Geswall, DefenceWall or Bufferzone?

Discussion in 'other anti-malware software' started by ako, Dec 12, 2007.

Thread Status:
Not open for further replies.
  1. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    I'm interested in application-based sandboxing with ready-made policies. This could come to my parents PC.

    Should I purchase Geswall, DefenceWall or Bufferzone?
    Someting other?

    What's the difference? Are they equally strong? Are they really install-and-forget?
     
  2. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    I don't know the differences, but you forgot a very popular one : Sandboxie (= freeware).
     
  3. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    No I did not. For sandboxie you have to make rules yourself. (I'm using sandboxie myself.)
     
  4. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    SBIE is not a freeware.
     
  5. Old Monk

    Old Monk Registered Member

    Joined:
    Feb 8, 2005
    Posts:
    633
    Location:
    Sheffield, UK
    Hi ako

    Tried the three you mention and all are good.

    You could also look at SafeSpace which is free for personal use, has excellent support, ready to go out of the box but can be tinkered to some degree.

    Does use quite a bit of memory when the GUI is loaded and does run several services but most activity can be conducted through right click on sys tray icon and it is very stable on my machine with Returnil and Online Armor.

    Just something else to consider but as I say all seem very good.
     
  6. baerzake

    baerzake Registered Member

    Joined:
    Aug 18, 2007
    Posts:
    44
    Dw is better.
     
  7. Old Monk

    Old Monk Registered Member

    Joined:
    Feb 8, 2005
    Posts:
    633
    Location:
    Sheffield, UK
    Your conclusion is put, shall we say, very concisely :D

    Care to expand a bit ?

    I did like DW and Ilya is also a committed sorter of issues but that statement sounds a bit like '' I'm right, you're wrong ''
     
  8. Perman

    Perman Registered Member

    Joined:
    Nov 23, 2005
    Posts:
    2,160
    Hi

    In general, all are good to some extent;

    I did not try Geswall.... no comment.

    I tested BuuferZone, when it has a free offer at Giveaways, problems, problems,...BSOD and worse than that; its driver, redlight.sys (can not recall the exact name) has a documented security flaws.(just google it),or search BufferZone on this forum.

    I tested DefenseWall again when it offers a free one on Giveaways. Smooth sailing, no troubles so far.

    Hope you can draw your initial conclusion from here.

    Take care.
     
  9. lucas1985

    lucas1985 Retired Moderator

    Joined:
    Nov 9, 2006
    Posts:
    4,047
    Location:
    France, May 1968
    Ilya found it and it has been fixed :)
     
  10. Old Monk

    Old Monk Registered Member

    Joined:
    Feb 8, 2005
    Posts:
    633
    Location:
    Sheffield, UK
    I thought Ilya was the dev of DefenseWall or are you saying that used redlight.sys as well ?
     
  11. lucas1985

    lucas1985 Retired Moderator

    Joined:
    Nov 9, 2006
    Posts:
    4,047
    Location:
    France, May 1968
    It was a contest and Ilya found that flaw in BZ driver.
     
  12. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    You just missed some- I just showed them that ring3 hooks are really bad for the security products... I did discover no security flaws with their driver.
     
  13. lucas1985

    lucas1985 Retired Moderator

    Joined:
    Nov 9, 2006
    Posts:
    4,047
    Location:
    France, May 1968
    Oops, I got it wrong :oops:
     
  14. Old Monk

    Old Monk Registered Member

    Joined:
    Feb 8, 2005
    Posts:
    633
    Location:
    Sheffield, UK
    Ah okay. Just lost the context in translation there for a moment.

    Thanks for the clarification and to you lucas
     
  15. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    Defencewall seems a good candidate. One question to Ilya: should I put autoupdate for FF and/or its extensions off, and update them manually (i.e. by running FF as trusted)?

    P.S. The new driver seems to work.
     
    Last edited: Dec 12, 2007
  16. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    In fact, you need setup FF's updates and extensions manually under trusted mode with any sandbox solution. With policy-based sandboxes, you won't be able to install it, with those which has file system virtualization- you will lose all the changes made during virtualization container (sandbox) cleanup.

    So, the answer is "yes" with all the sandboxes available.
     
  17. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    Attemps to install updates to FF or add-ons when running FF as trusted seem to fail, if one has tried to do it before when running FF as untrusted. I think this is big problem. Is this normal?
     
  18. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    What the sandbox do you mean about? DefenseWall?
     
  19. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    Yes. I had that problem with my old GAOTD version. Should the new driver you gave to me help here? I tested the new version with one add-on and saw the same problem.
     
  20. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Try to disable FF as untrusted, do the update and enable it back.
     
  21. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    It works now. My impression of DW is at the moment quite positive :)

    I'm strongly considering to utilize the GAOTD offer.
     
Loading...
Thread Status:
Not open for further replies.