I think i've achieved a master protection scheme by using just these "4" security apps on a single workstation.

They include DEEP FREEZE + Anti-Executable + HIPS= EQS rounding these out with famous SandboxIE because they ALL are 100% compatible together .

To add the icing to the cake with such a safe iron wall i propose to include SuRun to keep LUA as the cap for them all to repel any potential for forced admin rights elevation?

Is this in your experience and opinion really an intelliigent move as well as practical?

Do you see any reason why this combination wouldn't add for all sensible & safe purposes the very final log chain to securing an XP system?

I can always abort DF + AE just long enough to add safe apps or even insert them to AE's whiltelist while DF is suspended temporarily?


Thanks for making all of us more prepared than common basic apps.

I have quite similar setup but different programs. I have Shadow Defender (Paid), Sandboxie (Paid) and Online Armor (Free) plus LUA with SuRun Beta and SPR (and DEP). This kind of setup is so light and easy to use. I can give my computer to anyone and say just do what ever you like.

*EDIT: .EML .JS .JSE .MSG .SCT .SHB .VBE .VBS .WSF .WSH .XLM .XLS <- Added to SRP extension list, .LNK removed.

@TLU

In your experience and reading MikeNsh's combination, would you agree that running the combination like this with SuRun is an idea setup for a near sealed environment as close as any user could possibly attain in the face of almost if not all forced potential threats?

Do you see any holes in this particular configuration? User Mode attacks as well as attempts at elevating to Admin privileges?

It appears very Logical and concrete.

Thanks EASTER

@ Easter

How are you going about running Sandboxie in LUA mode? I find the only way I can do it is to open the Sandboxed web browser using SuRun. The problem I am running into is how to run anything else sandboxed while in LUA.

-{ Quote: "@ Easter

How are you going about running Sandboxie in LUA mode? I find the only way I can do it is to open the Sandboxed web browser using SuRun. The problem I am running into is how to run anything else sandboxed while in LUA." }-

Good question as i've not yet employed SuRun before asking advice from users liek yourself and any others if this is at all workable without too much user restriction. The last thin we need is not to have any access at all to SandboxIE, but something tells me (speculation) that surely it can be either started or run as Admin while the other apps also can start as Admin thereby hopefully in some Limited fashion but then we run into the problem these apps needs Admin rights at least to install, thereafter it's a mystery whether or not they can still be of use after their rights are lowered but then wouldn't they become vulnerable to userland misuse?

I'm in as much the dark as you, maybe tlu can help shed some light on this, especially as concerns SandboxIE.

Thus my question remains as above.................

-{ Quote: "To add the icing to the cake with such a safe iron wall i propose to include SuRun to keep LUA as the cap for them all to repel any potential for forced admin rights elevation?

Is this in your experience and opinion really an intelliigent move as well as practical? " }-

I will have to keep a watch to see what others are saying also. I am trying out Defencewall right now with administrator set up. When I get done seeing how it works out I might go back to Sandboxie and LUA and work on that.

-{ Quote: "That's why they're called sandboxes: a child's play area (the sandbox environment) and an omnipresent guard (sandbox driver).
You can achieve the same with Returnil, Deep Freeze and the likes by using LUA. Applications and malware can't fiddle with the ISR driver if they're running with limited privileges. This way, an ISR application becomes a "bullet-proof" system-wide sandbox." }-

I'm looking foward to expecting this type of repelling of the possibilty for that in an ISR.

@Threedog: I´m running Sandboxie in a restricted account and I don´t have any problems sandboxing applications such as web, mail, mediaplayer etc.

/C.

-{ Quote: "@Threedog: I´m running Sandboxie in a restricted account and I don´t have any problems sandboxing applications such as web, mail, mediaplayer etc.

/C." }-

Cerxes

Is that with or without also using the app SuRun

Thanks

For some reason I cant get it to work right on mine. Couldn't have had something set right. I'm not using sandboxie right now anyways. I think with LUA and an AV alone is all I need. I don't venture to the dark side anyways. Just news, weather and Wilders. ;D

-{ Quote: "Is that with or without also using the app SuRun?" }-
Without SuRun. I´ve no need of using it since all my applications works great in a restricted account (with the exception of that darn JDeveloper), and because of old habit I always enter admin mode when installing/updating applications instead of using Run As, SuRun etc.

/C.

-{ Quote: "Without SuRun. I´ve no need of using it since all my applications works great in a restricted account (with the exception of that darn JDeveloper), and because of old habit I always enter admin mode when installing/updating applications instead of using Run As, SuRun etc.

/C." }-

Maybe that is where I ran into my problem. I installed sandboxie on my LUA account using SuRun instead of fast switching over to my admin account.