Virtual Application Container Sercurity
I've been searching the forums for this answer and haven't found anything yet.
When creating a virtual application with Altiris can I control what access the application has to the local host resources?
I've read articles on here about the two layers created when deploying an SVS to a client. The read and Read/Write directories which are used to store things like settings and configs. But what I'd like to know is if I virtualize an incompatible application like IE6 for use on a Windows 7 host, can I lock it down so that the Virtual IE6 application has no access to resources outside of the two create directories. I want to prevent something from the Virtual IE6 application accessing host resources.
I'm assuming if I virtualized something like MS Word that it would have the ability to open files beyond the Read and Read/Write directories so I could edit and create documents throughout my local machine and network, but can I lock it down so the only places it can read and write are the two directory sublayers the SVS creates?
Thanks for the help.