EldoS | Feel safer!

Software components for data protection, secure storage and transfer

AddDeniedProcess doesn't work well

Also by EldoS: BizCrypto
Components for BizTalk® and SQL Server® Integration Services that let you securely store and transfer information in your business automation solutions.
#17759
Posted: 10/06/2011 09:25:02
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

I want to forbid aa.exe accessing the storage.
Here is the order of my calls are:
CallbackFileSystem g_CbFs
...
g_CbFs.SetProcessRestrictionsEnabled(TRUE);

g_CbFs.AddDeniedProcess(L"C:\\aa.exe", 0, FALSE, g_CbFs.paReadWrite);

but all process are forbidden from accessing the storage.

I am using 3.2.98 version of CBFS.
Can you help me.
Thanks and Regards.
Xu
#17761
Posted: 10/06/2011 10:10:16
by Volodymyr Zinin (EldoS Corp.)

We will check it up and answer here about the result.
#17780
Posted: 10/07/2011 09:30:35
by Volodymyr Zinin (EldoS Corp.)

It should be so:
// Enable the feature (all the process are denied to access the drive after this).
g_CbFs.SetProcessRestrictionsEnabled(TRUE);
// Allow every process to access.
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
// Deny access for the process "C:\\aa.exe".
g_CbFs.AddDeniedProcess(L"C:\\aa.exe", 0, FALSE, g_CbFs.paReadWrite);

Unfortunately the second call doesn't work correctly in the current release. But in the next build it'll be.
#17781
Posted: 10/07/2011 10:12:30
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

Thank very much!
#17960
Posted: 10/23/2011 19:53:19
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

I am using 3.2.100 version of CBFS under win7.
I want to forbid aa.exe accessing the storage.
Here is the order of my calls are:
CallbackFileSystem g_CbFs
...

OnCallbackFsCreateStorage();
OnCallbackFsMount();
g_CbFs.SetFileSystemName(L"NTFS");

g_CbFs.SetProcessRestrictionsEnabled(TRUE);
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
g_CbFs.AddDeniedProcess(L"C:\\aa.exe", 0, FALSE, g_CbFs.paReadWrite);

OnCallbackAddPoint(L"X:");

but occur error.

attached error picture.


#17968
Posted: 10/24/2011 03:53:04
by Volodymyr Zinin (EldoS Corp.)

Perhaps the problem is because the binary "C:\aa.exe" hasn't existed yet (or has already been deleted) at the time the call is being performed. The binary must exist because CallbackFS, before adding the process name to the "access granted/denied" list, tries to resolve all possible symbolic links in the path.
So either add only the name of the binary (without the path) or ensure the binary exists.
#17972
Posted: 10/24/2011 07:29:18
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

The file "C:\aa.exe" is exist.
I changed "c:\\aa.exe" to "C:\\Windows\\explorer.exe", occur error still.


Here is the order of my calls are:
CallbackFileSystem g_CbFs
...

OnCallbackFsCreateStorage();
OnCallbackFsMount();
g_CbFs.SetFileSystemName(L"NTFS");

g_CbFs.SetProcessRestrictionsEnabled(TRUE);
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
g_CbFs.AddDeniedProcess(L"C:\\Windows\\explorer.exe", 0, FALSE, g_CbFs.paReadWrite);

OnCallbackAddPoint(L"X:");

Can you give me an example of how to use AddDeniedProcess function?
#17975
Posted: 10/24/2011 09:50:28
by Volodymyr Zinin (EldoS Corp.)

Please check what a call exactly throws the error. Thanks.
#17979
Posted: 10/24/2011 20:00:17
by xu zhi lian (Basic support level)
Joined: 09/27/2011
Posts: 17

Here is the order of my calls are:
CallbackFileSystem g_CbFs
...

OnCallbackFsCreateStorage();
OnCallbackFsMount();
g_CbFs.SetFileSystemName(L"NTFS");

try
{
// Enable the feature (all the process are denied to access the drive after this).
g_CbFs.SetProcessRestrictionsEnabled(TRUE);
// Allow every process to access.
g_CbFs.AddGrantedProcess(NULL, -1, TRUE, g_CbFs.paReadWrite);
// Deny access for the process "360rps.exe".
g_CbFs.AddDeniedProcess(L"C:\\Windows\\explorer.exe", 0, FALSE, g_CbFs.paReadWrite);
}
catch(ECBFSError err)
{
MessageBox(err.Message(), _T("Error"), MB_OK|MB_ICONERROR);
return;
}

OnCallbackAddPoint(L"X:");

Please help me,Thank very much.

attached throws the error picture.


#18104
Posted: 11/07/2011 03:18:30
by Volodymyr Zinin (EldoS Corp.)

The new build is available. Please check the problem with it.
Also by EldoS: BizCrypto
Components for BizTalk® and SQL Server® Integration Services that let you securely store and transfer information in your business automation solutions.

Reply

Statistics

Topic viewed 2787 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!