Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › sandboxie for browsers
New Posts  All Forums:Forum Nav:

sandboxie for browsers

post #1 of 6
Thread Starter 
im sure this is old news, until today i'd never heard of this program, is using sandboxie for web browsing recommended? i have an av and firewall but just as an extra layer of security for web browsing?
My system
(9 items)
 
  
CPUMotherboardGraphicsRAM
3570k gigabyte z77x-d3h Gtx 970 8gb 
Hard DriveHard DriveOSPower
ocz agility 4 256gb samsung hd103sj windows 10 64 bit ocz stealthxstream 2 700w 
Case
antec 300 
  hide details  
Reply
My system
(9 items)
 
  
CPUMotherboardGraphicsRAM
3570k gigabyte z77x-d3h Gtx 970 8gb 
Hard DriveHard DriveOSPower
ocz agility 4 256gb samsung hd103sj windows 10 64 bit ocz stealthxstream 2 700w 
Case
antec 300 
  hide details  
Reply
post #2 of 6
It's a good extra layer of protection to have, IMO. But it really depends on how you want to protect your system. For the most part, a good AV and FW should take care of most malware and keep a typical low-risk user protected. But the main weakness with AV software is just trying to keep up with all the new malware that is discovered every day. Generic Signatures/Heurists/Pro-Active protection exists in most AV software to help with this but it's not perfect (greater risk for false positives, more malware missed, etc...)

Sandboxie is a different approach...a program that is sandboxed is isolated from the rest of your system. It won't prevent you from downloading and/or running malware or anything like that. What it will do is prevent malware or any un-trusted program from messing with your system (assuming it was contained in the sandbox). For instance, if you run your browser in Sandboxie, any changes it makes to your system (i.e. caching web pages, saving bookmarks, etc...) are contained and will be wiped out when you close your browser. Also, any child process that is launched by your browser will also be contained in the sandbox. So if you happen to stumble on some malware while browsing, it will be contained in the sandbox - you just have to kill the running programs in the sandbox, delete its contents and you're OK...no harm done to your system. thumb.gif

And you don't have to just use it for browsers either...it can come in handy if you had say a USB thumb drive that was infected, for example. Sandboxie has an option to force folders/drives to run sandboxed. This would allow you to automatically sandbox or even block execution of anything on that thumb drive.

I've been using Sandboxie (paid version) for about 3 years now. I'm a very low-risk user but there's still the chance that one of the usual sites I visit could be compromised so I like to use it for things like that. If you decide to give it a go, I'm not an expert but I can do my best to help you if you have any questions.
post #3 of 6
Thread Starter 
thanks francis, that's what i was looking for, i'm a low risk user but it's more of a "just in case", you never know where a malware might be lurking and they seem to be evolving at an alarming pace. it was actually this article that prompted me to think maybe i should look into sandboxing:

http://www.overclock.net/t/1435157/ar-you-re-infected-if-you-want-to-see-your-data-again-pay-us-300-in-bitcoins

i've downloaded it and am currently running it, i'm most concerned about web browsing so i'm using the "sandboxed web browser" do i need to do anything else (if i hover near the edges of the screen it's highlighted yellow so i assume that's showing me it's running in the sandbox)?
My system
(9 items)
 
  
CPUMotherboardGraphicsRAM
3570k gigabyte z77x-d3h Gtx 970 8gb 
Hard DriveHard DriveOSPower
ocz agility 4 256gb samsung hd103sj windows 10 64 bit ocz stealthxstream 2 700w 
Case
antec 300 
  hide details  
Reply
My system
(9 items)
 
  
CPUMotherboardGraphicsRAM
3570k gigabyte z77x-d3h Gtx 970 8gb 
Hard DriveHard DriveOSPower
ocz agility 4 256gb samsung hd103sj windows 10 64 bit ocz stealthxstream 2 700w 
Case
antec 300 
  hide details  
Reply
post #4 of 6
Quote:
Originally Posted by jonathan123456789 View Post

thanks francis, that's what i was looking for, i'm a low risk user but it's more of a "just in case", you never know where a malware might be lurking and they seem to be evolving at an alarming pace. it was actually this article that prompted me to think maybe i should look into sandboxing:

http://www.overclock.net/t/1435157/ar-you-re-infected-if-you-want-to-see-your-data-again-pay-us-300-in-bitcoins

i've downloaded it and am currently running it, i'm most concerned about web browsing so i'm using the "sandboxed web browser" do i need to do anything else (if i hover near the edges of the screen it's highlighted yellow so i assume that's showing me it's running in the sandbox)?

Glad to help! smile.gif

Running it "out-of-the-box" is OK. But a few things to consider (right-click on the sandbox > Sandbox Settings):

- Recovery > Quick Recovery: Any file saved to the location(s) specified here will give you a prompt asking what you'd like to do with this file (recover it to the real system or just delete it). For example, since I usually save things to my desktop, I have that listed as a quick recovery location. So when a download to my desktop completes a dialogue pops up with the option to move the saved file to my real desktop from the sandboxed desktop. This is easier than browsing the contents of the sandbox to find the file.

- Delete > Delete Invocation: Check "Automatically Delete Contents of Sandbox" if you'd like to discard the contents of the sandbox when you close the sandboxed program.

- Restrictions > Internet Access: By default, all programs in the sandbox can access the internet. However, as a bit of extra security, you can specify which programs you'd like to give access to. Anything else is blocked automatically. It's really up to you how you want to do it...it does add alot of extra security but it can be a bit of a PITA to setup.

- Restrictions > Start/Run Access: Similar to Internet Access. Again by default, all programs contained in the sandbox are allowed to run. If you'd like to specify a select few programs you want to run you can specify them here. Otherwise, everything else will be blocked.

- Resource Access > File Access > Direct File Access: Think of this as punching a little hole in the sandbox for the sake of convenience. Anything written to these locations will be allowed to pass through the sandbox uninterrupted.

- Applications > Web Browser > **Your Browser**: There are some pre-configured settings for direct access and forced programs that are for convenience. Of course this is could make things a bit less secure but it helps make Sandboxie run a bit more seamlessly.

I hope this helps! smile.gif
post #5 of 6
Thread Starter 
thanks mate that's a really good explanation, very helpful +rep!
My system
(9 items)
 
  
CPUMotherboardGraphicsRAM
3570k gigabyte z77x-d3h Gtx 970 8gb 
Hard DriveHard DriveOSPower
ocz agility 4 256gb samsung hd103sj windows 10 64 bit ocz stealthxstream 2 700w 
Case
antec 300 
  hide details  
Reply
My system
(9 items)
 
  
CPUMotherboardGraphicsRAM
3570k gigabyte z77x-d3h Gtx 970 8gb 
Hard DriveHard DriveOSPower
ocz agility 4 256gb samsung hd103sj windows 10 64 bit ocz stealthxstream 2 700w 
Case
antec 300 
  hide details  
Reply
post #6 of 6
No problem! Thanks! redface.gif
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › sandboxie for browsers