Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Other security for Windows, Mac, Linux
Zero Trust (Solution Vote)
Message
<blockquote data-quote="Andrezj" data-source="post: 1016172" data-attributes="member: 97580"><p>danb has no answer, other than to take shots at products designed for enterprise\not consumers and those that use them, and then state they are flawed with no basis</p><p>he has thiis weird obsession with appguard (and srp - andy ful) and rails against protection models that have been developed and vetted over decades by the nsa, the nist, the dod, microsoft, linux groups - and tell them they're doing it all wrong - that his dynamic security profiles are the answer</p><p></p><p>next he uses completely flawed opinion polls as evidence that his product is superior, meanwhile the poll respondents have no idea what they are looking at in the list of products</p><p></p><p>voodooshield would fail miserably if it were tested on the basis of enterprise requirements and policies, such as integration with active directory\group policy\different security policies per ip address or users\ensuring defined groups only have access to programs per the applicable standard, of course products such as appguard and wdac already have all this integration because they are desinged for windows enterprise admins\not home users</p><p></p><p>in enterprise, scripts must be run sometimes with admin privileges, other times with standard user privileges, sometimes with delegation, uac must be blocked except for certain admins, such a policy needs to be enforced by access protocol (the policy will block all access except when, for example, powershell remote tunneled through SSH and JEA used), ip address, group membership, a product like appgaurd works within these context</p><p></p><p>this and a whole lot more policies can be implemented and distrbuted witha click of a button across hundreds of thousands of endpoints</p><p></p><p>any company that must meet nist 800-53 must apply the principle of least funcationality defined as blocking globally and permanently disabling lolbins, disabling services, disabling ports, disabling user acces to control panel, and so on</p><p></p><p>i could write a whole book but you get the point, i'm not saying anything you don't already know</p><p></p><p>try harder danb you have a lot of catching up to do</p></blockquote><p></p>
[QUOTE="Andrezj, post: 1016172, member: 97580"] danb has no answer, other than to take shots at products designed for enterprise\not consumers and those that use them, and then state they are flawed with no basis he has thiis weird obsession with appguard (and srp - andy ful) and rails against protection models that have been developed and vetted over decades by the nsa, the nist, the dod, microsoft, linux groups - and tell them they're doing it all wrong - that his dynamic security profiles are the answer next he uses completely flawed opinion polls as evidence that his product is superior, meanwhile the poll respondents have no idea what they are looking at in the list of products voodooshield would fail miserably if it were tested on the basis of enterprise requirements and policies, such as integration with active directory\group policy\different security policies per ip address or users\ensuring defined groups only have access to programs per the applicable standard, of course products such as appguard and wdac already have all this integration because they are desinged for windows enterprise admins\not home users in enterprise, scripts must be run sometimes with admin privileges, other times with standard user privileges, sometimes with delegation, uac must be blocked except for certain admins, such a policy needs to be enforced by access protocol (the policy will block all access except when, for example, powershell remote tunneled through SSH and JEA used), ip address, group membership, a product like appgaurd works within these context this and a whole lot more policies can be implemented and distrbuted witha click of a button across hundreds of thousands of endpoints any company that must meet nist 800-53 must apply the principle of least funcationality defined as blocking globally and permanently disabling lolbins, disabling services, disabling ports, disabling user acces to control panel, and so on i could write a whole book but you get the point, i'm not saying anything you don't already know try harder danb you have a lot of catching up to do [/QUOTE]
Insert quotes…
Verification
Post reply
Top
