Thread: Sandboxie - A Virtual Protection
View Single Post
Old 15-03-2015, 11:37   #23
Stuart
-
 
Stuart's Avatar
 
Join Date: Jun 2003
Location: Somewhere
Services: Virgin for TV and Internet, BT for phone
Posts: 26,546
Stuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver bling
Stuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver blingStuart has a lot of silver bling
Re: Sandboxie - A Virtual Protection
Quote:
Originally Posted by Wittmann View Post
Come off it. Sandboxie is not designed for complex commercial use. It is slightly inconvenient and commercial pressures cannot tolerate any inconveniences or messing about. They have to be immediately responsive to a flow of demands. So they lose out on absolute security for convenience of operation.

Sandboxie is an ideal home and individual security system where there are no pressures of immediate response, queues of customers waiting or program manipulation etc.

And who cares about commercial concerns ? I and the other millions of Sandboxie home users don`t. We are concerned here with ordinary domestic users, not industry.
The fact they sell licenses in bundles of 100 would suggest it *is* designed for complex commercial use.

You also appear to have missed the point of Hugh's post.

In your first post, you appear to be suggesting that SandboxIE is a far better security option than keeping your machine up to date or using Anti virus/trojan programs. You even go so far as to say that you stopped patching your system as the patches were just clogging up the machine.

As such, you appear to be using SandboxIE as a replacement for any other security. This is bad, and from what I can gather is not what SandboxIE is intended for.

Hugh's point was that if this system is so perfect, why are enterprises not using it instead of spending (potentially) hundreds of thousands of pounds a year on other security systems? That is a valid question, whether you care about corporate use or not.

I don't think he phrased it well, but qasd does raise a valid point. OK, so he used an undocumented API that sandboxie does not apparently protect, but if he was able to use that API, the Malware authors are able to use it as well, and I dare say they will. It also appears to offer little or no protection against attacks where a virus infects another machine on the network, then starts scanning that network for other machines it can infect. All they need is a network share with bad security and the ability to create processes on a remote machine. Both things that SandboxIE probably will not protect against, and therefore would be unable to sandbox the virus.

If you are advising people to use SandboxIE in addition to other security products/practices including patching, I think that is good advice. If you are advising people to use it as a replacement for other security products/practices, I think that is highly irresponsible.
Stuart is offline   Reply With Quote