Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Hard_Configurator Tools
Hard_Configurator - Windows Hardening Configurator
Message
<blockquote data-quote="nadis" data-source="post: 908971" data-attributes="member: 87161"><p>I agree that blocking stuff can break things, but I don't think this is or should be your personal responsibility, at least not to such a great extent. I think it's good enough if you show users a warning when they're about to do these changes (frankly, they should already know this before installing H_C).</p><p>Besides, you released Simple Windows Hardening. Why not let H_C be a tool for power users? We're not talking about giving people nuclear weapons, at worst if something breaks they'll have to restore the system from a backup. So it's not the end of the world and I think some users would rather risk a temporary system malfunction than being exposed to potential vulnerabilities.</p><p>Right now, in case of LOLBins, a user has to wait for you to: 1)notice a new LOLBin 2)determine that it's popular enough in the wild 3)determine that blocking it doesn't cause issues and 4)release an update to H_C. A lot of time can pass while the user is potentially exposed.</p><p></p><p>But as I said, it's not just about LOLBins. A user might want to block a specific program or path for other reasons, like parental control or some other administrative reason, blocking a file/folder inside a whitelisted portable app folder and so on.</p><p>To me the main proposition of H_C was basically a nicer UI for SRP and Windows Firewall. The import/export features are a godsent, for example. But if it can't effectively be used for basic SRP functionality I might start looking elsewhere. The fact that it can't block dlls anymore is already a bit disappointing.</p><p></p><p>Anyway, just my thoughts. The fact that SWH exists is IMO the biggest argument for having more SRP options in H_C.</p></blockquote><p></p>
[QUOTE="nadis, post: 908971, member: 87161"] I agree that blocking stuff can break things, but I don't think this is or should be your personal responsibility, at least not to such a great extent. I think it's good enough if you show users a warning when they're about to do these changes (frankly, they should already know this before installing H_C). Besides, you released Simple Windows Hardening. Why not let H_C be a tool for power users? We're not talking about giving people nuclear weapons, at worst if something breaks they'll have to restore the system from a backup. So it's not the end of the world and I think some users would rather risk a temporary system malfunction than being exposed to potential vulnerabilities. Right now, in case of LOLBins, a user has to wait for you to: 1)notice a new LOLBin 2)determine that it's popular enough in the wild 3)determine that blocking it doesn't cause issues and 4)release an update to H_C. A lot of time can pass while the user is potentially exposed. But as I said, it's not just about LOLBins. A user might want to block a specific program or path for other reasons, like parental control or some other administrative reason, blocking a file/folder inside a whitelisted portable app folder and so on. To me the main proposition of H_C was basically a nicer UI for SRP and Windows Firewall. The import/export features are a godsent, for example. But if it can't effectively be used for basic SRP functionality I might start looking elsewhere. The fact that it can't block dlls anymore is already a bit disappointing. Anyway, just my thoughts. The fact that SWH exists is IMO the biggest argument for having more SRP options in H_C. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
