Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Do we actually need so many security programs?
Message
<blockquote data-quote="Andy Ful" data-source="post: 774003" data-attributes="member: 32260"><p>That depends on the level of paranoia and complexity of hardware/software.</p><p>H_C recommended settings with WD on high settings,<span style="color: rgb(0, 168, 133)"><strong> is the best compromise between usability and security</strong></span>. It is already very restrictive, so the user has to be careful when adding the new restrictions. Blocking some sponsors (for example script interpreters) or using SUA, can be recommended if the user has to keep the vulnerable/unpatched software. But on the updated Windows 10 + H_C with the safe web browser and updated software, it is not required. Yet, if the user is afraid of being exploited anyway, then adopting SUA would be a good prevention. SUA is also recommended when using WD without H_C.</p><p></p><p><span style="color: rgb(41, 105, 176)"><strong>If nothing is exploited then nothing malicious can use the sponsors, bypass UAC, etc. </strong></span></p><p>The executable exploits are blocked by forced SmartScreen. The VBScript & JScript malware files are blocked by SRP. PowerShell is highly restricted by Constrained Language mode. Malware in the wild, can often use the weaponized documents to exploit MS Office or Adobe Acrobat Reader applications. But this vector of attack is already mitigated in H_C recommended settings (Documents Anti-Exploit).</p><p></p><p>If the user wants to<span style="color: rgb(184, 49, 47)"><strong> lock the computer temporarily</strong></span>, then it is possible by loading the predefined max settings in H_C (Windows_10_All_ON.hdc), set <Enforcement> = All Files, and set WD max settings. This can be done with a few mouse clicks (Log OFF from the account is required).</p></blockquote><p></p>
[QUOTE="Andy Ful, post: 774003, member: 32260"] That depends on the level of paranoia and complexity of hardware/software. H_C recommended settings with WD on high settings,[COLOR=rgb(0, 168, 133)][B] is the best compromise between usability and security[/B][/COLOR]. It is already very restrictive, so the user has to be careful when adding the new restrictions. Blocking some sponsors (for example script interpreters) or using SUA, can be recommended if the user has to keep the vulnerable/unpatched software. But on the updated Windows 10 + H_C with the safe web browser and updated software, it is not required. Yet, if the user is afraid of being exploited anyway, then adopting SUA would be a good prevention. SUA is also recommended when using WD without H_C. [COLOR=rgb(41, 105, 176)][B]If nothing is exploited then nothing malicious can use the sponsors, bypass UAC, etc. [/B][/COLOR] The executable exploits are blocked by forced SmartScreen. The VBScript & JScript malware files are blocked by SRP. PowerShell is highly restricted by Constrained Language mode. Malware in the wild, can often use the weaponized documents to exploit MS Office or Adobe Acrobat Reader applications. But this vector of attack is already mitigated in H_C recommended settings (Documents Anti-Exploit). If the user wants to[COLOR=rgb(184, 49, 47)][B] lock the computer temporarily[/B][/COLOR], then it is possible by loading the predefined max settings in H_C (Windows_10_All_ON.hdc), set <Enforcement> = All Files, and set WD max settings. This can be done with a few mouse clicks (Log OFF from the account is required). [/QUOTE]
Insert quotes…
Verification
Post reply
Top
