Sandboxie Acquired by Invincea

Discussion in 'sandboxing & virtualization' started by ad18, Dec 16, 2013.

Thread Status:
Not open for further replies.
  1. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    BTW, when I run Vivaldi sandboxed, I often see SandboxieBITS being loaded, this doesn't happen with other browsers. Does anyone have an idea why this is?
     
  2. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
  3. beethoven

    beethoven Registered Member

    Joined:
    Dec 27, 2004
    Posts:
    1,388
    Bo, thank you. I will need to fiddle around with this a bit more to see why and how this happens. My default box for all browsers indeed has the firefox bookmarks allowed. Going into Settings just now (unsandboxed of course), I have to admit I did not fully understand the options. I cleared out all history but first thing after launching firefox now and surfing to Wilders I can see my log-in name and password still stored. Would that not have been by cookie? The order history in tab (not that it really bothers me) is also still there. So I guess FF is still retrieving this from my pc? I also note private browsing is ticked, I suppose by default. Would that be the reason that the option to clear history when firefox closes is greyed out? Not that I would really need that if all browsing is done via sandboxie.
     
  4. sukarof

    sukarof Registered Member

    Joined:
    Jun 22, 2004
    Posts:
    1,887
    Location:
    Stockholm Sweden
    Mozilla Thunderbird just updated to 52.2.1 and now it wont run in Sandboxie 5.20. TB runs fine outside of Sandboxie. Is there any tweaks in Sandboxie I can do?
     

    Attached Files:

  5. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Try, 1. Delete contents, and 2. Uninstall/Reinstall TB if deleting contents dont help. Delete folder in Program files.

    Bo
     
  6. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    beethoven, in Sandbox settings for Firefox, Are you allowing access to anything else other than bookmarks? Is bookmarks the only setting ticked in Applications/Web browser for Firefox?

    I get blank tabs in Firefox when I open a new tab, use Custom settings in Firefox Options to get rid of history and have history suggestions in Firefox Options unticked in all places. I never see the tiles, my experience seeing how they work is basically none as I got rid of them as soon they were implemented. I ll test later using a new Firefox profile.

    Bo
     
  7. sukarof

    sukarof Registered Member

    Joined:
    Jun 22, 2004
    Posts:
    1,887
    Location:
    Stockholm Sweden
    Damn...forgot that I hadnt automatic delete on the mail folder in sandboxie. :oops:Of course it works now. Thanks bo elam.
     
  8. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    You are welcome, Sukarof. When I used an email client in the past, I had the sandbox set to delete on closing, its more secure that way. If TB is setup properly to run sandboxed, mails you send and receive are saved despite sandbox contents getting deleted.

    For the future, if your browser or email client gets an update, delete contents manually if the sandbox is not set to delete automatically. Not doing it "sometimes" causes issues. If you read carefully the words in the message you got, they kind of tell you needed to delete contents.

    Bo
     
  9. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    4,208
    @bo elam
    hey,bo.do you know of any guides for sbie like chiron's for cfw?
     
  10. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Beethoven, I checked the tiles using a new Firefox profile and found them working as I though they would. Getting rid of history via Firefox Options/Privacy, using Never remember history or Using custom settings for history, allows the user to have direct access to bookmarks without saving history.

    So, if you don't want the tiles to show where you been, get rid of history as explained above. I been doing it like that for years, it works. I also open new tabs in about:blank (tab is completely blank). To do the latter, you need an addon. I get it done with Classic theme restorer.

    Bo
     
  11. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    No, I dont know any. The ones I seen in the past are old now. I suggest you read Sandboxie threads here and the Sandboxie forum. When I first discovered Sandboxie and started using Sandboxie, searches led me.......Here. :)

    I dont know if you tried it before or used Sandboxie before but my recommendation to first time Sandboxie users is simple: Keep it simple.

    By that I mean, at the beginning, start using Sandboxie pretty much with default settings. The only setting I recommend to change at the beginning is setting the sandbox to delete on closing of sandboxed programs. And for convenience, allow access to your bookmarks so you can save bookmarks while running sandboxed. And also, set it up so you can recover downloads out of the sandbox.

    When I started with Sandboxie, that above was all I cared knowing on my first day as a Sandboxie user. That and knowing how the antivirus interacted with Sandboxie.

    Eventually, you learn a little, then you change things a little to make things more restricted without losing usability. To me, this is important. By using Sandboxie, I dont give up usability. I want to use my computer as restricted as possible without losing convenience or usability. I achieve this as it feels like I am using nothing even though just about anything that runs, runs sandboxed in my PC. With time, you ll learn how to find this balance.

    Bo
     
  12. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    4,208
    @bo elam
    aamof,i'm a long time sbie user and i can say i know how to configure it.i just wanted to know if there were a guide for hardening it beyond my current config with the help of a guide prepared by a sbie expert.i devoured threads dedicated to sbie here and sbie forums long time ago.but you know,sometimes a single mistake you make in your config with a sw and all the protection you gain from it loses its integrity.so i wanted to fill the gaps so to speak.
    thank you anyway.
     
  13. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Theres really only so much hardening you can do. I mean, you have Start/Run access restrictions, Internet access restrictions and Drop rights. Combining this settings to restrict as much as possible without losing usability is the one rule I follow regarding restrictions whenever I setup a new sandbox. Striking this balance between security and usability is the north.

    If you run one browser in the sandbox and nothing else, using one sandbox is enough. But if you want to get more from Sandboxie and restrict as much as possible then you have to use dedicated sandboxes for different programs. Using dedicated sandboxes allows you to restrict a lot more than if you only use one sandbox. If you have a Sandboxie license, you have to do this to take full advantage of restrictions.

    For example: by using dedicated sandboxes for my PDF Reader and Office program, when a PDF runs in my PC, it runs sandboxed automatically in a dedicated sandbox set up where only Foxit can run, no program is allowed access to the internet and by using Drop rights, nothing can successfully install in the sandbox. Thats as restricted as it can be. And on top of that, my feeling when I run PDFs sandboxed is the same feeling I would feel if I was not using Sandboxie. For Libre, video players, 7Zip, programs that dont require internet access, this is basically what I do.

    Firefox is my every day browser. I use 3 sandboxes for it. Two of them I use every day and they are set up differently, different purposes. I am so used to using them that I know by heart where to run Firefox. I dont have to think about it.

    Something really important for Sandboxie users is to get in the habit of not mixing sensitive browsing with regular browsing all in the same browsing session. And always do sensitive browsing in a fresh browsing session using a clean sandbox. Many users like keeping contents/not deleting the sandbox, using this kind of sandbox for sensitive browsing is a bad idea.

    As important as the restrictions is to block sandboxed programs from accessing your personal files. You can do this via Sandbox settings.

    Bo
     
  14. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    4,208
  15. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
  16. bjm_

    bjm_ Registered Member

    Joined:
    May 22, 2009
    Posts:
    4,453
    Location:
    .
    Okay, #3275 works for me.
     
  17. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    I think the Sandboxie link explains very clearly the Why. But you might want to know what are this files that Vivaldi/Chrome is asking SandboxieBITS.exe to download in its behalf into the sandbox. Personally, I have no idea. I have never had Chrome or anything like it installed in the real system or for more than a few hours in a sandbox. But this is normal behavior for Chrome type browser. Without Sandboxie, you wouldn't even know that Vivaldi is silently doing something.

    Bo
     
  18. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    Yes exactly. I wonder what they are up to, and like I said, they work just fine if you block this process.
     
  19. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    I dont think the browser does anything wrong, what it does is just normal functioning for that kind of browser.

    If I was a Chrome/Vivaldi user and my computer was one of those that constantly got that message, I would disable Drop rights (to effectively eliminate the message) and forget about it.

    Bo
     
  20. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,738
    uTorrent doesn't work in SBIE anymore, at least when installed inside (I wanted to try it out for something).
     
  21. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Sorry J L, I cant help about utorrents. I am totally ignorant how they work, etc. I suggest you post at the Sandboxie forum, perhaps someone can help you there.

    Bo
     
  22. pling_man

    pling_man Registered Member

    Joined:
    Feb 11, 2010
    Posts:
    599
    Location:
    UK
    I have been trying out the portable "Emsisoft Emergency Scanner" (Version 12) by running it in Sandboxie and have a question.

    I do the following steps:

    I force the folder containing the installer to run in a default sandbox.
    I run the installer and it extracts files to C:\EEK but of course these are really in the Sandbox.
    C:\EEK opens in Explorer and has a yellow border and #C:\EEK# in the title bar.
    I run the program from that folder and do a scan.
    It reports that the system is clean so I quit the program.
    I then manually clean the Sandbox deleting all files.

    Now the problem:

    When I repeat the above steps to re-install Emsisoft Emergency Scanner in the default Sandbox, and I find that is has a record in its Logs of my previous scan!

    How is this possible? How is it storing its logs outside the sandbox?

    I have done this three times now, and each time the logs are preserved.

    I would appreciate any help or confirmation if anyone wants to try this.
     
  23. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,738
    What happens if you "Delete Contents" within SBIE? Did you really manually delete all files?
     
  24. pling_man

    pling_man Registered Member

    Joined:
    Feb 11, 2010
    Posts:
    599
    Location:
    UK
    Yes. I right-click on the sandbox name "Sandbox DefaultBox" in Sandboxie Control then I click "Delete Contents".

    One more thing. I am running a standard account. When I run the installer I am prompted for the password to my Admin account, which I provide.
     
  25. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    23,938
    Location:
    UK
    I have just done an EEK scan under Sbie (with my eicar test file found as a baddie) and then closed EEK and Sbie auto deleted the sandbox as per my settings.

    I opened EEK normally and no trace of the scan exists in the logs.

    On this machine I am running as admin.

    Some faq's here just for info in case they give any clues why

    https://www.sandboxie.com/index.php?FAQ_Virus
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.