Advice Request Controlled Folder Access in May 2020 Update?

Please provide comments and solutions that are helpful to the author of this topic.

Is Controlled Folder Access worth trying?

  • Yes

    Votes: 20 66.7%
  • No

    Votes: 10 33.3%

  • Total voters
    30

Ink

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
I have used the Controlled Folder Access (aka Windows Defender Antivirus Ransomware Protection) in earlier builds, but turned it off due to being unable to whitelist applications properly.

In the latest Windows 10 May 2020 Update (Version 2004), is it worth re-visiting?
 

DSD27

Level 5
Well-known
Apr 15, 2020
227
Who does this type of approach react when malware disguises itself using a legit process name?
 
Last edited:
  • Like
Reactions: plat

plat

Level 29
Top Poster
Sep 13, 2018
1,793
I install and delete too much software too often. This was a PITA when I made an honest effort to use it before. Can't imagine it's getting any more friendly now. GPO and OSA fill in nicely, plus my image. I don't trust me implicitly.

So, I say "yes," it's worth trying. Demo it like any other monitoring software with the potential to get on your nerves. NOTE: I have not used CFA since the Anniversary Update.
 

Protomartyr

Level 7
Sep 23, 2019
314
I have CFA enabled on my laptop currently and I'm looking forward to any improvements in the May 2020 update. It's definitely a pain to setup. However, once you have it configured correctly for your needs, the only time I'm aware of it is when updating applications. Sometimes I may have to whitelist the installer temporarily for it to complete successfully.
 

oldschool

Level 81
Verified
Top Poster
Well-known
Mar 29, 2018
7,044
don't see any reason why it shouldn't be used.
... Works fine here
It's sometimes annoying, but if you go for Windows 10 built-in security, I believe you should use it.
Test in the HUB confirm its effectiveness/need.
Sometimes I may have to whitelist the installer temporarily for it to complete successfully.

Absolutely. Why wouldn't you use it? Maybe if you have a bunch of 3rd party apps to update. Then it can be a real pain, but it depends on user's setup ....

I know I've gotten block notifications for browser updates but they usually are for updates that use Temp folder.

Plus, there are these nifty CFA tweaks (see posts #57 & 58) compliments of @Windows_Security & @Andy Ful. Who else? ;) (y)(y)
 

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,042
...
Sometimes I may have to whitelist the installer temporarily for it to complete successfully.
CFA will block the creation of shortcuts on Desktop (with error alert) but the installation should finish without problems. The shortcuts are usually created without problems on Start Menu. One can drag & drop the shortcut from there to Desktop if needed.
CFA can produce some alerts when something wants to access the protected boot sectors on the disk - most applications can do it without a serious reason, so they can work well with CFA even with blocked access.
Did you notice other possible issues?
 
Last edited:

Protomartyr

Level 7
Sep 23, 2019
314
Did you notice other possible issues?
Nope! I haven't experienced any other issues.
I've come to like CFA and hope that Microsoft makes even more improvements so that others can take advantage of it. At its current stage, I don't think it's ready to be enabled by default on systems since most users probably aren't computer savvy enough to set it up properly or troubleshoot any false positives that may come up.
 

SeriousHoax

Level 47
Well-known
Mar 16, 2019
3,630
CFA will block the creation of shortcuts on Desktop (with error alert) but the installation should finish without problems.
Desktop has actually been removed from CFA's default folders quite a while ago. I mean 3-4 months at least on my PC.
Personally I never had any problem with apps updating due to CFA like some users face :unsure: This can only happen if the particular apps use Documents folder to store some files.
 

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,042
Desktop has actually been removed from CFA's default folders quite a while ago. I mean 3-4 months at least on my PC.
Personally I never had any problem with apps updating due to CFA like some users face :unsure: This can only happen if the particular apps use Documents folder to store some files.
For children and casual users, protecting Desktop can be important. They usually keep files on Desktop (like women tend to keep everything in their handbags).
But in fact, I missed somehow this change in CFA. I was too busy with the new version of H_C.:)
 

SeriousHoax

Level 47
Well-known
Mar 16, 2019
3,630
For children and casual users, protecting Desktop can be important. They usually keep files on Desktop (like women tend to keep everything in their handbags).
But in fact, I missed somehow this change in CFA. I was too busy with the new version of H_C.:)
It's easy to miss this change if no new apps are installed. I noticed one day when I saw a desktop shortcut made by an app that I installed.
You're correct about casual user. Personally I like clean desktop but I've seen a lot of messed up desktop filled with files. But most people prefer desktop shortcuts for applications so it's understandable why it was removed.
 

plat

Level 29
Top Poster
Sep 13, 2018
1,793
Well, based on some thoughtful and well-meaning posts, I went ahead and enabled CFA on here on a trial basis. I'll apply some of those settings, thank you for posting that, SeriousHoax. I'll see how it works out. I enabled this right when it first debuted, I think--not the AU but 1803? Way back then. Didn't work out then, seriously got on my nerves and exclusions weren't very flexible nor did they always kick in.

Times change, so minds should also. 🌷
 

oldschool

Level 81
Verified
Top Poster
Well-known
Mar 29, 2018
7,044
most users probably aren't computer savvy enough to set it up properly

I wonder about this. Setting up the usual protected files is not difficult (already done by default on Admin account), and whitelisting apps should be straight-forward enough for folks who can read the GUI.

troubleshoot any false positives that may come up.

I agree. This can be more challenging for the casual user.
 

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,042
...
At its current stage, I don't think it's ready to be enabled by default on systems since most users probably aren't computer savvy enough to set it up properly or troubleshoot any false positives that may come up.
That is also my opinion, so it is still not included in ConfigureDefender High settings.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top