Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Why do you use obsolete security technologies such as SRP?
Message
<blockquote data-quote="SpyNetGirl" data-source="post: 1082814" data-attributes="member: 98858"><p>It's honestly very surprising to me that I see super old and totally obsolete technologies such as SRP or software restriction policies is being suggested and used by members in the forum. Thought I'd raise awareness by making this thread and presenting some facts about these technologies.</p><p></p><p>Here is the timeline of the application control solutions in Windows:</p><p></p><p>1. SRP (Introduced with Windows XP - before I was even born!)</p><p>2. AppLocker (Introduced with Windows 7)</p><p>3. WDAC (Application Control for Business) (Introduced with Windows 10)</p><p></p><p>As a home user, there is 0 reasons, I repeat, 0 reasons, to use #1 and #2.</p><p></p><p>You only use AppLocker nowadays in a very limited scope, to allow Intune as managed installer for WDAC policies. Since 9 years ago when Windows 10 was introduced, WDAC is the recommended method of Application Control solution.</p><p></p><p>As you can see even WDAC is not new and it's been with us for 9 years, but it is actively maintained.</p><p></p><p>All the documents, automations, solutions, tooling etc. to use WDAC for both enterprises and home users are available. All of these things are Free btw!</p><p></p><p>At the end of the day, it's your choice just like it's your choice to turn off your firewall and AVs. I just wanted this information to be put out there. I've helped multiple companies with implementation of WDAC and continue doing so, and I myself use it on my PC and family members. I've made tooling and documentations available for it and continue to do so.</p><p></p><p>The threat landscape has changed significantly since Windows XP, it even changes every ~2-3 years, the ever-changing TTPs (Tactics, techniques, and procedures) require us on the defense side to be very adaptive or risk falling behind and being defeated.</p><p></p><p>Hope everyone has a good time and stays secure!</p></blockquote><p></p>
[QUOTE="SpyNetGirl, post: 1082814, member: 98858"] It's honestly very surprising to me that I see super old and totally obsolete technologies such as SRP or software restriction policies is being suggested and used by members in the forum. Thought I'd raise awareness by making this thread and presenting some facts about these technologies. Here is the timeline of the application control solutions in Windows: 1. SRP (Introduced with Windows XP - before I was even born!) 2. AppLocker (Introduced with Windows 7) 3. WDAC (Application Control for Business) (Introduced with Windows 10) As a home user, there is 0 reasons, I repeat, 0 reasons, to use #1 and #2. You only use AppLocker nowadays in a very limited scope, to allow Intune as managed installer for WDAC policies. Since 9 years ago when Windows 10 was introduced, WDAC is the recommended method of Application Control solution. As you can see even WDAC is not new and it's been with us for 9 years, but it is actively maintained. All the documents, automations, solutions, tooling etc. to use WDAC for both enterprises and home users are available. All of these things are Free btw! At the end of the day, it's your choice just like it's your choice to turn off your firewall and AVs. I just wanted this information to be put out there. I've helped multiple companies with implementation of WDAC and continue doing so, and I myself use it on my PC and family members. I've made tooling and documentations available for it and continue to do so. The threat landscape has changed significantly since Windows XP, it even changes every ~2-3 years, the ever-changing TTPs (Tactics, techniques, and procedures) require us on the defense side to be very adaptive or risk falling behind and being defeated. Hope everyone has a good time and stays secure! [/QUOTE]
Insert quotes…
Verification
Post reply
Top
