Just a few questions that I couldn't find an answer for in the documentation.
Does sandboxie actually work if you open a zip file containing a virus, just one example. I guess it might be better stated- will it work if you allow admin priveleges to a corrupted program?
Second, can i run the entire user profile in a sandbox for protection against above reasons? And third, is the microsoft version of sandbox better at what it does because it would seem to be able to integrate better.
Thanks for your replies. I'm actually considering running my user profile in a sandbox, or possibly my entire drive, or the entire drive minus the operating system components. (that could be another topic for later because i have no idea how to even start to do that one.)
Does sandboxie actually work if you open a zip file containing a virus?
All programs opened with Sandboxie will remain isolated from the system unless the malware targets a specific vulnerability within Sandboxie that allows it to escape the sandbox. An application being ran in Sandboxie with administrative rights shouldn't be any different. However, allowing these isolated programs to have administrative rights can come with its own set of problems. I strongly recommend configuring Sandboxie to drop the rights of all programs that it runs. Not only will dropping the program's rights afford you better security, but it will also allow Sandboxie to do its job more effectively.
Open Sandboxie's control center -> Right-click on your sandbox - > Click "Sandbox Settings" -> Expand "Restrictions" -> Select "Drop Rights" -> Enable the checkbox
Second, can i run the entire user profile in a sandbox for protection against above reasons?
This is not a job that is suitable for Sandboxie. Here is a list of reputable software that is more on-par with what you're looking for:
Deep Freeze is used by a lot of schools in North America to prevent students from infecting the machines and making unwanted changes. Once you reboot a computer that is using Deep Freeze, it will automatically restore itself from a system image. This image can be easily updated to make persistent changes if you know the correct password, so you are still able to update the operating system and things like that. However, unwanted changes or malware is instantly removed after a simple reboot. I have deployed this software before at a local school and I absolutely loved it.
Clean Slate works about the same as Deep Freeze. I have not personally used Clean Slate, so I can't comment on its effectiveness. It seems pretty popular with Internet cafe operators, so it is worth checking out.
And third, is the microsoft version of sandbox better at what it does?
Windows SteadyState has been discontinued since 2010. It isn't even compatible with Windows 7 and beyond, so this isn't anything you need to worry about.
Edited by Kaosu, 28 June 2014 - 02:29 AM.