DefenseWall compatibility, or ???

Hi Folks.
Please pardon me if these are very dumb questions...
I am currently using Online Armor along with NOD32 AV and KeyScrambler.
Have tested other things now and then and for my simple uses those seem to be enough except for one thing=>

I've posted elsewhere about my desire to make use of a sandbox other than SBIE, manually, so I ask:
- Will DefenseWall coexist with the others mentioned above, somehow ??
- Can it be used as a manually activated sandbox (like by right-click, maybe) ??
- Can it be installed or set to avoid it's HIPS for sandboxing only ??

Thanks.

 

AFAIK DW doesn't have sandbox separate from its HIPS.

 

+1.
It is policy-based HIPS, like GeSWall or Comodo AutoSandbox.

 

Also the last I heard Online Armor and DefenseWall had a compatibility issue.
I don't know if that incompatibility has ever been remedied.

 

That issue has been solved ages ago.

 

Ilya,
when are you going to release 3.21 final?

 

This week. It's right about time!

 

That is good news indeed.I hope you also solve the issue with the digital certificates.

 

Mmmm, looks like "this week, it's right about tiome" means "right now, it's right about time".

 

DS is fixed.

 

Hehe'... thanks thanks Ilya.

Here is the changelog

DefenseWall 3.21 released.
1. Now it's possible to update FireFox, uTorrent and ICQ out of box, without need to run them as trusted first.
2. Windows 8 Mail Metro is set as untrusted by default.
3. Minor internal improvements.

 

Good to know.

 

Ilya Rabinovich gave me the answer to my thread:

 

Ilya, will Defensewall protect against this new exploit?
http://blogs.mcafee.com/mcafee-labs/analyzing-the-first-rop-only-sandbox-escaping-pdf-exploit

 

DefenseWall doesn't protects against exploits, it protects against malicious software infecting computers or stealing sensitive information.

 

I would imagine EMET 3.0 would stop this exploit as long as Reader was added as a protected application in it with ASLR and SEHOP enabled?

 

I'm not sure but doesn't exploit always contain malwares to download, so basically if DW blocks malwares than regardless of exploit you would be protected, at least that's what I understood?

BTW thanks for this new DW update.

 

Most cases exploits are contains malware to execute, DW blocks malware to infect computers, but not exploits.

 

So there is no danger of exploits compromising computer security, since DW takes care of malwares hidden and downloaded from exploits?
Or I should still use programs like Exploit Shield as an additional extra security?

Ilya I hope you can answer me this, I hope moderators will allow, didn't you say once somewhere that GesWall since it's relying on windows internals, is also its great vulnerability or something since it does not close windows bugs and vulnerabilities?
I just hope you won't angry on me, since I asked you this, because it's torturing me this entire year, I was actually scared to ask you this, because I wasn't sure if this is suitable question in the first place.

Please, no hard feelings Ilya, but if you think I should drop this question, I will drop it, you don't have to me answer here, if you don't want to.
You can ignore me.
Big thanks anyway.

 

dont forget that DW will isolate the malware from the real system so you are safe with DW the payload that the exploid will drop will be isolated by DW cause the browser is running as untrusted

 

You can use any security solution allow you to feel safe. Exploit Shield can add security value for some time, so, why not? Anti-virus solution is also should be added into the config for an average user.

 

From the McAfee exploit article:

Again, the default EMET 3.0 rules for Abode Reader and Acrobat should stop this.

 

Thanks for that and for the PM, but I have one question regarding exploits, Do exploits contain only malware and nothing else, if so DW is more than enough?

But like Ilya said it's good to have some other additional security option.

 

layer is always good but DW can handle alot of kind of malware including keyloggers and rootkits
if you have a ondemand scaner is always good idea to check your system is clean