Hello fellow users and testers.
Of course we are all used to Sandboxie because it is older and widely used, but don't make the mistake believing ReHIPS will work like Sandboxie.
ReHIPS is indeed a sandboxing application with an HIPS on top, so don't expect to run an application isolated by both ReHIPS and Sandboxie.
Don't misunderstand the HIPS denomination in ReHIPS, here it is used as the broad general term not as the feature (like the one in Comodo or others), in ReHIPS it is more an Application Control.
Be aware that ReHIPS isn't Sandboxie, however if some of the principles of ReHIPS and Sandboxie may be close or similar, they work differently.
1- ReHIPS and Sandboxie uses low-box token but each implemented it differently; Sandboxie does use hooks while ReHIPS doesnt.
2- Sandboxie uses a common isolating container (C:\Sandbox) for all users and applications, all isolation is shown on real desktop (via the colored border); ReHIPS isolate via "users profiles" materialized by Virtual Desktops accessible from the widget (browsers are however ran in real desktops).
3- ReHIPS allow you to creates rules on the fly via its HIPS hence allows you to allow/block/isolate processes/programs; Sandboxie just isolate, it doesn't allow/block programs on the fly (however it can be made to block processes via the settings).
4- Sandboxie allows quick recovery of sandboxed files to the real system; ReHIPS doesn't because recovering isolated files too easily is a security risk, the devs want to avoid that.
5- For the moment, unlike Sandboxie, ReHIPS doesn't isolate folders, but i expect this to be implemented in the future.
6- For the moment ReHIPS doesn't autodelete items in isolated environment (you have to manually delete the IE) but it is on the todo list.
There is other differences but those mentioned above are the basics to differentiate both programs.
Quote from: umbrapolaris on June 14, 2016, 08:25:47 AM
ReHIPS is indeed a sandboxing application with an HIPS on top
What does HIPS stand for?
Quote from: umbrapolaris on June 14, 2016, 08:25:47 AM
6- For the moment ReHIPS doesn't autodelete items in isolated environment, but it is on the to do list.
What happens to those items? Is there a need to delete those items them manually? If not,
then why not?
Thank you for your post.
Quote from: Mr Cryptor on June 15, 2016, 04:17:17 PM
Quote from: umbrapolaris on June 14, 2016, 08:25:47 AM
ReHIPS is indeed a sandboxing application with an HIPS on top
What does HIPS stand for?
Quote from: umbrapolaris on June 14, 2016, 08:25:47 AM
6- For the moment ReHIPS doesn't autodelete items in isolated environment, but it is on the to do list.
What happens to those items? Is there a need to delete those items them manually? If not,
then why not?
Thank you for your post.
Host Intrusion Prevention System = HIPS
Nothing happens to those items. They stay in rehips profile until you delete them.
Quote from: aDVll on June 15, 2016, 04:31:35 PM
Nothing happens to those items. They stay in rehips profile until you delete them.
How can I go about deleting them?
Quote from: Mr Cryptor on June 15, 2016, 04:40:39 PM
Quote from: aDVll on June 15, 2016, 04:31:35 PM
Nothing happens to those items. They stay in rehips profile until you delete them.
How can I go about deleting them?
Easier is to delete the whole application group in rehips profile and then reinstall the rules assuming it's not rules you have to recreate manually. You can also browse to the rehips profile and delete them.
Quote from: umbrapolaris on June 14, 2016, 08:25:47 AM
Hello fellow users and testers.
Hi there umbrapolaris.
Quote from: umbrapolaris on June 14, 2016, 08:25:47 AM
ReHIPS is indeed a sandboxing application with an HIPS on top, so don't expect to run an application isolated by both ReHIPS and Sandboxie.
Does this mean:
'Decide which of the two you want to deploy with Firefox? Cause ReHIPS won't let you
use SBIE again once it deploys with Firefox?'
I noticed that when I tried to sandbox Firefox with SBIE it wouldn't work, since
installing and deploying ReHIPS for Firefox. It seems ReHIPS preference here.
Actually I prefer to not to use ReHIPS with Firefox but rather use ReHIPS for another browser
on the same machine. How do I going about allowing solely SBIE to take care of Firefox and ReHIPS take care of other browser?
I need to do this ASAP. Should I start a new thread for this?
Already told you how to run Firefox in sandboxie and stop it from being isolated by rehips. You need to read all the replies you got in the topics you made because you are asking the same thing again and again.
https://forum.re-crypt.com/index.php?topic=2427.msg4555#msg4555 (https://forum.re-crypt.com/index.php?topic=2427.msg4555#msg4555)
Quote from: aDVll on June 15, 2016, 04:43:58 PM
Easier is to delete the whole application group in rehips profile
ReHIPS profile in C drive\User\ Programs?
Quote from: aDVll on June 15, 2016, 04:43:58 PM
and then reinstall the rules assuming it's not rules you have to recreate manually.
From within the ReHIPS Control Panel? Where exactly is that done?
Quote from: aDVll on June 15, 2016, 04:43:58 PM
You can also browse to the rehips profile and delete them.
By profile you mean ReHIPS Control Panel?
Quote from: Mr Cryptor on June 15, 2016, 05:07:18 PM
Quote from: aDVll on June 15, 2016, 04:43:58 PM
Easier is to delete the whole application group in rehips profile
ReHIPS profile in C drive\User\ Programs?
From rehips gui.
Quote from: aDVll on June 15, 2016, 04:43:58 PM
and then reinstall the rules assuming it's not rules you have to recreate manually.
From within the ReHIPS Control Panel? Where exactly is that done?
On the main page of rehips gui it has a install rules button to the left
Quote from: aDVll on June 15, 2016, 04:43:58 PM
You can also browse to the rehips profile and delete them.
By profile you mean ReHIPS Control Panel?
No i mean C:\Users\ReHIPSUserNumber
Each isolated environment has a ReHIPS user associated with it. Each ReHIPS user is a standard Windows user with its own user profile folder in C:\Users\ReHIPSUser<X>. When you delete isolated environment (in Settings, Programs tab) its ReHIPS user is also deleted with its user profile folder (if it's enabled in Settings-Protection tab-Remove Isolated Environment, by default enabled).
You can Install rules by clicking button of the same name on the main ReHIPS Control Center window.
Quote from: fixer on June 15, 2016, 08:13:10 PM
When you delete isolated environment (in Settings, Programs tab) its ReHIPS user is also deleted with its user profile folder
Once deleted its never retrievable regardless which method you use to attempt retrieve?
Quote from: Mr Cryptor on June 16, 2016, 05:15:36 AM
Quote from: fixer on June 15, 2016, 08:13:10 PM
When you delete isolated environment (in Settings, Programs tab) its ReHIPS user is also deleted with its user profile folder
Once deleted its never retrievable regardless which method you use to attempt retrieve?
which methods? when you delete the IE , all related stuff are also deleted, (the rules, the user and its profile)
QuoteREHIPS is not Sandboxie, and will not be.
Pretty obvious and I agree looking the underlying mechanisms they both use. But I don't agree ReHIPS can't mimic or copy to bring some useful features and incorporate to ReHIPS, so it could work in a similar way to Sandboxie.
My sole reason to trial ReHIPS:
ReHIPS utilizes Windows built-in mechanisms only, no hooks. Therefore I visualized it as a good alternative to use on Windows 10 to get stabilization and less conflicts for sandboxed processes, therefore a good replacement for Sandboxie. Everyone knows Sandboxie is having hard times on Windows 10.
But, again, I want ReHIPS to bring neat and well tested Sandboxie's functionalities, if possible of course.
Quote from: Mr.X on June 16, 2016, 06:58:02 PM
QuoteREHIPS is not Sandboxie, and will not be.
ReHIPS utilizes Windows built-in mechanisms only, no hooks. Therefore I visualized it as a good alternative to use on Windows 10 to get stabilization and less conflicts for sandboxed processes, therefore a good replacement for Sandboxie. Everyone knows Sandboxie is having hard times on Windows 10.
yes especially with the continuous fixes.
QuoteBut, again, I want ReHIPS to bring neat and well tested Sandboxie's functionalities, if possible of course.
From the very beginning, we have suggested features that a decent sandbox should have , some of them are similar to Sandboxie's ones.
My point is that some users shouldn't use sandboxie as a basis to use ReHIPS. it is not because Sandboxie behave in a certain way that ReHIPS should behave similarly.
Quote from: Mr Cryptor on June 16, 2016, 05:15:36 AM
Once deleted its never retrievable regardless which method you use to attempt retrieve?
These files are deleted in usual manner like any other files/folders. You can try to restore them with some special software, like I accidentally deleted my files and want them back.
Quote from: umbrapolaris on June 16, 2016, 05:36:54 AM
Quote from: Mr Cryptor on June 16, 2016, 05:15:36 AM
Once deleted its never retrievable regardless which method you use to attempt retrieve?
which methods?
Data recovery methods.
Quote from: Mr.X on June 16, 2016, 06:58:02 PM
My sole reason to trial ReHIPS:
ReHIPS utilizes Windows built-in mechanisms only, no hooks.
Hooks are bad because?
Quote from: umbrapolaris on June 16, 2016, 08:03:50 PM
yes especially with the continues fixes.
You mean SBIE continual fixes for Windows 10?
Quote from: fixer on June 16, 2016, 08:58:59 PM
These files are deleted in usual manner like any other files/folders. You can try to restore them with some special software, like I accidentally deleted my files and want them back.
There's no way to make browser activity un-retrievable under ReHIPS environment?
Quote from: Mr Cryptor on June 17, 2016, 08:30:23 AM
Quote from: Mr.X on June 16, 2016, 06:58:02 PM
My sole reason to trial ReHIPS:
ReHIPS utilizes Windows built-in mechanisms only, no hooks.
Hooks are bad because?
Because it weaken the kernel which reduce its security, and then may create BSODs and other issues.
QuoteYou mean SBIE continual fixes for Windows 10?
Yes, too many fixes then updates needed for everything. Sandboxie is a very good product , but the way they implement their isolation need permanent fixes.
Quote from: Mr Cryptor on June 17, 2016, 08:43:51 AM
There's no way to make browser activity un-retrievable under ReHIPS environment?
Most browsers support private/incognito/whatever-else-they-call-it mode that doesn't save any cookies, visited sites history, etc. But it's out of ReHIPS scope.
Quote from: umbrapolaris on June 17, 2016, 09:25:43 AM
but the way they implement their isolation need permanent fixes.
Permanent and much more often fixes since Windows 10 release. Worst part is some fixes take a long time to see the light of the day.
But to be honest, for my tastes, I prefer Sandboxie functionality without doubt.
I read every post again. Would it be correct to say Rehips is virtualizing the whole desktop whereas SBIE isn't?
Quote from: Mr Cryptor on November 25, 2016, 05:28:46 PM
I read every post again. Would it be correct to say Rehips is virtualizing the whole desktop whereas SBIE isn't?
Rehips virtualizes every action of the applications you setup to run isolated.
Quote from: Mr Cryptor on November 25, 2016, 05:28:46 PM
I read every post again. Would it be correct to say Rehips is virtualizing the whole desktop whereas SBIE isn't?
not exactly
Quote from: aDVIIRehips virtualizes every action of the applications you setup to run isolated.
correct.
ReHIPS will sandbox everything you are doing when the softs is run isolated , however ReHIPS bonus feat is that it also monitors what you are doing outside the sandbox, via its application/process monitoring module (its kinda of "HIPS" ).
Hi! I'm interested in the product for kid/wife clicks protection. Does it have a whitelist database , or it blocks everything that could access virtualized software?
Quote from: Blomkist on November 26, 2016, 08:15:30 AM
Hi! I'm interested in the product for kid/wife clicks protection. Does it have a whitelist database , or it blocks everything that could access virtualized software?
Many programs have default rules, most applications that usually get abused run isolated by default and the rest of unknown application you will get an alert to allow,block or run isolated.
Assuming on usage and kids age i would run the pc a few days in default settings(assuming it's clean) and then go to settings, protection and enable lockdown mode so if kids close rehips it will still protect them.
Note if you do this you will not get alert and everything unknown will be blocked.
Quote from: umbrapolaris on November 26, 2016, 08:06:46 AM
Quote from: Mr Cryptor on November 25, 2016, 05:28:46 PM
I read every post again. Would it be correct to say Rehips is virtualizing the whole desktop whereas SBIE isn't?
not exactly
Quote from: aDVIIRehips virtualizes every action of the applications you setup to run isolated.
correct.
ReHIPS will sandbox everything you are doing when the softs is run isolated , however ReHIPS bonus feat is that it also monitors what you are doing outside the sandbox, via its application/process monitoring module (its kinda of "HIPS" ).
Even when using Teamviewer?
Quote from: Mr Cryptor on November 26, 2016, 03:00:37 PM
Even when using Teamviewer?
You mean you run Teamviewer as a slave and someone is doing remote control? or the opposite?
Remember that if you launch TeamViewer , you will get an alert (or not, depending the setting you had set) from the "HIPS" (allow/isolate/block) , in the case you decide to isolate it, you have the option to block internet access to isolated programs.
Quote from: umbrapolaris on November 26, 2016, 05:54:35 PM
Quote from: Mr Cryptor on November 26, 2016, 03:00:37 PM
Even when using Teamviewer?
You mean you run Teamviewer as a slave and someone is doing remote control? or the opposite?
Remember that if you launch TeamViewer , you will get an alert (or not, depending the setting you had set) from the "HIPS" (allow/isolate/block) , in the case you decide to isolate it, you have the option to block internet access to isolated programs.
I mean I would like Teamviewer running sanboxed whie someone is remote access my computer using the Teamviewer.
Quote from: Mr Cryptor on November 26, 2016, 03:00:37 PM
I mean I would like Teamviewer running sanboxed whie someone is remote access my computer using the Teamviewer.
you can't. Teamviewer needs admin rights, ReHIPS deny it
btw, what is the point? why you want it sandboxed, if you purposely allow access to your system. If the person is supposed to help you how can it be done if he is restricted in any way...
If you have 2 computers you can test it yourself without risks.
Quote from: Mr Cryptor on November 27, 2016, 01:32:02 AM
Quote from: umbrapolaris on November 26, 2016, 05:54:35 PM
Quote from: Mr Cryptor on November 26, 2016, 03:00:37 PM
Even when using Teamviewer?
You mean you run Teamviewer as a slave and someone is doing remote control? or the opposite?
Remember that if you launch TeamViewer , you will get an alert (or not, depending the setting you had set) from the "HIPS" (allow/isolate/block) , in the case you decide to isolate it, you have the option to block internet access to isolated programs.
I mean I would like Teamviewer running sanboxed whie someone is remote access my computer using the Teamviewer.
Teamviewer only lets you hide your desktop, the moment you give your ID and password to a person you agree to let him help you with your problem. You could use a vault ,that needs a password, to hide your personal files.
Quote from: Mr.X on June 16, 2016, 06:58:02 PM
ReHIPS utilizes Windows built-in mechanisms only, no hooks therefore a good replacement for Sandboxie.
One reason I tested ReHIPS