NoVirusThanks OSArmor

D

Deleted member 178

I do not know if someone is encouraged to do it. a post of the configuration of those who use this program. I think it would be interesting. And we could also learn a lot of people (including me)
i checked 99% of the stuff, i left 3-4 options because they may hamper my other softs.
 
  • Like
Reactions: given and bribon77

Quassar

Level 12
Verified
Well-known
Feb 10, 2012
585
@Carphedon

- Latest NVT OSA is stable v1.4, a new build will be released to fix some unicode stuff.
- NVT ERP is better than OSA but more complicated.
- NVT SOB is better than ERP but even more complicated because no GUI.

Then you have plenty of product that does better (but less user-friendly) than OSA using different mechanisms (HIPS, SRP, etc..)

NVT ERP is interaction soft which make rules on alerts or manual if user change specifig settings
SOB is manual setup you need write your own rules and sob only inform you about action to this..... like in AppGuard.

However Sob is a bit diferent soft than ERP and you dont should say sob is better than ERP , because even with same rules work a bit different.
 
  • Like
Reactions: given

Quassar

Level 12
Verified
Well-known
Feb 10, 2012
585
Visibly you don't know much about SOB....
ERP = block only exe
SOB = block exe, dll, drivers.

So if for you , SOB isn't better than ERP...
You said what is better not me i said you dont should compare this soft because work different...
 
  • Like
Reactions: given
D

Deleted member 178

You said what is better not me i said you dont should compare this soft because work different...

SOB is basiaclly ERP without a GUI and more stuff monitored, the rules syntax are probably similar, even OSA "borrowed" SOB syntax.

And i say it again SOB is better than ERP , it is a fact. SOB block more stuff, so it is better , simple as that. (i talk about protection, not color or GUI or user-friendliness)

a raincoat is better against the rain than a hat...
 
Last edited by a moderator:

Quassar

Level 12
Verified
Well-known
Feb 10, 2012
585
What a stupid argumentation style
most internet security software also have most modules to cover "everything" you think they are do/have better HIPS cover than Comod or another standalone software which use HIPS because they don't use other module to cover other layers......

ERP give more workplace about blocking exe fles and monitor thier action
SOB have more function however work blocking exe path and monitoring is less adjustment.
 
  • Like
Reactions: given
D

Deleted member 178

What a stupid argumentation style
most internet security software also have most modules to cover "everything" you think they are do/have better HIPS cover than Comod or another standalone software which use HIPS because they don't use other module to cover other layers......
What are you talking about? i dont talk modules or suites, i talk about type of files monitored...learn to read.
Why do you think HIPS are powerful in advanced users hands? because they monitor more objects than anything else, so the user can block more stuff...

ERP give more workplace about blocking exe fles and monitor thier action
ERP can only block exes , so if the malicious file is not an exe, ERP is useless.
Many advanced attacks uses dlls and drivers, fileless malware uses dlls, try block them with ERP LOL

SOB have more function however work blocking exe path and monitoring is less adjustment.
If i block the parent exe to run, i dont have to adjust rules to block the child.
in SOB, you can create quite complex rules, and remember SOB was made during ERP v3 era, not v4.
i wait a modernized version of SOB.
 
Last edited by a moderator:
  • Like
Reactions: given and bjm_

Windows_Security

Level 24
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Mar 13, 2016
1,298
With OSA is controlled folder access not needed? :eek:

They do different things in default settings. OSA limits execution of (some) vulnarable processes and adds a (extensive) execution blacklist of common attack vectors, while Controlled folder access limits access to (some) user folders by allowing only (smartscreen cloud) whitelisted programs access to these folders.

When OSA is tweaked and allows only program execution in user space of some whitelisted vendors specific to the setup of that user than Controlled Folder Access is redundant (because local specific OSA whitelist is much more restrictive than cloud based whitelist of controlled folder access).

IMO better to keep information factual in your replies. Not every one seeking information or help has the knowledge of power users providing answers (@Umbra), so implicit opinions (like OSA makes CFA redundant) are ill advice when given unconditionally.
 
D

Deleted member 178

When OSA is tweaked and allows only program execution in user space of some whitelisted vendors specific to the setup of that user than Controlled Folder Access is redundant (because local specific OSA whitelist is much more restrictive than cloud based whitelist of controlled folder access).
That the whole point.
if you install a 3rd party security soft, it means you don't fully trust/are satisfied by what the built-in security of the OS offers, from this it is a duty to learn what the 3rd party soft can do and use it to the best way possible to supplement what the OS offers.

Using a soft at default setting is already a mistake, default setting were made to avoid installation/usability issues. NO ONE should ever use default settings. If a user can't manage or have the will to learn the software he uses, in our case OSA, better for him to stick using what Win10 offers.

IMO better to keep information factual in your replies. Not every one seeking information or help has the knowledge of power users providing answers (@Umbra), so implicit opinions (like OSA makes CFA redundant) are ill advice when given unconditionally.
it is isn't ill advice, just the basic logic. With OSA, user dont need CFA , simple as that.

You don't need a bullet-proof vest when you stay in a tank.
 
Last edited by a moderator:

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Issues after the update?
Yes. It was reported on the other forum that OSA does not work right on many systems, after update to Win 10 1809.
I did a quick test, and it was broken, it was not blocking. But @Umbra reported that he did not experience issues.
Andreas said he will be issuing a new build in a few days.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top