Sandbox for 9x systems

Discussion in 'other anti-malware software' started by aegis, Jun 13, 2006.

Thread Status:
Not open for further replies.
  1. aegis

    aegis Registered Member

    Joined:
    Jun 7, 2006
    Posts:
    11
    Hi,

    Does anyone use a sandbox program, a virtual safe area for running unknown programs.

    If so, are there any good ones for win 98 SE. Ive tried searching the net but didnt come across any for win9x systems.

    I hope this is the right forum to post this in. :)
     
  2. SDS909

    SDS909 Registered Member

    Joined:
    Apr 8, 2005
    Posts:
    333
    Time to upgrade to WindowsXP, I don't believe there are any good 98 Sandbox programs. That OS is just too old.
     
  3. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    It is impossible to implement real sandbox protection for those OS because it is impossible to protect it's core from being modified (which mean malware may easy get ring0 access and break throught sandbox). Use Win2k/XP instead.
     
  4. Lucy

    Lucy Registered Member

    Joined:
    Apr 25, 2006
    Posts:
    401
    Location:
    France
    Hi there,

    Yes Ilya, there is no sandbox which does it, but there is Viguard HIPS (based on integrity), which has an option especially designed for protection of win 9x's core.

    Regards
     
  5. aegis

    aegis Registered Member

    Joined:
    Jun 7, 2006
    Posts:
    11
    Thanks BZ, checking out viguard now.
     
  6. herbalist

    herbalist Guest

    System Safety Monitor is another HIPS that runs very well on 98/ME. While not a sandbox per se, it does give you complete control over what executables and libraries applications are allowed to use. It also defends the registry. It does have a 60 day trial.
    Rick
     
  7. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Sorry, but it doesn't matter if HIPS sandbox or not. From the technical point of view, it is impossible to prevent malware from get ring0 privileges and full system access. If Viguard claim it- they are liers! I've been developing Guardian Angel hardening program specially for 9x and I know what I'm talking about.
     
  8. Lucy

    Lucy Registered Member

    Joined:
    Apr 25, 2006
    Posts:
    401
    Location:
    France
    Ilya,

    Anyway Viguard protects file system from modifications / destructions. Thanx to its integrity checker, any misbehaviour can be reversed, if not stopped anyway.

    , yeah Ilya, you're right as usual. Tell me now, who will waste time to design such a malware for an almost dead OS...?

    For aegis, SSM, Viguard, abtrusion protector, processguard are, IMO, very good choices and really sufficient (with a good firewall).
     
  9. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Nobody, I clealy understand it. In fact, that is the only _real_ protection for those OS. And they are already dead- MS didn't want to make new critical-level patch for those OS.
     
  10. Lucy

    Lucy Registered Member

    Joined:
    Apr 25, 2006
    Posts:
    401
    Location:
    France
    :cool: Balchoi spaciba za vcio as one would maybe say ;)
     
Loading...
Thread Status:
Not open for further replies.