Subscribe to our Best Free Browser Protection Utility
|
In a Hurry?
|
 Go straight to the Quick Selection Guide |
|
Introduction
|
|
There's a scumware plague at the moment. All it takes is a visit to one malware site or a "loaded" shareware install, and next minute your Internet Browser homepage has been changed, your default search setting altered, unwanted ads pop up on your screen, rogue software are nagging you to pay, your passwords have been stolen, and worse. Traditional antivirus software and antispyware software are being overwhelmed by the rapidly increasing amount of virus, spyware and other malware. That's why a different approach to combating these threats is necessary. Instead of technologies that are reacting to malware, we need proactive technology to protect our computers. These browser protection utilities can greatly increase your defences against drive-by downloads and vulnerabilities. I took a look at several applications that are vital in the fight against unwelcome and harmful intruders. |
|
Discussion
|
|
Usage is remarkably simple. To start a sandboxed browsing session, you just click the "Sandboxed Web Browser" icon on your desktop (or the Sandboxie icon from the Quick Launch tray) and this will launch your default browser in the sandbox. You can then use it in the normal way to browse to sites or download files. By default, files that are saved in the Desktop, My Documents or Favorites will have a prompt to ask you whether you want to save the file permanently. I suggest you add your default downloads folder to the Quick Recovery settings so files saved there will be automatically saved to your real hard disk, saving you the trouble of manually recovering files. The advantage is clear: any virus, trojan, worm, spyware, adware, keylogger or other malware that "infected" your PC while browsing will be eliminated. Sandboxie allows for in-depth configuration which increases security. For example, you can set it to block access to your personal files, or only allow certain programs to run or connect to the internet in a sandbox. A recent feature of Sandboxie also allows you to run sandboxed programs in a Limited User Account, similar to DropMyRights, for even greater security. This should also prevent most keyloggers from running. However, there are some downsides to this approach. Firstly, if you want to update your browser addons/widgets, you'll need to open an un-sandboxed browser and do it from there. This also applies to bookmarks but you can configure Sandboxie to automatically retain those. Secondly, Sandboxie is not designed to detect or disable keyloggers. You can get around this (mostly) by always empty your sandbox before you log in to important sites (such as sites involving financial transactions). Thirdly, some people find the nag screen inconvenient, which appears for five seconds before a sandboxed application opens. Sandboxie works fine with all browsers and most software applications, including e-mail clients (though this requires special configuration), instant messaging clients, Bittorrent clients and games. However, it won't work with system software (software which installs a system driver).
1. Can read but cannot modify trusted resources. Known applications also have preconfigured rules so those applications can run properly. In effect, files which you download will not be able to access critical areas on your computer, similar to a Limited User Account. So any malware which you inadverdently download cannot execute and damage your computer. GesWall also allows for detailed customization where you can configure the restrictions of untrusted applications. A user at Wilders Security Forum has some interesting configuration tips for Internet Explorer 8. Just like Sandboxie, updating applications is a problem and you need to open an un-isolated browser. The good news however is that updating addons/widgets and bookmarks are no problem in GesWall. GesWall also does not fully track files which are saved, which means if you move an untrusted file to another partition, GesWall will not be restricting the new file. This is not a problem with computer that have one partition. Also, when I browsed to some sites that require Javascript my browser would sometimes freeze, seemingly randomly. This was solved by opening GesWall and lowering the security level to low. My computer felt a bit more sluggish running GesWall compared to Sandboxie. Overall, GesWall provides excellent security, and is a worthy alternative to Sandboxie. A Limited User Account is an alternate method to protecting your computer. It provides very secure system-wide security, though it is admittedly not very usable if you regularly install new software. SuRun is a very useful application to allow you to run certain applications with Administrator privileges. There is a tutorial on how to use SuRun. A Limited User Account doesn't protect against user-mode malware, but you can implement Software Restriction Policies to block those attacks. DropMyRights and SetSafer allows you to set certain applications to run under a Limited User Account, though you need to manually create the shortcuts. Online Armor Personal Firewall's RunSafer is another option which I really like. It is very easy to use; you just select a program and click "Run Safer" and the program will now run with with restricted priviledges. Tall Emu has an explanation and video on how to use RunSafer.
Returnil provides a different type of protection compared to Sandboxie or GesWall. It is an excellent solution for those who have limited uses of their computer, for example for users who just browse the web. Also, if you have a separate partition for your data then Returnil is particularly useful because you don't have to worry about losing data which you just saved. Returnil can also be used in conjunction with Sandboxie or GesWall. Like all security software, you should have a backup of your hard drive and all your files before you install one of these applications. Please help us by rating this review |
|
Have Your Say
|
|
Please visit our freeware forum to share and discuss your views and get advice on free security software, including antivirus software. There's also a poll where you can vote and discuss your browser protection utility. To post in the forum you need to register first but that's quick and immediate. |
|
|||||||||||||||||||||
|
|||||||||||||||||||||
|
|||||||||||||||||||||
3.40 
Private Freeware (not free for commercial use) 
2000 - Vista
This category is maintained by volunteer editor JonathanT. Registered site visitors can contact JonathanT by clicking here.
|
Tags
|
|
sandbox, browser security, browser protection |
Delicious
Digg
StumbleUpon
Please rate this article
Returnil Virtual System Personal Edition. Site states that the program includes virus checker that runs at restart.
Won't this conflict with whatever other anti-virus protection is running on your system?
I saw this info on the Returnil forum:
"RVS 2010 should be compatible with your current AV. As these solutions will sometimes cause disruptions with install and/or uninstall, we recommend turning other security applications off temporarily during these operations and then turning them back on after the RVS install or uninstall."
http://www.wilderssecurity.com/showpost.php?p=1550485&postcount=7
How do I configure/use Eraser and or SDelete to erase the sandboxed contents in Sandboxie as mentioned in the description/introduction? Thank You!
I've linked to this page in the article:
http://www.sandboxie.com/index.php?DeleteSettings#command
I don't know if this will be helpful or not since I don't use Eraser or SDelete. But if you use CCleaner, you can securely delete Sandboxie contents by checking the Advanced-Custom Files and Folders box, at the main cleaner page. Then add your Sandbox location via Options>Include>Add Folder button. It should be at C:\Sandbox. Then you can select your secure deletion method via Option>Settings.
The next release of Geswall (3.0) will reportedly support Vista and 7 64 bit, at least according to a post on this blog- http://forum.thewindowsclub.com/downloads-windows/28811-geswall-free-sec...
I sure hope so, because I just bought a 64 bit laptop only to find out that Sandboxie is not compatible. So if Geswall can meet the challenge, I'll probably just drop Sandboxie and go to Geswall for all three of my computers to keep a consistency in my software.
P.S. Here is a very impressive YouTube review/demo of Geswall.
http://www.youtube.com/watch?v=PBKNHBl-yos
SandboxIE is not supported on 64 bit Vista or Windows 7.
You might want to change your security wizard to make recommendations based on either 32 bit vs 64 bit versions of Windows.
Referrence:
http://www.sandboxie.com/index.php?WindowsVista64
Thanks for the feedback, but I couldn't find where Sandboxie is recommended on the 64 bit Vista/7 pages?
hi guys:
sandboxie is a must; it's a corner stone for protection and experimentation with low resources and no nagging.
today's infections come 90% from browsing internet; 10% through USB pens.
So, just imagine: you are going to browse in dodgy websites, before doing that sandbox your browser. the result you are 100% safe.
you want to try a new application: run it sandboxed, you analyze its behavior and later you can installed or delete it without any damage.
you are going to open a suspicious/unknown file: then sandbox windows explorer or your file manager; everything is isolated which does not harm your machine.
finally, it is not permanent resident in the memory, you activate it when you want. it is like having a bullet proof suit.
therefore, no matter the threat, virus, malware or whatever you want to call it: it cannot infect your system.
however, some people like the old fashion and useless security suits that clog systems and slowdown machines, blocking trusted applications and leaving its users under constant fear of being infected with lots of nagging; anyway this is a free world where we have the freedom of choice.
sandboxie Is BAD!!! to much trouble and if you got a nice all around protection you don't need it. please don't wast time with this. Do a little home work and get better stuff. A BIG WAST OF TIME!!!
I personally Like the sandboxie paired up with Returnil I use them both now together since your can set sandboxie to not be deleted I have the protection option set and if I do happen to want to keep something I downloaded it goes in the sandbox and I can scan it make sure its clean then take it out when I feel like it. I am not a big fan of geswall the pro version is alright but it caused me problems before it conflicted with security software in the past so I gave up I don't think you can beat the free version of sandboxie and returnil together they make one complete product to me... Hope this helps someone out.
Looks like Returnil has been updated with 64 bit support. Has anyone tried it yet? :)
I have tried all these producys first I started with sandboxie then tried geswall and then finally tried Returnil. I am never leaving returnil, imho its the most solid of the three choices. I have never gotten infected with it, so why try another?
Any feedback about Windows Steady State? Is similar to Returnil or even better:
"Windows Disk Protection levels
When you select the disk protection level you are defining when and if Windows Disk Protection clears changes to the hard disk. The level of protection you select depends on how the computer is used and whether or not your users want to save data for any length of time. You can:
Remove all changes at restart.
We usually recommend selecting this option and restarting the computer daily. This prevents the cache from filling up over time.
Retain changes temporarily.
You may want to retain user files and data for a specified period of time. For example, you might have a user who is working on a project and needs access to project research files over a period of two weeks. In this case, you would select this option.
Retain all changes permanently.
When you need to install patches, upgrades, or new programs, this is the option recommended over turning off Windows Disk Protection. Any action you perform while this option is selected will not be removed by Windows Disk Protection. Because the cache file still exists when this option is selected, you can easily return to one of the other two options without repeating the process of turning on Windows Disk Protection."
http://www.microsoft.com/windows/products/winfamily/sharedaccess/default...
Thanks for the info, I'll check it out soon.
It should be mentioned, that Sandboxie is not provided for WIN x64 Systems.
please guys send configuration settings to my box for my PC and Nokia3230
does anyone know the command line for ccleaner to delete contents of sandboxie? looked at both website forums for the answer, none of the command lines they show work. thanks.
Assuming you the sandbox is your DefaultBox and it is located on your C drive, then the command line is: C:\Sandbox\(user name)\DefaultBox\*.*
Here are the steps I follow:
1. Be sure the applicable sandbox is not checked to have it’s contents automatically deleted
2. CCleaner settings
• Be sure CCleaner has secure deletion setting
• Options >> Include >> Add Folder (Specific paths to sandboxes I want to be deleted on command)
• Options >> Settings >> Add “Run CCleaner” option to Recycle Bin context menu
3. When I end a sandbox session
• Right click Recycle Bin
• Select “Run CCleaner”
• Note the folder name remains under C:\Sandbox, but it’s empty
is there a way to use ccleaner to secure delete automatically when closing browser the way sdelete and eraser can? thanks.
No. However, assuming you have CCleaner configured to secure delete the contents of your sandbox (see preceding posts), you can also set CCleaner to automatically perform its cleaning on computer startup (CCleaner > Options > Settings > Run CCleaner when the computer starts).
thanks for your help. i really appreciate it.
You're welcome :)
Hello !
What do you think about Artificial Dynamics's sandbox : "SafeSpace Personal Edition" (freeware for non corporate use)?
http://www.artificialdynamics.com/content/products/register-personal.asp...
@+
It looked great, like Sannboxie for the average user. Unfortunately it is no longer being actively developed by it's producers, and is thus difficult to recommend.
Sandboxie 3.38 is out!
http://www.sandboxie.com/index.php?DownloadSandboxie
http://www.sandboxie.com/index.php?VersionChanges#v_3_38
I have been using Reternil it's briliant. I am able to install and use programes, and should there be a problem I just shut down and restart, everything back to normal. I did use the paid version of Sanboxie however it did not protect my system, only programes that were Sanboxed and unfortunatly there are programes that will not run in a sandboxed enviroment, no such problem with Returnil. Returnil is a great programe and I now use the paid version, gliches,spyware, viruses all gone on shutdown.
Now that 64 bit OS is becoming the norm on desktops, I need an alternative to Sandboxie. I'm looking at Disk Write Copy but the version that lets you save any changes is $80. Sandboxie was great in that you could save your downloads outside the sandbox. If everything is reversed on reboot, you can surf safely but the reason to do so is mostly gone, iow finding software and trying it.
What are 64 bit OS users doing instead of Sandboxie these days?
I took another look at Disk Write Copy site. Last release was September 24, 2008. There's a forum on the web page, but they make it tough to register, and I think I saw 2 posts that weren't by the sysop. Looks dead, or at least sufficiently comatose that I don't want to send them $30 to see what happens.
Still wondering what 64 bit Windows users are supposed to do short of booting a 32 bit OS to surf the web?
Hi mr. Anonymous :)
We really are not in a coma.
Just from last September, we are preparing a new release Disk Write Copy 2.x. It will appear and will contain many new things.
Our English-speaking forum really low volume of users, but they more than a thousand Russian-speaking. What is the problem? Register and ask us questions. We always reply:) This is absolutely free. And by the way, any distribution is highly competitive, our free 30-day period. You can test everything that you want.
I wish you a nice time guys.
Hi. For some reason I thought Vista SP1 was released much later than it was. So I assume Vista 64 bit SP1 is supported in the current release? If so then I may try it out. For 32 bit systems I'm happy with Sandboxie but that approach seems doomed in Vista64. :(
I'm not trying to bash your product. I was seriously considering purchase. But the English speaking forum seemed pretty deserted. Is there a target for a beta or other release of v. 2 or is that a secret? :)
As BTW i want to say that any distributives you could download from our official site and use for free 30-day period full-functionally
thanks
Maybe you could consider running under a Limited User Account?
Check out this one here:
http://www.shadowdefender.com/index.html - it seems to work similarly to Disk Write Copy and it costs much less to license. I don't know whether it has a 64 bit version though.
It seems from their website it does not support 64 bit, and it's shareware.
Yes, it is shareware. Since Disk Write Copy is shareware also, I just pointed you out to it 'cause you looked prone to pay for a less costy similar product...
You must not be listening... This site is based on the best freeware and freeware is not shareware... If you have questions that aren't related to freeware you can contact the page editor by registering as a user on this page...
You could just use a Limited User Account. There's also a program called HauteSecure that works on 64 bit, but I don't really know how effective it is, and development for it seems to have stopped.
isn't geswall now 64bit? would that suit?
GesWall isn't compatible with 64 bit.
Ok. I thought it would be by now since they had said in their 2.6 beta release that their next release would be 64 bit compatible!
Saw now in Geswall forum re 64 bit support due 2009 'It is delayed until the fourth quarter. The supported systems include Windows Vista SP1 and further.
64-bit Windows XP and Windows 2003 would not be supported.'
I have a feeling the same thing stopping Sandboxie from supporting 64 bit is what's making it tough for these other virtualization, or redirection, or shadow, or whatever you want to call them, system protection schemes. Maybe one of those guys who hacked Vista so you could put themes on it will hack the kernel so you can use Sandboxie? (Yeah, like that would happen!) :)
The reason Sandboxie doesn't work under Windows 7 x64, Vista 64, or fully updated versions of XP x64, is the introduction of PatchGuard by Microsoft. This 'technology' prevents critical parts of the OS kernel from being modified and therefore doesn't permit the kind of kernel level programming required to support the likes of Sandboxie. This issue is covered in some detail on the Sandboxie web site.
Rik Mayell, Category Editor - Best Free Windows 7 / Vista 64 bit Software
#13 question. can you run earthlink mailbox in sandboxie? answer=yes. open sanboxie -default box- sandbox settings- resource access- file access- direct access. click add, find where your earthlink mailbox is located, click MAILCLNT then ok. click apply. then click file MAILSVR then ok click apply. if you are using unregistered version you will have to right click and select "run sandboxed" on mailbox shortcut. if you use CIS WITH DEFENSE+ a ton of pop-ups will occur.
i messed up. most of what i said was true but i left out somethings. click sandbox settings, resource access, file access, direct access, use "add pgm" button navigate to and select email program. then click "add" button and use browse for folder window to locate mailbox data files. should be MAILCLNT press ok. then go back and find MAILSVR click ok. i think that should do it.
Is Geswall not a HIPS (or an OS rather than browser specific sandbox)? This category is a bit confusing.. Surly programs like WOT and SpywareBlaster should get be here?
Personally I define this category as any software which prevents malware by restricting/virtualising the system, browser or other applications.
The HIPS category is more of software which analyses behaviours of processes, you can read the review here:
http://www.techsupportalert.com/best-free-hips.htm
WOT and SpywareBlaster are mentioned here:
http://www.techsupportalert.com/content/best-internet-safety-check.htm
What's lighter on resources, sandboxie or geswall?
Post new comment