Sandboxie Plus (Sbie fork)

Discussion in 'Sandboxie (SBIE Open Source) Plus & Classic' started by DavidXanatos, Apr 9, 2020.

Thread Status:
Not open for further replies.
  1. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    hmm.. not sure what went wrong there, do you have a space in the file path?

    to fix it just kill the process. start sandman again, when it asks to set something up or for admin rights cancel/no.
    than when the window opens, click sandbox->maintanance->advanced-> and uninstall service and driver. it will need admin rights
    wait for al operations to say thay finished
    than click in the maintanance menu connect and it wil reainstall the driver + service and connect

    @mantra
    I'm no icon artist just take what I can find in icons8.com if you can recommend me a better free icon side I'd gladly try it out.
     
  2. liba

    liba Registered Member

    Joined:
    Jan 21, 2016
    Posts:
    344
    Please watch.
    Code:
    ufile.io/51uimft4
     
  3. Peter 123

    Peter 123 Registered Member

    Joined:
    Feb 1, 2009
    Posts:
    409
    Location:
    Austria
  4. Peter 123

    Peter 123 Registered Member

    Joined:
    Feb 1, 2009
    Posts:
    409
    Location:
    Austria
    Hello David,

    just to inform you:

    I cannot download SbiePlus32.zip. Whenever I try it, I get an error message: "Crash".

    Downloading of SbiePlus64.zip and SandboxieInstall32-v5.41.0.exe works fine.
     
  5. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    the video does not work for me
     
  6. liba

    liba Registered Member

    Joined:
    Jan 21, 2016
    Posts:
    344
  7. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    4,013
    SandMan - are you kidding that SandMan and its Qt dependencies are 2 times bigger than whole sandboxie?
    it was and is one of sandboxies benefits to be kept small and clean.
     
  8. leofelix

    leofelix Registered Member

    Joined:
    Sep 6, 2009
    Posts:
    173
    Location:
    Italy
    Hi,
    first and foremost thanks to DavidXanatos for his work.
    Just for your information WindowsDefender detected and removed SandboxieInstall64-v5.41.0.exe. I know it is a false positive though you may want to ask Microsoft to fix the issue.
    Currently running Windows 10 home 1909 fully up to date.
    Cheers
     
  9. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    Its still clean Qt is as standalone as it gets.

    And small is relative back in the last millennium I had 100ths of MB of HDD space nowadays I have 100ths of terabytes.

    The sources for SbieCtrl are 1.070 MB or code,
    the sources for sandman are 71 Kb + another 69 for the QSbieAPI.
    That is a massive difference and its possible because of a powerful, and large, framework.

    It would take forever to make a nice and advanced UI just with MFC, and it wouldn't be fun.

    Fun is being effective, efficient, getting things done faster than one can think of new once.

    Its tedious and pain full work to mess around with implementing own tree controls or even as simple things like a re-sizable splitter (like between the log and the box view) in qt its a few lines with MFC for what I remember last time i did that a decade ago I needed a few classes some helper functions and an everything but swift integration once it was working.
     
  10. Peter 123

    Peter 123 Registered Member

    Joined:
    Feb 1, 2009
    Posts:
    409
    Location:
    Austria
    It works now.

    The same here with the SbiePlus32.zip.
     
  11. diversenok

    diversenok Registered Member

    Joined:
    Oct 7, 2018
    Posts:
    18
    Location:
    Russia / Netherlands
    Not directly, I didn't find his email. However, the person from Sophos I contacted back in September 2019, told me that she forwarded all my reports to the development team a long time ago.

    We can wait until the situation with the website clarifies. After patching both branches of Sandboxie and publishing the new release on the website, updating becomes the users' responsibility solely. Using outdated software can be dangerous, but using an outdated sandbox to run actual malware in it is just stupid. I suspect, most of the users don't even need a 100% isolation, they probably use Sandboxie as an easy installation undoing tool that prevents badly-written software from cluttering their system.

    We'll see how it goes anyway.
     
  12. wissec

    wissec Registered Member

    Joined:
    Apr 11, 2020
    Posts:
    36
    Location:
    Out
    aha, being a vulnerability that seems to be critical now you could contact him directly, surely here you have more possibilities to contact him directly and if not through bo. It would be basic that Tom is up to date with everything since he will be the pillar of the development of the traditional project.
     
  13. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,557
    Location:
    The Netherlands
    Sorry, I forgot to explain. I'm talking about the ugly dotted lines, I don't know which idiot invented this and I have no clue why it has never been removed in Windows. In certain apps you will see these dotted lines and in certain apps you will not. I hate this stuff so much, that I seriously considered switching to the macOS. Is it possible to remove them from the Sandboxie GUI?
     
  14. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    You mean the 6 dot triangle on the bottom right of the status bar?
    in the next build you can set
    Options/NoStatusBar=true
    to disable the statusbar entierly, or
    Options/NoSizeGrip=true
    to disable the dots in the bottom right corner
     
  15. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    Not having a valid cert is a real pain with modern patronizing anti malware tools, they like to criminally delete files without permission.
    In german that wold be a criminal act Komputer-Sabotage, but oh well...

    The next Sandboxie-Plus build will have the SbieDrv.sys obfuscated and on first start will show a message like:

    upload_2020-6-18_13-48-31.png

    what do you think.

    Also some typos are intentional ;)

    Cheers
    David X.
     
  16. Itay

    Itay Registered Member

    Joined:
    Apr 6, 2019
    Posts:
    11
    Location:
    Israel
    Looks good @DavidXanatos
    Also, my Norton 360 has removed SbieDrv.sys so I whitelisted it and reported it as a false positive to Symantec (and BitDefender too since it was also flagging it in VirusTotal) and they both unflagged it after less than 24 hours!

    Reporting it to Microsoft will most likely yield no such results because of their greed but we can submit it to other AVs in order to mitigate this issue.
     
  17. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    This build focuses on usage improvements and bug fixes.

    Download: https://github.com/sandboxie-plus/Sandboxie/releases/tag/v0.2.1

    [0.2.1 / 5.41.1] - 2020-06-18
    Added
    • added different sandbox icons for different types
      -- Red LogAPI/BSA enabled
      -- More to come :D
    • Added progress window for async operations that take time
    • added DPI awareness
    • the driver file is now obfuscated to avoid false positives
    • additional debug options to sandboxie.ini OpenToken=y that combines UnrestrictedToken=y and UnfilteredToken=y
      -- Note: using these options weekens the sandboxing, they are intended for debugging and may be used for better application virtualization later
    Changed
    • SbieDll.dll when processinh InjectDll now looks in the SbieHome folder for the Dll's if the entered path starts with a backslash
      -- i.e. "InjectDll=\LogAPI\i386\logapi32v.dll" or "InjectDll64=\LogAPI\amd64\logapi64v.dll"
    Fixed
    • IniWatcher did not work in portable mode
    • service path fix broke other services, now properly fixed, may be
    • found workaround for the msi installer issue
     
  18. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    14,557
    Location:
    The Netherlands
    Now you're confusing me, I don't see any statusbar? But anyway, I'm talking about the dotted lines around "DefaultBox", I don't want to see any stupid dotted lines when I click on anything. The original Sandboxie GUI also has this problem.
     
  19. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    Now you're confusing me as well.
    can you please make a screenshot explaining the issue.
     
  20. mmlr

    mmlr Registered Member

    Joined:
    May 31, 2020
    Posts:
    17
    Location:
    n/a
    Thank you for solve the error.
    I read somewhere that solving a problem with MSI installers can cause security problems.
    Did you avoid it ?
     
  21. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    The fix is to add AnonymousLogon=n to each sandbox you want to run msi installers in,
    this has to be done by the user but there is a new message now telling the user to so so if he tries to run a msi installer inside a sandbox without it.

    what it changes is that the token used by sandboxie is no longer anonymous but associated with the user what is a potential security issue.

    So if you absolutely don't trust you msi fine run it in sandboxie inside a virtual machine.

    So its more a workaround than a proper fix, a proper fix would be me understanding why the MSI installer fails with a anonymous token as from its perspective inside the sandbox it should think it has a normal one.
    Apparently some security check some ware fails and so on...
     
  22. mmlr

    mmlr Registered Member

    Joined:
    May 31, 2020
    Posts:
    17
    Location:
    n/a
    Thanks for the explanation.:)
     
  23. henryg1

    henryg1 Registered Member

    Joined:
    Jun 14, 2020
    Posts:
    186
    Location:
    uk
    Hi David
    Giving the latest version a try, and so far all seems well (W10x64 v1909).

    AVG thinks it is malicious though and I keep having to add exceptions.

    A big thanks for taking this on :thumb:

    Henry
     
  24. henryg1

    henryg1 Registered Member

    Joined:
    Jun 14, 2020
    Posts:
    186
    Location:
    uk
    Could this be a toggle somehow, rather than a permanent setting?
     
  25. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    1,126
    Location:
    Viena
    Yes in fact that*s why I introduced different color boxes

    Although its yet not fully in use, the plan is to add easily accessible options to change individual box settings and show their security implications as a different colored sandbox.

    My main issue is if I have multiple relevant settings what color to pick then, eider an additional one or have priority what is most insecure :D

    The next build will also be deployed by default with the logapi dll's
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.