Need some help/suggestions...

The link you provide says:

This means that the shareware version won't allow the users to force applications; which on its turn means that the user needs to remember to sandbox the applications.

Secondly, it means that the shareware version will only allow one sandbox at the same time, which is what I wanted to say.

I guess I just mentioned one sandboxed application instead of one sandbox at the same time. Thanks for bringing this up.

This should be

Despite the fact that I wouldn't run every app in the same sandbox, to be honest.

Sometimes, I like to keep certain things in one sandbox. This makes it impossible using one sandbox only.

With the shareware version, the only alternative would be to use one sandbox at the same time. With the paid version, the user can have as many sandboxes as he/she pleases running at the same time. Whatever the user needs to clean in one, won't affect the other, if the user wishes to keep contents inside the sandbox.

 

In my humble opinion, suggestions to use Sandboxie do not fit into the OP's requirement of "need of a security setup for non technical end users". I think that the concept of SBIE, along with the recovery process and some of the popups are beyond the scope of "non technical end users".

 

Yes, this is an issue. I weigh it against an AV or other scanner though. If the user(s) can become infected with an up-to-date scanner (and it happens all the time) then what good is the scanner as thier primary protection?

If the user is paying a tech to fix it, well at some point you would think they would want to stop wasting money. If they expect thier own personal geek to fix it (that is you/me), that geek may not want to keep fixing it over and over. Again, at some point the geek must tell them they have to learn something.

So whether it is Sandboxie or another tool, even an AV, if the user won't take the time to learn at least some basic things, I don't see anything ever really solving thier problems.

However, if they want to stop having problems, and are willing to learn a little, many tools are now available to them. I personally think Sandboxie is the easiest because all you really need to do is get them to understand the directory structure and what files are and where they live, and why SBIE doesnt' put them where they thought it would. In my experience anyway, it is much easier to teach something they have seen but don't fully understand than to put some other software on and teach them how to use that, especially if they have to answer prompts, which IMO is the largest hurdle for those types of users because they don't know how to answer.

Sul.

 

I want to thank everyone for the suggestions. Going to give a couple of them a try and see what happens.

I have tried CIS on some of my more prolific trouble makers. Well it did do an amazing job, it also created more emails/txt messages/phone calls because of all the pops asking for allow/deny/sandbox....

My typical security setup for the non technical:
Avast/Avira/Panda Cloud (depends on users hardware)
Spyware Blaster
Spybot S&D (mainly for immunization)
Windows FW is on
Windows is auto updated
SEHOP

 

And Enable DEP, easy as 1 2 3

 

Nothing wrong with this setup

 

average users will need lots of aspirins to deal with SS popups.. Noob reminded me that the setup need to be for average users

 

or avast antivirus and keyscrambler

 

ahh indeed or just somehow get them to buy shadow defender and say bye bye to infection..

 

Or you could just buy any other System Virtualization software and lock it down

 

indeed

 

maybe returnil system

 

ah but i heard returnil slows down system

 

yeap that's true

 

IME shadow defender is very light..only wish the developer dont abandon this brilliant product

 

In my experience it does a bit, Deep Freeze is a good option too!
Hahaha i need to stop talking nonsense he's not even asking for options

 

yep indeed my good friend only wish i never heard the thing about a certain hacker always breaking through deep freezer..rofl

 

If i remember correctly, to bypass DeepFreeze you have to know at least basic things about booting media and also know where to get those things

Don't blame me, i hated school computers, they all had DeepFreeze

 

i agree

 

For web browser, I recommend that your users use Internet Explorer 8 or 9 in order to take advantage of SmartScreen, which should help cut down on the fake rubbish that your users have been encountering. For test results, see threads such as Study of effectiveness of malware reputation services used by 6 web browsers. Also, with Internet Explorer on Vista or later, if you haven't disabled UAC, then your users will be using IE's Protected Mode. Perhaps also use the Web of Trust extension.