"run in sandbox" (cis 6)

_0M0D0 · February 22, 2013, 7:40pm

Hello,

When I run in sandbox, for example my browser, and I download a file and save it on the Desktop, I am not able to see it. I have to run WINDOWS EXPLORER in sandbox in order to see it.

Is there something I can do, or somewhere I have to go, in order to be able to see the downloaded file without virtualizing WINDOWS EXPLORER (for usability facility)?

Regards,

Maniak2000 · February 22, 2013, 7:48pm

Shared space is the only place visible and accessable from sandbox and from real os, so if you save files there, you can see them in shared space. But that kinda undermines security a bit, since files started from that folder have access to the real system.

_0M0D0 · February 22, 2013, 11:59pm

Thanks Maniak2000,

So if I downloaded a file from a full virtualized browser, and save the virtualized file in Desktop… then I have to move the file to SHARED SPACE so I can see it with unvirtualized Windows Explorer?

Maniak2000 · February 23, 2013, 11:47am

Yes, Or you could just save the file in shared space to begin with.

treefrogs · February 23, 2013, 12:08pm

I have created a folder on the desktop called Non-virtual downloads
In sandbox exceptions I added this folder
In dragon I changed the download location to this folder on the desktop and ticked the Ask where to save each file before downloading box
Now I can choose where to save each download but with the Non-virtual download folder on the desktop been default
The other exceptions are for bookmarks and extensions, pls note that although allowing these things are relatively safe, every “hole” you create in the sandbox is a potential leak
With this in mind I use a portable copy of Dragon with NO sandbox exceptions for high security sites such as banking etc

[attachment deleted by admin]

Solarlynx · February 23, 2013, 2:11pm

By default CIS has non-virtualised “Shared Space” so you can download there. If it is so important for you to download to the desktop then you can make it non-virtualised as it was shown by Treefrogs in the post above.

_0M0D0 · February 25, 2013, 9:07am

Ok, I get it. Thank you very much to all of you friends for your support and help.

SanyaIV · February 25, 2013, 9:13am

Or you can enable the showing of hidden folders then navigate to C:/VTRoot which is like the sandbox container and from here you can navigate to where you downloaded the things, very good if a sandboxed application automatically makes a log file that you need, because you can just navigate there and copy it to your real system.

_0M0D0 · February 25, 2013, 9:39am

I did that. I really thought that would be the way I could see the full virtualized downloaded file. But probably I did something wrong. I will re-check my procedure and see if it helps. Thanks.