Sandboxie 2.86 released（2007.04.20）

　　New Features

　　New Immediate Recovery can recover files as soon as they are savedinto folders configured as recoverable. Use Sandboxie Control ->Configuration menu -> Sandbox Settings -> Set Automatic Clean-UpOptions to enable this feature.

　　Problems Resolved

　　1.SBIE1408 error messages.

　　2."Can't invoke program" problem (due to a conflict with a third party application).

　　3.Printing works better on some printers.

　　4.Launching a sandboxed program will correctly start the Sandboxie service and driver, if they are not active.

　　More Changes

　　1.Enumerating processes inside a particular sandbox will not show processes running in other sandboxes.

　　2.New OpenPipePath setting.

　　3.Sandboxed registry keys are no longer converted into lowercase letters.

　　4.The sandboxed Windows Installer service starts faster. It can alsobe started on Windows Vista from a limited Administrator account whenUAC is in use.

Download 32-bit beta version:

http://www.sandboxie.com/2.9x/SandboxieInstall-292.exe

64-bit version will follow soon.

There are lots of changes that I will list later today. Most visible change is perhaps that the horrible SandboxieExplorer has been removed, and instead the native Windows Explorer runs sandboxed.

Three non-trivial security vulnerabilities have been fixed. One of them is the well-known weak protection for cross-winow messages and hooks. The other two are not known and I'm not sure if there is need to disclose them?

Version 2.93

Download link (32-bit):

http://www.sandboxie.com/2.9x/SandboxieInstall-29309.exe

Changes in Version 2.93.09

Some minor bug fixes.

Changes in Version 2.93.08

* Sandboxie can install and manage sandboxed services.

* The sandboxed Windows Installer starts and stops automatically. The menu options to manage it have been removed.

* The sandboxed Windows Installer (and other services) can now access the remote shares (network drives) mounted in the invoking session.

* New setting BoxNameTitle=y in Sandboxie.ini displays the sandbox name in the window title bar.

* And more bug fixes.

* * *

Version 2.92

Download link (32-bit):

http://www.sandboxie.com/2.9x/SandboxieInstall-29207.exe

Changes in Version 2.92

Stronger Protection

o "Strong" (kernel-mode) supervision of cross-window communications. The Sandboxie driver now monitors window messages and window hooks.

o Global hooks are not allowed, and will be converted into per-process hooks that are applied only to processes in the same sandbox. If programs should be allowed to install global hooks, a new per-sandbox setting can undo this protection: BlockWinHooks=n

o Sandboxed processes are blocked from sending (most kinds of) messages to windows outside the sandbox, and cannot destroy such windows. If this is nonetheless desired, a new per-sandbox setting make it possible for a sandbox window to send messages to a particular class of non-sandbox windows: OpenWindowClass=classname

o A new GuiTrace setting traces windows messages, window classes, and window hooks: GuiTrace=ad

o An uncommon variation of a file access request was not checked by the Sandboxie driver in earlier versions. This security hole is closed.

o One more vulnerability related to directories was fixed.

o The system-management named pipes lsarpc, srvsvc, wkssvc, samr can be accessed by a sandboxed program, and this access is guaranteed to be non-Administrator. If you have these pipes listed in an OpenFilePath/OpenPipePath, to make some program work, it is suggested you remove them.

Better Usability

o This and future versions of Sandboxie can be updated and removed without a system restart. Note, if you are updating 2.9x on top of an earlier version of Sandboxie, you will have to restart in order to refresh the older Sandboxie.

o Sandboxed programs producing 'fake input' (such as mouse gesture tools producing 'keystrokes' for mouse movements) are not blocked, as long as the active window is sandboxed. The previously-available BlockFakeInput=n setting is now only needed if the sandboxed program should be able to send the fake input to a window outside its sandbox.

o When re-creating a deleted directory in the sandbox, the directory will always be created empty, even if the un-sandboxed counterpart directory contains files and sub-directories.

o The native Windows Explorer can run sandboxed, and the SandboxieExplorer replacment has been discontinued. As with SandboxieExplorer, the sandboxed Windows Explorer can 'cut' and 'copy' files, and these can be 'pasted' into the un-sandboxed Explorer.

o Explorer-like processes (Windows Explorer, Internet Explorer, and other shells) should no longer 'linger' in the sandbox after all their visible windows have been closed.

o The Sandboxie DLL SbieDll is now injected into a sandboxed process very early during initialization, which makes more programs usable under Sandboxie.

o Immediate Recovery will not suggest to recover .part files.

Download link (32-bit):

http://www.sandboxie.com/2.9x/SandboxieInstall-29418.exe

Changes in Version 2.94.16

.Net executables can start
'Temporarily Disable Forced Processes' is now a per-session rather than a global setting.

Version Changes_3_00Released on 10 July 2007.
This page lists the changes to Sandboxie from version 2.86.
Changes

• Sandboxed Windows Explorer
  • In Sandboxie Control:  Run Sandboxed -> Windows Explorer
  • Files cut (or copied) in a sandboxed Windows Explorer window, can be pasted into any unsandboxed application
  • The SandboxieExplorer replacement for Windows Explorer has been discontinued

• Sandboxed Windows Installer
  • Starts and stops automatically as needed
  • Run Sandboxed -> Windows Installer has been discontinued
  • Can install packages from network shares

• Sandboxed Installation of Win32 Services
  • Happens transparently and automatically as part of sandboxed installation, if needed
  • Note, this does not refer to drivers

• Stronger protection of window-to-window communications
  • Sandboxed applications can't destroy windows of an application outside the sandbox
  • Sandboxed applications can't communicate with windows outside the sandbox
  • Can be overriden with OpenWinClass?
  • Sandboxed applications can't send fake keyboard input to windows outside the sandbox
  • Can be overriden with BlockFakeInput

• Sandboxing of Win32 Hooks
  • System-global hooks are converted into application-level hooks, and directed to sandboxed applications only
  • Can be overridden with BlockWinHooks
  • Earlier versions of Sandboxie allow a sandboxed program toinstall a global hook DLL, if the hook DLL file is located outside thesandbox

• Support for read-only files and registry keys
  • See ReadFilePath? and ReadKeyPath?
  • Can be used by administrators to make sure sandboxedapplications can't bypass system policy by modifying the sandboxed copyof the Policies registry key

• Sandboxie no longer needs a system restarts when upgrading or removing the program
  • Note that upgrading from an earlier version, such as 2.86, will still require a restart

• Improved support for Windows Vista

• Smaller changes
• No error message if OpenFilePathet al specify a drive letter that isn't available (Useful when usedwith portable hard drives that may not always be available)
• Support for more devices inside the sandbox, specifically, webcams
• Sandbox name can be displayed in title bar.  See BoxNameTitle
• Reduced chance for SBIE1406 errors

[ 本帖最后由 hzqedison 于 2007-7-11 17:39 编辑 ]

Sandboxie v3.00.09 Keymaker

sandboxie3.01版：

Changes

• Most of the many changes in version 3.01 are fixes to problems discovered with the previous version 3.00.

• Fixes to increase stability and robustness of Sandboxie.

• Fixes to enable more programs to run sandboxed.

• Numerous fixes for more compatibility with third-party software.

• Corrected handling of some parameters in Sandboxie.ini file, and of the configuration file as a whole.

SandboxieInstall.exe MD5 a523fcd9c13ff5b1fd45c6fa261997b1
SandboxieInstall.exe SHA1 ff700a8dc546c3c6aa4244490eee2f7447c09a41

[ 本帖最后由 chinaruto 于 2007-8-30 15:32 编辑 ]

http://www.sandboxie.com/

19 October 2007
Version 3.02 of Sandboxie is now available for download. Recommended update for users of Windows Vista. DownloadSandboxie.Windows 2000, XP, 2003, Vista; 32-bit


暂不支持 vista 64-bit

引用:

                 

[ 本帖最后由 nhxycfans 于 2007-10-19 23:40 编辑 ]

太乱了 能不能整理一下！

已经更新到3.24了

Sandboxie version 3.24