所以我今天了解到 UWP 应用(在 AppContainers 中运行)根本无法访问 localhost。因此,如果我运行一个监听的本机 win32 应用,127.0.0.1:555我无法从 UWP 应用建立该连接(除非它是在同一个 AppContainer 的上下文中启动的)。
对此的详细解释是显然在这里但你需要 30 年的经验和 7 个学士学位才能理解它。
Name : AppContainerLoopback
Action Type: Block
Key : 0740183e-bc32-4cac-b9a7-584c568a1823
Id : 126355
Description: AppContainerLoopback
Layer : FWPM_LAYER_ALE_AUTH_RECV_ACCEPT_V4
Sub Layer : MICROSOFT_DEFENDER_SUBLAYER_WSH
Flags : None
Weight : 18446744073709551614
Conditions :
FieldKeyName MatchType Value
------------ --------- -----
FWPM_CONDITION_FLAGS FlagsAllSet IsLoopback
FWPM_CONDITION_ALE_USER_ID Equal O:LSD:(A;;CC;;;AC)(A;;CC;;;S-1-15-3-1)(A;;CC;;;S-1-15-3-2)(A;;CC;;;S-1-15-3-3)(A;;CC;;;S-1-15-…
<Owner> : NT AUTHORITY\LOCAL SERVICE
<DACL>
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES: (Allowed)(None)(Match)
APPLICATION PACKAGE AUTHORITY\Your Internet connection: (Allowed)(None)(Match)
APPLICATION PACKAGE AUTHORITY\Your Internet connection, including incoming connections from the Internet: (Allowed)(None)(Match)
APPLICATION PACKAGE AUTHORITY\Your home or work networks: (Allowed)(None)(Match)
NAMED CAPABILITIES\Proximity: (Allowed)(None)(Match)
我的问题很简单:我怎样才能禁用此过滤器或添加具有更高优先级的全局允许?这是一台经过高度“净化”的机器,无需担心任何安全问题。
PS我已经检查过了这,但它适用于我的情况,甚至仅仅用于测试也不起作用。