Just because you asked, I've added my first name to my signature

there is so much to learn from this thread

are you hired gun for Tzuk of what?


Take care Paul

LastPass official info, received from their support is that LastPass saves data in:
-----------
The locally cached data is stored:
%APPDATA%\..\LocalLow\LastPass

Program Files are stored:
Program Files (x86)\LastPass

Registry Keys are stored:
HKCU/Software/LastPass
HKCU/Software/AppDataLow/LastPass
------------

Is that totally covered by Sandboxie compatibility exception?
I think it's not!

Yes, that matches although I don't know if IE saves things there when it's sandboxed, since I've always read that this location is used when IE runs in Protected Mode, but Sandboxie forces it to run in non-protected mode.
There's likely another folder that stores data when in non-protected mode, and that will match too.Irrelevant, since it doesn't matter at all where it's installed.Also irrelevant, since LastPass is running unsandboxed and all of it's settings should be made/changed in the unsandboxed LastPass.

okey
so we got to the bottom of this
thank you so much for clearing things up

one more thing

is GHOSTERY add on necessary if Ad Block Plus is installed together with No Script?
does those two do the same thing as ghostery? I did try runnin all of them together, and my observation was that ghostery was blocking some things and now I am not sure would those tracking google stuff be blocked if it wasn't for ghostery

take care

Hello,

I am still having issues, running FF (latest version) through sandboxie.
Although, trying to run FF outside of FF also gives me connection error.

It shows sometimes Connection error when entering login details.
LastPass tech support says that I am having this problem due to sandboxie.

They told me that I have hundrets of open active sessions and that this is due to Sandboxie.

Is there some way, to allow only LastPass cookie in Sandboxie?
I think that could be done by loging into FF running outside of Sandboxie?
And then, sandboxing FF and running it that way.
Is that the same as allowing cookie from LastPass to get through.
I know that I can allow direct access to cookies in Sandboxie (for firefox), but I am hesitant to do that, and I'd like to find a way to just let LastPass cookie through.

Please reply if you can help me.
Thank you in advance

I've never used the Cookie Monster extension for Firefox, but it will probably do what you want.
You will have to allow Firefox to save cookies out of the sandbox, and then set Cookie Monster to allow or delete cookies as desired.
https://addons.mozilla.org/en-US/firefox/addon/cookie-monster/?src=search

No setting in Sandboxie can allow just one site to save cookies out of the sandbox, to the cookies.sqlite database file.

There is a post in the forum that says Cookie Monster needs a setting to save data out of the sandbox to the file permissions.sqlite, as well as access to the cookies database.
I haven't verified that.
http://sandboxie.com/phpbb/viewtopic.php?p=78960#78960

hi there,

But, isn't this plugin only for sites? what if I am logging in via plugin on a blank page?
i don't have problem logging in on lastpass.com only via plugin.

I don't know how it could be Sandboxie causing this, as sometimes I receive that connection error after entering yubikey, in unsandboxed FF.
I don't know how could that be possible.

IE doesn't have those issues.

But, something is most definitely wrong as I had +100 active sessions.

Plase reply, if you have ideas or something.

finally manged to registered, as I now see, this forum is really helping out it's colleagues, and now I am glad that I am supporting the sandboxie

I just received info from lastpass support that "You need to modify the sandboxie settings to allow files to be kept, I don't know how to do this"

Practically they told me that running FF unsandboxed, and setting cookies that way, and then running the FF sandboxed, won't work.

I've given them the compatibility script that is used for LastPass.

I don't know where else are they saving files that are causing problems with Connection Errors.
Can't figure this out, no matter what I do

i just disabled Save Disabled One Time Password For ACC Recovery in LastPass plugin, and managed to log in for 13 consequently times without connection error.

Could it be that saving that One time password caused my problems?
Tech support did tell me that I've generated more then 100 one time passwords, and I didn't have a clue I was doing that.

Before, you talked about cookies. Now, you're talking about passwords.
I don't know which is required for Last Pass, but Firefox has settings to remember passwords in it's Tools > Options > Security tab

A password that is entered (and remembered) when running unsandboxed, will be remembered when running Firefox sandboxed or unsandboxed.

And Sandboxie has a template to allow sandboxed Firefox to save passwords outside of the sandbox, in case you did not already have a particular password saved. If you enter and save a password when sandboxed, the template will allow that password to be saved outside of the sandbox, and will be remembered the next time Firefox runs either sandboxed or unsandboxed.

hello,

LastPass has this thing called Disabled One Time Passwords for acc recovery.

those are saved on user computer, and those aren't the same as ticking the "remember my password" upon login
i am talking now about those disable one time passwords, as tech support from LastPass told me, that I have +100 of active sessions (which I all killed, and selected "kill other sessions upon login") and that I have generated hundrets of Disabled One Time Passwords.

i've asked them to tell me where those disabled OTP are exactly saved on the HDD
now i've disabled the option in lastpass plugin for generating those, and now it seems that I don't receive connections errors any more

have you heared about disabled one time passwords being saved on user pc? it could be that upon log in, OTP is generated, and sandboxie empties it, and next log in it checks if the same OTP is there, and if it isn't generated another one
who knows

I hope you can follow, as this is really a mess

Take care

happy Easter guys!!

p.s. I've been informed that LastPass developers team has contacted Sandboxie's developer (Tzuk I presume) so that they can work around these issues..

I can't wait to see if and when will they resolve this..

Ever since I've unchecked "save disabled OTP for acc recovery" not even 1 connection error
p.s. I've also enabled Kill other sessions on connect