Author Topic: Auto sandbox bat file of cis  (Read 4143 times)

Offline Ploget

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 1076
  • 'Your best teacher, is your last mistake'
    • CIS Help
Re: Auto sandbox bat file of cis
« Reply #30 on: July 12, 2019, 07:34:24 AM »
Advanced Settings > Miscellaneous
I seem to be getting this same problem again with "Application Contained: CMD has been blocked" but I can't find the setting for this in CIS v12.

Can somebody direct me to where this setting is now?
It was originally "Embedded Code Injection" but it no longer seems to exist, even though I have the same hiccup with it.
Ploget
Win10x64 Pro 1909 (18363.592) systems  /  CIS v.12.2.1.6950 Beta
Comodo Forum Policy / CIS Help

Offline Varan-de-C0m0d0

  • Newbie
  • *
  • Posts: 11
Re: Auto sandbox bat file of cis
« Reply #31 on: July 12, 2019, 07:46:21 AM »
Thank you Ploget,

I chose to put Sticky Password in the list of exceptions, but that does not change anything...  :-\

Offline futuretech

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 4526
Re: Auto sandbox bat file of cis
« Reply #32 on: July 12, 2019, 10:18:06 AM »
I seem to be getting this same problem again with "Application Contained: CMD has been blocked" but I can't find the setting for this in CIS v12.

Can somebody direct me to where this setting is now?
It was originally "Embedded Code Injection" but it no longer seems to exist, even though I have the same hiccup with it.
Nothing to do with script analysis/embedded code detection, it is caused by the new auto-containment rule to block files belonging to a file group when they are launched by web browsers.

Offline MatrixShield

  • Newbie
  • *
  • Posts: 22
Re: Auto sandbox bat file of cis
« Reply #33 on: July 12, 2019, 10:40:22 AM »
I see.  It was the embedded code injection that was causing the alert before and preventing the addon from working in my browser previously.  I had to disable it in order for it to work.
That same issue has started again with v12 and only just recently (I have primarily been using FireFox for a long time and just been using the other Chromium based browsers for things I need, hence me running into this again.

In the interest of maintaining security, how would I go about preventing this with v12?
Do I just need to select "Do not isolate again" in the prompt?

Offline Varan-de-C0m0d0

  • Newbie
  • *
  • Posts: 11
Re: Auto sandbox bat file of cis
« Reply #34 on: July 12, 2019, 11:26:37 AM »
Personally, I select "Do not isolate" in the prompt, but at each reboot, it's the same problem ....
In addition, it's the same problem with all installed browsers ... Chrome, Chromium, Firefox, Drago, and Ice Dragon ...
I contacted the support of "Sticky Password" which generates the error, but no change ... Neither on their side, nor on the side of Comodo ...

Offline MatrixShield

  • Newbie
  • *
  • Posts: 22
Re: Auto sandbox bat file of cis
« Reply #35 on: September 15, 2019, 09:22:28 PM »
It's been a couple of months now and there has been no response or fixes to prevent this from being an issue.

Can anybody provide any insight or guidance as to how to prevent this problem from being a problem?

As stated I had fixed this previously but following the update the problem has returned, seemingly due to a different cause even though the behavior and result is the same.  Any help here?

Offline MatrixShield

  • Newbie
  • *
  • Posts: 22
Re: Auto sandbox bat file of cis
« Reply #36 on: October 20, 2019, 04:58:42 PM »
After finally getting a chance to have a mess around and test, the Auto-Containment of Pseudo File Downloaders File Group started by Web Browsers File Group (as was stated by [at]futuretech) is the culprit.

Disabling this rule (found at the bottom of the Auto-Containment section which is set to block by default) makes this problem vanish.

However, what would be the risks imposed by disabling this rule?
Is there a way to keep this rule enabled but with an exception for this extension?

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek