Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Hard_Configurator Tools
Testing Windows Hybrid Hardening (new hardening application).
Message
<blockquote data-quote="ForgottenSeer 97327" data-source="post: 1055793"><p>[USER=32260]@Andy Ful[/USER]</p><p></p><p>Last time I beg you, please run WDAC with (in smart mode)</p><p></p><p>1. Allow Microsoft + ISG (ISG is sort of similar to SAC)</p><p>2. Explicit allow rules for</p><p>a) Program Files</p><p>b Program files (x86)</p><p>c) Users\Admin\Apdata</p><p>d) Users\Admin\Local\temp</p><p>3. Microsoft advised block Rules for User space and kernel</p><p>4. SWH (SRP blocking risky file extensions and allowing exe, msi. tmp)</p><p>5. fall back to Audit mode when a driver fails to load</p><p>6. Exclude dynamic code and scripts (I told you so <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite110" alt=";)" title="Wink ;)" loading="lazy" data-shortname=";)" /> )</p><p></p><p>This is really a huge improvement for most home users in terms of security, while it allows for most programs updates.</p><p></p><p>Your version is as strong as the UAC protection of 2 C and 2 D, so allowing ISG (which is similar to SAC) does not weaken it substantionally, only increasing useability. You provided us with excellent freebies (H_C, CD, SWH), I really have no idea why you would provide such a complex hybride hardening. I don't understand the logic behind it (when you allow UAC holes, you might as well add ISG). Normally I can follow you and applaude your tweaks, but you got me lost here.</p><p></p><p>Don't be offended, but I would propose three levels of protection</p><p>a) Basic (only old SWH)</p><p>b) Smart (as I outlined above)</p><p>c) Deny all (block all in user folders)</p><p></p><p>With option B and C the user additionally has an option to exclude user folders</p></blockquote><p></p>
[QUOTE="ForgottenSeer 97327, post: 1055793"] [USER=32260]@Andy Ful[/USER] Last time I beg you, please run WDAC with (in smart mode) 1. Allow Microsoft + ISG (ISG is sort of similar to SAC) 2. Explicit allow rules for a) Program Files b Program files (x86) c) Users\Admin\Apdata d) Users\Admin\Local\temp 3. Microsoft advised block Rules for User space and kernel 4. SWH (SRP blocking risky file extensions and allowing exe, msi. tmp) 5. fall back to Audit mode when a driver fails to load 6. Exclude dynamic code and scripts (I told you so ;) ) This is really a huge improvement for most home users in terms of security, while it allows for most programs updates. Your version is as strong as the UAC protection of 2 C and 2 D, so allowing ISG (which is similar to SAC) does not weaken it substantionally, only increasing useability. You provided us with excellent freebies (H_C, CD, SWH), I really have no idea why you would provide such a complex hybride hardening. I don't understand the logic behind it (when you allow UAC holes, you might as well add ISG). Normally I can follow you and applaude your tweaks, but you got me lost here. Don't be offended, but I would propose three levels of protection a) Basic (only old SWH) b) Smart (as I outlined above) c) Deny all (block all in user folders) With option B and C the user additionally has an option to exclude user folders [/QUOTE]
Insert quotes…
Verification
Post reply
Top
