Geswall questions

Discussion in 'other anti-malware software' started by firzen771, Dec 12, 2007.

Thread Status:
Not open for further replies.
  1. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
  2. WSFuser

    WSFuser Registered Member

    Joined:
    Oct 7, 2004
    Posts:
    10,632
  3. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    i know its not a firewall, but it was the closest section i could find for it, since thers no HIPS section or sandbox, or maybe i just missed it

    would u say a policy based sandbox is more secure or a HIPS? and defensewall is in the sandbox chart, yet it says its a HIPS? and not much info in that chart except for sandboxie and safe space :(
     
  4. WSFuser

    WSFuser Registered Member

    Joined:
    Oct 7, 2004
    Posts:
    10,632
    Sandboxes and (classic) HIPS work differently.

    I dont know much to compare the two though; All I can say is that sandboxes are quieter.
     
  5. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    HIPS is a broad term though generally we use it for classical anti-exe HIPS. Sandboxes are generally quiet( np pop ups oir very little pop ups) as compared to classical HIPs, easier to use and sometimes even more secure than classical HIPS.

    However sandboxes usually control your vulnerable applications( for example internet applications like browsers, mail clients etc) only while classical HIPS control whole of OS.
     
  6. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    but doesnt GeSWall controll ur whole OS?
     
  7. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    No. None of Sandboxes( BufferZone, GesWall, DefenceWall, Sandboxie) does so.
     
  8. LUSHER

    LUSHER Registered Member

    Joined:
    Feb 28, 2007
    Posts:
    440
  9. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    so u need to configure which folder or apps that geswall will sandbox? couldnt u configure it to sandbox everything if u needed to? and isnt defensewall a sandbox, yet it says in its name that its a HIPS, so doesnt it cover ur whole system?
     
  10. WSFuser

    WSFuser Registered Member

    Joined:
    Oct 7, 2004
    Posts:
    10,632
    Afaik, GeSWall only sandboxes programs.

    Defensewall is also a policy-based sandbox. It has a list of untrusted programs that it sandboxes; you can add a program to the untrusted list.
     
  11. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    o ok, thank you for clearing that up :D but i still dont know why they call it defensewall HIPS, if its a sandbox?
     
    Last edited: Dec 13, 2007
  12. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    Don,t be confused with it. U can just think it of Sandbox and that,s it. Name doesn,t matter.
     
  13. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Because there are four main types of HIPS are here: classical ("anomaly detection" model based), whitelist ("forbid what is not known as good"), blacklist ("forbid what is known as bad") and sandbox ("restrict rights for threat-gates applications"). They all are HIPS.
     
Loading...
Thread Status:
Not open for further replies.