Vsmon.exeZoneAlarm settings

Hi, I went through the learning mode after installing PG 3 and today when I started my comp, PG blocked Vsmon installing drivers and services. What options should I have enabled or disabled for Vsmon. Right now it is set to modify and read (both checked), protect from termination and modification (both checked). I just checked allow install drivers and services. Everything else is unchecked.

Thanks

 

In addition to Peter's advice,

Did you reboot after ticking "Install drivers/services"?

Pilli

 

Yep I did the second reboot with learning mode. I did also reboot after checking allow install drivers and services.

Thanks

 

OK scootnod, Then I'll have to ask ZA users to disclose their settings in ProcessGuard for all of the ZA files that PG needs to protect.

Any offers?

Thanks. Pilli

 

Well I haven't received as alerts since I check allow installation of drivers and services.

 

That's good, hopefully all will be well now. Any further problems please ask

Cheers. Pilli

 

We have tried with ZA home user products: ZAP 4.x/5.x & ZASS 5.x
On our boxes with PG3.100 full ver. installed, these Protection settings are fine for it working well:

[vsmon.exe]
BLOCK : { Read + Modification + Termination }
ALLOW : { Read + Modification }

[zclient.exe]
BLOCK : { Read + Modification + Termination }
ALLOW : { Read }
Others : { SMH }

Well, I also try to say something else. After checked out the DCS website for db specified settings for popular executes, we removed all allowance settings from pgaccount.exe and "read" from proguard.exe, the box got problem after a reboot with error msg "pgaccount.exe could not load and can not process execute requests..."; after gave them back "read" right, no problem so far.

 

[correct]
Regard with the PG settings for pgaccount.exe/proguard.exe which needed "read" privilege because others have been protected from "reading".