Firstly, I'm brand new to this area of security, as I've posted in a couple of other threads. In the past few weeks, I've tried various HIPS and other types of programs. Today, a thought struck me and I'm curious what others think. We're all concerned about rogue programs getting access to our machines or we wouldn't be here. We're all looking for perfect protection. Isn't sandboxing approaching that ideal? Doesn't running our browsers sandboxed do that? If everything that comes in is stopped and held in a sandbox/virtual area that allows us to open it and check it prior to running or whatever it, isn't that an ideal situation? Whether it's DefenseWall, Sandboxie, or some other sandbox type software, it seems like our computers are protected. I'll grant that this leaves some leeway, and common sense has to be used. That might be a problem for some people. The average computer user though, when faced with some HIPS programs is overwhelmed. Downloading to a sandbox and running an antivirus or other software to check what's in the sanbox is a lot simpler than trying to figure out many HIPS programs. Even grandma could do it with a few minutes of instruction. Sandboxing technology might not be perfected yet, but it seems like the best solution. Curious about what comments others with more knowledge have on the subject.