Zone Alarm Pro settings

Discussion in 'ProcessGuard' started by tech-addict, Feb 10, 2004.

Thread Status:
Not open for further replies.
  1. tech-addict

    tech-addict Registered Member

    Joined:
    Dec 21, 2003
    Posts:
    71
    I have ZA Pro installed and was wondering if any allow options need to be enabled for it ? I haven't had any problems or seen any logging but.....
    I don't want to unknowingly block it from doing something it needs to do when I'm not around.

    Here are my current settings for ZA:

    ---030-----------------------------------------------
    Long Path :- c:\program files\zone labs\zonealarm\zlclient.exe
    Short Path :- c:\progra~1\zonela~1\zoneal~1\zlclient.exe
    Blocked Flags :- Write,Terminate,Suspend,SetInfo
    Allow Flags :- None
    Option Flags :- None


    ---031-----------------------------------------------
    Long Path :- c:\program files\zone labs\zonealarm\zonealarm.exe
    Short Path :- c:\progra~1\zonela~1\zoneal~1\zoneal~1.exe
    Blocked Flags :- Write,Terminate,Suspend,SetInfo
    Allow Flags :- None
    Option Flags :- None

    Thanks
    ;)
     
  2. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    17,042
    Hi Protek

    The most important zone alarm file is the true vector service. This is vsmon.exe. Assuming you are running win xp this file should be in c:\windows\system32\zonelabs\

    Standard protection like you gave the other zone alarm files should be fine.
     
  3. Disciple

    Disciple Registered Member

    Joined:
    Nov 14, 2002
    Posts:
    292
    Location:
    Ellijay, Georgia - USA
    What Peter2150 said.

    Also you can remove this entry in PG, c:\program files\zone labs\zonealarm\zonealarm.exe, as it is not really used any more. The zlclient.exe took over its duties, and is now loaded from the registry.
     
  4. tech-addict

    tech-addict Registered Member

    Joined:
    Dec 21, 2003
    Posts:
    71
    Thanks for the info, I have it protected now. :D

    I never looked in the repair folder before
    but that's where I found another one. :eek:
    c:\program files\zone labs\zonealarm\repair\vsmon.exe

    Thanks again !
    ;)
     
  5. Disciple

    Disciple Registered Member

    Joined:
    Nov 14, 2002
    Posts:
    292
    Location:
    Ellijay, Georgia - USA
    The c:\program files\zone labs\zonealarm\repair\vsmon.exe entry is not the vsmon.exe that you need to be concerned with, the correct location is c:\ [windows directory]\system32\zonelabs. However many have pointed out that ZA protects this file, if it is stopped ZA gives you a dialog box asking if you want to re-start it and the option to do so. note: sometimes you will have to reboot if vsmon is stopped. for this reason I have included the 2 ZA items. A side benefit of including vsmon.exe is you do not get any error entries for it, pertaining to the 2 database files.
     
  6. tech-addict

    tech-addict Registered Member

    Joined:
    Dec 21, 2003
    Posts:
    71
    Ok thanks for the replies, the info is much appreciated :)

    Here is my current protection for ZA and all seems fine (no logging)

    ---030-----------------------------------------------
    Long Path :- c:\program files\zone labs\zonealarm\zlclient.exe
    Short Path :- c:\progra~1\zonela~1\zoneal~1\zlclient.exe
    Blocked Flags :- Write,Terminate,Suspend,SetInfo
    Allow Flags :- None
    Option Flags :- None


    ---031-----------------------------------------------
    Long Path :- c:\program files\zone labs\zonealarm\zonealarm.exe
    Short Path :- c:\progra~1\zonela~1\zoneal~1\zoneal~1.exe
    Blocked Flags :- Write,Terminate,Suspend,SetInfo
    Allow Flags :- None
    Option Flags :- None


    ---032-----------------------------------------------
    Long Path :- c:\windows\system32\zonelabs\vsmon.exe
    Short Path :- c:\windows\system32\zonelabs\vsmon.exe
    Blocked Flags :- Write,Terminate,Suspend,SetInfo
    Allow Flags :- None
    Option Flags :- None

    Thanks again.
    ;)
     
Thread Status:
Not open for further replies.