I am mounting a cloud drive to my system so that I can sync that space with rclone. It will always be m:\. Mounting as a virtual drive is by far the easiest way. As a safety precaution, I want to deny access to it by anything that has access to the internet. What's the easiest way to do that within Sandboxie plus? Is it as simple as ClosedFilePath=m:\ or is there a better way.
That should do the trick, better way... perhaps you could add also a wildcard ClosedFilePath=*\server\share\* just to be sure
What would the path with a wildcard look like? As far as I know the mount drive is only m:\. So, ClosedFilePath="*\m:\*??
aaaa.... you don't mean a samba share (windows shared folders) but some 3rd party software mounted drive, than the internal Nt path will depend on what software that is. generally ClosedFilePath=m:\ should be enough If you want to find out the NT path of your M:\ drive you can use TaskExplorer's sbie tab there it shows all access rules evaluated for the inspected process but as said just the ClosedFilePath should be enough, we are here diving into the fail safe paranoid total security region.
@n8chavez Code: ClosedFilePath=!<BlockNetAccess>,M:\ If you want a program to be able to access the specified folder, you must define a 'Block' rule for that program in the 'Network Options > Process Restrictions' section. Code: ProcessGroup=<BlockNetAccess>,program.exe
Wait. I'm confused. If I want to allow a program access I have to create a block rule for that program? That makes no sense. It doesn't matter anyway through; I don't want any program to access the mounted drive except rclone. But those kind of restrictions are outside the scope of SBIE as rclone is not run in a box.
