大多数主流浏览器都带有自己的沙箱,以确保您的计算机更安全。这篇文章着眼于什么是浏览器沙盒(Browser Sandbox),如何使用它,或者在Google Chrome、Microsoft Edge和Mozilla Firefox上完全禁用它。
什么是浏览器沙盒?
沙盒(Sandbox)可让您的孩子玩沙子,而不会让沙子在您的花园中四处散落。这是因为沙子被封闭在一个高墙的盒子里。计算机中的沙箱也是如此。如果您想在不破坏整台计算机的情况下测试新应用或其他内容,您可以使用Windows 10 沙盒(Windows 10 Sandbox)功能或使用第三方工具构建沙盒。然后,您可以将您的应用程序安装到沙箱中并进行检查,而不必担心会破坏计算机。
浏览器——其中大多数——已经有一个沙箱来增强您的计算机保护。浏览器沙箱的想法是保护您的计算机免受浏览的副作用。即使是最好的网站也可能在他们不知情的情况下托管恶意代码。因此,如果一个网站下载了任何恶意代码,它就会被下载到计算机的沙箱部分。当沙箱关闭时,其中的所有内容都会被删除,包括恶意代码。
火狐沙盒
Firefox在沙箱中运行不受信任的代码,以便计算机在发生恶意事件时受到保护。Firefox分两部分运行:一个是父进程,另一个是子进程。在Internet上工作时,不受信任的进程在Firefox沙箱中运行。如果有任何污染,这有助于控制污染。当子进程在Sandbox中运行时,父部分充当子进程和其余计算机资源之间的中介。
用户可以更改Firefox(Firefox)中的沙盒级别以使其更严格或更容易。为0 时,Firefox限制最少;2级是平衡的和电流的;第 3 级将受到高度限制。要查看Firefox(Firefox)正在使用哪个级别,请在地址栏中键入以下内容并按Enter键:
about:config
它将在页面上加载Firefox可配置变量。完成后,将光标放在配置页面的任意位置后按CTRL+F在Find框中,输入以下代码并按Enter键:
security.sandbox.content.level
该函数返回的值是Firefox使用的当前沙盒级别。
Chromium 浏览器沙盒
Microsoft Edge和Google Chrome浏览器都使用 Chromium 。基本上,他们的沙箱也可以像上面Firefox部分中解释的那样工作。
有两个部分——代理进程和目标进程。浏览器进程是代理进程,而子进程称为目标进程。目标进程运行的所有代码都在沙箱中运行。另一部分称为代理进程,因为它作用于子进程和其他计算机资源之间,以便为子进程提供他们想要的资源。
在Windows 10 Pro及以上版本中,您可以使用Windows Sandbox来运行Microsoft Edge。
如何关闭谷歌浏览器沙盒(Google Chrome Sandbox)?
要关闭Google Chrome 沙盒(Google Chrome Sandbox),请右键单击其图标。单击(Click)属性(Properties),然后在出现的对话框中单击快捷方式选项卡。(Shortcut)
将以下内容添加到目标中显示的应用程序路径中:
--no-sandbox
此后(Henceforth),每当您单击Chrome图标时,它都会在没有沙箱的情况下加载Chrome 。
在沙盒中使用 Microsoft Edge
当您启动Windows 10 Sandbox时,您将获得一个只有回收站(Recycle Bin)和Edge快捷方式的新桌面。它显示开始菜单(Start Menu)和其他图标,但它们在这个沙盒操作系统中并不能真正工作。您可以在主Windows 10而不是沙盒Windows 10中打开它们。
您可以从这个沙盒化的 Windows 10 环境中启动Edge,以便以最大的安全性进行浏览。一旦你关闭沙盒,在Edge上工作一段时间后,没有人可以追踪你在Internet上所做的事情。您的ISP可能会创建您所做的事情的日志,但没有人可以检查您在沙箱中使用Edge执行的那些活动。(Edge)
与其他数据一样,如果任何网站将恶意软件下载到您的系统,当您关闭沙箱时,该恶意软件也会消失。
笔记:(Notes:)
- 为浏览器使用沙盒环境不会使其 100% 安全。浏览器的某些部分碰巧超出了沙盒,尤其是当它们仍在使用Flash和ActiveX元素时。这些可能会受到损害,然后网络犯罪分子可以访问您的计算机。
- 如果您不想使用Edge而使用其他浏览器,也可以使用Sandboxie等第三方工具创建沙箱。您只需要打开您正在使用的沙盒程序,当沙盒创建后,您就可以在那里安装浏览器。要知道(Know)关闭沙盒会清除沙盒的所有内容。因此,如果您想在沙盒中再次使用Firefox,则必须创建一个沙盒并重新安装。
以上解释了什么是浏览器沙箱以及如何使用和禁用它。通过在下面发表评论,让我们知道您对浏览器沙箱和安全性的看法和想法。
What is a Browser Sandbox? How to use or turn it off?
Most mainstream brоwsers come with thеir own sandbоxes to keep your computer safer. This post looks at what is a Browser Sandbox, how to use it, or disable it completely on Google Chrome, Microsoft Edge, and Mozilla Firefox.
What is a Browser Sandbox?
A Sandbox allows your kids to play with sand without the sand scattering everywhere in your garden. This is because the sand is enclosed in a box with high walls. The same happens with sandboxes in computers. When you want to test your new app or something else without spoiling the whole computer, you can build a sandbox using Windows 10 Sandbox feature or by using third-party tools. You can then install your app into the sandbox and check it without having to worry about breaking the computer.
Browsers – most of them – already have a sandbox to enhance your computer protection. The idea of browser sandboxes is to protect your computer from the side-effects of browsing. Even the best of websites may be hosting malicious code without their knowledge. Thus, what happens is, if a website downloads any malicious code, it is downloaded to the sandbox part of the computer. When the sandbox is closed, everything inside it is erased, including the malicious code.
Firefox Sandbox
Firefox runs untrusted code in a sandbox so that the computer stays protected in case something malicious happens. Firefox runs in two parts: one is the parent and the others are child processes. While working on the Internet, untrusted processes are run in Firefox sandbox. This helps in containing the contamination in case there is any. While the child processes are run in Sandbox, the parent part acts as a mediator between the child process and the rest of the computer resources.
Users can change the sandboxing level in Firefox to make it stricter or easier. At 0, Firefox is least restrictive; level 2 is balanced and current; level 3 will be highly restrictive. To see which level Firefox is using, type the following in the address bar and press Enter key:
about:config
It will load the Firefox configurable variables on the page. That done, press CTRL+F after placing the cursor in the config page anywhere. In the Find box, enter the following code and press Enter key:
security.sandbox.content.level
The value returned by the function is the current level of sandboxing being used by Firefox.
Chromium Browser Sandbox
Chromium is used by both Microsoft Edge and Google Chrome browsers. Basically, their sandbox too works as the one explained above in the Firefox section.
There are two parts – The broker process, and the target process. The browser process is the broker process while the child processes are called target processes. All codes run by the target processes run in the sandbox. The other part is called the broker process because it acts between the child process and other computer resources so as to supply the child processes with the resources they want.
In Windows 10 Pro and above editions, you can use Windows Sandbox for running Microsoft Edge.
How to turn off Google Chrome Sandbox?
To turn off the Google Chrome Sandbox right-click on its icon. Click on Properties and then on the Shortcut tab in the dialog box that appears.
Add the following to the app path being shown in the Target:
--no-sandbox
Henceforth, whenever you click the Chrome icon, it will load Chrome without a sandbox.
Using Microsoft Edge in the Sandbox
When you start the Windows 10 Sandbox, you will get a new desktop with only Recycle Bin and Edge shortcut. It shows Start Menu and other icons, but they don’t really work in this sandboxed operating system. You can open them in the main Windows 10 instead of sandboxed Windows 10.
You can start Edge from this sandboxed Windows 10 environment for browsing with maximum security. Once you close the sandbox, after working on Edge for a while, no one can trace what you did on the Internet. Your ISP may create a log of what you did but no one can check those activities that you performed using Edge in the sandbox.
As with other data, if any website downloads malware to your system, the malware too would vanish when you close the sandbox.
Notes:
- Using a sandboxed environment for browsers won’t make it 100% safe. It happens that some parts of the browser extend beyond the sandbox, especially if they are still using Flash and ActiveX elements. These can be compromised and then the cybercriminals can access your computers.
- You can also create a sandbox using third-party tools such as Sandboxie if you do not want to use Edge but some other browser. You just need to turn on the sandbox program you are using and when the sandbox is created, you can install the browsers there. Know that closing the sandboxing will clear all the contents of the sandbox. So, if you want to use Firefox again in a sandbox, you will have to create a sandbox and install it again.
The above explains what browser sandbox is and how to use and disable it. Let us know your views and ideas related to browser sandbox and security by commenting below.
