Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Breakout programs don't seem to work as intended #2732

Closed
Dyras opened this issue Mar 4, 2023 · 2 comments
Closed

Breakout programs don't seem to work as intended #2732

Dyras opened this issue Mar 4, 2023 · 2 comments
Labels
Bug Something isn't working fixed in next build Fixed in the next Sandboxie version Issue reproduced Issue reproduced without uncertainties

Comments

@Dyras
Copy link
Contributor

Dyras commented Mar 4, 2023

Describe what you noticed and did

For some reason, breakout programs always seem to run outside of any sandbox for me, even if they should logically be forced into another sandbox

  1. Install any program inside of a sandbox. I've tested it with Element and ElectronMail
  2. Set up another sandbox and set a browser as a forced program in it. I use LibreWolf
  3. Set librewolf.exe as a breakout program in the sandbox created during 1
  4. Click any link in the program installed during 1
  5. Notice how after a delay it opens outside of a sandbox, even though it should open in the sandbox set up in 2

How often did you encounter it so far?

Every time I click a link in ElectronMail

Affected program

Latest LibreWolf 64-bit at the time of writing

Download link

https://librewolf.net/

Where is the program located?

The program is installed only outside the sandbox.

Expected behavior

Basically, here's what I expect

  1. I install ElectronMail into sandbox Protonmail
  2. I install LibreWolf "normally"
  3. I force LibreWolf into sandbox LibreWolf
  4. Set librewolf.exe as a breakout program in sandbox Protonmail
  5. When I click a link inside of ElectronMail, it should open in LibreWolf inside of the LibreWolf sandbox

I received an error message a few times, but I can't seem to replicate that now. Hmmm.

What is your Windows edition and version?

Windows 10 64-bit Education

In which Windows account you have this problem?

A local or Microsoft account without special changes.

Please mention any installed security software

Defender and Malwarebytes Anti-Exploit

What version of Sandboxie are you running?

Sandboxie-Plus 1.7.2 and 1.8.0

Is it a new installation of Sandboxie?

I just updated Sandboxie from a previous version (to be specified).

Is it a regression?

No response

In which sandbox type you have this problem?

In a hardened sandbox with data protection (red sandbox icon).

Can you reproduce this problem on a new empty sandbox?

I can confirm it also on a new empty sandbox.

Did you previously enable some security policy settings outside Sandboxie?

No response

Crash dump

No response

Trace log

No response

Sandboxie.ini configuration

[GlobalSettings]
FileRootPath=\??\%SystemDrive%\Sandbox\%USER%\%SANDBOX%
KeyRootPath=\REGISTRY\USER\Sandbox_%USER%_%SANDBOX%
IpcRootPath=\Sandbox\%USER%\%SANDBOX%\Session_%SESSION%
Template=WindowsRasMan
Template=WindowsLive
Template=OfficeLicensing
Template=Edge_Fix
Template=7zipShellEx
SandboxieLogon=y
UseSbieDeskHack=y
ForceDisableSeconds=60

[Protonmail]
Enabled=y
BlockNetworkFiles=y
RecoverFolder=%{374DE290-123F-4565-9164-39C4925E467B}%
RecoverFolder=%Personal%
RecoverFolder=%Desktop%
BorderColor=#027df7,off,6
Template=OpenBluetooth
Template=SkipHook
Template=FileCopy
Template=qWave
Template=BlockPorts
Template=LingerPrograms
Template=AutoRecoverIgnore
ConfigLevel=10
UseSecurityMode=y
UseFileDeleteV2=y
UseRegDeleteV2=y
AutoRecover=y
BoxNameTitle=-
CopyLimitKb=81920
OpenCredentials=y
LeaderProcess=ElectronMail.exe
NormalFilePath=C:\Program Files\LibreWolf
NormalFilePath=C:\Users\User\AppData\Roaming\electron-mail
ClosedFilePath=<BlockNetDevices>,InternetAccessDevices
BreakoutProcess=OpenWith.exe
BreakoutProcess=librewolf.exe
OpenFilePath=C:\Users\User\Downloads\ProtonMail

[LibreWolf]
Enabled=y,User
BlockNetworkFiles=y
RecoverFolder=%Desktop%
RecoverFolder=%Personal%
RecoverFolder=%{374DE290-123F-4565-9164-39C4925E467B}%
BorderColor=#0423ee,off,6
Template=LibreWolf_Force
Template=AutoRecoverIgnore
Template=LingerPrograms
Template=BlockPorts
Template=qWave
Template=FileCopy
Template=SkipHook
Template=OpenBluetooth
ConfigLevel=10
AutoRecover=y
UseSecurityMode=y
BoxNameTitle=-
CopyLimitKb=81920
WriteFilePath=C:\Users\User\AppData\Roaming\librewolf
UsePrivacyMode=y
DropAdminRights=y
FakeAdminRights=n
ClosedFilePath=<BlockNetDevices>,InternetAccessDevices
LeaderProcess=librewolf.exe
ProcessGroup=<StartRunAccess>,librewolf.exe
ClosedIpcPath=!<StartRunAccess>,*
OpenFilePath=librewolf.exe,C:\Users\User\Downloads
@Dyras Dyras added the Confirmation pending Further confirmation is requested label Mar 4, 2023
@offhub
Copy link
Collaborator

offhub commented Mar 4, 2023

Try after removing the user. Bug?

[LibreWolf]
Enabled=y,User -> Enabled=y

@Dyras
Copy link
Contributor Author

Dyras commented Mar 5, 2023

Yup that seems to have fixed it. Weird.

@offhub offhub added Bug Something isn't working Issue reproduced Issue reproduced without uncertainties and removed Confirmation pending Further confirmation is requested labels Mar 5, 2023
@DavidXanatos DavidXanatos added the fixed in next build Fixed in the next Sandboxie version label Mar 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug Something isn't working fixed in next build Fixed in the next Sandboxie version Issue reproduced Issue reproduced without uncertainties
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@DavidXanatos @offhub @Dyras