search

sandboxie-plus / Sandboxie

Sandboxie Plus & Classic
https://Sandboxie-Plus.com
GNU General Public License v3.0
13.69k stars 1.52k forks source link

Ping not working in app compartment mode (fixed with 1.8.2a revision) #1608

Closed hg421 closed 1 year ago

hg421 commented 2 years ago

What happened?

ping does not work in an App Compartment box. Instead it fails and produces the message PING.EXE (30532): SBIE1314 Blocked request to alter network/firewall settings by process 'PING.EXE'.

If the option "Prevent change to network and firewall parameters" is turned off, the message no longer appears, but it still gets stuck.

If the box type is changed to Standard Isolation, the problem disappears and ping works normally.

To Reproduce

  1. create new "App Compartment" box
  2. in the box, open command prompt and run ping 127.0.0.1

Expected behavior

ping works normally in AppComp box (like it does in a normal box)

What is your Windows edition and version?

Windows 10 20H2 64-bit

In which Windows account you have this problem?

A local or Microsoft account without special changes.

Please mention any installed security software

Windows Defender

What version of Sandboxie are you running?

Sandboxie Plus 1.10

Is it a regression?

No response

List of affected browsers

No response

In which sandbox type you have this problem?

In an Application Compartment sandbox with no isolation (green sandbox icon).

Is the sandboxed program also installed outside the sandbox?

Not relevant to my request.

Can you reproduce this problem on an empty sandbox?

I can confirm it also on an empty sandbox.

Did you previously enable some security policy settings outside Sandboxie?

No response

Crash dump

No response

Trace log

No response

Sandboxie.ini configuration

No response

Sandboxie-Plus.ini configuration (for Plus interface issues)

No response

isaak654 commented 2 years ago

I can confirm this issue on Plus 1.0.11 as well.

DavidXanatos commented 2 years ago

I can reproduce the initial issue but un checking "Prevent change to network and firewall parameters" solves it for me.

isaak654 commented 2 years ago

SBIE1314 error related to ping.exe appears only in a sandbox with App Compartment, not in the standard sandbox. Is it expected?

DavidXanatos commented 2 years ago

no thats a bug and will be fixed, but after you uncheck "Prevent change to network and firewall parameters" ping should work as normal

isaak654 commented 2 years ago

after you uncheck "Prevent change to network and firewall parameters" ping should work as normal

Not here, if you need remote support just ask.

DavidXanatos commented 2 years ago

the difference is the template: RpcPortBindingsExt when its added then ping works in the next build this tempalte will be auto enabled when switchign a box to compartment mode or creating a new one, existing boxes will need this to have added manually

isaak654 commented 2 years ago

So, to sum up, we have two bugs in the same issue:

Simba98 commented 2 years ago

Still repeat in SBIE v1.3.2 image

RandomGOTI commented 2 years ago

Still repeat in SBIE v1.3.2 image

Can confirm on 1 3 3 with a new created no isolation box BlockNetParam=n is not set but from the look of it it was not intended to be added to begin with , only the template was said to be added and that is there ,so diasble BlockNetParam and you're good to go.

DavidXanatos commented 1 year ago

please provide feadback if the build 1.8.2a solves the issue for you or not

isaak654 commented 1 year ago

I can confirm the fix after updating to 1.8.2a:

Support_settings_1.8.2a