Matrix Posted December 19, 2018 Share Posted December 19, 2018 Something to look forward to: Good news for anyone who has ever downloaded a suspicious executable file but didn’t want to set up a virtual machine to run it safely: Microsoft has announced a new feature called Windows Sandbox that creates a temporary desktop environment that isolates untrusted software, meaning it can’t affect your PC. Microsoft said the feature, which was previously known as InPrivate Desktop, would arrive in Windows 10 19H1 by early next year and be part of the Windows 10 Pro and Enterprise editions. Any software its runs stays only in the sandbox. Once it is closed, all the software and its files and state are permanently deleted. While the feature doesn’t require the setting up of a virtual machine, virtualization capabilities need to be enabled in the BIOS. Users must also have at least 1GB of free disk space to run the sandbox. The sandbox builds on technologies used within Windows Containers, which were designed to run in the cloud. Microsoft integrated this within Windows 10, adding features that made it more suitable for running on devices and laptops. “One of the key enhancements we have made for Windows Sandbox is the ability to use a copy of the Windows 10 installed on your computer, instead of downloading a new VHD image as you would have to do with an ordinary virtual machine,” explains the company. The sandbox also uses a new technology called “integrated scheduler,” which allows the host to decide when the sandbox runs. Windows 10 Pro and Enterprise users will be able to try out the feature once Microsoft ships build 18305. Full prerequisites: Windows 10 Pro or Enterprise build 18305 or later AMD64 architecture Virtualization capabilities enabled in BIOS At least 4GB of RAM (8GB recommended) At least 1 GB of free disk space (SSD recommended) At least 2 CPU cores (4 cores with hyperthreading recommended) Original Article. Link to comment Share on other sites More sharing options...
Pete 12 Posted December 19, 2018 Share Posted December 19, 2018 Why should we always wait for next Windows-upgrade for these usefull tools ?? Wish I had this in 1809 already...................! Link to comment Share on other sites More sharing options...
Matrix Posted December 19, 2018 Author Share Posted December 19, 2018 8 minutes ago, Pete 12 said: Why should we always wait for next Windows-upgrade for these usefull tools ?? Wish I had this in 1809 already...................! Simple answer Ms treat us like rats and feed us crumbs.... What about us home users don't we deserve an important security feature ? Link to comment Share on other sites More sharing options...
Karlston Posted December 19, 2018 Share Posted December 19, 2018 A first look at Windows Sandbox Windows Sandbox is a new virtualization feature that Microsoft will integrate in Windows 10. Windows Sandbox allows users and administrators to run software in a sandbox so that it cannot harm the underlying system. Sandboxing is not a new concept but users had to resort to installing third-party solutions like Sandboxie or virtual machines such as VMWare or VirtualBox in the past to run software in a protected environment. Windows Sandbox will be part of Windows 10 Pro and Enterprise; everything is included in the operating system making it a comfortable and elegant solution. The environment works as expected: it is an "isolated, temporary, desktop environment" that protects the underlying host from harm and will vanish when it is closed. Windows Sandbox requirements Windows Sandbox has the following prerequisites: Windows 10 Pro or Windows 10 Enterprise build 18305 or later. AMD64 architecture. At least 4 Gigabytes of RAM, 1 Gigabyte of free disk space, and 2 CPU cores (recommended 8 Gigabytes or more of RAM, SSD, and 4 cores with hyperthreading). Virtualization enabled in the BIOS. If you use a virtual machine, you need to run the PowerShell cmdlet: Set-VMProcessor -VMName <VMName> -ExposeVirtualizationExtensions $true How to enable Windows Sandbox Provided that the system meets the requirements listed above, you may enable Windows Sandbox in the Windows Features dialog. Use the shortcut Windows-Pause to open the System Control Panel applet. Select Control Panel Home. Activate Programs. Select Turn Windows features on or off. Check Windows Sandbox. Click ok and follow the instructions. Using Windows Sandbox Once installed, use the Start menu to load Windows Sandbox. You can search for it. Note that it requires elevation; you can right-click on the file and select run as administrator to run it with elevated privileges. Copy an executable file -- or any other file for that matter -- and paste it into the Windows Sandbox window. You may then run it like you would do on the "real" desktop and interact with the software like you would do normally. You may close the Windows Sandbox window at any time to close the session. Any changes are discarded and sandbox content is deleted in the process. Microsoft notes that Windows Sandbox uses Windows Containers to provide the sandboxing functionality. While Windows Containers were "designed to run in the cloud", Microsoft's team integrated it with Windows 10 and modified it so that it would work fine on laptop and desktop devices running the operating system. Windows Sandbox uses the loaded Windows version as the operating system image; this is different from many other virtualization environments which require virtual images that users need to download and install in the machines. Use Cases Windows Sandbox offers several interesting use cases; it may replace other virtualization solutions in some cases: Run software that you want to check out so that it can't harm the underlying operating system or steal data. Execute software in the environment for privacy purposes (e.g. not wanting history records or traces in the temp folder). It is unclear whether it will be possible to launch regular non-executable files in the environment as well. Closing Words Microsoft has not integrated the feature yet in any version of Windows 10. The company plans to integrate it in upcoming Insider builds for testing purposes before it lands in an upcoming feature update for Windows 10. Windows Sandbox offers advantages over third-party sandboxing or virtualization solutions: it is integrated in Windows 10 and uses the host operating system as its base. It lacks flexibility on the other hand and does not support persistent sessions or data. It remains to be seen how fast Windows Sandbox will start when executed on a system that supports it, and how much of a difference faster hardware makes. Source: A first look at Windows Sandbox (gHacks - Martin Brinkmann) Link to comment Share on other sites More sharing options...
steven36 Posted December 19, 2018 Share Posted December 19, 2018 1 hour ago, DonyMach1 said: Simple answer Ms treat us like rats and feed us crumbs.... What about us home users don't we deserve an important security feature ? Things like this shows they don't care about there home users they want people too fork out at lest 200 bucks to get this feature when in linux Fire Jail is free . 1 hour ago, Karlston said: It remains to be seen how fast Windows Sandbox will start when executed on a system that supports it, and how much of a difference faster hardware makes. People on linux with faster hardware can just install Windows 10 as a guest with VFIO passthrough in a VM and it's almost as fast as they installed Windows on bare metal . most of linux itself is sandboxed and you can use Fire jail for a extra sandbox for your home folder. https://medium.com/@dubistkomisch/gaming-on-arch-linux-and-windows-10-with-vfio-iommu-gpu-passthrough-7c395dde5c2 Link to comment Share on other sites More sharing options...
mp68terr Posted December 19, 2018 Share Posted December 19, 2018 New feature? ms just copied what has been available for years! Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.