Question about Sandboxie!

Discussion in 'sandboxing & virtualization' started by PiCo, Jun 7, 2008.

Thread Status:
Not open for further replies.
  1. PiCo

    PiCo Registered Member

    Joined:
    Apr 9, 2008
    Posts:
    352
    Location:
    Athens, Greece
    My father hijacks often my pc when I am not around browsing through the net with firefox.
    This actually freaks me out because he is the definition of what we say "happy clicker"!

    So I thought I give Sandboxie a try, but I have some questions.
    Does it come with a free version?
    Is it what I am looking for?
    What are the drawbacks?
    What is the link for the official site? (don't want to end up with a rogue :p)

    I apreciate any advice on this! Thank you!
     
  2. HURST

    HURST Registered Member

    Joined:
    Jul 20, 2007
    Posts:
    1,419
    Sandboxie would help.
    Yes, there is a free version.
    I'm a little short on time right now, so I can't explain much, I'm sure other members will be glad to help, or you can search for SandboxIE in other threads.
    :)

    But I believe a better solution could be Returnil. Just enable it when you know others will use your computer. That way you don't have to worry anymore, when you get home and turn on the computer, everything is just as you left it!
     
  3. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
    1. Yep, free version :)

    2. It isn't a complete solution to "happy clicker syndrome". What it does is virtualize the browser, meaning most malware caught through the browser is gone once Sandboxie is cleared out. There are some pieces of malware that can bypass it I believe (I'm not real sure if that is the case with the newest version, don't hold me to it.

    3. Drawbacks are that malware that can steal data like trojans and such, can steal that data while in the sandbox. So, even if you delete the malware, the job is done. This is where other security measures come into play and why Sandboxie is not a final solution. There are other methods to prevent such cases such as HIPS (plenty of advice on that all over the forums.

    If you have a good up to date antivirus and antispyware solution, and run an alternative browser, Sandboxie is still excellent protection. Something you may want to look into is http://www.returnilvirtualsystem.com/. Returnil also has a free version, and, unlike Sandboxie, makes your whole system virtual. Both SandBoxie and Returnil can also be used together, which is really nice protection.

    As with Sandboxie, once Returnil is cleared out, so is the malware. However, Returnil is cleared with a reboot.

    4. Sandboxie is found here: http://www.sandboxie.com/

    Edit: Just wanted to add, the best offense is a good defense, ie, turn dad from the happy clicker ways ;)
     
  4. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Hi PiCo,You may have to set up parental controls as well.:D
     
  5. Baz_kasp

    Baz_kasp Registered Member

    Joined:
    May 1, 2008
    Posts:
    593
    Location:
    London
    Couldn't you just set up your father a limited user account (if all he uses it for is surfing and normal computer tasks)....that way he wouldn't really be able to do any "damage" to the system and a normal AV solution would suffice.


    Sandboxie is nice...there is a free version that has a nice nag screen (I paid for the licensed version to support the developer) but they pretty much work the same way.

    Browser may be slightly slower to respond inside the sandbox based on pc spec, and if your firefox is loaded with lots of addons/plugins it may conflict or crash the sandboxed browser...best bet it to give it a trial run and see how it works for you.
     
  6. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    Returnil or ShadowDefender to keep your system unchanged, regardless what your father did.
    Defensewall or Sandboxie to lock your data folders, when father is on the internet. Maybe ShadowDefender will do this too.
    Parental Controls = ON, when father is online to protect mother.
     
    Last edited: Jun 7, 2008
  7. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
    Erik, is it possible to lock the data folders in the free version? I've basically got default settings with the exception of allowing Sandboxie to clear itself upon closing the browser? It may have already been somewhere here in the forums but I haven't ran across how to do this.
     
  8. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    I don't know, the only thing I know is that some features are disabled in Sandboxie free.
    If money is an issue for the OP, none of my suggestions are good, except Returnil free and Sandboxie free.
     
  9. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
    Ok, thanks. I'm looking through the help guides and forums and from what I see that particular function may indeed be in the pay version.
     
  10. PiCo

    PiCo Registered Member

    Joined:
    Apr 9, 2008
    Posts:
    352
    Location:
    Athens, Greece
    I tested it a bit, the only thing I changed in default settings was to Automatically delete contents of Sandbox when the sandboxed program closes.

    This seems to be a great light program to have on your pc! It sandboxes the whole firefox!

    :thumb:

    edit://And of course thanks for all the suggestions! I'll see if father (a very dangerous type of malware) will be able to bypass Sandboxie and if so I will work myself up to Returnil and other stuff :D
     
  11. subset

    subset Registered Member

    Joined:
    Nov 17, 2007
    Posts:
    825
    Location:
    Austria
    Your father is a sandboxed type of malware now. :blink:

    Cheers
     
  12. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    If anyone does find any malware that can bypass SB then feel free to post over at SB's forum.

    Sandboxie can also be configured that only certain programs can use internet resources so if a data stealing malware is introduced through a sandboxed browsing session it can log but it can't send that data out.

    Empty the sandbox and any such malware is gone for good.

    You can even set Sandboxie where no app will run within a sandboxed session except what you allow.
     
  13. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    Sandboxie is inadequate for protecting a public-access computer. Anyone with keyboard access -- even an amateur -- can easily break out of it, whether accidentally or on purpose. I can't think of even one of my elementary school computer students who couldn't easily circumvent Sandboxie.

    Returnil-free will work okay IF you use it to back-up to an external hard drive, & disconnect that drive when you are not personally using it. An external HD has the added benefit of protecting you from full-on system-drive failure.
     
  14. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Sandboxie used as intended affords excellent protection.It's there to protect any and all malware threats instigated from a browsing session.

    Sandboxie works inside the system and doesn't stand behind the user with a big stick.

    Oh look, I've opened Firefox outside of Sandboxie and I've circumvented it's protection.

    Like saying - I've rebooted out of Returnil mode and I've circumvented it's protection.
     
  15. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    See THIS tabular comparison.
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~

    As to using Sandboxie in a public-access environment -- the topic of this thread applies to providing computer security given usage thereof by a *carefree person* with keyboard access. Thus, Sandboxie's level of protection with respect to malware is not the decisive criterion, in my opinion.

    As stated in my prior post: Anyone with keyboard access -- even an amateur -- can easily break out of Sandboxie, whether accidentally or on purpose.

    With respect to Sandboxie, it is true that one can safely allow potentially *dangerous* ACTIVITIES to take place by isolating those activities within a sandbox.

    However, a PERSON with keyboard access cannot be isolated within a sandbox so easily.

    Therefore, the singularly *BEST* protection for public-access computers is to allow the public to do whatever they want to do with one's computer, and (after said users are finished with whatever desecrations they undertake) you simply reload a stable image and Poof! all is forgiven.

    My responsibilities have included protecting public access computers -- in kiosks, schools, libraries, etc. Some of my unemployed friends (former ITs) tried sandbox solutions. Those solutions didn't work, and now my friends aren't working either. In my case, I never lost a patient - no, not one.
     
  16. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,404
    In Sandboxie, if you go to the 'Configure' menu, then select 'shell integration', then 'Add shortcut icons', you will be able to add sandboxed icons to your desktop for all programs your dad uses.

    Such as Internet Explorer, Firefox, and any other program that is used. Delete the non-sandboxed icons from your desktop, which means, to open a browser outside of the sandbox, you have to go through the start menu (something he probably won't do).

    All the shortcut icons on your desktop will be sandboxed (call the shortcut icons something like [SB] Internet Explorer, [SB] Firefox, and so on.)

    This way, you'll find whether your dad clicks on Internet Explorer or Firefox (or another program) from the desktop, all are opening within the sandbox.
     

    Attached Files:

    • 1.jpg
      1.jpg
      File size:
      10.8 KB
      Views:
      217
    • 2.jpg
      2.jpg
      File size:
      37 KB
      Views:
      215
    • 3.jpg
      3.jpg
      File size:
      11.2 KB
      Views:
      216
    Last edited: Jun 8, 2008
  17. Huupi

    Huupi Registered Member

    Joined:
    Sep 2, 2006
    Posts:
    2,024
    Easier make them ''forced programs''. ;)
     
  18. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,408

    This is good for the free version of Sandboxie. :thumb:



    And of course this is the way to do it in the paid version of Sandboxie. :D
     
  19. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
Loading...
Thread Status:
Not open for further replies.