Discussion in 'sandboxing & virtualization' started by Cutting_Edgetech, Feb 14, 2011.
Something about stored password in windows I think.
Yes, user credentials are saved in this registry entry.
Usernames, Groups, Passwords,...
SAM is where your OS store its passwords
So far so good with 629
That's good to know Peter.
Here is a private message conversation between me, Stapp and Tony.
Stapp has said OK it to post on the open forum
Reads from bottom to top
Of course you can post it Tony, it may help someone.
However I may not disable Windows Fast/Hybrid Startup at the moment and I am beta testing an AV software on which I report the effects of what happens at boot depending on which shutdown method you use on Win 10
The alternative for me is just to select reboot/restart and then shutdown.
So it must be made clear to Win 10 users that in order to come out of Shadow Mode they must either disable Fast Startup, or do a Restart.
Thanks Patrick for contacting Tony.
Hi Stapp, Here is the reply from Tony. Would it be ok with you if I post it to the main forum then other members can see it?
Please disable Windows Fast/Hybrid Startup,
Otherwise system will take hibernation instead of shutdown. Thanks.
On 2016-05-04 23:21 , Patrick Wrote:
A Wilders member asked me a question
sdmod, stapp replied to your conversation at Wilders Security Forums:
"Registering Shadow Defender"
This is the message they posted:
Patrick, has Tony mentioned any specific way of coming out of Shadow Mode when using Win 10?
If you select 'exit shadow mode on shutdown' and then do a Win 10 shutdown from power options, you are still shadowed next time you boot.
Only a restart (equivalent to old cold boot) gets you out of Shadow Mode)
Microsoft's fault for changing things I know, but I just wondered if Tony had any views on this?
I've just installed .629 on Win 8, rebooted without any problems, it works well...
What is the longest amount of time you should leave your system in shadow mode?
until you run out of space or need to reboot
@guest Seriously, what's the longest time you have left shadow mode enabled? For example, say an internet cafe uses SD or similar place like a school etc... I would guess reboot maybe weekly?
.629 works well on Vista (32 bit) as well. I think to remain too long in Shadow mode after doing financial transactions (credit card purchases, banking online) would be a security risk as identity theft or other untoward actions could happen silently if undetected. I usually reboot the system as soon as the transaction is done, just to minimize any risk...
i was working in a internet shop and we reboot every morning. personally no way i let it more than few hours.
If we are talking about one session it depends on your needs - how long you need/have to work in SM. But in SD we can enable entering to SM in every next boot so in this case such state can last few weeks...months...just to this time in which you decide to change something in system.
Like my example in previous post...if it's a public pc that needs to stay on, how long can the session last before SD need to be refreshed?
as is said , until you run out of HDD space.
I remember when I was first coming in to contact with computers at a local University in the mid 90s that they used to reset their computers every morning. Without fail, a number of the machines would be 'wrecked' and made unuseable during a working day by the students, some with ill intent and trying to mess things up or hack into things,and some just inexperienced.
Similarly with Shadow Defender in Shadow Mode, if you were to leave a number of computers in Shadow Mode in a school or similar situation then students would make those pcs unusable in that mode, where the next user would require a re-boot to get to a good session.
If the pc users can reboot those pcs and get a nice clean start then that is ok but (in my university scenario) students would often have to wait until the next morning for those pcs to be useable again or wait for a sysop to notice.
Another thing to consider is what malicious or revealing web transactions users might make on those pcs. Shadow Mode doesn't prevent users from making a web connection and inadvertantly revealing details about their passwords for something or other or downloading and dropping a keylogger into that session...and if that information is on the pc for some reason during a session, maybe it's better that the next user starts with a fresh session of his/her own.
Just some thoughts
@sdmod Makes alot of sense
Big +1 to SD...
Today I faced a drama due to overly-hardened Firefox settings; couldn't get something to work. I resorted to defeat initially, entered Shadow Mode and started to see if I would/could/wanted to like Chrome or Iron. Apart from the initial reaction "wth, everything is so quick!?", I decided to track down the offending setting, and I did.
Thanks SD, for allowing me to return to normal after reboot, and after figuring out wth I did.
I had to roll back to .623 from the latest .629... with the latest release, I was locked out of Safe Mode via F8. I even tried the msconfig approach to get into Safe Mode, along with bcdedit via command line, to no avail. After going back to .623, all was well. An image restore with .629 installed on it showed same behaviour, while an image restore with .623 on it gave me access to Safe Mode.
Can others on W7 HP x64, running .629 try and get into Safe Mode via F8 at bootup?
Any incompatibilities with Webroot SecureAnywhere Internet Security Plus and Shadow Defender?
Recently, a message appears saying that the Shadow Defender is committing changes, why is this happening?
I do not know if it happens to you, but here sometimes it loses the configuration that requires password to access the program.
Could you please put a bit more detail into your post about the problem
Sometimes I am using my computer normally, and there appears a notification of Shadow Defender through a windows pop up on the bottom right of the screen (above the clock) saying "Shadow Defender is committing changes" after a few seconds: "Changes successfully commited".
As for the problem of password, it happened twice in three months or so it just forget that I set any password to open it.
Which version of Shadow Defender are you using?
Which operating system are you using?
Is the message popup just happening automatically without you doing anything?
Separate names with a comma.