computerfreaker wrote:...Sure, a sandbox offers some level of protection. But it won't cover everything - what about the legit app that gets hacked? (There was actually a fairly-well-publicized case of this a few years ago - a legit Fx addon got hacked and shipped with malware. The addon author, who was completely innocent, didn't find out until 30,000 people had already downloaded it...)
True. But AV clearly needs some major help, so the OS needs to step up...Tom T. wrote:*Nothing* covers *everything*. Hence the concept of "defense in depth". We'd hope that AV would flag the hacked app, although the confidence level in AV has dropped a good bit via this thread. But that is what our AV is supposed to be for.
IDR where that addon came from... I read that story a few years ago, and my memory is a bit foggy on it.Tom T. wrote:If the add-on came through the Firefox Add-ons HTTPS secure connection, it almost sounds like an inside job (somebody at MZ).
yes, NS is an important part of defense...Tom T. wrote:Don't know what that particular malware did, but since NS blocked the innoshot code from running, there's another part of defense in depth. The malware loaded, but couldn't execute -- and NS alerted the user to it. Of course, other types of malware don't depend on scripting or other things detected by NS.
I think sandboxing needs to come from the OS - I'll drop a new post in Security about this. (We've already had 2 topic splits, I don't see the need to generate a 3rd... )
Maybe. It would offer a lot of protection, but it burns out computers pretty quickly... (I know from personal experience)Tom T. wrote:Seems like we're almost back to running a virtual machine.
IE 8... regardless of how much it limits system-wide changes, it's still IE and it's still broken. (Mr. Maone's blog post about IE 8's broken XSS filter is a prime example of this)Tom T. wrote:IE 8 in Protected Mode is said to limit the browser's ability to make system-wide changes, but plenty of harm can be done right inside the browser.
My turn to sound like a broken record: Sandboxie Portable is better, since it comes from PortableApps.com...
Well, portable isn't really my only option, but it's close enough... sorry about that OT/ad statement, I claim a great love for PA.c as my sole defense. (Want me to delete that OT statement from my post?)Tom T. wrote:That's either an advertisement or a non sequitur. I'm aware of your personal situation, and that's fine. I do find that installs on the HD run faster, but if your only option is portable, cool. Still doesn't change the fact that one form or another of sandboxing or virtualization can be an important part of "defense in depth". Cheers.
I think virtualization is probably a better solution than sandboxing, since virtualization (if properly done) essentially gives you a "throw-away" computer - sandboxing won't work for all apps for various reasons.