The new version of Tencent's installer identifies the sandbox limitation and prevents the installation from proceeding. #3000
Comments
|
cmd md "C:\Program Files (x86)\Tencent\" |
|
Some developer trying to prevent his software to be run within Sandboxie needs to be questioned on their end. Sandboxie might be able to do some things to make it harder, but ultimately it seems to fail if the one that seeks to prevent it, is doing everything he can, with or without a valid reason. What made me listen up, however is this:
This, when it turns out to be true, violates Sandboxies security properties. |
|
For nearly two years, compatibility issues with Sandboxie have been relegated to a secondary role... I used to be more inclined to test software with my known issues list and even provide workarounds, but now, not so much. My current expectation is that this will be taken into account at some point. |
|
#3000 (comment) So far it seems that if you don't restrict it on the UAC (no revocation, no emulation). Tencent installs software that installs files on the real path of the host (e.g. tencent/QQ/bin/qq.exe is on the host path). lol. It looks like it has completely turned into the unsafe software that the sandbox author points to in the text warning next to the undo UAC. |
|
@ZSJsts I meant to create the folder in the sandbox |
As I said It already exists on the path both in the sandbox or the host machine. I don't need to create it again... EDIT: Markdown quote fix |
|
Here are links for some recent versions on Tencent official website |
Could that be related to #3160? |
|
You may try extract the content of the installer with various tools. The latest QQ 9.9.8 can be extracted with just 7-Zip. |
Describe what you noticed and did
When running the installer in the sandbox, if you select "Make app think they are running elevated". It will say have no right to install here (can't write).
However, if I do not select this option.The installer will install the files directly to the file location on the external host machine (I am still running the installer from inside the sandbox).(virtual machine escape)
I searched the history of issues in the community and I found that only in #2305 there was a similar problem. However, it was caused by someone used the special account "Administrator". I using a new account created with a Microsoft account (which of course is also an administrator)
Please note that I have successfully installed TIM in sandboxie at least 1 month ago. But TIM has recently blocked my login and it is not working properly in sandbox. I had to reinstall it. https://dldir1.qq.com/qqfile/qq/TIM3.4.7/TIM3.4.7.22084.exe
https://dldir1.qq.com/qqfile/qq/PCQQ9.7.8/QQ9.7.8.29042.exe
How often did you encounter it so far?
always
Affected program
tencent program
Download link
not
Where is the program located?
I tried to install it only inside a sandbox, but I wasn't able to achieve it.
Expected behavior
Stop him from escaping. Or install smoothly under the "Make app think they are running elevated" condition
What is your Windows edition and version?
WIN10 pro 22H2
In which Windows account you have this problem?
A Microsoft account (Administrator).
Please mention any installed security software
ESET
What version of Sandboxie are you running?
sandboxie plus 1.9.6
Is it a new installation of Sandboxie?
I have been using the same version for some time.
Is it a regression?
No response
In which sandbox type you have this problem?
In a standard isolation sandbox (yellow sandbox icon).
Can you reproduce this problem on a new empty sandbox?
I can confirm it also on a new empty sandbox.
Did you previously enable some security policy settings outside Sandboxie?
No response
Crash dump
No response
Trace log
No response
Sandboxie.ini configuration
No response
The text was updated successfully, but these errors were encountered: