Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Software Troubleshooting
Build Security around ReHIPS 2.3 on a System?
Message
<blockquote data-quote="shmu26" data-source="post: 700976" data-attributes="member: 37647"><p>Best thing is to install just ReHIPS, and get to know it. Then you will be wiser, and you will know what else you need. </p><p>With ReHIPS, among other things you have to get used to the prompts. They are a bit different from ERP and Comodo. </p><p>The prompt for vulnerable processes is the one that kept confusing me, and I kept complaining until they agreed to make it clearer and more intuitive. The thing is that when a vulnerable process comes along, by default the prompt will be set to allow only once. If you want to allow that command line permanently, you have to click on the link in the UPPER part of the prompt. Because if you permanently allow it from the bottom part of prompt, you are messing things up. You are not whitelisting the command line, you are removing that process from the vulnerable process list.</p><p></p><p>I am using the term "vulnerable process list" loosely and inexactly, because it is not a ReHIPS concept, it is a ERP concept. In ReHIPS, the so-called "vulnerable processes" are not categorized as such. Rather, they have "sub-programs" set to "alert". That way it catches the command lines.</p><p>Regular processes have sub-processes set to "inapplicable".</p><p></p><p>This may sound kind of esoteric, but really it's not, you just have to see it in action, and you will grasp it.</p></blockquote><p></p>
[QUOTE="shmu26, post: 700976, member: 37647"] Best thing is to install just ReHIPS, and get to know it. Then you will be wiser, and you will know what else you need. With ReHIPS, among other things you have to get used to the prompts. They are a bit different from ERP and Comodo. The prompt for vulnerable processes is the one that kept confusing me, and I kept complaining until they agreed to make it clearer and more intuitive. The thing is that when a vulnerable process comes along, by default the prompt will be set to allow only once. If you want to allow that command line permanently, you have to click on the link in the UPPER part of the prompt. Because if you permanently allow it from the bottom part of prompt, you are messing things up. You are not whitelisting the command line, you are removing that process from the vulnerable process list. I am using the term "vulnerable process list" loosely and inexactly, because it is not a ReHIPS concept, it is a ERP concept. In ReHIPS, the so-called "vulnerable processes" are not categorized as such. Rather, they have "sub-programs" set to "alert". That way it catches the command lines. Regular processes have sub-processes set to "inapplicable". This may sound kind of esoteric, but really it's not, you just have to see it in action, and you will grasp it. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
