AppGuard vs Limited user account

Discussion in 'other anti-malware software' started by max2, Jun 26, 2016.

  1. max2

    max2 Registered Member

    Joined:
    Sep 22, 2011
    Posts:
    374
    How is AppGuard better ?
     
  2. hjlbx

    hjlbx Guest

    Can configure AppGuard to block vulnerable processes and file execution completely in Lock Down mode.

    Some malware, even in SUA can bypass UAC - and infect your system.
     
  3. max2

    max2 Registered Member

    Joined:
    Sep 22, 2011
    Posts:
    374
    Sorry what is SUA ? I feel stupid. :(

    Also where can I download the trial version of AppGuard to try it ?
     
  4. hjlbx

    hjlbx Guest

    SUA = standard user account
    LUA = limited user account

    http://www.appguardus.com/support/products/AG44/AppGuardSetup-4-4-6-1.exe

    After July 1st, version 4.X will no longer be available; version 5.X will be offered.
     
  5. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,792
    Location:
    .
    Btw, SUA = LUA
     
  6. guest

    guest Guest

    :D

    LUA was the pre-win8 denomination if im not wrong.
     
  7. hjlbx

    hjlbx Guest

    The only thing I know about either a LUA or SUA is that both can be a pain.
     
  8. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,792
    Location:
    .
    I know and agree. There has been many years since I dropped LUAs/SUAs, better off with superb specialized extra protection.
     
  9. guest

    guest Guest

    i like my SUA (for now) :p
     
  10. Well I can confirm SUA with UAC deny elevation of unsigned and parental control with Smartscreen require admin consent works really well.

    Advantage of parental control is the option to allow programs on the fly (asks whether parent is around to grant access)
     
  11. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Me too. I never thought I will get used to using it, but now I really like it :thumb:
     
  12. guest

    guest Guest

    means you are using the parental control as an anti-exe?
     
  13. Yes, together with deny execute / traverse folder ACL for most vulnarable folders since parental control (as far as I know) only checks on executables (not dll etc).
     
  14. guest

    guest Guest

    i see, that is an original use of it, never imagined it this way.

    :thumb:
     
  15. Since Windows 8.1 you can use Windows Aps for skype, pdf, music, video and pictures stuff. So every program facing the internet can run in AppContainer (disabled IE and WMP). This reduces the vulnability of medium IL processes, hence increasing the strength of standard user.

    When you use Office, the TrustCenter has a lot of options to harden Office (e.g. disable Macro's, Active-X, Plug-ins, external content, etc). Documents folder is the only trusted location and it has deny execute/traverse folder ACL for Everyone. The other user folders are only protected by Parental Control. Because they are not in the my Documents trusted location, Office opens them in protected view as if they were from the internet. I have upped the Internet Settings to high, protect system DLL's, safe search DLL order and block DLL's from network to make parental control stronger (it only guards executables). All these precautions makes it pretty hard to misuse Office applications.
     
    Last edited by a moderator: Jun 28, 2016
  16. guest

    guest Guest

    i also disabled them with SMB and XPS things. For internet-faced 3rd party apps , i have them portable for most (VLC, etc.) , HMPA-ized and sandboxed :D
     
  17. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    LOL, these comments bring back certain memories. :D
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.