Reply to thread

Message

<blockquote data-quote="Andy Ful" data-source="post: 798337" data-attributes="member: 32260">In the home environment, the minimal set could be that used in H_C default-deny setup.<ol>
<li data-xf-list-type="ol">Forced SmartScreen (safely bypass SRP in the UserSpace).</li>
<li data-xf-list-type="ol">Block dangerous file extensions in the UserSpace (SRP).</li>
<li data-xf-list-type="ol">Block shortcuts (.lnk) via the special rules (SRP)</li>
<li data-xf-list-type="ol">Block executables in the UserSpace (SRP).</li>
<li data-xf-list-type="ol">Make SystemSpace not writable (SRP).</li>
<li data-xf-list-type="ol">Block active content in documents opened by MS Office and Adobe Acrobat Reader.</li>
</ol>The above will work on well patched Windows 10 (with Edge) and well updated software. You cannot run unsafe applications, and the dangerous files will not be opened. Also, the system/software is hard to exploit (and run command lines).Next, you can add more layers, if you want. The first to add will be: blocking the Interpreters, and disabling remote features.</blockquote>

[QUOTE="Andy Ful, post: 798337, member: 32260"] In the home environment, the minimal set could be that used in H_C default-deny setup. [LIST=1] [*]Forced SmartScreen (safely bypass SRP in the UserSpace). [*]Block dangerous file extensions in the UserSpace (SRP). [*]Block shortcuts (.lnk) via the special rules (SRP) [*]Block executables in the UserSpace (SRP). [*]Make SystemSpace not writable (SRP). [*]Block active content in documents opened by MS Office and Adobe Acrobat Reader. [/LIST] The above will work on well patched Windows 10 (with Edge) and well updated software. You cannot run unsafe applications, and the dangerous files will not be opened. Also, the system/software is hard to exploit (and run command lines). Next, you can add more layers, if you want. The first to add will be: blocking the Interpreters, and disabling remote features. [/QUOTE]

Verification