Thank you very much for all the feedback in last Beta v523.
Here are the changes:
- Crash reported here is fixed.
2. You will find following additional folders added to default list in addition to MyDocuments as have been suggested:
Text changes as suggested here are included.
4. As reported here, at the moment support for external drives is not there, so sandboxed apps will still be able to see external drive. We will consider adding support in next sprint.
Carrying changes from Beta - v523:
1) Protected Files / Folders:
“Settings–>Sandbox->Protected Data” has now been renamed as “Settings–>Sandbox->Protected Files/Folders”.
It means following:
- Like before, you can define folder which can’t be modified, now contents inside those folders will be invisible to Sandbox apps. So neither read nor write is allowed.
- You can define any file path and it won’t be visible to Sandboxed applications
- As default you will find following entry in there:
%SystemDrive%\users\*\documents\* %SystemDrive%\users\*\pictures\* %SystemDrive%\users\*\videos\* %SystemDrive%\users\*\saved games\* %SystemDrive%\users\*\onedrive\* %SystemDrive%\users\*\favorites\*
i.e. no file inside this folder will be visible to Sandboxed application.
The objective is that even if you have a malware in Sandbox, it now even can’t read your data and transfer.
So sandboxed applications are now having access to only files, which are either created by them or they can read other contents as long as they are not defined in this section.
2) Enhanced Clipboard Protection:
Earlier we prevented clipboard access to Sandbox application, where sandbox application could not access clipboard, now sandboxed application clipboard data could also not be copied outside. It takes care of situations where malware applications could transfer malicious contents via clipboard to outside sandbox. Even though you were protected due to default-deny, but now that situation itself is prevented from arising.
3) Recognizer Update Control:
Earlier recognizers could be auto updated. Now user has control. In “General Settings -->Updates” now there is a check box “Update recognizer automatically”, selected by default, it lets you control recognizer update.
Additionally after this release onward, we will just have to flip a configuration setting on server side to convert recognizer from test mode to alert mode and vice-versa without requiring new binary update.
4) Crash Fixes:
In last major release v505, we introduced crash reporting. It has been of great help and allowed us to receive reports beyond forums community. Many crashes have been fixed and this is a much-stable version. Our objective is to ensure that we create a product that works for all and is rock-solid. We will continue to fix issues as received from users.
5) Advanced Protection
Now “Settings–>Browser Settings Protection” has been renamed as “Settings–>Advanced Protection” and it’s settings moved as sub section “Browser Settings Protection”, allowing to add more sub sections in there.
6) Clearing Recently Used Virtual Apps
Earlier if you used ‘Run Virtual’ option, you could have executed apps list always there. Now you can clear up. There is a trash icon in there.
BETA - Warning:
Following setup is a BETA setup and it is not recommended to test on production machine and it is intended only for beta testers.
So please try at your own risk.
Size: 8.94 MB (9,379,016 bytes)
We would like to hear on following if you see any usability issues due to following two features introduction in this release:
A - Due to introduction of not allowing Sandboxed applications to access folders added by default.
B - Not allowing sandboxed applications clipboard data to outside Sandbox
It has been a great feedback, highly appreciated. If all looks good, we will release it this week.
Please share your feedback further.