What is your bulletproof SB config?

Please post your problem description here

Moderator: Barb@Invincea

Post Reply
Guess 21

What is your bulletproof SB config?

Post by Guess 21 » Thu Aug 27, 2009 5:57 pm

Hello to all, I'm a registered SB user for 6 months. I have read many times that a sandbox will not be bypassed if configured properly. This brings up the question (directed at the experts here) as to what settings should a sandbox have to make it more secure. Is the default security level enough or should it be extensively tweaked? If so then please give me suggestions and examples of the settings that you are currently implementing.

bs1
Posts: 565
Joined: Fri May 16, 2008 12:32 pm

Re: What is your bulletproof SB config?

Post by bs1 » Fri Aug 28, 2009 11:18 am

Guess 21 wrote:Hello to all, I'm a registered SB user for 6 months. I have read many times that a sandbox will not be bypassed if configured properly. This brings up the question (directed at the experts here) as to what settings should a sandbox have to make it more secure. Is the default security level enough or should it be extensively tweaked? If so then please give me suggestions and examples of the settings that you are currently implementing.
Hi Guess21.

There are a fair number of threads on this forum and others related to your question. A recent thread, with lots of posts and information, is here on Wilders: http://www.wilderssecurity.com/showthread.php?t=240008 If you don't want to read through all the posts in that thread, you may want to focus on post #88. Bear in mind that this is one person's opinion (SSJ100), but it looks like he has had good success with his approach and others on Wilders have vetted his configuration with general approval.

But having said that, I think it still boils down to a personal decision regarding how one configures his/her sandboxes. I have one sandbox that I use for banking that I have configured pretty tightly. I also have some "testing" sandboxes that are moderately tight. But my browsing sandbox (that I use most often) primarily has default settings (except I restrict access to My Documents) and I feel comfortable with that. I think you'll find that how you configure your sandboxes will evolve and is dependent on your experience with SBIE, your own risk/comfort level, and new features that tzuk adds.

Post Reply

Who is online

Users browsing this forum: No registered users and 0 guests