I've just gotten a notebook computer for the first time ever and I'm looking forward to being able to use it on the go occasionally at public WiFi hotspots. I'm paranoid enough to avoid transacting business with my bank account or credit cards over an unencrypted link but I've been advised by a couple of people that the more worrisome threat is exposure to certain types of malware that can attack my system in those environments. At home I use it behind a WPA2-encrypted, MAC-filtered NAT router...which automatically provides stateful packet firewall I believe. So the vast majority of my Internet usage that happens at home is not a major concern. I'll either put a Norton or Kaspersky suite on the computer or maybe even cheap out and get by with the Vista firewall, Windows Defender and a plain old antivirus scanner. But when I go out onto unsecured wireless networks, riddle me this. If I were to install SandboxIE on the notebook and always run Internet Explorer within it while using unsecured wireless, wouldn't that be a fairly robust solution to the class of threats my friends are warning me to beware? I could configure the sandbox not to have a view of any of my personal data and for just plain old browsing it ought to be a real Chinese wall if I understand the technology correctly. I'm thinking all I realy need is SandboIE for use in public and a program for making system images on DVD+R every week or two at home and most any old antivirus program will suffice for routine sweeps. Or am I overlooking a big gotcha somewhere that makes all this more complicated than it sounds? P.S. Is this sort of thing what is meant by a "drive-by" browser attack?