Can you share your experiences with these solutions, what you thought, what you wanted to see, what you use, what you recommend and in general just open up your vault and share. Hope to hear from you all, especially our host. 
I know exactly what you mean, I usually avoid such sites in my normal activity but occasionally by the virtue of associates from another lifetime who are "hackers" if you will or we worked for federal taskforces on child pornography and such, I have to go access the sites that are mostly supported by porn or ad revenue, so its a minefield to say the least.Alan Baxter wrote:I used to be reluctant to test problematic urls served up by users in NoScript support and other forums. Seemed to be inconsistent with "safe hex" practices, even with NoScript. I think a big part of what keeps my PC clean is not surfing to dodgy sites. You know, a user will click on almost anything to get a hit of pron, so I'd just as soon stay out of that trap.
Granted, we normally have our own space which is not affected to communicate but I get what you are saying. I am able to test those links without too much worries, since I have protocols in place, but would not feel comfortable either if I wasn't sure I was going to be safe and that does reduce ability to support sometimes.I will check this out, it sounds interesting when I looked at it briefly and will do a more thorough evaluation of it. I am always looking for more utilities, tools and ways to do things. This will certainly help and thanks to you and Tom for sharing this, it never hurts to have more options and alternatives.Last weekend Tom T. suggested I try out Sandboxie. I now run my test profile inside its sandbox without endangering my system. I can provide much more support now.
but I have a lot of experience with SB, including some tweaking and config. Let me know if I can help you in any way. . No imaging software, just simply copy data for backups. No Limited user, no reduced rights. 
and that keeps me so busy redoing machines that I am getting so sick and tired of it. I mean there is only so many times you can clean install and reinstall everything for someone who could have avoided it before just getting ready to blow my brains out. Unfortunately I have not been able to get some regular users to learn and behave more responsibly. I have had some success but not enough to turn the tide, so I was hoping to maybe recommend and setup a solution that will mitigate their lack of initiative. But its good to hear that I am not the only one who thinks common sense would be a good place to start 
Thank you, I agree that the first is independent of the second. I was asking more along the lines of process isolation or virtualized (using the term loosely) process that can achieve the same effect without access to critical systems, easily dumped if you will.Giorgio Maone wrote:NoScript (in-browser protection, web app isolation) and sandboxes (browser isolation from the OS) are orthogonal.
I wrote a short post about this some time ago.
I do not use any. If I need to test something in IE or Chrome, I use a clean Vista VM. For Safari, a Mac OS X VM. With Firefox I ride naked, NoScript aside.GµårÐïåñ wrote:I also remember this post of yours, I took another look, thank you. What sandbox solutions have you used, encountered or would recommend, regardless of level of experience?
Interesting, that's my setup too. I have a VM in each of these configurations for testing/support and so on (XP, 2k, 98, Ubuntu, Fedora, FreeBSD, Vista, Win7), I have always found this to be sufficient, since anything "risky" I do is in there anyway and when I don't want to have it bite me in the butt later, I keep it in read-only so it will have to dump the changes.Giorgio Maone wrote:I do not use any. If I need to test something in IE or Chrome, I use a clean Vista VM. For Safari, a Mac OS X VM. With Firefox I ride naked, NoScript aside.
Actually I had to uninstall Avast as much as I like it as a software because of the false positives I was getting, it just got to be too much. I use Firefox with NoScript, Adblock Plus and RequestPolicy. Those are the only "security" I use and I keep the rest of the utilities to a minimum of what I absolutely like or need. No problems yetI've got Avast installed, but I've never had any incident report aside false positives of exploit pages already neutered by NoScript.
Mostly thanks to you actually.No need to be sorry, thanks for letting me know, I will check it out. The solutions I am trying to evaluate are not just for web browsing and stuff, but more for testing, development, security evaluations and stuff like that. I want to know that I can let some hell loose in a realistic environment and its not going to get out and screw things upI've heard good things about SandboxIE among my users, but I've never felt the need of trying it out, sorry.
You know, like a quarantine lab style where I did my master work (the CDC level 4 infectious diseases), just for computers I have seen enough Ebola to last me a life time. Thank you, I will check it out.therube wrote:With Returnil Virtual System or similar programs you can turn them loose, they can do all they want, but upon reboot everything is back to where it started.
I actually have used Acronis for years and love it and we use it to deploy and restore images but have not yet found a way to use them as a use and toss solution. Other than using the images to restore VMs that are destroyedPretty sure with Ghost & Acronis True Image too, you can set up a (like a factory) restore partition that you can just revert to - whenever you feel like it.
Code: Select all
Improved!Try&Decide
Try new software and browse the web without endangering your computer from malware or unknown software. After testing, you can decide whether to keep or discard changes to your system.
---
Acronis Secure Zone®
Protect your system by saving an image to a special hidden partition on your hard disk where it can be retrieved after a disaster.