1. The full product and its version:
COMODO Internet Security 7.0.312140.4101 RC
2. Your Operating System (32 or 64 bit) and ServicePack revision. and if using a virtual machine, which one:
Windows 8.1 64-bit | Real system, i.e no virtual machine.
3. List all the configuration changes you did. Are you using Default configuration? If no, whats the difference?:
Too many changes, will attach a configuration file.
4. Did you install over a previous version without uninstalling first, or import a previous configuration file?:
Updated using the internal updater in CIS 7.0.308911.4080 BETA which carried over the configuration file and had it enabled by default.
5. Other Security, Sandboxing or Utility Software Installed:
Zemana AntiLogger Free
6. Step by step description to reproduce the issue. Or if you cannot reproduce it, what you actually did before it happened, step by step:
[ol]- Set up a folder with a file in the Protected Data Folders.
Open a program in FV and try to read the file (It will fail)
Open the same program in Partially Limited and try to read the file (It will be able to read the file)
Open the same program in Partially Limited and try to edit the file (It will be able to edit the file)[/ol]
7. What actually happened when you carried out these steps:
The general actions were not allowed in FV sandbox but were allowed in PL sandbox.
8. What you expected to see or happen when you carried out these steps, and why (if not obvious):
Protected Data Folders should be active for all different levels of sandboxing.
Thank you very much for your report in standard format, with all information supplied. The care you have taken is much appreciated by Comodo, and will increase the likelihood that this bug can be fixed.
Developers may or may not communicate with you in the forum or by PM/IM, depending on time availability and need. Because you have supplied complete information they may be able to replicate and fix the bug without doing so.
I uninstalled CIS 7 RC following Chiron’s guide, I then installed the latest version 7.0.313494.4115 and then imported my config that I had during the RC and BETA and I’m still having this issue, so either I’m thinking it might be an issue with my config file… Mousie, if possible, could you try it with my configuration I supplied in the first post?
As this was not fixed during the Beta testing period I will move this bug report to the main Bug Reporting Board.
Please check and see if this is fixed with the newest version (7.0.313494.4115)? Please let us know whether it is fixed or you are still experiencing the problem.
Now application sandboxed as Partially Limited is NOT allowed to MODIFY an EXISTING file in a PDF (Protected Data Folder). - Expected behavior.
However application sandboxed as Partially Limited IS ALLOWED to CREATE a NEW file in a PDF. - Not Expected Behavior (Expected is not allowed to create or modify files in a PDF at all)
And application sandboxed as Partially Limited IS ALLOWED to READ files in a PDF. Not Expected Behavior (Expected behavior is not allowed to read files in a PDF at all)
What do you mean when you say that an “application sandboxed as Partially Limited IS ALLOWED to CREATE a NEW file in a PDF”? What does it mean to create a new file inside a PDF file?
Also, about how an “application sandboxed as Partially Limited IS ALLOWED to READ files in a PDF”, what do you mean by reading files within a PDF file? What does it mean when you say it can read files inside another file?
I think I’m confused about the wording. Can you please clarify?
PDF as in Protected Data Folder so “[…] CREATE a NEW file in a PDF” is “[…] CREATE a NEW file in a Protected Data Folder” (Same for the other examples)
Any partial fix I mentioned for this bug seems to have been nullified in the latest version, it’s back to the original behavior I reported in the start of this topic. I’m thinking that something might have gone wrong in my earlier testing because I can now edit pre-existing files in a Protected Data Folder from an application that is run as Partially Limited.
