Mohamad20ZX already green light your guide so yes you can rewrite it
1 Like
@HauntSanctuary You should try to move this post to a draft pull request on GitHub, it will be easier to help. Then you can work directly on GitHub editor. @noClaps are you still available? If not, I can do it too.
1 Like
@razac You can do it if youāre willing to. Iāll suggest edits on the PR if i see anything.
3 Likes
Gonna try to figure this out later. I have a Github account as well.
1 Like
Wow, I can tell youāre an intellectual guy so you may not like hearing this but what if you gave up PC gaming? I stopped PC gaming a while ago and Iāve been able to achieve so much more in life.
Have you thought about buying one PC for Windows gaming and one PC for Linux where you do all your important work?
Since this thread has already been revivedā¦
Is there still no way to sandbox applications in Windows?
Been gaming on Linux with games sandboxed via Bubblejail. Good times.
1 Like
Sorry I didnāt mean to revive an old thread. I just thought the OP and the other posters still needed help.
1 Like
Apps should be packaged into crappy MSIX format.
I sort of stopped playing because I guess I am growing out of gaming in general. The games I play these days are smaller indie with a faster gameplay that can be resolved within an hour (the extent of my free time) and that is with the game I want.
Most of the game actually I play are with my kid so its sort of Minecraft + what is kid friendly.
I could only look at Cyberpunk 2077 longingly. I havent even bought Elden Ring and its DLC despite my plan to play it.
I recently bought a driving/racing wheel (Thrustmaster, because I really dont want to support Logitech) and tried to make it work on Linux but I cant seem to make it work correctly so I went and restored my old Win11 clonezilla image only to find out I dont have time to play a lot of games anymore so the racing wheel and pedals are looking at me and judging my poor buying decision 
.
The thing is, we dont want to sandbox most apps, its really Windows that we want to sandbox because they have completely gone so adversarial, Iām starting to call it satanic. 
1 Like
@HauntSanctuary few questions regarding the prereqs
Wondering if LTSC versions would be preferred over the standard Enterprise versions of Windows?
They typically provide longer update support (10 years) and it lacks most of the Store (UWP) apps.
If you have UAC set to the highest level and the Credential User Interface policy enabled, is there really much of a risk just daily driving the Admin account? I know for certain apps, it can be kind of a pain using a non admin profile as the daily driver. One example that comes to mind is using Wireguard for Windows.
I dont exactly know the exact nuances of the 2 editions but from what Iāve read, (and I cant seem to recall where) I have the impression that the āadminā of the entire Enterprise account has some of control over all the deployed Win 10/11 installation and may have an impact on what Windows Policy is actually enforced. This makes me think that the LTSC may be the better edition to get.
Acquiring either editions legitimately has proven to be a challenge. All offerinsg Iāve encountered are from shady key reselling sites.
Iām a fan of the principle of least priviledge, but since this is strictly a gaming-only Windows install, it should be fine.
In addition to this guide, having Windows start with Steam in Big Picture mode should minimize telemetry data collection.
What has recently changed is the AIs and LLMs that Microsoft wants to shove down our throats.
I have yet to check what settings should be toggled, as well as the appropriate Windows Policy (if applicable).
What is annoying is that MS is so adversarial about it and you literally have to check after each update to ensure that it stays off.
1 Like
Ive seen those but the lawful good person inside my head nags that I must do it the moral way
MSIX does not mean sandboxed, though. Some are sandboxed, but many are not. MSIX should be the preferred way of packaging, because it does not clutter your file system, allows clean uninstalls and guarantees that everything is signed.
4 Likes
Microsoft provides Evaluation ISO public links for Windows LTSC releases, but as the name states, those ISOās are for evaluation purposes and can not be activated for more than 90 days.
I am not sure what the actual penalty is for using an expired eval versionā¦
Microsoft also provides full version of Windows LTSC on MVS, VLSC and OEM Portal but for them, you need to pay a high subscription fee. I doubt this is a reasonable way to get these version for most users.
Yeah that is kind of my thought on this is well, especially if the computer is only being used by one person and that person feels moderatly comfortable using Windows.
There is no security boundary between admin and kernel. So yes, it is a risk and should be avoided.
Do you mind ELI5 what this is and what the risk is?
You can read more about it here, but itās not ELI5: Microsoft Security Servicing Criteria for Windows
1 Like
These are very recently updated articles with new information on Windows 10 Sandbox if youāre still considering it:
Serious question, does privacy matter when you play games?
To me, this is like watching shows.
Iād agree with you to some extent regarding consoles like PS, Xbox and Nintendo. For PC there is so much more nuance especially if it is your daily driver.