EldoS | Feel safer!

Software components for data protection, secure storage and transfer

AddDeniedProcess doesn't work well

Also by EldoS: MsgConnect
Cross-platform protocol-independent communication framework for building peer-to-peer and client-server applications and middleware components.
#17759
Posted: 10/06/2011 09:25:02
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

I want to forbid aa.exe accessing the storage.
Here is the order of my calls are:
CallbackFileSystem g_CbFs
...
g_CbFs.SetProcessRestrictionsEnabled(TRUE);

g_CbFs.AddDeniedProcess(L"C:\\aa.exe", 0, FALSE, g_CbFs.paReadWrite);

but all process are forbidden from accessing the storage.

I am using 3.2.98 version of CBFS.
Can you help me.
Thanks and Regards.
Xu
#17761
Posted: 10/06/2011 10:10:16
by Volodymyr Zinin (EldoS Corp.)

We will check it up and answer here about the result.
#17780
Posted: 10/07/2011 09:30:35
by Volodymyr Zinin (EldoS Corp.)

It should be so:
// Enable the feature (all the process are denied to access the drive after this).
g_CbFs.SetProcessRestrictionsEnabled(TRUE);
// Allow every process to access.
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
// Deny access for the process "C:\\aa.exe".
g_CbFs.AddDeniedProcess(L"C:\\aa.exe", 0, FALSE, g_CbFs.paReadWrite);

Unfortunately the second call doesn't work correctly in the current release. But in the next build it'll be.
#17781
Posted: 10/07/2011 10:12:30
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

Thank very much!
#17960
Posted: 10/23/2011 19:53:19
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

I am using 3.2.100 version of CBFS under win7.
I want to forbid aa.exe accessing the storage.
Here is the order of my calls are:
CallbackFileSystem g_CbFs
...

OnCallbackFsCreateStorage();
OnCallbackFsMount();
g_CbFs.SetFileSystemName(L"NTFS");

g_CbFs.SetProcessRestrictionsEnabled(TRUE);
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
g_CbFs.AddDeniedProcess(L"C:\\aa.exe", 0, FALSE, g_CbFs.paReadWrite);

OnCallbackAddPoint(L"X:");

but occur error.

attached error picture.


#17968
Posted: 10/24/2011 03:53:04
by Volodymyr Zinin (EldoS Corp.)

Perhaps the problem is because the binary "C:\aa.exe" hasn't existed yet (or has already been deleted) at the time the call is being performed. The binary must exist because CallbackFS, before adding the process name to the "access granted/denied" list, tries to resolve all possible symbolic links in the path.
So either add only the name of the binary (without the path) or ensure the binary exists.
#17972
Posted: 10/24/2011 07:29:18
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

The file "C:\aa.exe" is exist.
I changed "c:\\aa.exe" to "C:\\Windows\\explorer.exe", occur error still.


Here is the order of my calls are:
CallbackFileSystem g_CbFs
...

OnCallbackFsCreateStorage();
OnCallbackFsMount();
g_CbFs.SetFileSystemName(L"NTFS");

g_CbFs.SetProcessRestrictionsEnabled(TRUE);
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
g_CbFs.AddDeniedProcess(L"C:\\Windows\\explorer.exe", 0, FALSE, g_CbFs.paReadWrite);

OnCallbackAddPoint(L"X:");

Can you give me an example of how to use AddDeniedProcess function?
#17975
Posted: 10/24/2011 09:50:28
by Volodymyr Zinin (EldoS Corp.)

Please check what a call exactly throws the error. Thanks.
#17979
Posted: 10/24/2011 20:00:17
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

Here is the order of my calls are:
CallbackFileSystem g_CbFs
...

OnCallbackFsCreateStorage();
OnCallbackFsMount();
g_CbFs.SetFileSystemName(L"NTFS");

try
{
// Enable the feature (all the process are denied to access the drive after this).
g_CbFs.SetProcessRestrictionsEnabled(TRUE);
// Allow every process to access.
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
// Deny access for the process "360rps.exe".
g_CbFs.AddDeniedProcess(L"C:\\Windows\\explorer.exe", 0, FALSE, g_CbFs.paReadWrite);
}
catch(ECBFSError err)
{
MessageBox(err.Message(), _T("Error"), MB_OK|MB_ICONERROR);
return;
}

OnCallbackAddPoint(L"X:");

Please help me,Thank very much.

attached throws the error picture.


#18104
Posted: 11/07/2011 03:18:30
by Volodymyr Zinin (EldoS Corp.)

The new build is available. Please check the problem with it.
Also by EldoS: CallbackFilter
A component to monitor and control disk activity, track file and directory operations (create, read, write, rename etc.), alter file data, encrypt files, create virtual files.

Reply

Statistics

Topic viewed 2930 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!