Basic packet filter for Sandboxie+

Discussion in 'Sandboxie (SBIE Open Source) Plus & Classic' started by DavidXanatos, Jun 24, 2021.

Page 2 of 2
  1. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,839
    There is always going to be a split audience no matter what, those that don't have a use for it and those that do. I say as long as it's optional for the user, rather than forced, then it really wouldn't hurt by adding it in.
     
    Tyrizian, Jul 22, 2021
    #26
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,559
    Location:
    The Netherlands
    Yes but the thing is, couldn't we already block outbound connections via Sandboxie? So is this basically a full firewall comparable to Windows Firewall Control and TinyWall? I don't see the need for it since we already have tools to control inbound and outbound traffic. It's almost the same as implementing an AV into the sandbox. But it does look nice though, so good job on the interface.
     
    Rasheed187, Jul 24, 2021
    #27
  3. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,327
    Location:
    Viena
    Well technically what you could do was to block the communication between a sandboxed process and a set of kernel interfaces used by the networking stack. It was a all or nothing approach and some applications even crashed when restricted in this way.
    Tools like Windows Firewall Control and TinyWall can not distinguish between processes running inside and outside of sandboxie.
    And a user may want to allow the same process in sandbox 1 to access the internet but block it in sandbox 2 while may be wanting it in booth cases to be able to access the lan. Or any other a bit more convoluted scenario.
     
    DavidXanatos, Jul 24, 2021
    #28
  4. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,805
    Location:
    .
    @DavidXanatos
    Ronen Tzur would be very proud of you. Great great job man!
     
    Mr.X, Jul 24, 2021
    #29
  5. catspyjamas

    catspyjamas Registered Member

    Joined:
    Jul 1, 2011
    Posts:
    288
    Location:
    New Zealand
    "NetworkFirewallRule"

    This one gets my vote.
     
    catspyjamas, Jul 26, 2021
    #30
  6. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Raises curiosity and interest. Leaving it up to it's already dedicated user's but kinda of a new concept for sure.
     
    EASTER, Jul 26, 2021
    #31
  7. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,559
    Location:
    The Netherlands
    OK thanks, now I understand it better, so it's basically a firewall that can also work per sandbox. I didn't know that some apps crashed, I never actually used the process and network control options in Sandboxie.
     
    Rasheed187, Jul 27, 2021
    #32
  8. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,327
    Location:
    Viena
    So there is a problem with the UI for this new feature, that seams obviously to be a bit confusing,
    you see:
    the two tabs "process restrictions" and "network restrictions" are mostly independent,
    i.e. if you set a process rule or set all unlisted processes to be blocked
    a process in the network tab will still have no internet access despite the configurations there.

    I think i should somehow unifi these settings before the final release
     
    DavidXanatos, Aug 7, 2021
    #33
Page 2 of 2
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...