sandbox software for running untrusted software

[grrreat]

Given all the trouble with running untrusted or unknown software on your
machines, it might be worth checking out Safe Launch from
www.safelaunch.com. Safe Launch allows you to run untrusted programs in a
virtual sandbox. This sandbox will popup a window to let you know if the
program is trying to modify files, modify the registry, or even trying to
connect out over the internet. You can decide whether to allow or deny the
activity to occur.

Best advice is always to not run executable attachments that arrive by email
from unknown sources, but often you receive or download software from the
internet that you really want to run. This tool allows you to do it safely
without compromising your machine.

BTW, I'm sorry if this comes across sounding like an advertisement, it not
meant to be. This tool could be of value to striving to keep their system
secure. Makes it easy to spot trojans trying to install themselves...

 

[Bill Sanderson]

Personally, based on the evidence of two posts touting this product in
recent past, I'd say this IS an advertisement, but that's purely my opinion.

 

[grrreat]

Ok, sorry. Opinion accepted. I wont post here again.

I really believe its a unique security tool that people here would benefit
from, but you're right - this probably isn't the right forum to let people
know about it.

 

[robreeve]

Actually if you want a good sandbox, try running your server in VMWare.
Take a snapshot, create another virtual server and configure it for testing.
Apply the patch, see what it does. Can't test everything, but you can
simulate most of it this way.

 

[helper]

Or Virtual PC.
Works great:

www.microsoft.com/virtualpc

 

[grrreat]

In the past I used VMWare for just exactly this. I've also used Virtual PC.
You're right, these do make good safe environments for running untrusted
software. I still found it difficult to tell what a program was doing within
these emulators, and you often lose the benefit of a program by not running
on you "main" machine. Often you do want to allow these programs to read
your data files, or registry, or specific hardware attached to the machine -
you just want to stop expected activity.

Ok, its not for everyone but I certainly a lot of happy users, and at $20
its a lot cheaper than VMWare and Virtual PC.

 

[Harald Bilke]

Hi/2

Or Virtual PC.

Or BOCHS

Works great:

Works, a little bit on the slow side but "OpenSource"

 

[Eric Chamberlain]

Why should we trust this program over any other program distributed over the
internet?

 

[Ed >:-)]

Or you can try it the way i do it. Have a only PC laying around set it
up, download the files and run it. If it screws it up no loss to you.

Actually if you want a good sandbox, try running your server in VMWare.
Take a snapshot, create another virtual server and configure it for testing.
Apply the patch, see what it does. Can't test everything, but you can
simulate most of it this way.

"Digging for answers to questions they don't want to answer"

 

[Kevin D. Quitt]

Does make me wonder when the first worm will show up that can get out of a
virtual machine.