offhub
commented
1 month ago Does it work in the yellow (standard) or green (application compartment) box?
Open forrest96er opened 1 month ago
offhub
commented
1 month ago Does it work in the yellow (standard) or green (application compartment) box?
forrest96er
commented
1 month ago Does it work in the yellow (standard) or green (application compartment) box?
Unfortunately, no Sandbox seems to work:
In the Blue (Privacy) Sandbox, the error message reads: "The connection to KeePassXC is not possible. Check if the browser integration is enabled in the KeePassXC settings."
In both the Yellow (Standard) and Green (Application Compartment) Sandboxes, the error message states: "Message encryption failed. Is KeePassXC running?"
All instances of Brave are based on the unboxed Brave browser and its KeePass Addon settings, which work with KeePass. In all scenarios, the settings are correctly loaded into the KeePass Addon.
offhub
commented
1 month ago "Cannot connect to KeePassXC. Check that browser integration is enabled in KeePassXC settings.."
After running KeePassXC.exe in the sandbox once, please enable browser integration and select your preferred browsers; otherwise, the necessary proxy for browser integration won’t function.
"Message encryption failed. Is KeePassXC running?"
Sandboxie-Plus > Right click on the sandbox > Sandbox Options > Edit Ini Section > Copy and paste the line to the bottom of the list > OK
OpenFilePath=\Device\NamedPipe\org.keepassxc.KeePassXC.BrowserServer_%USER%The setting OpenKeyPath=*\NativeMessagingHosts\org.keepassxc.keepassxc_browser* isn't working (@DavidXanatos, bug?). As a workaround, I've added the AutoExec settings. If you haven't cleared the sandbox, you'll need to run the command specified in AutoExec entries manually. When doing so, make sure to replace each %USER% variable with your actual username.
Sandboxie-Plus > Right click on the sandbox > Sandbox Options > Edit Ini Section > Copy and paste the line to the bottom of the list > OK
NormalFilePath=*\AppData\Local\KeePassXC\*
OpenFilePath=\Device\NamedPipe\org.keepassxc.KeePassXC.BrowserServer_%USER%
# Chromium
AutoExec=reg add HKEY_CURRENT_USER\Software\Chromium\NativeMessagingHosts\org.keepassxc.keepassxc_browser /f /ve /t REG_SZ /d "C:/Users/%USER%/AppData/Local/KeePassXC/org.keepassxc.keepassxc_browser_chromium.json"
# Chrome, Vivaldi and Brave
AutoExec=reg add HKEY_CURRENT_USER\Software\Google\Chrome\NativeMessagingHosts\org.keepassxc.keepassxc_browser /f /ve /t REG_SZ /d "C:/Users/%USER%/AppData/Local/KeePassXC/org.keepassxc.keepassxc_browser_brave.json"
# Edge
AutoExec=reg add HKEY_CURRENT_USER\Software\Microsoft\Edge\NativeMessagingHosts\org.keepassxc.keepassxc_browser /f /ve /t REG_SZ /d "C:/Users/%USER%/AppData/Local/KeePassXC/org.keepassxc.keepassxc_browser_edge.json"
# Firefox and Tor Browser
AutoExec=reg add HKEY_CURRENT_USER\Software\Mozilla\NativeMessagingHosts\org.keepassxc.keepassxc_browser /f /ve /t REG_SZ /d "C:/Users/%USER%/AppData/Local/KeePassXC/org.keepassxc.keepassxc_browser_tor-browser.json"Sandboxie-Plus > Right click on the sandbox > Sandbox Options > Edit Ini Section > Copy and paste the line to the bottom of the list > OK
OpenFilePath=keepassxc-proxy.exe,\Device\NamedPipe\org.keepassxc.KeePassXC.BrowserServer_%USER%
OpenFilePath=keepassxc-proxy.exe,\Device\NamedPipe\keepassxc-%USER%.socket
# Privacy Mode
NormalFilePath=*\KeePassXC\org.keepassxc.keepassxc_browser_*.json
# Chromium
NormalKeyPath=|HKEY_CURRENT_USER\Software\Chromium\
NormalKeyPath=|HKEY_CURRENT_USER\Software\Chromium\NativeMessagingHosts\
NormalKeyPath=HKEY_CURRENT_USER\Software\Chromium\NativeMessagingHosts\org.keepassxc.keepassxc_browser\*
# Chrome, Vivaldi and Brave
NormalKeyPath=|HKEY_CURRENT_USER\Software\Google\
NormalKeyPath=|HKEY_CURRENT_USER\Software\Google\Chrome\
NormalKeyPath=|HKEY_CURRENT_USER\Software\Google\Chrome\NativeMessagingHosts\
NormalKeyPath=HKEY_CURRENT_USER\Software\Google\Chrome\NativeMessagingHosts\org.keepassxc.keepassxc_browser\*
# Edge
NormalKeyPath=|HKEY_CURRENT_USER\Software\Microsoft\
NormalKeyPath=|HKEY_CURRENT_USER\Software\Microsoft\Edge\
NormalKeyPath=|HKEY_CURRENT_USER\Software\Microsoft\Edge\NativeMessagingHosts\
NormalKeyPath=HKEY_CURRENT_USER\Software\Microsoft\Edge\NativeMessagingHosts\org.keepassxc.keepassxc_browser\*
# Firefox and Tor Browser
NormalKeyPath=|HKEY_CURRENT_USER\Software\Mozilla\
NormalKeyPath=|HKEY_CURRENT_USER\Software\Mozilla\NativeMessagingHosts\
NormalKeyPath=HKEY_CURRENT_USER\Software\Mozilla\NativeMessagingHosts\org.keepassxc.keepassxc_browser\*Sandboxie-Plus > Right click on the sandbox > Sandbox Options > Edit Ini Section > Copy and paste the line to the bottom of the list > OK
OpenFilePath=keepassxc-proxy.exe,\Device\NamedPipe\org.keepassxc.KeePassXC.BrowserServer_%USER% OpenFilePath=keepassxc-proxy.exe,\Device\NamedPipe\keepassxc-%USER%.socket # Privacy Mode NormalFilePath=*\KeePassXC\org.keepassxc.keepassxc_browser_*.json # Chromium NormalKeyPath=|HKEY_CURRENT_USER\Software\Chromium\ NormalKeyPath=|HKEY_CURRENT_USER\Software\Chromium\NativeMessagingHosts\ NormalKeyPath=HKEY_CURRENT_USER\Software\Chromium\NativeMessagingHosts\org.keepassxc.keepassxc_browser\* # Chrome, Vivaldi and Brave NormalKeyPath=|HKEY_CURRENT_USER\Software\Google\ NormalKeyPath=|HKEY_CURRENT_USER\Software\Google\Chrome\ NormalKeyPath=|HKEY_CURRENT_USER\Software\Google\Chrome\NativeMessagingHosts\ NormalKeyPath=HKEY_CURRENT_USER\Software\Google\Chrome\NativeMessagingHosts\org.keepassxc.keepassxc_browser\* # Edge NormalKeyPath=|HKEY_CURRENT_USER\Software\Microsoft\ NormalKeyPath=|HKEY_CURRENT_USER\Software\Microsoft\Edge\ NormalKeyPath=|HKEY_CURRENT_USER\Software\Microsoft\Edge\NativeMessagingHosts\ NormalKeyPath=HKEY_CURRENT_USER\Software\Microsoft\Edge\NativeMessagingHosts\org.keepassxc.keepassxc_browser\* # Firefox and Tor Browser NormalKeyPath=|HKEY_CURRENT_USER\Software\Mozilla\ NormalKeyPath=|HKEY_CURRENT_USER\Software\Mozilla\NativeMessagingHosts\ NormalKeyPath=HKEY_CURRENT_USER\Software\Mozilla\NativeMessagingHosts\org.keepassxc.keepassxc_browser\*
Confirm this FIX works , only tested Brave Browser now. No need for replacement of %USER% with real Username !
forrest96er
commented
1 month ago maybe you also want to add a FIX / tamplates for KeePass: https://keepass.info/
offhub
commented
1 month ago Thank you for your suggestion about adding a fix/template for KeePass. Could you please open a separate issue and provide details on what isn't functioning correctly and which plugins are affected? I’ll look into it when I have some time.
Describe what you noticed and did
I started Brave Browser with the KeePassXC add-on in a new privacy-enhanced sandbox. However, the KeePassXC add-on had no connection to KeePassXC (outside of Sandbox).
I also added the following IPC path: $:KeePassXC.exe, but unfortunately, it did not work.
How often did you encounter it so far?
No response
Expected behavior
KeePass Addon should connect to KeepassXC successully.
Affected program
Not relevant
Download link
https://keepassxc.org/
Where is the program located?
The program is installed both inside and outside the sandbox.
Did the program or any related process close unexpectedly?
No, not at all.
Crash dump
No response
What version of Sandboxie are you running now?
Version 1.14.9
Is it a new installation of Sandboxie?
I just updated Sandboxie from a previous version (I don't remember which one).
Is it a regression from previous versions?
no
In which sandbox type you have this problem?
In a sandbox with data protection (blue sandbox icon).
Can you reproduce this problem on a new empty sandbox?
I can confirm it also on a new empty sandbox.
What is your Windows edition and version?
Windows 11 Pro 22H2 build: 22621.4169
In which Windows account you have this problem?
A local account (Standard user).
Please mention any installed security software
Microsoft Defender
Did you previously enable some security policy settings outside Sandboxie?
no
Trace log
No response
Sandboxie.ini configuration
No response