GeSWall F.A.Q.

• GeSWall product (description and comparision)
  • What is GeSWall?
  • How GeSWall protects?
  • What is the difference between GesWall and personal firewalls?
  • What is the difference between GesWall and sandbox products?
  • So, GeSWall is basically an isolator that lowers the rights of programs. Isn't that what limited user does, or does GeSWall do it better, use hardening techniques?
  • What about comparing GeSWall with hardening software, AV and Behaviour Blockers?
  • In limited user with one of those hardening tools, an AV, an AS, and a bi-directional Firewall, what does GeSWall specifically add to this setup?
    
• General
  • When I hit update GeSWall, it says the update server is not available, what's wrong?
  • Why I have just a blue square without G letter on it?
  • What happens to all these untrust files/folders/registry keys created by the isolated browsers/applications? How and when do they ever get deleted from my PC? Or do they just stay on your PC, labeled as "untrusted" being guarded by GeSWall?
    
  • What happens if I uninstall GeSWall? Do the untrusted files/folders/registry keys then become free to run wild and unchecked on your PC?
  • Do I need some regular cleaning of the log files or some sort of maintenance?
  • I am having trouble getting to grips understanding Trusted, Trusted Always, Trusted but Isolated, etc
• Compatibility
  • Is the GeSWall compatible with other firewall programs, such as Sygate or Windows Firewall?
  • Why I can't save my Thunderbird database on my USB Pen Drive?
  • Is there way to isolate programs in USB disks, or in LAN drives, to start isolated?
• Protection
  • Is it safe to use it alone or is it better to use it with a firewall & AV?
  • You mention rootkits on your site, but provide no guidelines and no examples of how you prevent or identify rootkit attacks…
  • I am using the latest version of GeSWall and my AV discovered the Trojan/Backdoor in my system32 folder. How it got round GeSWall?
  • Why GeSWall does not pass firewall leak tests?
  • I was able to use the exploit against RPC DCOM to get a shell and then install a service on the machine. I know accessing the registry from a protected application(or something downloaded through it) should be impossible. Is this correct or can services be installed using valid CreateService() system calls?
  • If there is already malware on the computer , does GeSWall have any effect with this?
• Isolation
  • What is isolated mode, and how do I start my browser up in it?
  • Why I can't change identification type of the application in the setup console?
  • To uninstall something that was installed isolated, shall I run the uninstallation also isolated?
  • If I copy the program from the CD or the floppy to the hard disk, the program runs nonisolated. This is a bit odd, because I consider it similar to a download…
  • I gather that by isolated mode you mean that access priviledges of the application is dropped, for example, if running a web browser from an Admin account using DropMyRights? Is that the essense of it?
  • I set 'Do not ask again' check box, how to start the applications as non-isolated?
  • What are the restrictions during the installation of isolated application?
  • What are the defaults for files and registry used for isolated applications?
  • Could you advise me if it is better to isolate a programme from the rest of the system.
  • I can't start my application under the protected mode. Program reports it can't access the file system if started that way. Do you have any ideas how to fix this?
  • How I can see, that my program is isolated?
  • Why, when I try to create a new file/folder or rename the existing one in isolated file dialog box, nothing happens?
• Restrictions
  • Is there anyway to restrict process creation?
  • Is there a way to restrict network traffic coming from a program, such as denying network access altogether?
  • When a log entry reads \"Deny C115 message to...\" what does that mean? What is a C115 message? Are there other Deny codes I might see?
  • Why do we need to block some messages? Is it dangerous?
• How to…
  • How to disable pop-up dialogs?
  • How to restrict files creation for an isolated application?
  • How to download files and save them to local drivers with an isolated web browser?
  • How to prevent Sony DRM like threats.
  • The updating procedure doesn't work. It starts by saying "Update pending", then after a few seconds "Already up to date", or something similar. Even after a reboot, it was still version 2.1. How to solve this?
  • How to disable GeSWall temporarily?
  • What is isolated mode, and how to start my browser up in it?
  • I set 'Do not ask again' check box, how to start the applications as non-isolated?
• Useful links