What is AppGuard

Trying out AppGuard, one problem is Firefox won't open when sandboxed, I get this message.

 

This looks like a message one would get when Firefox had not completely shutdown from the last session which would leave the parent.lock file in the profile folder. Try killing the Firefox process with TaskManager and try again.

 

Hi,

There is an incompatibility using sandboxie and appguard together with their default setting in the past. But i dono if it still exist as i am not using sandboxie now. However, you juz need to set the container of sandboxie to D: drive or other drive u have instead of C: drive and u can use their together.

 

i remember this isue

 

Haha but not many people know about it.


Maybe Eirik should make a note of this issue at appguard support page here.

 

yeap

 

That was the first thing I tried to do, it was not running in the Task Manager.

 

Anyone running Appguard with Mamutu? I noticed some sluggishness and had a few 7F bluescreens as well. I've switched back to EdgeGuard Solo and everything is back to normal.

 

Hi there,

[love your alias, btw]

As I understand it, AppGuard and Sandboxie get along on the same host. However, I believe the definition of the sandbox container from Sandboxie and the AppGuard protections is where they can interere with one another. The answer is to define within Sandboxie the sandbox container to some drive and/or directory (e.g., D:new_software_quarantine_zone), and in AppGuard to customize extended drive-by download protection such that AppGuard ignores this same drive/directory space. As I understand it, this was how folk have done it. One more thing, do NOT place SandBoxie on the AppGuard 'guard list'.

There's a new feature in next week's release that provides a little more AppGuard customization, though I've never heard it necessary for Sandboxie co-existence. The added flexibility allows users to specify exceptions that applies to all guarded applications. For example, if one keeps their email for Outlook in a root level directory on the system drive, Outlook under guard cannot normally write there. This feature enables one to make that directory an exception. Note, it also allows all other guarded apps to write there too. Again, I don't know as this feature is needed for Sandboxie.

Cheers,

Eirik

 

i did before and it was all ok but it was xp2

 

Sure. I'd like to do more than just Sandboxie, though.

First, if Rabiddog will confirm the recommended prescription solves his problem, I'll document it.

Second, if there are other applications that can and should co-exist with AppGuard, but require tweaking in either, please help me identify examples and remedies.

Cheers,

Eirik

 

it is all good Eirik,at least here in my end appguard is trouble free always

 

I hadn't heard of any problems with Mamutu until this post. I'll keep an eye out for further reports. Meanwhile, some additional info might be useful:

- a miniDump file would give us something to look at

- operating system and service pack; presence of other security apps (an msinfo file summarizes things well)

- Windows Event Log (AppGuard and any other relevant logs, such as from Mamuto, if exist)

Espresso, I tend not to keep such things for long myself. So, odds are you don't have much of the above. But, it doesn't hurt to ask. Thanks for bringing this issue to our attention.

BTW, Zemana reports an incompatibility with AppGuard. Zemana and AppGuard seem to have very few customers in common. So, we have no immediately plans to investigate and remediate this.

Cheers,

Eirik

 

Have not googled, but is APG Kompatibel med Windows 7 64 bit?

U sent me a fully func APG .exe for testing (Afew months ago)

What is your STATUS ?

enjoy yourself ;-)

 

Eric I could never find edgeguard .exe, on the web page there is everything except that .



thanks

 

AppGuard 1.2.7.3

Windows 2008 Server Standard SP2

Antivir Professional is installed but real time guard is disabled (drivers as well).

I could only see one Event log error for Appguard (Event 7030):

"The Blue Ridge AppGuard Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly."

Two minidumps here:

Code:

http://www.fileden.com/files/2008/9/20/2106747/Minidump.rar

 

No. I don't have a schedule for that yet.

How'd it go?

Unchanged/good. But, I may not understand your question.

 

I see your point. I wasn't aware it had become so hard to find. I'll correct that next week. Here's the EdgeGuard Solo link

 

Assuming this isn't a typo, this would appear to be the root cause. AppGuard does not support Windows Server 2003/8.

I'm afraid we won't do so in 2009 and I cannot promise that for 2010.

I believe the AppGuard framework would readily adapt to the server OS's. With all the SQL injection attacks afoot, I cannot help but wonder how AppGuard privacy mode might deliver value. And, if we could develop a more contextually aware enhancement, this could better apply 'privacy mode' to different SQL tables. Well, there I go again, as our engineers might say.

I do want to support the Server OS's, but resource constraints and all...

Cheers,

Eirik

 

BTW, I'll send this info to our chief software architect. He may find some interesting nuggets in the data.

 

Thanks Eric.

 

Hi All,

We've released AppGuard version 1.3 today.

The most significant point of this release is 'official' support for Windows 7. Those of you using the limited release can upgrade to 1.3.

A few other tweaks include:

Guarded Applications Exception Folders
The user may specify exception folders that Guarded Applications may write to. For example you may want your browser to be able to download files to c:\downloads directory. Previous versions of AppGuard did not allow this.

User Interface Tweaks

• Protection Status is now summarized on the status tab.
• Blocking events are now highlighted in red.
• The definition of Private Folders has been moved to the Guarded Applications tab.
• A single timeout value now controls the time period for all protection suspensions.

The various download portals will take awhile to grab the new install file for version 1.3. Meanwhile, folk can get it here:

AppGuard Version 1.3

BTW, MBRguard is still a separate install.

As requested, I added a new link for EdgeGuard Solo. This is also found on the main support page for all products.

Well, I've gotta run. I'll be online later tonight if you have any questions.

Cheers,

Eirik

 

so once u install appguard, u install MBRguard and it works like an add-on to appguard or its a separate running program?

 

Separate running program. From the MBRguard support page:

Stand-Alone Applet

MBRguard is available as a stand-alone protection so that it may be exposed to diverse computing environments prior to its integration into AppGuard, AppGuard Enterprise, EdgeGuard, and Managed EdgeGuard”. It has been in field testing since July 2009 with no reports of adverse conflicts. However, conflicts are still possible and users, particularly with numerous security software products on the same PC, ought to exercise typical back-up/restore precautions. The point and click installation automatically generates a system restore.

The minimalist approach of this applet provides highly effective protection against the MBR write operations of KillDisk, Mebroot, and numerous other malware attacks, some of which implant highly sophisticated Rootkit technology that evades conventional detection, some are practically undetectable. MBRguard simply blocks without prompting end-users. There is no GUI and it provides no alerts, these will be accommodated when integrated with our endpoint security products.​

 

ok thx for the info