Avast WEBforum
Other => General Topics => Topic started by: mchain on November 24, 2011, 05:39:07 PM
-
Anyone use or have experience with Sandboxie?
NOTE: I see General Topic section has been closed as of September 19, 2011. I would have posted there otherwise if it was still open. Sorry to see it go.
-
I'm not into deep Sandboxie testing but I just upgraded to 3.62 8) and rather rely on it rather than the Avast Pro Sandbox Feature which I don't like (may be I'm too used to Tzuk Sandboxie to let it down ;D). ;)
-
Anyone use or have experience with Sandboxie?
Hi, I have sandboxie installed on xp, vista, win7 64bit. :) I don't browse the internet without it.
-
I don't use it on my XP system as I prefer to run my internet facing applications under DropMyRights.
I use it sometimes but not always on my win7 starter edition as DropMyRights isn't available other than for XP. I tend to rely on my firefox security based add-ons and other pro-active measures and if all that fails my backup and recovery strategy.
-
I have never needed Sandboxie as I surf safe with avast! and MBAM.
-
Anyone use or have experience with Sandboxie?
Hi, I have sandboxie installed on xp, vista, win7 64bit. :) I don't browse the internet without it.
Ever witnessed an email attachment open with a worm, trojan or watch rogue program install itself inside the default box? What were the results or outcome? Maybe you know of someone to whom this has happened to? :-\ I do use version 3.62, but have not seen this here.
-
Email attachments don't open themselves. The user has to choose to open it and in the worst case (curiosity killed the cat) open it directly from the email, not save to hard disk first and pre scan it.
This is further compounded if you A) don't know who sent the email or B) if from a known sender (can be faked), is it something they would do or is it expected. Basically don't open attachments or click on links in unsolicited emails.
The majority of the so called driveby downloads require a degree of user complicity for it to arrive, mostly that would be achieved by social engineering, tricking the user to click/accept the thing.
Both of the above are helped with a degree of common sense and scepticism, don't trust/confirm.
This is why I also use firefox with the NoScript (and RequestPolicy) add-on, as that stops javascript being used to run a script or have a script run from a 3rd party site (cross site scripting). This prevents the greatest majority of driveby downloads, but there is no getting away from the fact that the user is often the weakest link in the chain.
You could go a step further and use a limited user account instead of one with admin privileges (even if you have UAC) as that also limits the potential harm that it can cause should get past your security.
As I have always said, if all else fails have a robust backup and recovery strategy. With all of that in place I find little need for sandboxie.
-
Using Sandboxie is great if you have a powerful computer
and would like to see it run slowly. ;D ;D ;D
-
Well I would hardly call my little win7 netbook powerful, Intel Atom N255 (dual core 1.5 GHz) CPU, 2GB DDR3 RAM and on the odd occasion that I run sandboxie it doesn't appear to be an issue.