process guard settings

Discussion in 'ProcessGuard' started by donsan709, Jan 30, 2004.

Thread Status:
Not open for further replies.
  1. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Hi all i read in one of the theads that you should add your instant messenger service in to pg protection area question is what should you tick in the allow block if anything so all will work well.I use ypager and msn messenger. Thanks in advance for your help.
     
  2. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Hi donsaan709,

    " *\Program Files\Messenger\msmsgs.exe" I pressume as I do not use it :) I would start with no allows and see what happens - if anything.
    Same for your main pager .exe.
     
  3. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Thanks Philli for the feed back will try that and see if i need to do any thing at all. So far all seems well with no allowances and blocked side set at default.
     
  4. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Philli just one more thing if you don't mind. I noticed in list of protecited items that it list outlook express for email. I do not use outlook express as default i use ms outlook i would very much like to add that to my list but don't no where to find it i have looked in ms office folders but did not see outlook any ideas.
     
  5. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Hi Donsan709, Although you may not use (I don't either) it is very much part of the Windows OS, as such, it still remains a possible vulnerability.

    HTH Pilli
     
  6. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,057
    Hi donsan709 On my system which is XP Pro, I have Office XP. Outlook is :

    C:\program files\microsoft office\office10\outlook.exe

    Try looking for something like that.

    Pete
     
  7. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Hey thanks a lot found it.
     
  8. Robyn

    Robyn Guest

    I am interested in this as number one I would like to use PG but I am taking time to gather all the information on configuration. I have realised the scope PG has but am very unsure just how to set it up to work for me. I have just started to use msn messenger (out of necessity) and wondered how PG would interact with this. Reading the post I see that I can let PG protect the application and still be able to use this. :oops: will this mean that I would be safer using msn with PG installed :oops: I am cautious about messenger and would be delighted if PG offered a little extra protection.
     
  9. Jooske

    Jooske Registered Member

    Joined:
    Feb 12, 2002
    Posts:
    9,713
    Location:
    Netherlands, EU near the sea
    Hi Robyn,
    do you really need MSN messenger or could CS do the chat part for you too? In future it will have more options included, just an idea.
    For the settings questions, leaving that to the PG specialists.
     
  10. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Hello & welcome Robin.
    Procees Guard will protect the messenger programme from being compromised & any other programmes.
    Regarding set up: Certain sytem files and programmes are listed after your first install with default rules. After that you can add as many programmes as you wish, most ppl add any programmes that can connect to the Internet such as your browser, email clients etc.
    Also you can add your Anti-virus, Anti-trojan and firewall as once protected malware will not be able to shut them down.

    HTH Pilli
     
  11. Robyn

    Robyn Registered Member

    Joined:
    Feb 1, 2004
    Posts:
    1,189
    Thank you for your replies and welcome. I have been wanting to use Process Guard but just so afraid I may have got the configurations incorrect. I did try the previous version but had the kernel fault when I installed therefore I did not continue and uninstalled although I have now found out it was a little bug and would have worked anyway.

    I am sorry if this seems stupid but what is CS? I will know as soon as you tell me and then feel :oops: but just now I am o_O
     
  12. Jooske

    Jooske Registered Member

    Joined:
    Feb 12, 2002
    Posts:
    9,713
    Location:
    Netherlands, EU near the sea
    CS is CryptoSuite -- check it out from the DiamondCS page at www.diamondcs.com.au/cryptosuite
    Check also the discussions about this tool in the forum here. In the first place it is an encryption tool, but the chat is all encrypted and secure one, while in future it will have additional features. So you're not expected to be targeted with intrusions and infections when using that, while your PG will protect it from termination and other unallowed actions on it.
     
  13. Robyn

    Robyn Registered Member

    Joined:
    Feb 1, 2004
    Posts:
    1,189
    Well thank you Jooske, I didn't even realise that this program had a chat option with it. I will be reading the details on this now as I fully trust DiamondCS applications.

    I would need to see how the chat element would integrate with others using messenger but I was considering encryption software and overlooked this one. Thanks again.
     
  14. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Robyn, CS will not integrate with other messenger services as it is quite unique, encrypted chat that cannot be read by anyone other than another CS user.
    Messages sent useing chat cannot be decyphered by Government agencies, your ISP or your boss, unless he/she is looking over your shoulder :)
     
  15. Robyn

    Robyn Registered Member

    Joined:
    Feb 1, 2004
    Posts:
    1,189
    Once again, thanks for further advice; I will have to 'talk' my friends and family into CS now ;) Diamond have so many applications which I know are of the utmost importance. I think my next step is to install PG with the advice given on configuring and then I will look at CS for the safe keeping of my files. It is great to have forum with such helpful advice on very important matters :)
     
  16. Jooske

    Jooske Registered Member

    Joined:
    Feb 12, 2002
    Posts:
    9,713
    Location:
    Netherlands, EU near the sea
    Install CS (free evaluation version to try it out) and come on the public server right this moment a few of us are there to answer your questions right away! It's been a great help for others to try and help with settings and other stuff as we tend to be rather serious there, even on a sunday :)
    Looking forward to see you entering the chat soon to try it out.
    IP 81.105.28.14 port 5096 pw pc2
     
  17. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Ok i have added ms outlook to process guard protection list and pg logs that ccsetmgr tried to gain access to out look which i think has something to do with norton pro 4 if i untick all the blocking flags and tick all the allowed flags evrything is ok but my concern is if i set outlook up like that is it protecting that process correctly.I did try adding ccset mgr to pg but that didn't really help. If anyone else uses ms outlook and have added it to thier protection list i would like to know how you have it set up.
     
  18. siliconman01

    siliconman01 Registered Member

    Joined:
    Mar 6, 2003
    Posts:
    780
    Location:
    West Virginia (USA)
    donsan79,

    I have Outlook and use it as my mail client. Here's what works for me.

    Outlook:
    Block Flags Active- Write, SetInfo, Terminate, Suspend
    Allow Flags Active- None

    CCSetMgr:
    Block Flags Active- Write, SetInfo, Terminate, Suspend
    Allow Flags Active- Write, SetInfo, Terminate, Suspend, GetInfo, Read

    You don't want to uncheck the Outlook Block Flags because that leaves Outlook totally vulnerable to attack.

    HTH

    Remember, the Block Flags protect Program XXXX itself.
    The Allow Flags lets/gives rights to Program XXXX for access the all other programs protected by PG.
     
  19. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Thanks for the reply silliconman01 for the quick response I will try that set up up and see how it works for me. I did notice one thing also outlook express seems to be set from default with set global hook should i also have that setting on ms outlook.
     
  20. siliconman01

    siliconman01 Registered Member

    Joined:
    Mar 6, 2003
    Posts:
    780
    Location:
    West Virginia (USA)
    I haven't seen any reports on my log that indicates MS Outlook 2003 needs the Global Hooks. If something pops up to the contrary, it can be added with no problems.
     
  21. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    Thanks alot will leave it like it is for now you have been a big help on this matter and i do thank you.
     
  22. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    You will see a big difference in the logging for Version 1.250 which will enable you to make more informed decisions. Eventually I expect a list of all common programmes will be documented, making it much easier for new users. Having said that every PC is different so there will always be anomalies. :)
    In addition there is a new Grey icon if PG is disabled and a flashing Icon when something is logged.
    Hopefully the new version will be readt soon.
     
  23. donsan709

    donsan709 Registered Member

    Joined:
    Jun 18, 2003
    Posts:
    54
    Location:
    dallas tx
    That sounds great Philli I love this program and know i have a lot to learn hope you all don't mind the questions from time to time. Now i only have to figure out Bo Clean I didn't make the regestry changes because i read a post where this one was supposed to take care of that problem but every time i open firebird i get the log that bo clean tries to gain access although it is no big deal i have tried every way i no to configure pg to no avail
     
Thread Status:
Not open for further replies.