Keep an app unblocked in the firewall?

With setting “ask to connect” in the firewall, is it possible to keep an app unblocked after its updated?

Google drive keeps getting blocked, and have to remember to unblock it to keep files synced.

I don’t use Google Drive, but have noticed that some installers trigger the “ask” prompt every time they update. In my case, every time a new version of Dropbox is pushed, I get prompted again, even though I have allowed the previous one.

I assume maybe that it’s a new version number or something that triggers this? Not certain…

1 Like

What zzz00m is saying and also every time there is an update of any app you will be prompted. I don’t think there is any way to avoid it. I use click to block myself. Just easier for me. :grinning:

1 Like

ok, maybe start to use click to block then. Keep forgetting to check gw when something is not synced

1 Like

I have found that it is sometimes necessary to use “click to block” to get some installers past a “no network available” error.

So if you are careful about what you have installed and run a “clean” computer, there is little likelihood of anything malicious suddenly attempting an outbound network connection. And anything making a new network connection will be logged regardless.

1 Like

Hi, this problem has not been fixed since 2 years ?
image

It’s quite annoying to repeat the same action many times, and then having a blocked app list polluted by many occurrences of the same app (but different versions).

There should be an option to block/allow an app with some specific conditions, for example :

  • Block/allow an app (same filename AND same signature) until… [specific date] or [specific amount of time]
  • Ask again if a previously allowed app get significant changes (example : some virus detections by VirusTotal)
  • Block/allow all apps from a specific editor (same signature)
1 Like

A fix for this has been promised repeatedly for a long time. Six years ago there was talk of a certificate (code signing) rule, but it never materialised.

Better management of duplicate firewall entries has also been promised. The fact that they build up is bad enough, but then deleting them is also a painful process. This is meant to be an enterprise security product.

It would also be great to have an option to allow an app only for a period of time (after witch Glasswire will ask again). It would prevent all those installation .exe file to pollute the list (they are only used once).

Still fighting this poor implementation on a weekly basis. I have found that once you reach a large number of these duplicate entries, GlassWire seems to stop prompting to Allow/Block the app. So the app is just silently blocked. Microsoft Edge WebView is practically a core part of the O/S now for all users. Why is this not fixed yet?

The latest release of GlassWire now has an easy way to delete the build up of redundant firewall entries, which is great. However, the longstanding issue of apps which update to a different path remains. A fix for this was promised 8 years ago!

But it gets worse. Some apps with their own auto update mechanism don’t seem to trigger the Ask To Connect prompt and remain blocked by default. Opera is one of these, but MS Team is another more problematic one. After an update Teams will fail to sign in. There is no prompt and no entry for a new version being detected in the Log tab.

It is necessary to go to the Protect tab and allow both Microsoft Teams and Microsoft Edge WebView2 to restore operation. Both of these apps install their updates to a new folder which GlassWire cannot cope with; e.g.

c:\program files\windowsapps\msteams_24295.612.3262.1872_x64__8wekyb3d8bbwe\ms-teams.exe
c:\program files (x86)\microsoft\edgewebview\application\131.0.2903.86\msedgewebview2.exe

1 Like