Sandboxie: What do you sandbox, other than your browser?

I think so too.

Bo

 

Yes.

Bo

 

Thank you very much, this helped out a lot

 

Wouldn't it be better just to use a image program, then you do not have to worry about all this nonsense, if you get infected just re-image the drive, seems a lot simpler to me, the trick is to "KNOW" when you are infected

 

Sounds to me like you are still getting infected. The trick or goal should not be "knowing when you are infected" in order to reimage, it should be preventing getting infected. And that's what Sandboxie is all about.

Bo

 

"Sounds to me like you are still getting infected"

Not the case, I haven't re-imaged for an infection but for one time "ever"
and that was several years ago "if memory serves me right", I am preventing infection by the type of OS I am running, but if I do get infected it is far easier to just re-image than to deal with programs that setup "sand-boxes, Force-fields or any of the other type of _____
but to each his own, Cheers

 

The way I see it is, if you bought the software or have an interest in the software (Regardless of what you're using), that person should take advantage of every feature that they can or want to utilize, have it be Sandboxie, imaging program, both, etc..

To me, it really doesn't matter, as long as you're truly happy with your own "Personal" setup/the way you run thing's.

Everyone is different

 

I have a primary sandbox for all my usual stuff. This is all of my browsers, pdf reader, torrenting program, media player, office, etc. I have start/run restrictions and internet access restrictions for everything in this sandbox and my media partition is blocked. I have a secondary sandbox with the exact same configuration in case I want to separate two programs. I have a testing sandbox that can't access the internet or my media partition. Lastly, I have a fourth sandbox for any other drive letter that cannot access the internet or my media partition.

 

I only sandbox new or untrusted programs. Doing so for my regular programs is too much of a chore for any likely infections ([virtually] non-existent), even when compared with EMET.

 

Anyone Sandboxing Windows Live Mail (Client)?

If so, getting errors?

 

I dont use it, I uninstalled Windows Live on my W7 but there is a Software compatibility setting for it, make sure it is ticked. What error are you getting?

Bo

 

My settings:
Sandbox Settings > Applications > Email Reader > Windows Live Mail selected
Sandbox Settings > Program Start > Forced Programs > Added wlmail.exe
Sandbox Settings > Restrictions > Start/Run Access > Added wlmail.exe

With the above settings, Windows Live Mail somewhat runs in Sandboxie, but doesn't get past the loading screen.

At that point, I get this error message.



It's probably one of these that's causing it:

1. I'm missing something in my configuration file.
2. I'm also trying to run "wlmail.exe" under EMET 4
3. Sandboxie (Current) isn't compatible with the newer version of Windows Live Mail.

 

If I was you, I would right click on the Windows Live mail icon and choose to run it sandboxed in a "default" settings sandbox where all programs are allowed to start and run.

Bo

 

Did that and I get this...

 

If this is an actual problem, I'm gonna report it to tzuk ASAP.

But, I get the feeling it might be on my end (Configuration incomplete, Windows Live Mail added under EMET, etc.)

 

I know I'm bouncing back and forth on questions here, which I apologize.

But, do you think it would be a good idea to select/add "Delete Invocation" to my above USB configuration?

 

No need to apologize, I love talking about Sandboxie.

Personally, I set all sandboxes to delete on closing. The only excepsion for that is when I install a program in a sandbox and want to keep it for a while.

What happenned to this setting, "NotifyInternetAccessDenied=y". Did you remove it?

Bo

 

It might be a conflict with SBIE or there is a need for a workaround when you are using EMET, SBIE and Windows Live mail. I never used EMET so cant help you on that. Search in the SBIE forum about Windows live mail and afterward, post about the problem (including the picture). I am sure Tzuk will appreciate it if you do so.

Bo

 

Ok, cool

Yeah, I'll add Delete Invocation then

The setting "NotifyInternetAccessDenied=y" in my configuration is still there, I just happened to quote one of my previous posts, that didn't have that line in it at the time.

 

I'll do that

Thanks

 

Bbesides my browsers, under Sanboxie I set the Windows folder to read only, to limit access to my system32 host files, and Sandbox just about every program that access the Internet

 

This is the most current thread I found on Sandboxie.

Attached are 2 files:

1) shows my FW detecting Sbie.Svc.exe attempting to intercept user key strokes. Why would it do that?

2) the second is a list from the website showing software that has known conflicts with Sandboxie. Most have mitigations like turning off real time scanners. What do you guys think of that?

I wanted to post this first over at their forum but they haven't got the file attachment upload feature.

 

I think it's good that incompatible programs are listed instead of lying and say the product is absolutely compatible with anything while it's not true. And I think it's good that the solution is as simple as turning off the AV.

I think they need to implement that feature in the support forum.

 

To be clear, 'guest' is using the term "re-image" when he should be saying "restore".
Imaging a disk is the process of making a backup.
Restoring a disk is the process of reverting to a healthy image.
To re-image when you get infected would be to make a backup of an infected disk.
HTH