I haven't used a sandbox . . . yet . . . but I've been thinking about it.
On another forum someone was touting the security advantages of using a sandbox to surf, and that renewed my interest in it.
They said, "When you finish browsing and delete the sandbox, all cookies, browser exploits, viruses, trojans etc evaporate." That seems pretty secure, and very much like 100% security. I'm not so intrigued by tracking cookies being deleted (though that is certainly a plus), but the part about " . . . browser exploits, viruses, trojans . . . " is particularly enticing.
So, the malware writers (a scurrilous bunch) haven't figured out a way to deposit their infectious packages outside of the sandbox?? Is this malware essentially "quarantined" within the sandbox, and it cannot get out unless the user (which would be a fool) does that recover function on the infected file?? Wow, if that's the case then this sandbox thing is 100% secure (other than an idiot user who let the thing out).
I've always subscribed to the Steve Gibson notion that there's no such thing as 100% security, but if this sandbox thing is what it looks like to me (I've looked at "Sandboxie"), then perhaps I need to rethink that notion.
I also subscribe to the notion that "If it's too good to be true, it usually is . . . not true". So, what am I missing? And I'd be interested to hear recommendations, pro and con, on it.
I had a question about Bookmarks. Specifically, I frequently Bookmark sites. If I do this in Sandboxie, is the Bookmark lost when I delete the Sandboxie browser session?? I read the Sandboxie tutorial, and it seems like you can use the recover function to save the bookmarks permanently, but it wasn't clear to me. Can I do this while I'm in Sandboxie, and if so, how?
The response I got back was "As for bookmarks, if I'm confident a site is safe, I just paste the URL temporarily into notepad. After killing the sandbox, I re-launch the browser without the sandbox, paste in the URL, save and exit. That's fairly bullet-proof."
I did try a LUA for a while, but as ScottW pointed out, it is very tedious. I found the same to be true, so I stopped using it. I'd like to hit a happy medium between security and user friendliness. Will this sandbox thing do it (if I configure it that way), or is that a hassle no matter what too??