "HideTarget" value? (0=don't hide sandbox folder, 1=hide)
if you have "1" value set, what's F: volume? (fixed drive, or USB, ...?)
<HideTarget value="1"/>
Drive F is a mounted partition of TrueCrypt (portable), mounted some seconds after booting.
-
Drive F is a mounted partition of TrueCrypt (portable), mounted some seconds after booting.
Maybe that will be the problem... I have to find out how I detect TrueCrypt volumes...
-
avast 5.0.667 version sandbox seems to be working with CTM 2.8.
Today a new version of CTM (2.9) was released. Also Firefox gets a new version. I need some time to test.
What I have already see is that some addons do not work.
For instance, Lazarus (forms restore).
http://lazarus.interclue.com/
-
Lazarus is working fine with FireFox 3.6.9 (latest) SANDBOXED, avast Pro 5.0.677 (latest) so there must be something wrong with your set-up.
avast 5.0.667 version sandbox seems to be working with CTM 2.8.
Today a new version of CTM (2.9) was released. Also Firefox gets a new version. I need some time to test.
What I have already see is that some addons do not work.
For instance, Lazarus (forms restore).
http://lazarus.interclue.com/
-
I'll uninstall, install again and test.
-
As for Lazarus add-on: there exists a conceivable sequence of events that can lead to a conflict. I think it was caused by sync issues between non-virtualized FF and virtualized FF: when you install/configure add-ons in both FF running modes.
Non-virtualized FF uses a default FF profile while virtualized FF uses both sandbox storage (for the files changed by previous virtualized FF instances) and rest of files from the default FF profile. When you install Lazarus in non-virtualized FF, this changes some files in default FF profile dir. Now when you run virtualized FF, it may or may not see it, because sandboxed config files were not changed. I can simulate it very easily (I need cofingure add-ons in both FFs and install Lazarus in non-virt FF).
It should work well if you check "All settings" in Expert Settings -> Web Browsers. Then virtualized FF will use only the default FF profile. You can also push "delete contents" button in Settings and reload default FF configuration.
So, the conflicts cannot be solved easily (e.g. sandboxie is also affected). I'll see if I can do anything with this...
If you have other problematic add-ons, please let me know...
-
Just a curiosity: this avast version (5.0.677) does not give me BSODs with sandboxed Firefox + CTM :)
-
It should work well if you check "All settings" in Expert Settings -> Web Browsers. Then virtualized FF will use only the default FF profile. You can also push "delete contents" button in Settings and reload default FF configuration.
My settings were already checked.
I've uninstall/install Lazarus outside of the sandbox.
Click "delete contents".
Worked :)
Please, considerer a command-line version of the sandbox. It's a real pain to run inside/outside of the sandbox.
-
Please, considerer a command-line version of the sandbox. It's a real pain to run inside/outside of the sandbox.
ok, you can send me the list of commands you'd be interested in...
-
Hmmm... Lazarus was disabled again...
About the commands:
1. Run inside of the sandbox.
2. Run outside of the sandbox.
3. Clean the storage and run inside of the sandbox.
Another question.
Is the session saved using Tab Mix Plus? Seems mine is not being saved.
-
I still need a way to exclude files from sandboxing.
I mean, while using Firefox sandboxed and trying to open a .csv file in Excel, the file is locked if Excel is running outside of the sandbox (i.e., Excel running before you open the .csv file from Firefox). If Excel is closed, the file is opened with Excel sandboxed. Then I can't save the file or open another to save the data to because Excel is sandboxed).
Maybe an exception to *.extension could be an option into the avast sandbox settings. Right now we can only exclude folders.
Also, it would be useful to have a setting to exclude processes from sandboxing (even if they were started by a sandboxed one, I mean, I could exclude excel.exe to be sandboxed when started by Firefox sandboxed).
-
Hmmm... Lazarus was disabled again...
No way...
Also, the session tabs aren't saved by Tab Mix Plus regardless my settings.
-
Lazarus was disabled again.
Tab Mix Plus can't save the history (session, open tabs).
Indeed, if the sandbox could be a little more flexible with addons it will be good.