Sandboxie Acquired by Invincea

You could set Firefox as the only program with access to My Documents.

Sandbox settings>Resource access>Blocked access, Click Add program, Select Firefox, Click ! the exclamation mark. Clicking the exclamation mark makes Firefox the only exe with access to whatever resource you add. So, now you click Add for navigating to the My documents folder. After all is done your Blocked file access window should look like in the picture below. Notice where it says "the list below applies to all programs except firefox.exe.



Bo

 

Um, I made my Blocked Access look like your attach.
http://s17.postimg.org/kuq2ts7lr/screenshot.png
Blocked Access !firefox.exe does not survive OK. Reverts to default.
http://s17.postimg.org/ycwz62jr3/screenshot.png
I have two Direct Access and one Full Access.
?

 

Are you sure? open that part of the UI then click on the list and bring up firefox.exe. That list only shows (by default) rules applied to 'All Programs', the other rules for specific apps (or groups) must be found in the list and selected to then display their specific rules.

 

bjm, this is drop down window Syrinx is talking about.

Once you click on firefox.exe, you ll see the window with the restriction you are expecting to see.



Bo

 

OH!......so, !firefox.exe + %Personal% is in affect.. https://s17.postimg.io/kuq2ts7lr/screenshot.png ..but, does not show (by default). Hmm, since Direct Access and Full Access show....guess, I assumed. Thanks!
I use KeeFox with KeePass so, just wanted to see !firefox.exe + %Personal. Not sure why I would want Firefox to access Documents under Blocked Access. My default with All Programs is !<internet access> ..http://s13.postimg.org/lcc7ypmzr/screenshot.png.

 

Thanks 3x0gR13N and Bo.

I had forgot about the use of !.

I have set

Blocked Access for All Programs to the following:

%My Music%\
%My Pictures%\
%Desktop%\
\Device\Mup\

Blocked Access for !Keepass.exe to:

%Personal%\

So Keepass can read the password database (Stored under My Documents) and All other programs cannot access My Documents at all.

This works well.

Bo I think you meant I should allow access to Keepass not Firefox. This is what bjm_ is also saying.

Thanks everyone.

 

On the matter of protection of Keepass process memory, it reportedly uses Microsoft's Windows Data Protection (DPAPI) to keep everything encrypted in memory, so the "secrets" should be safe even if malware does read the memory. This is just another layer though because I also have Zemana Antilogger 2.1 encrypting keystrokes and its run-time malware protection.

 

Yes, that looks good....and better (I am not familiar with password programs).

I think blocking access to the Desktop is a little too much (inconvenient).

Bo

 

There's actually nothing on my Desktop!
Imagine how disapointing it will be if malware actually breaks through sandboxie's defences

 

Malware breaking Sandboxie is like flying solo to the North Pole, crashing, surviving and getting rescued after 6 month.

Bo

 

My default with Blocked Access All Programs is !<internet access> ..http://s13.postimg.org/lcc7ypmzr/screenshot.png.
where did !<internet access> come from...?

 

SBIE Control > (Box) Sandbox Settings > Restrictions > InternetAccess

It applies it as a file rule so that's why it shows there as well.
ClosedFilePath=!<InternetAccess>,InternetAccessDevices
then defines it by Group name and the attached exes
ProcessGroup=<InternetAccess>,palemoon.exe
InternetAccessDevices are basically just
\Device\Afd
\Device\Nsi

I didn't take a screenshot but you can find the InternetAccess Group under 'Program Groups'

 

bjm, if you delete the InternetAccessDevices setting, Internet access restrictions are reset, and All programs will be allowed internet access in that sandbox.

Bo

 

Aha!, and again !<internet access> is in affect albeit not shown (by default).
Thanks !!

 

Can anyone help please? I usually visit the SB forum to download beta versions. I wanted to re-install the latest Sandboxie beta, and I can't access the forum as a notice says I have been permanently banned from their forum because of spam. I guess somebody must have cracked my credentials. A ban as been put on my IP address. It says to contact the board administrator, but when I click the link nothing happens.
Edit: I also checked my credentials and they have my main email account, and no message informing me of the ban.

 

Hi Osaban, I ll see what I can do for you tomorrow.

In the meantime, here is the link to the latest Combined 32/64 bits installer for beta 5.13.5.

http://www.sandboxie.com/SandboxieInstall-513-5.exe

Bo

 

Thank you Bo, I hope something can be done to clarify this awful situation...

 

Huh, it is now needed to log in Sandboxie forum to get them betas? Don't remember it being this way.

Also why this thread title can't be changed. Other products don't need their company name mentioned so why should Invincea?

 

Still same way, i.e, no need to login to see forum and download betas. Osaban encountered his odd situation (banned) while trying to login to the forums as he is used to, but this isn't related to be able to download from the forum though.

 

Hi Osaban, I was told by Curt that your account doesn't show as being banned. Try again, perhaps it was a glitch. If it fails we need to get your IP address to him. Maybe it accidentally got caught in some IP address range ban.

Bo

 

Thanks Bo, I've sent you a PM.

 

Your IP has been cleared, you should be able to visit the Sandboxie site now.

Bo

 

Thank you so much Bo, everything is back to normal...

 

You are welcome. I am glad to help, Osaban .

Bo

 

I'm currently running Sandboxie with Kaspersky Total Security 2017 patch B together. Running sandboxed applications just fine. Seems they fixed the issues they had together.

Windows 10 x64 Redstone