Show Sanbox # in the Browser's Page Title Bar

[Unknown_User_736]

Currently I'm using 11 Sandboxes in sandboxie (I have 20 created and have used as many as 12 with some of the things I have going on).

One of my biggest wishes is that I knew QUICKLY and EXACTLY which sandbox to kill when I am done working with it (usually containing 1 or more browsers where I typically used a bunch of tabs).

I'm always wishing I could just look at the browser (or other program)'s title bar and see for example:

{name of sandbox} - [#] www.sanboxie.com :: Post a new topic - Opera [#]

Then I know to go to the {name of sandbox} folder and kill that sandbox (I usually Secure WIPE my directories with a program such as ERASER.

When I download a file from the net, sandboxie puts it in the sandbox directory and sometimes finding which sandbox it's in drives me nuts! (like now). There's a bunch of reasons why one gets confused about which sandbox something happened in.

And speaking of secure deleting: I know you made so that you can go in to the registry and configure an external program to do your secure deleting, but this is dangerous for people who SHOULDN'T be messing around in the registry in the 1st place. Secure deleting should be a standard, easily configurable option for Sandboxie and ALL browsers.

I searched all over until I found two browsers that I've specifically used just because they can securely wipe my business data (NETCAPTURE and PHASEOUT - BOTH IE based), though I mostly use Opera. Why rely on another program when a program can thoroughly wipe it's own data? No traces left...

It's like taking for ever to come with the idea of TABbed browsing... ?

So here's my wish list (not in order of preference)

] - Labeled title page bar
] - Password protected sandboxes (to stop sandbox deletion)
] - Default Secure deleting

[SnDPhoenix]

actually it would be pretty useful if you are running alot of sandboxes (such as yourself) even though i personally wouldnt have a use for it because i only run 1 sandbox at a time, but the topic of "changing the # # symbols" has been brought up numerous times, and i dont think tzuk really has the time right now to focus on the gui cause hes busy focusing on the functionality of the program, now maybe if tzuk ever gets some free time, (damn poor guy), then he might tweak the gui a little, but for now we wait and see what happens.

[Unknown_User_736]

Well, I certainly can understand that. Being busy. I rushed here thinking I was important enough on the weekend to get an answer from the tzuk himself. Ha! But I'm glad someone replied.

I think sandboxie is a great program, and I've gone through about 13 Sandbox and virtualization programs (I understand the differences) and weighted each one against another, starting with Greenborder from an article I read awhile ago, then sandboxie next. Everthing from Altiris to VMWorkstation, and still wound up back at Sandboxie for what I was trying to accomplish. Nice.

The others had various flaws that were fatal for me, such as Greenborder chewing up my notebook's processor, and another one not storing the data in one simple area to clean up, or another throwing locked files all over the place.

As for putting the box name in the title, I would've paid more to get that feature.

Speaking of features, I REALLY appreciate drive letters being created in the 'drive' directory in the new versions.

I commend and thank tzuk for creating Sandboxie. It has been my full initiation in to the world of Sandboxing and/or Virtualization, and ever since I have not experienced system-wide problems from adware, malware, or viruses (cept the one time I just so happen to take the chance and ran a new program outside of sandboxie and got HIT - incredible). Again: NICE.


I

actually it would be pretty useful if you are running alot of sandboxes (such as yourself) even though i personally wouldnt have a use for it because i only run 1 sandbox at a time, but the topic of "changing the # # symbols" has been brought up numerous times, and i dont think tzuk really has the time right now to focus on the gui cause hes busy focusing on the functionality of the program, now maybe if tzuk ever gets some free time, (damn poor guy), then he might tweak the gui a little, but for now we wait and see what happens.

[tzuk]

Hi, thanks. Nice to read your commendations

Sandbox name in the title bar ... Yep, that's an occasional request here, and it's noted.

But I disagree with some of your other requests. I really don't understand why secure deletion is so important to people.

Since regular deletion and secure deletion is absolutely the same from a security standpoint, I have to ask about the privacy standpoint:

Is it a real concern for you that someone may physically take your hard drive away, and perform forensic analysis trying to analyze what you had in the sandbox?

If so, you probably don't want to trust me to securely delete your data. What do I know about secure deletion? Get a professional secure deleter, which wipes your data six ways from Sunday, and just tie it into Sandboxie.

I agree that it should be easier to configure the secure deletion program into Sandboxie, but that's another issue.

[SnDPhoenix]

I really don't understand why secure deletion is so important to people.

Hell yeah, i agree too man, i mean ppl seem to think that spyware running in sandboxie can magically un-delete data that has been deleted from there hd (data that used to be inside of a sandbox) but in reality someone would need to steal your pc, take out the hd, connect it to a forensic pc (well it doesnt have to be a forensic pc) and then run forensic software such as EnCase. So as you said, they should just go get a $100 piece of software that can perform the Guttman method which passes over the HD 35 times (takes like a week to wipe a 80 gig hd, lol).

[Unknown_User_736]

Lol, Hi again SnDPhoenix.

Hi tzuk. It's a pleasure. Thanks for your reply.

However I got it in my head, I was thinking that there were some up to date industry standard that programmers were using these days. I stand corrected, and now that you mention it, it makes total sense.

A number of points have been mentioned dead-on by you guys.

1) I have been on the receiving end of a forensic search in the distant past.

2) My systems do contain proprietary and priviledged Business information.

3) I work in an industry where unauthorized attempts at gaining access to financial information is probably higher than what the average individual/Business experiences.

4) My time in the Industry, and the Business itself, is relatively new (4 years), so budget is ALWAYS an issue, thus cost effective (inexpensive but good) solutions are a must.

5) It makes sense: A specialized Add-on does seem to be the best functional method.

6) EnCase WAS used during our particular issue.

7) What I (and others here) have been mostly using is "ERASER" and it does have Gutman 35 passes.

Yesterday I followed the instructions here and now have Sandboxie operating fine with "sDelete", since I couldn't quickly figure out how to configure it with Eraser.

I appreciate the acknowledgement and feedback.

I

[Unknown_User_736]

I now have 29 separate sandboxes, all with something in them and it's been absolutely driving me crazy and has been, at times, counter productive trying to figure out where I have certain things.

Why do I have so many sandboxes?

Well, sandboxes "Default" and box1 - box20 are temporary sandboxes. They contain things like research done on search engines (like for web designing, etc.) and various other bouncing around on the net, mostly using Opera, but also the browser "phaseout".

Here is an example of some of my other sandboxes:

- sandbox for administering our webhosting business using opera
- sandbox for answering support messages via kayako
- sandbox called "webhosting01" for researching all things related to webhosting backoffice and customer support (tools, etc)
- sandbox called "webhosting02" for researching what the competition is doing!
- sandbox called "webhosting03" for webdesign information
- various sandboxes for specific web and non-web activities

Further, these separate sandboxes allows me to do things within them and when -something- goes wrong or is not right (like when a program/process becomes detrimental to something) - BOOM - kill the sandbox or whatever part of it. But more importantly - PRIVACY by being able to WIPE the sandboxes completely and separately while retaining other sandboxes/information. NICE.

What's not nice is keeping track what's in what window (windows explorer or opera or even notepad) belongs to what sandbox! A number of times I have wiped the wrong sandbox thinking I was clearing the cache of the one connected to the currently displayed window only to realize I was wrong. I've even mistakenly cleared something I needed from a week ago, not remembering exactly what is now gone forever.

On the other hand, sometimes I close a window from a different sandbox by mistake and have no idea what sandbox it was from. I go to samdboxie control and see sandbox default, box2, box5, and box7, not knowing if it was from any of those sandboxes or if it was in a sandbox of it's own

Today I came up with the brilliant idea (until I find something better) to do this:

Use a program called "Process Explorer" (from sysinternals.com), then drag process explorer's TARGET ICON over the window (like an opera window), then process explorer identifies that speific PID (Process ID) which I can then find in sandboxie control and know what sandbox the window/program is running in.

Why Process Explorer instead of Task Manager? Because Process Explorer allows me to use the drag and drop Target to easily find the PID of -that- particular opera window out of many instances of opera, each having a different PID, of course.

As for making a mistake and closing a window and not knowing in which sandbox it was? Well... if only there was an undo that reopened it. Maybe that will be in sandboxie 2020 (A.D.) ?


illu

[dlguild]

illuminati, to address your security concerns, you may want to take at a new hardware product coming out this spring called Gigabyte i-RAM. It's a fairly affordable 4 gig RAM hard drive installed in a PCI slot. Stick your sandboxes, paging file and other sensitive files on it and when deleted no forensic tools on the planet will be able to recover anything! Once something is deleted from RAM it's gone forever. I've been looking at it for other purposes, such as speeding up page file and database access.

There's also excellent free open source encryption software available called 'True Crypt'. Supposedly since it was developed by the open source community there are no hidden 'back doors'. Implementation would not be as easy as the RAM disk (plug and play), but it would be cheaper.

[SnDPhoenix]

first off, illuminati didnt start this thread based off of his security concerns, he started it based off of the gui based on a gui change he would like to see, secondly i remember someone starting a thread on here about truecrypt and sbie being used together, and if i remember correctly i think they werent compatible with each other, (unless the compatibility issue was fixed) and thirdly, that i-Ram kicks ass, looks awesome man, im gonna have to see all the reviews done on i-Ram once it is released, if its good, im gonna purchase 2 of them, only downside is that it seems you need to have quite a bit of ram for the i-Ram's to perform ideally, so 512 mb of ram aint gonna cut it, good thing though is that nowadays you can buy quality brand ram for really cheap prices.

[dlguild]

Sorry SnDPhoenix. I am new to the forum. illuminati included 3 'wishes' in his original thread:

So here's my wish list (not in order of preference)

] - Labeled title page bar
] - Password protected sandboxes (to stop sandbox deletion)
] - Default Secure deleting

He explained in later posts his reason for the third wish. I was just trying to help him out with this. I did not intend to violate any forum protocols, my apologies.

[Unknown_User_736]

Hi everyone.

Thanks a bunch for the feedback. Yes, my requests are a combination of cosmetic convenience, and productivity and security enhancement.

Actually, I've been using a combination of thumbdrives, Sandboxie and True crypt since last year. I have truecrypt containers (!) on 2 thumbs drives and even an entire 250 gb drive encrypted. There was a problem where when I would save my roboform data to the truecrypt container on the thumbdrive (drive Z), the roboform data (and anything sandboxed saving to drive X, Y, and Z) would be saved outside of the sandbox somehow.

This is fixed with the latest version of sandboxie (or before?), but now I always find myself trying to figure out in which sandbox did I save the dwnloaded file earlier.
Sandbox\box1\drive\D\ ??? Nope! Darn
Sandbox\box10\drive\D\ ??? Nope! Shoot!
Sandbox\box11\drive\D\ ??? ok!

Tzuk, somebody actually uses this capability (I found out about the limit the hard way).


Illu

[SnDPhoenix]

Alrighty then, so its pretty obvious you need a gui change, but the problem is that tzuk still needs to get some free time to start working on a new gui, but he will get around to it at some point soon, probaly in the 3.0 version (i cant wait until we hit 3.0, w00t), but till then we'll have to wait.

[Guest]

Just popped in to say that I was really excited to see that sandboxie 3.00.04 had been release.

I was using 2.86 and I rubbed my hands together thinking, oh yeah, a major upgrade.

I have been a sandboxie cheerleader and customer a bit longer than when I posted my 1st message here, and as I stated I chose sandboxie after spending months trying out almost everything else on the market from Virtual machines to other hybrid systems that aren't neither virtual machines or sandboxes exclusively. I chose Sandboxie hand-down in the end.

All that to say that I am VERY disappointed my sincere and much needed request for a way to know what sandbox was being used basically holds no merit with you, Ronen Tzur.

Another grave concern is the fact that after installing the new version (3.00.04) , I re-set back to my top level directotry (on my drive D), and began "creating" new sandboxes to basically point to my already existing sandboxes, and I get to what would be the 28th sandbox and sandboxie now tells me I can't create any more - I get an error SBIE 1404, too many lines in the configuration file. Ok. Bogus. What's the deal? What's the work around? Why!!!?!?!?

Very very bad for me - I have some important stuff in the sandbox I'm trying to get back to, and now I can't use it with the new version... This is enough to make me want to stay with an old version or switch completely... sigh...

Ronen Tzur, I appreciate your product and the work put in to it.

But look:

Can I get some help with this?

[tzuk]

All that to say that I am VERY disappointed my sincere and much needed request for a way to know what sandbox was being used basically holds no merit with you, Ronen Tzur.

Then I am VERY disappointed with you, whoever you are, for not reading the release notes for version 3 properly. See BoxNameTitle

If you have new SBIE1404 errors, it's probably best that you start a new topic in in this forum to discuss it.

[Guest]

Then I am VERY disappointed with you, whoever you are, for not reading the release notes for version 3 properly. See BoxNameTitle

If you have new SBIE1404 errors, it's probably best that you start a new topic in in this forum to discuss it.

Ok ok! Didn't mean to run you the wrong way, Tzuk. I did say that I like sandboxie. I was hoping that you would see my disappointment as sincere interest in sandboxie as not as an attack.

I apologize for not checking out the release notes 1st. It's the price I pay for having time constaints (I took me about 6 hours from the time I started typing that last message to the time I finally saved it; adding to it throughout the day).

After I posted my message, I seen some of the other issues that had been posted and I'm really surprised that you responded so quickly (err... *firmly*).

In anycase:

Sorry for not reading the release more thoroughtly
and
thank you thank you thank you

and

Did I say Thank you?

Thank you

>Who 'I' is.<

P.S. - Thank Tzuk, and forgive me - T'was a long day