Sandboxie & Geswall Together

Hi All

I am running Sandboxie and Geswall together.

That is my Sandboxie is configures to allow only my browser (Firefox) to run.
So when I start Firefox it starts sandboxed and running in Geswall. The latter giving the formal keylogger protection that Sandboxie does not have.

Slight problem of sluggishness. Also when you shut Firefox down it either takes a very long time or it leaves firefox.exe in the task manager.

Anybody experienced this and are ther any work arounds.

Thanks

Terry

 

My experiance with running Sandboxie and Geswall together was very bad.
Although the two ran togeather on my pc for a short while I keep having some conflicts and small program crashes till the big one.....computer crashed. Pc would not boot. I had to use the sub station in Rollback Rx.
Lost all snapshots and had to go back to baseline (that was still good) with Rollback Rx.
Although Sandboxie and Geswall are not compatable, Sandboxie and DefenseWall are. No issues with my current setup.

 

Not a good idae IMO.

 

IMHO make it and either/or thing and only run SBIE or DW/GW. They work differently, but provide the same if not extremely close to same protection. I couldn't get SBIE to work with Defensewall very well (of course nothing seems to get along with Sandboxie on my system, I think it's jealousy, hehe). One thing is for sure, all 3 programs provide great protection if they work well on your system.

 

i tried to run those two and i got some errors with ieexplorer,then i tried defensewall which also blocks keyloggers and it works perfectly. defensewall and sandboxie
thats my current set up.

 

Geswall has its on version of Sandboxie, thus the need to not install Sandboxie.

 

I wonder why people insist in running GW or DW together with SBIE.
All of them offer excelent protection.
I have read in some posts that they do it "in case something is recovered from the sandbox, it stays untrusted"
But by that logic, and if you worry about that, SBIE is not needed. Just use GW or DW and you have the same protection with less resources.
Is it just for the ability to delete the sandbox?

 

Well, when I was doing it that way it was because of my unfamiliarity with DW/GW. I was used to the way SBIE worked because I was the one that recovered/emptied things out of it all the time, and, I KNEW that not even a registry key would leave the sandbox, so I knew when I tested things out, I was safe. With DW/GW, since I didn't see what it was doing behind the scenes and only got pop-ups wanting to allow/disallow things, so it made me less comfortable.

 

is not only that but the flexibility of one doing one job and the the other doing another job not just in case sandboxie or you know.
to be clear for example sandboxie only restrict keyloggers if you apply certain
configuration which for novice is very difficult,now defensewall comes with default keylogger blocking capability.so in my case i need both for that reason and i also like both.

 

By this logic you only need DefenseWall

 

the thing is that Defensewall does not Prevents a cross-site scripting attack that introduces malicious scripts injection into iexplorer and sandboxie covers this very nicelly.
and you probably will tell me to use firefox(with noscript) or additional explorer but i use microsoft.

 

Hello jjmonge,

Correction, while DefenseWall does not prevent or block cross-site scripting(XSS), it "will" protect against the malicious script injection into Internet Explorer introduced by way of XSS. Keep in mind that XSS is just a "means" to redirect one's web browser to a malicious site, steal private/sensitive information or expose one to drive-by-downloads(malicious payload delivered via manipulated javascript, iframes, ActiveX & Flash and exploit targeted malware).


Peace & Gratitude,

CogitoErgoSum

 

so if Defensewall prevent the damage i will say that it defeats the type of attack yes or not?

 

Still not. Passwords and other info can be stolen via Cross site Sripting even when u are running any of these sandboxes like gW, DW, SBIE etc etc.

 

Thanks aigle for replying.

 

U r welcome ofcourse.

 

If everybody says that
- 2 firewalls on board is not a good idea.
- 2 real-time scanners on board is not a good idea.
why would it be suddenly a good idea to install 2 sandbox softwares ?
I don't even combine DW and SB, because it caused problems.
If a sandbox software has shortcomings, fix them with an additional security software, not another sandbox software.
For the same reason I don't combine FDISR and Returnil/SD, it's FDISR or Returnil or SD.
Combining FDISR and Baseline Shield (HDS) was a disaster, I tested it myself, had to restore an image to get my system back.

 

I don't install 100 softwares to do different things, that's your (expensive) hobby, not mine.
The more softwares I have, the more maintenance.

 

If GW, DW or SBIE can't protect me from XSS then what would?
Hugger

 

the internet explorer beta 8 will

 

I don,t know.

ATM only application might be NoScript FF extension. How effective it is, I am not sure.

 

about iexplorer beta 8 and xss attacks

http://blogs.msdn.com/ie/archive/2008/07/02/ie8-security-part-iv-the-xss-filter.aspx

 

Hello Hugger,

Privacy/security hardening one's web browser of choice will help lessen and/or negate the impact of cross-site scripting(XSS). The following link below may be of interest to you. Hope this helps.

https://www.wilderssecurity.com/showthread.php?p=1273394 (*Note: Please take note of post #'s 1, 14, 20-21, 23-25 & 27)


Peace & Gratitude,

CogitoErgoSum

 

XSS is not about local computer intrusion. So, no HIPS can really do that, it's a job for your browser. As I know, FireFox 3 and Opera 9.5x has it.