Recent Posts

Pages: « 1 2 3 4 5 6 7 8 9 10 »

ReHIPS / Re: Is there a conflict with sandboxie?

« Last post by nick on October 24, 2019, 04:05:22 pm »

No the problem is exactly the same like in the post you mentioned, at least with thunderbird and waterfox. No isolation ReHIPS regarding, but when I try to open them sandboxed, the processes start but never display on the screen. I just thought it might had to do with how ReHIPS handles processes (and child processes of them) belonging to unknown untrusted users that's why I asked

(It is similar as when ReHIPS opens an alert window waiting for a respond. What if a child process of them is not in ReHIPS list yet, will the alert window open in the current user desktop even though the process is owned by a different unkown user?)

ReHIPS / Re: Is there a conflict with sandboxie?

« Last post by fixer on October 24, 2019, 01:27:14 pm »

ReHIPS isolated processes can be started on a separate desktop, it can be enabled/disabled on a per-isolated environment basis in isolated environment options.
There is definitely no need to try to both isolate a program in ReHIPS and sandbox it in Sandboxie at the same time. So just Allow them in ReHIPS (and it won't interfere) and sandbox them in Sandboxie or isolate in ReHIPS and ignore Sandboxie.

ReHIPS / Re: Is there a conflict with sandboxie?

« Last post by nick on October 23, 2019, 08:29:08 pm »

At what step does ReHIPS decides to display an application in a different desktop? Sandboxed processes are owned by an anonymous user, there is no ReHIPS rules database for such a user. A process with such an owner how is it interpreted by ReHIPS, as an isolated environment that needs a separated desktop to be in?

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

« Last post by Stephen on October 21, 2019, 08:46:51 pm »

Thank you. That's good to know.

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

« Last post by fixer on October 21, 2019, 07:32:18 pm »

I'm not sure about latest released version 2.4. Because building parent-child chain for an isolated process wasn't fully supported in ReHIPS 2.4. But in upcoming ReHIPS 2.5 having host and child in the same isolated environment solves the issue.

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

« Last post by Stephen on October 21, 2019, 06:25:06 pm »

Just academically speaking, would it work at all if I run DOPUS in an isolated environment? Would it place both the host and the child at an equal level?

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

« Last post by fixer on October 21, 2019, 05:38:52 pm »

Looks like they use OLE (Object Linking and Editing) for preview. This way a host process (DOPUS or explorer in this case) starts a child process to handle the file and give parsed preview to the host. They need to comminucate with each other which becomes impossible since one of them (child in our case) is isolated and the other one is not.

It's hard to solve this one in a good way. In terms of danger, preview is almost the same as standard file open. If it's some kind of exploit, opening or previewing it, will trigger the payload. And correct previewing requires communication with a non-isolated process. This basically means that some possibly dangerous process that should be isolated will have some access to the non-isolated process. Allowing it may not end well.

Pages: « 1 2 3 4 5 6 7 8 9 10 »

ReHIPS forum

News:

Recent Posts

ReHIPS / Re: Is there a conflict with sandboxie?

ReHIPS / Re: Is there a conflict with sandboxie?

ReHIPS / Re: Is there a conflict with sandboxie?

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS

ReHIPS / Re: Is there a conflict with sandboxie?

ReHIPS / Re: Problem with Directory OPUS's viewer and ReHIPS