Hi,
We will check. Also on Monday we will enable that you can update from last production version to this beta version.
Thanks
-umesh
Unblock a blocked application from respective blocked component doesn’t work property.
Configuration:
Proactive Security, HIPS - Safe Mode.
After running unrecognized app, blocked list shows both apps, i.e. parent app too. It’s a bug.
After unblocking app, blocked by HIPS, only creating a rule in HIPS rules, similar to “Allowed”. It’s a bug.
Created rule doesn’t solve nothing, because app rating is not changed. On described configuration no needs of any rule, add app to Trusted list only.
After unblocking parent app, blocked by HIPS, also creating a rule in HIPS rules, similar to “Allowed”. It’s a big bug.
Parent app, in described configuration, already has rating “Trusted”, it doesn’t need any rule.
Is not updated
Yes, please wait till Monday when you can use Beta server setting to update previous version to this Beta version.
Good :-TU
The unblock applications task is designed to a simple and quick way to get applications to work when they get blocked by CIS. Any specific way of creating rules or choice of rule being created should be done manually in the respect rules section of that component. In other words K.I.S.S. Take for example an application blocked by the firewall, when you choose unblock it for that component only, it creates an application rule that equates to the “allowed application” preset. If you want to only unblock outgoing requests then you should create/edit the rule for the app manually.
<ProblemSignatures>
<EventType>APPCRASH</EventType>
<Parameter0>igfxCUIService.exe</Parameter0>
<Parameter1>6.15.10.4425</Parameter1>
<Parameter2>5702a874</Parameter2>
<Parameter3>guard64.dll</Parameter3>
<Parameter4>10.0.2.6346</Parameter4>
<Parameter5>59cd1c6e</Parameter5>
<Parameter6>c0000005</Parameter6>
<Parameter7>0000000000040dab</Parameter7>
</ProblemSignatures>
<DynamicSignatures>
<Parameter1>6.1.7601.2.1.0.256.4</Parameter1>
<Parameter2>1031</Parameter2>
<Parameter22>35e5</Parameter22>
<Parameter23>35e550717053fcab5c51574fd0c4678c</Parameter23>
<Parameter24>f21d</Parameter24>
<Parameter25>f21d30a019ece67ea70c3494abbe8c70</Parameter25>
</DynamicSignatures>
Don’t mix work of different modules. Created rule for Firewall module will work but similar rule for HIPS - don’t.
Known issue, you can add igfxCUIService.exe to shellcode injections exclusions. to prevent crashing.
After a Win10 reset and ‘tidy up’, everything installed correctly; CIS, CSS & ISE along with KillSwitch
CSS works well and the Logitech SetPoint bug has now gone. Everything looking good . . .
Many thanks
Detect shell code injections is disabled.
Went back to v10.0.1.6294 and working well again.
Windows 10 Pro x86 17004.1000 :-TU
Heuristic command-line analysis doesn’t control rating of AutoIt-interpreter yet.
At Windows 10 Pro 17004.1000 the PC hangs. I returned a stable 1703, I’ll see.
new recognizers are not installed in this beta.
Will this beta receive updates, and eventually receive the stable version?
Or does it require an reinstall?
I don’t see the warning about no binary updates, which accompanied some previous betas.
Can we have the sandbox popup notification before the app is sanboxed? What is the point to do it later? You have to close the sanboxed app and run it again to work properly, and if it’s a malware you will allow it next time so you get infected anyway.
I don’t understand why do you try so hard to destroy the usability.
+1
That is basically “Ask” option rather auto-sandbox, it’s considered feature for next release.
Thanks for the answer, I will wait for the next release. I guess it will be in November with the next monthly release cycle