I currently have just the Default sandbox with the following changes from the default installation configuration. 1. QuickRecovery: Added a few more locations 2. Delete Invocation: Auto delete contents of sandbox 3. Internet Access: Firefox, IE7, wmplayer, java 4. DropRights: Enabled 5. Applications, Web Browsers: Allow direct access to Firefox and Seamonkey bookmarks For "optimum" security for the Sandboxie user who does not want to edit their INI file, what settings would you add to or take away from the above configuration? Thank you.