How to...

• How to disable pop-up dialogs?
• How to restrict files creation for an isolated application?
• How to download files and save them to local drivers with an isolated web browser?
• How to prevent Sony DRM like threats.
• The updating procedure doesn't work. It starts by saying "Update pending", then after a few seconds "Already up to date", or something similar. Even after a reboot, it was still version 2.1. How to solve this?
• How to disable GeSWall temporarily?
• What is isolated mode, and how to start my browser up in it?
• I set 'Do not ask again' check box, how to start the applications as non-isolated?

Q: How to disable pop-up dialogs?
A: GeSWall Pesronal Edition pops up dialogs suggesting to isolate applications that pose security threat.
There are two types of pop-ups.

1. When application tries to access a network or untrusted file. GeSWall asks you if you want to isolate the application. Clicking "Yes" - means isolation, "No" - run non-isolated application. However, you can disable the pop-up for particular application by setting "Do not ask again" check box,
   
   
   
   or by settings "Security Level" to "Trusted, auto-isolation".
   
   
   
   
   
   
2. When application tries to access confidential folder. Click "yes" - deny access, "No" - allow an access.
   
   

Additionally, you can disable any pop-up globally by setting GeSWall security level to "Auto-isolation, no pop-ups".

Now GeSWall will automatically isolate applications without pop-up dialogs. Whenever you need to perform some trusted operation (e.g. installation of ActiveX control) you may restart an isolated application as non-isolated by caption context menu - letter 'G' button. Restart is required because an isolated application can not be merely switched to non-isolated state without security breach.
When you delete original record for confidential resource, you should not see pop-up of second type, right? To disable pop-up of first type, you need just set "Don't ask again" check box.

Q: How to restrict files creation for an isolated application?
A:

This definition prevents an isolated application creating resources inside the specified path. For example, if "Deny Create" for "c:\windows\system32\" denies creating any new files inside c:\windows\system32\ path. Note that by default GeSWall allows isolated applications to create new files and folders without restriction but disallows the creation of new registry keys.
And GeSWall has rules to prohibit files creation in some folders like "desktop Startup" in order to prevent re-starting.
http://www.gentlesecurity.com/docs/resources.html

Q: How to download files and save them to local drivers with an isolated web browser?
A: The same way as usual, there are no restrictions on files creation. Instead GeSWall tracks all files created by an isolated application and suggest to isolate them on execution. The only problems may occur if by saving you want to replace existing trusted files.

Q: How to prevent Sony DRM like threats.
A: In default mode, all files created by unisloated applications are trusted. If you start a rootkit from CD (Sony DRM) it will not be tracked in default mode. However, you may configure CD/DVD as a source of untrusted files. This means everything you start from CD/DVD will be automatically isolated and will not infect your system, e.g. Sony DRM Rootkit will not be installed or started.
To configure CD/DVD as a source of untrusted files follow this steps:
Open GeSWall Console and click on 'Resouces' folder.
Click right mouse button and select 'New\Add Resource..'

In the dialog:
Set 'Security Class' to 'Threat Gates'
Set 'Resource Type' to 'File'
Set Identity by 'Name'
Type \Device\CdRom in 'Resource' edit box.
Press OK button

Now if you start an application from CD or DVD it must be isolated.

Q: The updating procedure doesn't work. It starts by saying "Update pending", then after a few seconds "Already up to date", or something similar. Even after a reboot, it was still version 2.1. How to solve this?
A: That is update for Application Database only. To upgrade GeSWall itself you need to download and start new version setup http://www.gentlesecurity.com/files/geswall.msi

Q: How to disable GeSWall temporarily?
A: You can effectively disable GeSWall by setting 'Security Level' to "Isolate Jailed Applications"

.

Q: What is isolated mode, and how to start my browser up in it?
A: Isolation means that GeSWall restriction policy is applied to an application. An isolated application has colored caption. Please have a look at this article http://www.gentlesecurity.com/getstarted.html

Q: I set 'Do not ask again' check box, how to start the applications as non-isolated?
A: There are two options on this.
First, you may restart chosen isolated application as non-isolated by caption context menu

Note, restart is required because an isolated application can not be merely switched to non-isolated state without security breach.

Second, you can enable pop-up dialogs again by following steps:

1. open GeSWall Console from Programs\GeSWall\GeSWall Console menu of Start button
2. go to "Applications" folder
3. select the application for which you have disabled pop-up
4. Right button mouse click, properties menu item

   
   
   
5. set "Security Level" from "Trusted, auto-siolation" to Trusted and
   press OK.