|
Title: Could You Use "Sandboxie" To Run Your Client? Post by: seafarer124 on August 14, 2013, 02:57:59 PM Would "Sandboxie" be an option to be secure and safe?
http://www.sandboxie.com/ Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: John (John K.) on August 14, 2013, 05:47:48 PM Nah, Sandboxie's more geared towards keeping stuff from getting out from the box then to keeping stuff from getting in.
Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: MysteryMiner on August 28, 2013, 01:14:18 AM Wrong again. Sandboxie is humble attempt to prevent stuff from making permanent changes to PC instead of preventing it from accessing data on host filesystem or phoning the data from host computer to remote server. I experimented a lot with sandboxie and found the whole idea totally useless. For isolation of dangerous processes full virtualization like VMware Workstation is required. And virtualization will not protect secrets in event when host operating system is compromised by malware.
Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: payb.tc on August 28, 2013, 02:11:45 AM For isolation of dangerous processes full virtualization like VMware Workstation is required. And virtualization will not protect secrets in event when host operating system is compromised by malware. and keep all your vmware or virtualbox images inside truecrypt containers Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: MysteryMiner on August 28, 2013, 11:33:07 PM and keep all your vmware or virtualbox images inside truecrypt containers Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: payb.tc on August 28, 2013, 11:49:18 PM Additional layers of encryption inside this full disk one are pointless, it degrades convenience and performance with no real additional security. well duh, but like you know, i never said anything about 'additional', because i don't do WDE. Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: b!z on September 02, 2013, 02:18:46 PM Wrong again. Sandboxie is humble attempt to prevent stuff from making permanent changes to PC instead of preventing it from accessing data on host filesystem or phoning the data from host computer to remote server. I experimented a lot with sandboxie and found the whole idea totally useless. For isolation of dangerous processes full virtualization like VMware Workstation is required. And virtualization will not protect secrets in event when host operating system is compromised by malware. Do malicious processes escape the sandbox or make permanent changes to the system? No. That's what Sandboxie is for. If you don't want malware recording keystrokes or calling home, don't leave it open in Sandboxie. Of course, there are better ways, but I think Sandboxie is still useful in some cases. Title: Re: Could You Use "Sandboxie" To Run Your Client? Post by: payb.tc on September 02, 2013, 02:24:27 PM Wrong again. Sandboxie is humble attempt to prevent stuff from making permanent changes to PC instead of preventing it from accessing data on host filesystem or phoning the data from host computer to remote server. I experimented a lot with sandboxie and found the whole idea totally useless. For isolation of dangerous processes full virtualization like VMware Workstation is required. And virtualization will not protect secrets in event when host operating system is compromised by malware. Do malicious processes escape the sandbox or make permanent changes to the system? No. That's what Sandboxie is for. If you don't want malware recording keystrokes or calling home, don't leave it open in Sandboxie. Of course, there are better ways, but I think Sandboxie is still useful in some cases. i think what mysteryminer meant is that on a malware-compromised host, the actual sandboxie exe might be compromised, and do all sorts of nasty things that 'regular' sandboxie wouldn't do, including let certain malicious processes escape and make permanent changes to the host. |