Thanks. Unchecking/removing RoboForm eliminated that error. I also eliminated the Opera error by removing "Force Opera to run in this sandbox" (Applications > Web Browser) and then adding it again. Prior to upgrading to 3.35.15, Opera was already listed as a forced program.

Still to be added, I'm guessing:
Template for Linger Process defaults, and Recover Folder defaults (%Desktop%, %Personal%).

Also, I wonder why the RoboForm Template is added to all sandbox settings by default (pre-checked).
Same for Firefox Phishing_DirectAccess

The FF Phishing was previously a hard-coded exception, so it makes sense to make it a default template.

I omitted one SBIE message which occurs only once following installation of 3.35.15 as SbieCtrl launches for the first time:

"SBIE2322 Cannot rewrite Sandboxie.ini: [14 / 5]"

Make sure the Sandboxie.ini file isn't marked as Read Only.

Thanks -- this led me right to the problem. I will release a fixed version soon.



Maybe just for LingerProcess. Remember that you can't take out individual settings, if they come from an application configuration. So while it's unlikely anyone would want to edit the list of "immediate recovery exclusions", I'm not sure the same is true for lingering programs or for quick recovery folders. And I don't want to make things harder to configure, as a side-effect of a feature that is intended to make things easier to configure.





That's correct, and the same is true for RoboForm: "%Personal%\My RoboForm Data" was a hard-coded exclusion. It was not a very good idea, you may remember various problem reports concerning %Personal%. My plan is to migrate all "non-essentials" hard-coded exclusions like these two, so they can be easily disabled.



Thanks, I'll update Templates.ini. Is it just the urlclassifier file in %Local AppData% while the rest of the profile is in %AppData% ? Or is the entire profile in %AppData% ?



On the one hand, yes. On the other hand, when you try to remove a setting in a template, I think it makes more sense to say you need to remove (same verb) the template from the sandbox rather than disable the template. And if remove is the verb, than obviously its counterpart is add. Plus Add and Remove already exist in many translations, while Enable and Disable do not.

In regard to [Template_Firefox_Phishing_DirectAccess]:
OpenFilePath=firefox.exe,%Tmpl.Firefox%\urlclassifier*.sqlite*

The previous hard coded exclusion worked more like:
OpenFilePath=firefox.exe,*\urlclassifier*.sqlite*

As soon as I started using the 3.35.15 beta I got the "File Migration" message with one of my Firefox profiles. The 'urlclassifier3.sqlite' file was 55 MB. I didn't get that message with the previous beta version.
I got it this time because Sandboxie is allowing Direct Access to the file in the default profile, not for the profile that I was using.

The exclusion now is:
OpenFilePath=firefox.exe,%AppData%\Mozilla\Firefox\Profiles\*\urlclassifier*.sqlite*
But the anti-Phishing file that Firefox was actually using was located at:
K:\Profile\TrueCrypt\urlclassifier3.sqlite

Changing the profile folder location in Sandbox Settings > Applications > Folders
will not help. Firefox allows the user to create multiple profiles, and specify which one will be used each time Firefox starts - either using the Profile Manager or the '-profile' command line switch. Changing the 'Applications\Folders' setting will change the profile folder location for all sandboxes, and cannot allow for the use of several profiles, anyway.

I already use a number of wild card settings for Firefox, to allow for the different profile folder locations, so I can add my own
OpenFilePath=firefox.exe,*\urlclassifier*.sqlite*
to each of the sandbox settings. Someone else who uses Firefox with multiple profiles may not know to do so.
----
I expected that
OpenFilePath=firefox.exe,urlclassifier*.sqlite*
would work, but it doesn't. The extra wild card for the path (*\) is needed, for me anyway.

I also have programs such as thunderbird (with data saved) in non-default locations.
Will the entries that I have already set up in sandboxie.ini (for 3.35.14, say) override the new defaults in template.ini?

Edited 1 time for clarity.

tzuk, to answer your question, for a default install, the main firefox profile is in %AppData%, while only the urlclassifier3.sqlite file (and a few other minor files) are in the %Local AppData% folder (only for Vista!!).

After selecting my NonSecureBox > Sandbox Settings > Applications > Folders
and saving an alternate folder location for Firefox, under Template Settings I have:
Tmpl.Firefox.(UserName)=C:\Profiles\Firefox\NonSecure
(That would be correct for me, since my 'NonSecure' Firefox profile is used with my 'NonSecureBox')

If I then look at the Sandbox Settings for my SecureBox, the same alternate Folder location shows there.
Then clicking on "Click here to select an alternate location", a Browse window opens.
I can expand "+ Local Disk (C: )", but cannot expand the sub-folder
Local Disk (C: )\Profiles
if I wanted to select a different Folder location (a sub-folder under "Profiles") for this sandbox.

Nothing expands when clicking on the "+" next to the "Profiles" sub-folder, or on the Profiles folder icon.
Apparently, it's because I'm already using a sub-folder under "Profiles", since I can expand any other folder that shows in the Browse window.
So I can't use C:\Profiles\Firefox\Secure, once I have used C:Profiles\Firefox\NonSecure.

I also cannot delete what shows in the alternate folder location, when I'm viewing the Sandbox Settings for any of the sandboxes - including the one in which I set the alternate location (using the GUI).

Version 3.35.16 addresses recent concerns:

The errors reported by by nick s.

The anti-phishing setting now specifies *\urlclassifier*.sqlite*.

The Folders page has a Remove button, and the wide button has been dropped in favor of a simpler "Add" button.



If you checked any of the settings in Web Browser and/or Email Reader in earlier versions, Sandboxie Control automatically converts that to the new configuration scheme. If you've configured manually or otherwise somehow revised the default settings, Sandboxie Control will keep your old settings.



I don't know what to say to that. It's just a standard Browse For Folder dialog box. I'm afraid I have no idea why it refuses to expand some of your folders.

tzuk


can u add in > Settings > Applications > Web Browser also MAXTHON browser?

10x

tzuk, is the new OpenWinClass=*:app.exe form added to the Resource Access Monitor as well?

I was able to duplicate your success (sbie 3.35.16).
If I remove the checkmark (Applications|Local|AutoSizer|Remove), the code is still present in sandboxie.ini.
The only way to clear any reference to []AutoSizer in the Local Panel is
to delete the relevant code in sandboxie.ini and reload the configuration.
Is this by design or is there an alternate way to clear references to a local template?

Also, for some reason, the roboform template came already enabled in my setup.
After removing the checkmark for roboform, [TemplateSettings] in sandboxie.ini still contains the line

I do not use roboform, and I would expect that disabling it would get rid of that line

Edited 1 time.

It's now very easy to add new configurations, so in principle, yes. But, what is there to exclude with Maxthon? Doesn't it use the same folders as Internet Explorer?



Yes.



Not exactly by design, it would be more precise to say that I just didn't see a particular need for that. So you have some old template leftovers in Sandboxie.ini; so what?



Same answer: What is the concern here? Sure, I could revise the program to check if no sandboxes still use this template, and remove the associated template variable. But why should I bother?