Search found 198 matches
- Sun May 03, 2015 12:54 am
- Forum: Feature Requests
- Topic: SandBoxIE to harden SRP (software restriction policy)?
- Replies: 36
- Views: 7230
Re: SandBoxIE to harden SRP (software restriction policy)?
Corrected 64-bit support... (for fun...) I hope I am not forgetting something this time (apart from the doctor's approved implementation - not happening). ; Toggle build architecture PtrSize fix 4 ; 32-bit ;PtrSize fix 8 ; 64-bit ; Toggle OutputDebug equ 0 ;OutputDebug equ 1 PtrSizeAsc='0'+PtrSize S...
- Thu Apr 30, 2015 2:25 am
- Forum: Beta Version 4.17
- Topic: 4.17 Beta Available (Latest Version 4.17.8)
- Replies: 208
- Views: 65832
Re: 4.17 Beta Available (Latest Version 4.17.3)
that's specifically the one i was trying to install. Specifically, are you sure... because there are two Offline installers (standalone). And one or more online setups (non-standalone). they all give the same error as in my screenshot, though. I don't know how to explain that. Only the "all users" ...
- Wed Apr 29, 2015 9:16 pm
- Forum: Beta Version 4.17
- Topic: 4.17 Beta Available (Latest Version 4.17.8)
- Replies: 208
- Views: 65832
Re: 4.17 Beta Available (Latest Version 4.17.3)
The print spooler security hole is blocked -- no one needs to do anything unless ... Before Release, maybe want to address printer driver installation hole - tested. Adding drivers existing outside system directory may or may not be possible - untested. You are going to have to install Chrome outsi...
- Mon Mar 30, 2015 10:30 pm
- Forum: Quick Questions
- Topic: Global setting ?
- Replies: 4
- Views: 805
Re: Global setting ?
As an example ... (you're severely restricting Sandboxie to sandboxing Chrome only, using GlobalSettings like that, what if you want to sandbox other stuff? I suppose you'll add it to StartRunAccess (which would be time consuming especially for setup programs), or comment out the Template= or restri...
- Mon Mar 30, 2015 6:32 am
- Forum: Problem Reports
- Topic: "Delete content box" costs Disk space ?
- Replies: 6
- Views: 972
Re: "Delete content box" costs Disk space ?
Yeah, Sandboxie renames then deletes. I wouldn't be surprised if Google Chrome outside the Sandbox had a lock on a file inside the Sandbox. If you can't delete those folders from Explorer right now AND immediately after initiating Sandbox Delete Contents (when it fails to delete), then that does rai...
- Mon Mar 30, 2015 6:16 am
- Forum: Quick Questions
- Topic: Global setting ?
- Replies: 4
- Views: 805
Re: Global setting ?
Most settings, yes, you can. but ChromePrograms is defined within Template=Chrome_Phishing_DirectAccess so you should bring that into GlobalSettings as well but I don't use ANY Templates from Templates.ini in fact I TemplateReject= any detected software compatibility templates. Instead, I would (re)...
- Thu Mar 26, 2015 2:52 am
- Forum: Quick Questions
- Topic: Resource access setting ?
- Replies: 6
- Views: 1134
Re: Resource access setting ?
A fully portable browser shouldn't write outside of its own directory tree, and it shouldn't talk to other instances of itself. For exceptions to the portable guideline, there is a job for Sandboxie. Aside, Sandboxie Contains exploits from escaping unless an exploit targets a critical OS vulnerabili...
- Mon Mar 23, 2015 12:26 pm
- Forum: Quick Questions
- Topic: Resource access setting ?
- Replies: 6
- Views: 1134
Re: Resource access setting ?
By user-agent I mean the browser/client version string (which includes operating system info) that a browser is obligated to send in every http action/request (along with your IP address in every packet), but you're not concerned about the fact that a host of generic website elements that may be sha...
- Mon Mar 23, 2015 4:01 am
- Forum: Quick Questions
- Topic: Resource access setting ?
- Replies: 6
- Views: 1134
Re: Resource access setting ?
Keep unsandboxed Chrome/browser clean and you won't need to use WriteFilePath nor WriteKeyPath. (ClosedFilePath means the Sandbox won't be able to use that path at all and it'll break stuff.) To be on the safer side, install a different engine browser sandboxed than the one unsandboxed. And maybe as...
- Mon Mar 23, 2015 3:49 am
- Forum: Quick Questions
- Topic: Whitelist program access?
- Replies: 1
- Views: 432
Re: Whitelist program access?
Curt your enthusiasm, whitelist specifically is not currently possible.
- Sat Mar 21, 2015 9:47 am
- Forum: Problem Reports
- Topic: Sandbox bypassed or..?
- Replies: 54
- Views: 4770
Re: Sandbox bypassed or..?
But this setting prevents software setup... There, I learned something new. I didn't test the installer but the main program exe to notice that "The system cannot open the device or file specified." during setup... Solution: Make 'em portable, or, and I am thinking out loud again, create an InjectD...
- Sat Mar 21, 2015 8:04 am
- Forum: Problem Reports
- Topic: Sandbox bypassed or..?
- Replies: 54
- Views: 4770
Re: Sandbox bypassed or..?
nah. Sbie well and truly sandboxes the registry by now, I would say. But here, lsass.exe (unsandboxed SYSTEM process) was marshalling. :/ [GlobalSettings] ClosedIpcPath=\RPC Control\LSARPC_ENDPOINT Comment= or under [DefaultBox] No idea what else it will block/break, probably browsery things heh. Sb...
- Sat Mar 21, 2015 5:28 am
- Forum: Problem Reports
- Topic: Sandbox bypassed or..?
- Replies: 54
- Views: 4770
Re: Sandbox bypassed or..?
They probably use LsaStorePrivateData function storing a local object with prefix "L$". Hint! :wink: So how to clear this area if it is spammed...? Can it be exploited otherwise? Don't think so. REM https://technet.microsoft.com/en-us/sysinternals/bb897553.aspx psexec -i -s cmd.exe REM from an Admin...
- Sat Mar 21, 2015 4:08 am
- Forum: Problem Reports
- Topic: Sandbox bypassed or..?
- Replies: 54
- Views: 4770
Re: Sandbox bypassed or..?
Something is stored only while Elevated. That something is read back by NoiseBuster.exe only while Elevated. Once set, it is not set again. It survives a Restart. Afaik it is not USN journal, Prefetch, AppCompatFlags, or Spooler. It may phone home a HWID, but net can be blocked. You can take the mai...
- Sat Feb 21, 2015 5:07 am
- Forum: Quick Questions
- Topic: Sandboxie force different system folders
- Replies: 1
- Views: 496