security123

Level 23
Verified
@ultim

Sadly i still can't download and get the following error:
TinyWall-v3-Installer.msi cannot be safely downloaded
Edge error console say:
Code:
download.php:1 Mixed Content: The page at 'https://tinywall.pados.hu/download.php' was loaded over HTTPS, but requested an insecure script 'http://ajax.googleapis.com/ajax/libs/jquery/1.10.1/jquery.min.js'. This request has been blocked; the content must be served over HTTPS.
download.php:88 Uncaught ReferenceError: $ is not defined at download.php:88
download.php:1 Mixed Content: The page at 'https://tinywall.pados.hu/download.php' was loaded over HTTPS, but requested an insecure script 'http://xslt.alexa.com/site_stats/js/t/a?url=tinywall.pados.hu'. This request has been blocked; the content must be served over HTTPS.
download.php:1 Mixed Content: The site at 'https://tinywall.pados.hu/' was loaded over a secure connection, but the file at 'https://tinywall.pados.hu/files/TinyWall-v3-Installer.msi' was redirected through an insecure connection. This file should be served over HTTPS. This download has been blocked. See https://blog.chromium.org/2020/02/protecting-users-from-insecure.html for more details.
download.php:1 Mixed Content: The site at 'https://tinywall.pados.hu/' was loaded over a secure connection, but the file at 'https://tinywall.pados.hu/files/TinyWall-v3-Installer.msi' was redirected through an insecure connection. This file should be served over HTTPS. This download has been blocked. See https://blog.chromium.org/2020/02/protecting-users-from-insecure.html for more details.
Ressource interpretiert als Dokument aber übertragen mit MIME-Typ application/x-msi: "https://tinywall.pados.hu/files/TinyWall-v3-Installer.msi".
download.php:1 Mixed Content: The site at 'https://tinywall.pados.hu/' was loaded over a secure connection, but the file at 'https://tinywall.pados.hu/files/TinyWall-v3-Installer.msi' was redirected through an insecure connection. This file should be served over HTTPS. This download has been blocked. See https://blog.chromium.org/2020/02/protecting-users-from-insecure.html for more details.
 

ultim

Level 2
Hi, thanks. I corrected the URL for GA and removed Alexa's script - I didn't even realize it was still there.
As for the download, that is just pure browser stupidity, because as I said, the actual download was secured. But I corrected that now too for pedantic browsers.

Did you have to make some special browser settings to make it bail out? As I documented in the previous post, I tried Chrome-based Edge with insecure and mixed content both blocked and it didn't have a problem with it. Also, I'm normally using Firefox which also blocks mixed content by default yet it had no problem downloading the installer, just like Edge - these browsers are smart enough to recognize the download is secure despite the URL scheme. So what kind of braindead browser are you using?
 

ultim

Level 2
Chromium-Edge with some flags, AdGuard and uMatrix.

I only get the problem on your site but I will test it again if I'm home @ late Wednesday
Lol, I could say the same, I only got the report from you. :D
I'm pretty sure I'd have heard already from a lot of people if browsers were blocking my downloads in the past years, so I guessed it must be some unusual setup on your end. Nevertheless, even if this wasn't a security issue, my sloppyness with the links did cause troubles for you, so sorry about that, and thanks for letting me know. It should be okay now, so when you test again you should be able to download.
 

silversurfer

Level 63
Verified
Trusted
Content Creator
Malware Hunter
TinyWall Changelog
---------------------

3.0.5 - Maintenance release (14.06.2020.)
- Restore compatibility with 32-bit (x86) Windows systems
- Remember user-set column widths in lists
- Keep application list selection and scroll-position after modifications
- Reduced system load of traffic rate monitor
- New and performance-optimized firewall rule application
- Fix not all changes are detected when a network adapter is reconfigured
- Fix rules for Windows services may get ignored due to wrong SID translation
- Fix incomplete deserialization of DHCP profile
- Fix tooltip rule edit not saving correctly
- Fix two rules merged incorrectly if one of them was Unrestricted
- Fix "Ask for exception details" not always taken into account
- Fix UI text contents in Connections window (column headers, and 2 -> 5 mins)
- Fix WMI leak while monitoring sub-processes
- Increase traffic rate update interval to 2 seconds
- Only enable sub-process monitoring if necessary for active rules
- Optimized sub-process monitoring when enabled
- Rework inter-process pipe communication
- Update old WhatsNew and FAQ in installer
- Updated Brazilian Portuguese and Russian localizations
- Introduce logging in installer routines
- Collect all logs to "logs" folder

 

ultim

Level 2
Hello Everybody, a new release is out!

TinyWall 3.0.7 (12.07.2020.):
- Add support for WSL
- Add support for WSL 2
- Add support for whitelisting from network shares and network drives
- Fix autolearn doesn't detect short-lived processes
- Fix autolearn handling of non-win32 file paths
- Fix service crash if multiple exceptions with the same path apply to child processes
- Don't log expected exceptions during system shutdown
- Don't show System process as a missing app, and add icon for it
- Updated Italian localization
Latest version download link

It is again that time of the year when I need to renew the digital certificate. These things cost money. If you think you can afford to support me with just 1$ per month, please visit my Patreon. I think 1$ is something any single person could afford, but if many users did it it'd enough for TinyWall to cover these recurring costs. So, thanks for considering it.
 
Last edited:

security123

Level 23
Verified
Hello Everybody, a new release is out!



Latest version download link

It is again that time of the year when I need to renew the digital certificate. These things cost money. If you think you can afford to support me with just 1$ per month, please visit my Patreon. I think 1$ is something any single person could afford, but if many users did it it'd enough for TinyWall to cover these recurring costs. So, thanks for considering it.
I would support you but not over external stuff like Patreon as I like my privacy.
Normal SEPA (IBAN & BIC) is my way.
 

Tume

Level 2
Hi Karoly, have you ever mind add popup possibilities, even optional way? I mean, to me it's a lot of easier if I can see which program is trying to reach internet when I start it first time. I mean optional like checkbox in settings, default it's unchecked and Tinywall works like it does now, without popups, but if you check it, it will give you popup do you want allow this application go to the internet?

- Tume
 

security123

Level 23
Verified
Hi Karoly, have you ever mind add popup possibilities, even optional way? I mean, to me it's a lot of easier if I can see which program is trying to reach internet when I start it first time. I mean optional like checkbox in settings, default it's unchecked and Tinywall works like it does now, without popups, but if you check it, it will give you popup do you want allow this application go to the internet?

- Tume
It exists enough products with pop-ups. I like the silent and also ultim explain why it's silent
 

show-Zi

Level 25
Verified
Hi Karoly, have you ever mind add popup possibilities, even optional way? I mean, to me it's a lot of easier if I can see which program is trying to reach internet when I start it first time. I mean optional like checkbox in settings, default it's unchecked and Tinywall works like it does now, without popups, but if you check it, it will give you popup do you want allow this application go to the internet?

- Tume
The most distinctive feature of this software is its commitment to "silent watchdog". I think they have a design policy so that users won't get lost as much as possible. You don't have to decide whether to allow or block, just choose what to allow. At first I wanted a pop-up, but now I think it's reasonable.
 

ultim

Level 2
Hi Karoly, have you ever mind add popup possibilities, even optional way? I mean, to me it's a lot of easier if I can see which program is trying to reach internet when I start it first time. I mean optional like checkbox in settings, default it's unchecked and Tinywall works like it does now, without popups, but if you check it, it will give you popup do you want allow this application go to the internet?

- Tume
Hello Tume,
I know this is somewhat controversial among people, but I really believe that firewall popups are a bad idea. I understand that the feature could be made optional, but if the option was there, many people wouldn't even try without popups, they'd just turn it on after installation. I'm probably losing users for the absence of this feature, but TinyWall isn't a commercial product so I don't care (EDIT well, I do care, but not enough to implement a feature that I think is only detrimental). If I ever implement popups, it will be far-far in the future, as I find most other features more important and more useful.
 
Last edited:

ultim

Level 2
For what is the "run as admin" option in TinyWall menu from systemtray ?
I mean, which benefit has it? I can config every rules without.
You seldomly need it, but the "Elevate" menu option has mainly two purposes:
1. "Whitelist by window" only works on apps with admin privileges if TinyWall's tray is also running as admin. So for example if you want to unblock an installer, you'd have to select the Elevate option in TinyWall first (or simply use another whitelisting method other than "by window")
2. It increases TinyWall's process security somewhat, because when it is running as admin, non-admin apps cannot inject code or hook into it

For both of the above reasons, one of my goals for TinyWall 3.1 is to run TinyWall's tray app as admin by default on system startup.
 
Top