Introduction
|
We are all aware of the dangers of malware infection from the Internet these days. The danger has always been there, but this has increased a lot more because people with malicious intents are constantly devising new methods to infect the systems, and the inexperienced, naive, general-users/elderly/teens are the most affected by it. Malware infection from the Internet can occur in many ways, a few of which are:
Although there are many ways of getting infected by malware it does not mean that we need to become paranoid, or live in constant fear of the possible consequences. With a little effort, precaution, and by using common sense we can easily avoid getting systems infected with malware. Different safe practices have already been covered in various articles on this site, and can be read to learn how you can stay safe by following a few guidelines. We will all agree that precaution is always the best option. In this article, we are going to learn about an excellent software called Sandboxie, which will keep you safe while surfing on the Internet. Table of Contents: |
The purpose of this article is to make people, especially the general users, aware of this wonderful software Sandboxie. To general users, Sandboxie appears a difficult software to use, or even understand what it's about, and its settings may also seem a bit intimidating. This article is an attempt to explain about Sandboxie in a very simple way, and to help get it up and running with only the minimum and necessary changes to its settings. Just a little bit of patience is required to read through this article, but I am sure it will increase your knowledge of how to use Sandboxie. Sandboxie has many settings and, if so desired, with the help of those settings an experienced user can further enhance and tighten security. But for general users, these changes are not required. Hence, this article will not cover the settings in depth, but only a few necessary ones. Detailed help for Sandboxie is available on its own site and is very well written. |
Sandboxie is a unique security product based on the principle of sandboxing. In simple computer terms, a sandbox is an isolated environment for running programs. The environment will be exactly like the real system, the only difference being it's isolated from the real system. This technique is also being used in other programs, such as Google Chrome, and some of the antivirus software. Inside Sandboxie, the programs will run normally, like they do outside the sandbox, but whatever changes are made, stay inside the sandbox, and the actual system remains unaffected by those changes. Let's say you are running a web browser in Sandboxie. Everything will be done in the normal way, you can click on links, visit sites, and download files etc, but, it will all take place in an isolated environment. Therefore, even if you go to a malicious site, or click on a malicious link, or even download a malicious file, the actual system will not be affected. Now suppose while surfing inside Sandboxie, you click on a malicious link, and start seeing signs of malware infection, and/or the antivirus alerts you about it, all you have to do is, delete the contents of Sandboxie. That's it. The malware will be gone, and the system will remain safe, since the malware was not able to come out of Sandboxie. Nothing can come out of the sandbox environment until you allow it. Note: This article is about Sandboxie's free version. The free version misses a few features - ability to force programs/folders to open in Sandboxie, and running programs in more than one sandbox at the same time. While these features are great, but they are not necessary, and the free version of Sandboxie is quite enough for general and home usage. After 30 days of usage, the free version of Sandboxie also shows a pop-up window as a reminder to upgrade to the commercial version, with a 5-second delay when it starts. But, this is just a small inconvenience which can be overlooked, considering the excellent security and safety that Sandboxie provides. Use it for a few days, and you will agree with this. |
Sandboxie makes surfing the web really secure and safe: you can always be relaxed and be sure that no malware can infect your system. Also, while surfing, various temporary files, cookies, cache, etc, are created and downloaded to the computer. All the aforementioned remain inside Sandboxie and can be easily cleaned by deleting the Sandboxie contents, and without worrying about where to look for them on your computer. Just one click to delete the Sandboxie contents, and it's all gone. The biggest benefit is the peace of mind, and assured security, which is offered by the excellent protection of Sandboxie. Even if you come across a malware inside Sandboxie, there is no need to panic, because you can be assured that the malware won't be able to escape to the real system. Deleting the contents of Sandboxie is all that is required to get rid of any malware encountered. |
The main use of Sandboxie is for surfing the web where it keeps the browser isolated, and the system remains safe from various malware infections. But, since Sandboxie offers an isolated environment, it can be used to test software too. The software will run in Sandboxie, and the changes made during the installation, or its running, will not affect the system. If you do not like the software, or if it's malicious, all you have to do is delete the contents of Sandboxie. No changes will be made to the actual system at all. If the software is safe to use, then you can install the software actually on the system, by installing it out of Sandboxie. Installing software in Sandboxie also helps in knowing what files and folders the software installs on the system. The files and folders will be created in Sandboxie, and can be seen, and explored, from within Sandboxie itself. As a check, if you look for these specific files and folders on your operating system, you won't be able to locate them because they are simply not there. They are inside the Sandboxie's isolated space, which shows that the changes made inside Sandboxie do not affect the actual system. |
Installation of Sandboxie is pretty simple and straightforward. Just run the setup, and follow the instructions. After installation of Sandboxie it will generally show a window titled Software Compatibility, where it shows a list of software for which Sandboxie has made adjustments for compatibility. It is just for information. Finally, it will show a very short interactive tutorial on how to use Sandboxie. On completion of installation, Sandboxie will also place a shortcut named Sandboxed Web Browser on the desktop, which when clicked, will run the default web browser of the system, inside Sandboxie. However, if you use a different browser for your normal everyday work, then a shortcut for it can also be created very easily, which we will learn about in the next section. |
When Sandboxie is installed and runs, it will show a window titled Sandboxie Control, as shown in the image below. This is the main Sandboxie window. With no programs running inside Sandboxie, it will simply show a yellow wedge shaped icon named Sandbox Defaultbox in the window. The same yellow wedge shaped icon will be in the system tray too. When a program is running inside Sandboxie, the main window will show the list of programs/processes running currently inside Sandboxie, and the icon will change to yellow with red dots. The Sandboxie icon in system tray will also change to yellow with red dots. That's how you know that something is running in Sandboxie. Now to find if a program is running in Sandboxie or not. Let's say you are running a web browser in Sandboxie (our prime example for this article). If you take the mouse cursor towards the top of the web browser (i.e. the title bar), you will see a yellow border appear around the edges, as shown in the image below. You will also see a [#] sign on either side of the name of the program in the title bar on the top, and/or in the taskbar. These are ways to know, and confirm that the web browser is running in Sandboxie because otherwise it will simply feel that the web browser is running normally: you won't notice the difference at all, that's how convenient and non-intrusive Sandboxie is. The yellow Sandboxie control icon in the system tray can be used to perform several operations, which can also be performed from the main Sandboxie window. Right-clicking the Sandboxie tray icon shows the different operations that can be performed. As can be seen from the image, you can run the default web browser, email client, or any other program you want, sandboxed. You can terminate programs, delete the contents of Sandboxie, or access the Quick Recovery (explained later) folders. The main Sandboxie window can be easily accessed by either double-clicking the Sandboxie tray icon, or by right-clicking on it, and selecting Show Window. By default the main Sandboxie window is in Programs mode, which means it will show the list of programs/processes running inside Sandboxie. To view the files and folders created inside Sandboxie, you can switch the mode by clicking View --> Files and Folders, from the menu. Terminating programs Individual programs running inside Sandboxie can be closed normally. But they can also be closed all at once, by just a few clicks:
This is especially helpful if you encounter a malware while running programs inside Sandboxie. In such situations, also remember to delete the Sandboxie contents, after terminating the programs, which will get rid of any malware inside. Alternatively, just deleting the contents of Sandboxie (explained next) will also terminate the programs, and immediately empty Sandboxie. Programs can also be terminated from the main Sandboxie window by clicking from the menu: Sandbox --> DefaultBox --> Terminate Programs. Deleting Sanboxie contents To delete Sandboxie contents:
The same can also be achieved from the main Sandboxie window, by clicking from the menu: Sandbox --> DefaultBox --> Delete Contents. Remember to delete the contents of Sandboxie on a regular basis, because the files and folders created inside Sandboxie can keep on accumulating, taking up hard disk space. Sandboxie contents can also be set to delete automatically via settings (explained here). Running programs in Sandboxie Running programs in Sandboxie is very easy, and can be done in several ways:
Creating shortcuts for sandboxed programs Creating a shortcut for a sandboxed program is also pretty easy. Just follow these steps:
That's it, the shortcut for the sandboxed program will be created on the desktop. Whenever you double-click that shortcut, the corresponding program will automatically run in Sandboxie. |
I hope this article helps you to get to know Sandboxie, and understand about it, and helps you in setting it up easily, and using it. If there are any suggestions or feedback about this article, please feel free to share them. If there are any questions, or you want to learn more about Sandboxie, please post in the freeware forum, where other Sandboxie users will help and guide you. There are many knowledgeable members on the site and forum, who use Sandboxie and are more than willing to help you. Just a little note: Sandboxie is not a replacement for security software, like antivirus, or anti-malware programs. Therefore, it is advised to keep the system updated and patched, and also install a good antivirus, and keep it updated. While Sandboxie will keep you safe while browsing inside it, but it's still advisable to follow good and safe surfing practices, and make it a part of your habit. |
Detailed help for Sandboxie is available on its website, here: |
Comments
Very long time Gizmo fan. Always read items on Sandboxie but shied away from installing because I was uncertain that I had the knowledge/experience to do so. Your clear and detailed article is a terrific help and has prompted me to now finally act. Thanks, thanks, thanks Anupam.
This is to clear up my comment because a name of my 'commercial' backup program and mentioning the names of my other security programs got deleted and it sort of makes my whole comment sound a bit retarded. My backup program has a feature that resembles Sandboxie, it's sort of a 'try and decide' thing where you can install stuff and if you like it you keep it and if not, turn the feature off and it disappears.
And as for this Sandboxie thing, if you always use it while online, why would you have use for any other security? I did read the caution that you still need your anti-virus, etc. but if you always, 100% of the time you are online are running on this 'virtual' machine (OK,sort of), why would you need anything else? Since you are operating out of a computer that disappears when you're done, why would you still need protection? It'd take some planning and work, I know, but being able to get away from other security software seems like the whole point of using something like Sandboxie. Otherwise, why use it? I'm a careful browser and have never gotten attacked by anything that my anti-virus, firewall, etc. didn't take care of, but why even use it if everything is just temporary? Any answers to the above questions will be appreciated & thanks in advance. Any downloads or bookmarks, notes or other stuff you could have sent to a memory stick or an external drive that you unplug before closing the browser, so it'd be out of Sandboxies reach, right? Probably not, but I can't figure out why.
Thanks so very much for the informative and inclusive reply. I've been hanging around Gizmos since I discovered the internet and since I live in a rain forest that just recently got other than dial up service it is still a lot newer to me than most. But I catch on quick and at least half of my software comes from recommendations from this site. I sort of figured out why the names that got 'edited' got the circular file but the Panda reference sort of unbalanced me cause I didn't know it was free. About the only thing you didn't clear up completely though is any difference between Sandboxie and the 'try and decide' feature on one of the biggest names in backup software. The few times I've used it, if I'm remembering correctly, it sounds a lot like the Sandbox, with maybe a couple of extra features and the only reason I don't use it more is because I have to open the program, go to that particular tool and wait a few seconds while it checks all my drives involved, because only my OS runs on my small SSD and everything else goes off to several other drives, both internal and external. I do very little random browsing so most of it involves sites I know well and trust completely to a point where my paid security stuff doesn't have much to do. Or at least I don't think it does, it's set on a sort of autopilot setting where I let it make all the decisions, because I've used it for years and it's got a sterling reputation and has never failed me. But it ain't cheap either and as of late I've been debating ways to not use such high end and totally inclusive software, that although my laptop runs with a QX9300 quad core with more RAM than my old OS can even use I'm trying to modernize without giving up the major stuff I'm comfortable with. I tend to start rambling and I'm doing it now so, thanks very much and I'll save my other list of questions for a later date. And since this is maybe the second time I've commented here in the 5 or 6 years I've been hanging around I'll take note of your suggestions and the rules about naming names. Thanks again and Pura vida, as we say round here.
I've been using Panda Safe. Sounds about the same. Panda Safe puts you in a virtual box and when you exit everything disappears. Thus no malware. Well to a point. Neither are bullet proof, but for most of us should be more then adequate.
I know you, the comment writer can't answer this but I'm curious why your mention of a Panda product got through while my mention of a couple of programs got 'edited' to take the names out. Maybe someone up in the Gizmo office might help me clear the incident up. Not trying to make a fuss, it's just that I don't usually comment here and am trying to figure out the rules. Thanks to anyone that may help me out here.....
Without going off on my long winded style, thanks to you too, Cowboy and if you just go up a few comments to my reply to Anupam, consider it as addressed to you too. I may start spending a bit more time reading the articles and comments here, up till now Gizmo's just been a software grab bag (and a good one)for me. Since I'm only about half smart when it comes to the details maybe I can learn something useful if I hang around enough. Ahh, I see the 'Site Manager' note as I write this, so I'll slip an unrelated (well...everything's 'related' when we're talking computers, no?) question. Is there any section, forum, blog or whatever around here where I can ask questions...like for instance, how would I go about 'secure erasing' my first, and getting a bit old but still very much alive, SLC SSD that sits in a drawer only because I've updated to a newer and much much cheaper MLC SSD (from the same company, begins with an 'S'), but despite it's quality I've used it so much, and mistreated it almost as much, that it needs the erase and I've yet to find something that works. Everything I've tried (all variations of the same thing), I haven't been able to get to work. But I'm ranting on again, so if you're not angry yet maybe you could just point me in the right direction. Thanks and Pura vida to you too. Jaxon
Thanks again and yes, it clears the 'issue' up completely and is totally understood. When I first started buying my own computers, which is only 7 years ago, I didn't know squat and only went with the best software I could find after intensive research in each category and when I discovered Gizmos I filled in a lot of empty spaces with the, thus far, wonderful stuff you offer. I'm talking screen capture, uninstall software, and various other hardware monitoring and tweaking programs. I'm not sure if I found 18kFanGUI here or not (I'm a Dell fan), but that might be the only software other than my security and backup and image and photo stuff that I didn't get here. I'm not trying to be a kiss up but you really do have a wonderful service and I'm going to start treating it other than just a catalog when I want a program. Evernote is the last 'find' I picked up from you and gee, it's incredible they just give you stuff like that. Am I allowed to mention software that I picked up as a free version here but ended up going on to upgrade to the paid version? Because Object Dock, free version was so great that I discovered that the paid version is twice as nice and if I blab names like that do I face the editing squad again? Again, I'm not being snarky, I'm just learning the rules, ya know? That last question about the dock software I ask because my first computer came with Panda on it but it was a 'trial' deal that you had to pay for if you wanted to keep it. And I found it not top notch as far as security suite type programs go. Being paranoid has been a good thing for me as far as online security goes and though I'd love to stop paying for it, I'm just too chicken about keeping my machine squeaky clean, and I do prefer one tool that does it all to avoid the conflicts and the work involved getting a firewall to get along with the antivirus to get along with the malware, etc. I'm willing to pay for software with an 'autopilot' setting, when it comes to security. But free stuff sure is nice and wallet friendly.
I've used Sandboxie for a while, and feel uncomfortable without it; it's like learning to use a seat belt. A couple of things to note: you have to exit Sandboxie to perform changes to profiles -- bookmarks, for example, because your profiles reside in your system (your browser will tell you that the bookmark is saved, but it ain't so). Key loggers can reside in the Sandboxie window and do their dirty, so be paranoid enough to empty the sandbox before going to any sensitive sites (bank, etc.). It should also be a reflex to delete any sandboxed files before closing down.
Whoops! My bad -- apologies for stating the already stated. Speed-read strikes again.
I've been using Sandboxie successfully for years. Having recommended the program to a number of other people this will be an excellent article to point them to for getting started. Even with experienced users it's good to cover the basics again. Many thanks.
Excellent article Anupam!
Just 4 observations from me:
1. The free version (which we are concerned with at Gizmo's) only allows users to open one sandbox at a time. So plan with this in mind.
2. After installing Sandboxie for 30 days, the user will get a pop-up dialog box that imposes a 5-second delay.
3. As great a program as Sandboxie is, it is not fool-proof, and users must still be alert and practice safe computer habits.
4. The yellow box surrounding the browser, or whatever program is sandboxed, only appears when the mouse is pointed at the top of the window (at least on my installation of Sandboxie it is so).
1 and 2 above may appear restrictive, but is a small price to pay for such a great program.
On #4, that's how Appearance works with default settings. If you like the yellow border to remain at all times, Go to:
Sandbox Settings>Appearance and untick "Display the border only when the mouse cursor is in the Window title".
You can also change the color of the border if you like. Personally, I don't like those color and prefer the traditional Sandboxie # marks in the Window title. If you like to try it, untick all settings under appearance and click apply.
Bo
I'm just happy that I can make a worthwhile input :)
Pages