Last post by fixer - January 11, 2022, 08:09:22 AM
Programs from different isolated environments should get different isolated desktops. I'll need logs from Main Window->Log tab to find out who starts who in which isolated environment. Do you use default rules for all these programs? Only these 3 use the same isolated desktop? All other isolated programs get separate isolated desktops?
There is a tonload of different digital signature checks and hence hashes, like user-mode, kernel-mode, OS load, etc. They're all different, sometimes hardcoded, sometimes user-influenceable. So not sure they made Windows 7 completely sha256-aware for all signature checks since it's quite old and old products are usually not thoroughly supported.
Last post by lunarlander - January 10, 2022, 09:48:40 PM
Why does Chrome and Firefox and Edge all share the same separate desktop. I was thinking that each isolated program get it's own separate desktop. Is it safe that way - won't a compromised Firefox get to do a screenshot of other isolated programs like Chrome?
Last post by fixer - January 10, 2022, 08:01:00 PM
Hello, BoerenkoolMetWorst. Welcome to our forum. Looks like it's the same issue as here https://forum.rehips.com/index.php?topic=13675.0 In short words: Most likely that's because we had to move to sha256 digital signature. In old times when Win7 was released sha1 was used and it was OK. But a while ago everyone agreed that something more secure is needed and moved to sha256. And now weaker digital signatures aren't issued, so you can't get it even if you want to. Sha256 is quite new for stock Win7 and it doesn't recognize it. But should accept it after update. I don't remember exact KB though, looks like for Windows 7 you need to install SP1 and then KB3033929 or KB4474419 or KB4054518.
I know, this hassle with driver signature enforcement and changing hash algos may be painful when it comes to supporting old OS-s. But unfortunately there is nothing we can do from our side. Apart from this signatures ReHIPS completely supports Windows 7. But we had to rebuild driver to workaround some Windows bugs, so had to follow new signature requirements.
I'm trying out ReHIPS for the first time(New version 2.5) in my Windows 7 VM. After installation it will not start and I get an error message about HIPSGui32.exe(see attachment.) Windows updates for SHA256 signatures were already installed and if I go to file properties in windows explorer and check the digital signatures, it can succesfully see them and verify them. This VM has ESU updates installed and SHA256 signatures is a requirement for ESU so I'm sure that it is working correctly. Also no other security software installed.