SpyShelter 10

Discussion in 'other anti-malware software' started by Mops21, Jul 30, 2015.

  1. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,974
    Location:
    Poland - Cracow
    Hhmmm ... I'm using SS more than 6 years and have contact with users with some experience with this app ... I've never heard and never suffered about such issue and in my opinion you should look at the file access violations tab and check what can be wrong. My Firefox and PDF browser always run as restricted and I can download, save files and print without issue.
    Next thing...it's quite easy to add spool/printer folder to the list with write access...you can do it from menu right MB, command "add folder"...
     
    Last edited: Jan 31, 2017
  2. guest

    guest Guest

    They are right, if you run a restricted process there will be certain things you can't do.
    The same happens with sandboxing and with any other software
     
  3. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    Except that with other isolation software you can always get what write access you want to allow. That cannot be done here; at least not allowing access to the print spooler. That's something they confirmed cannot be done, which is odd.
     
  4. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    42,282
    If the developers of Sandboxie can do this, maybe they can do this too.
    They need to investigate, but they were very clear in their answer.
    "It's working as intended", and if printing is not working "accept that fact" and: "We do not plan to make anything with that feature"

    Maybe add Sandboxie as an additional layer for your browser, instead of running it as a restricted application in SpyShelter.
     
  5. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    I already did. There's no reason for them to act like that. The unfortunate thing is, SpywareShelter firewall can be great software if they would take the time to fix obvious deficiencies. I've replaced it with Hitmanpro.alert, Sandboxie, and Windows Firewall Control.
     
  6. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,914
    Location:
    The Netherlands
    I agree, their response sounded weird to me. I also don't always like their answers, and SS hasn't seen any true innovation, plus the GUI should become better. But why not continue to use SS for behavior monitoring? Normally speaking it should run just fine together with the rest of your security tools. Unless you think SS is not worth the money.
     
  7. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    It is worth it. I have a lifetime license for SSF. But knowing the deficiencies, and knowing that they will do nothing to solves them is a very weird position for a software company to take. I might just use SSF + SBIE. But their behavior was really rude, and at what point is it too much? Dunno...
     
  8. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    It's also worth noting that from I've been able to understand, it's impossible to use SSF and SBIE together. Spyware Shelter doesn't like SBIE launching any app, and no configuration setting I can find can change that behavior.
     
  9. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,974
    Location:
    Poland - Cracow
    Could you give some example?...except Sbie...
    Do you ever have used others security app that could restrict rights as the additional feature?...I mean something like Online Armor, Privatefirewall...do they have some settings of lowering rights?
     
  10. guest

    guest Guest

    ReHIPS: isolation + granular application (objects)/privileges control. v2.2 still in beta.

    https://www.wilderssecurity.com/threads/rehips.364248/
     
  11. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,436
    Location:
    Under a bushel ...
    Comodo Firewall 10 Sandbox?
     
  12. guest

    guest Guest

    indeed , this another one.
     
  13. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,974
    Location:
    Poland - Cracow
    OK, I agree :)...but there are sandboxes and we are talking about SS so a bit closer to SS, OA or PFW ;)
     
  14. Schorg

    Schorg Guest

    Very Strange indeed, I have tested this I can print out when Chrome, Microsoft Word and WPS Writer all added to SpyShelter's restricted apps without giving write access to c:\windows\system32\spooler\printer. You are correct you cannot add c:\windows\system32\spooler\printers to the write list (it normally shows up after closing the restricted app and even then when adding to write access become corrupted ie C:\system32\ "Chinese like text"). I certainly agree with @ichito, never had an issue with print out when an app is restricted in SpyShelter Firewall.

    Did you keep the default "Folders with write access" ie [App Data], [Local App Data] etc I do believe in order to print out successfully you need write access to c:\users\username\appdata\local\temp
     
  15. Schorg

    Schorg Guest

    This is odd, I have had no issues with SBIE and SpyShelter Firewall combo, I am in "Ask User" mode. May I ask what security apps you have installed?
     
  16. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    The only other isolation software I've used was Comodo firewall and SBIE, with the exception of system-wide virtualization of Shadow Defender. All of these were confugurable. SSF is not.
     
  17. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    At that time I had Zemana antimalware premium, and that's it. I wasn't even using WD. I will reinstall and try "ask user mode." Thanks for the tip. (Points to avatar :)
     
  18. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,914
    Location:
    The Netherlands
    Yes, I would have loved to see more "involved" and flexible developers. But it's still a good enough HIPS, I would just stop using the sandboxing feature, after all you can use SBIE for this, no?

    I have no problems with the SS and SBIE combo on Win 8.1? You should simply make SBIE trusted and allow it to execute apps in the "Application Execution Control" tab.
     
  19. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    Interestingly enough, I reinstalled SSF using the default settings and everything seems to work; printing, and isolation. Of course, the real test comes when you start tweaking the ruleset to restrict. I'll try that later tonight. The only thing I know for sure that is different is that I took Schorg's advice and added write access to c:\users\username\appdata\local\temp
     
  20. Schorg

    Schorg Guest

    You certainly had no issue with security software conflicts,

    I agree with @Rasheed187, good advice.

    You too :)
     
  21. Schorg

    Schorg Guest

    Good to hear;), just trail and error with tweaking of the rules.
     
  22. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,998
    Location:
    Location Unknown
    The thing is, the logging capabilities really suck! There's very little info to determine what is causing any error, or blocking a connection. I still get the spooler error with restricted apps, so I need to test and see if everything really is working.
     
  23. Schorg

    Schorg Guest

    I certainly agree logging of events could be improved upon, I get write access for spooler in file access violations, but I have not yet had any problems printing.

    Definitely recommend checking to see everything working ok.
     
  24. Schorg

    Schorg Guest

    I forgot to mention that because you have reinstalled SpyShelter Firewall you will have the default special folders in "Folders with write access" ie [Local App Data] - which includes subfolders, so you can remove the manually added write access to c:\users\username\appdata\local\temp (which is already covered).
     
  25. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,974
    Location:
    Poland - Cracow
    The old adage of Indians says - if you don't know what to do...just read the manual :shifty:
    I can't understand why it sometime happen that people complain instead of ask question.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.