Sandbox / SafeZone - feature requests

[DavidR]

Not really the place to ask, but we can kill it in one short sentence. The SafeZone uses it own browser, you can't import an external browser as that would be a security risk.

It also doesn't sound like you are talking about the safezone but the Sandbox, if so then you need to create your own new topic in this forum, http://forum.avast.com/index.php?board=2.0. Click the New Topic button at the top of the page and enter your question there, as this topic is for future feature requests and this is already there.

[rronaldson]

Not really the place to ask, but we can kill it in one short sentence. The SafeZone uses it own browser, you can't import an external browser as that would be a security risk.

It also doesn't sound like you are talking about the safezone but the Sandbox, if so then you need to create your own new topic in this forum, http://forum.avast.com/index.php?board=2.0. Click the New Topic button at the top of the page and enter your question there, as this topic is for future feature requests and this is already there.

No ... definitely Safezone.

At the top of the Safezone area I get :

"For quick access, place your bookmarks here on the bookmarks bar. Import Bookmarks now ..."

Selecting that gives you a window headed "Import Bookmarks and Settings". The browser option is Firefox and it enables you to import Favourites/Bookmarks, Search Engines, Saved Passwords, Browsing History. However, as I said, it doesn't ....

[DavidR]

This too, since it is an existing feature 'but not working for you' should be raised in your own new topic as it isn't directly related to this topic 'Sandbox / SafeZone - feature requests'.

[rronaldson]

Sorry, I realise that this is not the place to post my question about Safezone and Bookmarks so I'll set up a new topic in the relevant section.

[MAG]

Safezone is so well hidden from the normal OS on my acer aspire laptop that when I'm running on battery the screen dims after a few minutes of safezone browsing. Presumably if I waited a bit longer the rest of the power saving options would kick in.

It seems the OS just doesn't recognise that I'm actually working away like a trojan in safezone, and decides that since nothing much is happening it's time to settle down for a nice a snooze and save some energy.

Easily worked around by switching in and out of safezone (or by changing power plan options I suppose).

[ericz]

Mag - Don't say "like a Trojan" on a security forum. It implies you cheat and threaten and misbehave.

Seriously, Chromium is configurable, with several stand alone browsers available based on it, besides Google Chrome. Both SRWare Iron, and Comodo Dragon tout being more secure and respectful of user privacy than Chrome. It is probably the best way to go on Safe Zone since it works with Linux, Windows and Mac OS, and regardless of how Chromium is changed on updates, Avast has code control and version control on its implementation.

Nothing more helpful to say. I am a new user on the free version, without Safe Zone.

I presume that some of the "options" configuration flexibility are tightly controlled by Avast, and that it controls the browser launch so that users cannot "experiment" with the switches that developers might use in starting the browser while creating extensions.

[ericz]

On the earlier suggestion, including a calculator, without knowing any licensing dimension, what's public domain or not; I have a suggestion.

Instead of reinventing the wheel, look at the extension that works on several stand alone chromium based browsers: Chromey Calculator.

https://chrome.google.com/webstore/detail/acgimceffoceigocablmjdpebeodphgc

Presuming there is no intellectual property hurdle, and the code checks out as sufficiently secure, the interface is good, it keeps a "calculator tape" and it would mean the feature could be added without Avast having to code from scratch.

I have only installed and used it. I have no ties to the extension author, and have not looked to find source code and study it. Avast has people expert at that.

[harryjamesuk]

It's Not On Sandbox Or SafeZone But Is On Avast So Its Still Something To Do With This Topic.

Anyhow,

I Would Love It If There Was A Task Manager Built Into Avast And Allows You To Scan The Behaviour Of Them And End The Progress Of Them.

I Currently Have 2 rundll32.exe's And One rundll32.exe (32) And Would Love Avast To Scan Their Behaviours As Im Sure I Shouldn't Have THREE rundll32's.

[DarkReverser]

Hi,

Before I get into sandboxing, you need to implement "Only scan modified or new files" in System File Protection.

If you did that, more users would keep the File System Protection on as performance would dramatically increase particularly after full-system scan.  I don't want Avast to scan firefox.exe each time I start it, if the file properties of firefox.exe remain the same.  Unnecessary loss of performance.  Where's the option to skip files/archives over X amount of MBs?

Now, I introduce to you Hybrid Mode; an alternative System File Protection shield.
Options:

1. Auto Sandbox Signature Based (doesn't scan inside file, looks up the files properties in signature database, if it's a hit Auto sandbox.

2. Auto Sandbox Cloud Based (apps user report as malicious are launched sandboxed)  

3. Auto Sandbox ( in other words, keep the packer options from other shields)
    x Installers
    x files with specified file name
    x files with specified extensions    

4. Auto Sandbox Ask for:
   x new executables
   x modified executables
   x all executables


  Note:  Upon prompt, whether the user selects run normal or sandboxed, there is a "remember my selection for this file" option.  If checked there is a verification prompt, "are you sure?"

5. Auto Sandbox Explorer and Known Web Browsers.


You see, this is perfectly suited to the user who performs manual scans.
It's the options I'm missing.


Great Product.
A Security Enthousiast

[avadas.de]

Hi,

maybe this was mentioned somewhere earlier: The SafeZone doesn't remember settings like the start page, home button and passwords of the SafeZone browser (I am talking about when open -> close -> open the SafeZone). Is it intended or will it be changed in future releases?

[pk]

maybe this was mentioned somewhere earlier: The SafeZone doesn't remember settings like the start page, home button and passwords of the SafeZone browser (I am talking about when open -> close -> open the SafeZone). Is it intended or will it be changed in future releases?

Actually, the first two settings you mentioned (start page, home button) can be changed and saved - so when you switch to SafeZone next time it should use your new settings. Browser profile is stored in SafeZone and it's only deleted when you click on "Reset SafeZone" button. If it doesn't work, then there's a bug - but I know I tested those two settings and it worked. I'm not sure about passwords, because I didn't have time to test all settings (but our QA will do that for avast7, because there will be new features in SafeZone and they'll require more focus on SafeZone). Thanks for feedback.

[avadas.de]

Hi pk,

thanks for your reply on this! Since this was reported by one of our users, I just posted the issue here, but today I had some time to try myself. Indeed the start page as well as the home button setting is not saved, but only if you reboot the PC. For passwords I didn't find a suitable webpage, where I could test it.

[bilpo]

"Additionally, Avast is looking at running your browser in its auto-sandbox by default. Since just after the release of version 5, we haven't seen anything bypass the sandbox,"

Personally i would like to see the following programmes running in the autosandbox by default: internet browsers, usb flash drives, cd/dvds, email, multimedia clients, instant messenger, irc, p2p, and voip.

[bilpo]

Moreover i would like to have much more control of my sandbox. For instance, currently i have control over which virtualized processes can connect to the internet. I want a feature where i can control which virtualized processes start/run in the first place. I would also like to see a setting where i can strip administrater rights of a sandbox.

[claudiuc]

Remote desktop and terminal (ssh) client for connecting to remote computers/servers.