Most important updates:

• GeSWall works on Windows 7 now
• Application Wizard runs with UAC enabled on Windows Vista and Window 7
• Proper support of
  • Internet Explorer 8
  • Live Messenger
  • Live Mail
• Fixes
  • File streams over trusted files, thanks to Henk
  • Trusted files renaming fix , thanks to ubuntu
  • File redirection fix
  • ReadOnly permission fix
  • Fix of per-application rules priority over confidential resources
  • Fix of “Disable GeSWall Policy”
  • Network rules with * wild card

The next major update is GeSWall 3.0 that would include support for 64-bit Windows Vista and Windows 7.

What is new:

1. Network Access Restriction which allows control of network traffic similar to firewall functionality. Please check
   "Network Access Restriction",
   "How to deny network access for isolated applications",
   "How to deny network access for all applications"
   articles for more details.

2. Additional security controls for isolated applications

   • Blocking of screen-shot capturing
   • Blocking of clipboard content logging

   The controls prevent leaking of confidential information by malware.

3. Untrusted Files browser now displays file streams exploited by some malware to hide its pieces.
4. Improved support for Windows Vista UAC, please check "Windows Vista UAC (User Account Control)" for details.
5. Fixed isolation of untrusted files when "Auto-isolation" security level is enabled.
6. Fixes of GeSWall Console issues at root folder.
7. Support of recent SUN Java Runtime Environment (JRE)
8. Support of Google Chrome browser

However, blocking of network access is useful for certain applications and advanced configuration. GeSWall is capable to block networking for all and individual isolated applications.

To block network access for all isolated applications open a GeSWall Console instance, select Resources folder and change "Security Class" for resource definition with Network type.

Set Security Class to Confidential.

Then you could grant network access to individual applications by application specific rule.

Additionally, you could deny network access for individual applications. For that resource definition for Network must remain untouched and you just need create an application rule

.

In the next version of GeSWall network blocking rules would be extended by supporting specification of host’s DNS names, ip-addresses and ranges.

What is new:

• Untrusted files browser
• Isolated applications browser
• Windows Explorer built-in zip support
• Installers recognition
• Updated application security levels
• Keyloggers prevention fixes
• Windows Vista compatibility fixes
• Updated Application Database

Alternatively, you may download the updated license files and replace them in the GeSWall installation folder and reboot. The same files could be used for GeSWall 2.7 beta.

The expanded licenses also come with GeSWall 2.7 release, which is scheduled for January 2008.

1. Untrusted Files folder in the GeSWall Console allows to scan for untrusted files. Additionally, it provides information on application that created or modified a particular untrusted file.

The feature is useful for composing application rules and analyzing suspicious application's behavior.

2. Isolated Applications folder displays the list of running isolated applications and provides an option to terminate them.

In summary, these features provide a better control over isolated applications for advanced users.

What is new

1) Application Wizard. A flawless execution of isolated application may require specific access rules. The rules describe important resources (files, registry, etc.) application must have unrestricted access to. GeSWall has pre-configured rules for most popular internet applications: web browsers, e-mail clients, messengers, file sharing clients, office applications. etc. However, in some cases it is required to customize pre-configured rules or add support for new application. Application Wizard aims to automate and simplify the task.

2) One-click termination option for the applications with malicious activity detected. That is extension of GeSWall’s attack’s notification policy.

3) Smooth support for Adobe Acrobat, Microsoft Word and Excel. Now each untrusted document is opened in a separate processes. This feature essentially improve experience with untrusted documents you download from the Internet or receive by e-mail.

4) Improved attack detection

5) Windows Explorer context menu to set trusted/untrusted file labels

6) More pre-configured safe applications

7) Windows Vista 32 bit is supported now and 64-bit is on the way. As you probably know, it became a problem to find new machine without Windows Vista pre-installed.

1. Polished Application Wizard. Beside configuring additional applications the Wizard particularly useful for automatic troubleshooting. In case of problem with isolated application just start it with Wizard in Expert Mode. GeSWall tracks access to all resources (files, registry, etc.) accessed by application during this procedure and determines what rules are required for that application.

2. You can label a file as trusted or untrusted by Windows Explorer context menu

3. Improved one-click termination. You have an option to terminate malicious application by clicking on 'Terminate' button. Additionally, you can adjust termination behavior for auto-termination whenever an attack detected.

4. A smooth support for Adobe Acrobat, Microsoft Word and Excel. Each untrusted document is opened in a separate processes. This feature essentially improve experience with untrusted documents you download from the Internet or receive by e-mail. Details »

Learn more about new features from Online Documentation.