HIPS applications

I use Professional.But I haven't found a way to set a rule to limit folders.Do I need to modify anything in my register?

In LUA,SRP can block writing.great.Does it need to depend on other app's help to realize the purpose?

 

No, SRP does not support "folder protection" and it can't block writing anywhere in LUA or any account, and is not supposed to do so. For that purpose - preventing write access to certain files or folders - there are file permissions. In Windows, you can view and configure these using the Security tab in the file/folder properties menu (if you can't see the Security tab, boot to safe mode and you will). You can learn everything you're likely to need to know about file permissions in the Windows help files.

In Windows by default, limited user accounts are not allowed to write into important folders like Windows or Program Files - this is done by simply not giving accounts in that group any write permissions in those folders. All of this stuff is included in Windows and certainly needs no third party apps to work or configure.

 

Thanks for your reply.I know what you referred to is NTFS partition.It is safe.In NTFS,I can configure some accounts' privilege to limit folders' writing or reading.But in FAT32 partition,I can't use Windows system tool to limit folders.

Apart from NTFS,is there any way to limit folders without third part software?

 

The best HIPS imho, would be Malware Defender with the clever popup options, file change detections using CRC, and clever install mode from System Safety Monitor.

 

There is no security in FAT16 or FAT32. It's an antiquated file system, a leftover from the DOS era. It's filled with limitations that make it pointless to use except in cases where you must retain compatibility with some ancient or poorly made device that doesn't understand more modern file systems. Use NTFS. It's much safer and much more reliable.

 

That, or booting to safe mode where the Security tab is visible even in XP Home. Although, booting to safe mode to edit file permissions would be a real pain at least to me, considering I don't turn my computers off much.

 

Thank you,Windchild and ssj100.

By the way,I remembered pasting some files from Professional to Home.In this way,Home can realize some Professional's conditions like Group Policy.

 

That would be my ps3

 

To show the security tab in xp home:

Code:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Option]
"OptionValue"=dword:00000001

Save as whateveryoulike.reg.

To remove the tab change to:

Code:

"OptionValue"=-

 

Guys it is much easier:

XP Home
+ Surun (http://kay-bruns.de/wp/software/surun/) gives XP elevation pop-ups equivalent to Win7 usability or Vista UAC with Norton's UAC tool

+ PGS (ask Sully, this page does not load anymore http://mrwoojoo.com/PGS/PGS_index.htm) gives XP Home the SRP functionality of XP Pro plus more

+ XP FSE (http://www.fajo.de/portal/index.php?option=content&task=view&id=6&Itemid=) gives XP Home the Security tab of XP Pro

+ RunAs (http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/runas.mspx?mfr=true or Psexec http://technet.microsoft.com/nl-nl/sysinternals/bb897553(en-us).aspx) to run an webbrowser (e.g. Iron for speed and safety) as a Special LUA user who is not allowed to change the user space registry entries, because the right to change them is removed. Do the same for your data directories, so Iron is only allowed to write to its specified download directory (on which you have a deny execute policy implemented with PGS). With this you create a double policy management containment around a browser (Iron's own, plus your extra constrained LUA run as).


And the best of all: the free build in HIPS does not slow down your PC:
- run Admin in a convienant way (with Surun)
- run all internet facing software as limited user (with PGS) and apply default deny execute in C:\Documents and Settings
- run Iron 2x sandboxed: allready having its own sandbox plus run as a LUA user and take away write rights (XP FSE) to all directories except the Download directory specified in Iron and some autostart entries in HKEY_CURRENT_USER (see https://www.wilderssecurity.com/showpost.php?p=1542552&postcount=5 for a list ).

Add a fast free nononse AV (like Avast/Avira) and you are well protected on XP Home

Regards Kees

 

PE Guard.... small footprint, light on CPU consumption and effective. Oh and its FREE!

 

Its more of a classical HIPS. The rules can be set when an application asks for permission and you can approve, deny or revoke the permission.

 

Hi,
You could Kaspersky Internet Security 2010, it is all one integrated suite, you will not need anything else. Very good hips. And if you configure it to custom rules, it can be very effective.

 

Yeah i said it is very effective... i didn't say 100%
That is why I said custom configuration ... in KIS which is very effective as you could see in this
http://www.youtube.com/watch?v=Z_Ba8S2iQQI&feature=player_embedded
and this
http://www.youtube.com/watch?v=rHbntxizYzg&feature=player_embedded

 

Those vids also show how much of a memory hog KIS is.
I have tried it on my Xp pro Dual core, 1 GB ram, and KIS makes it slow as hell.
(now 1gb isint as great as 4GB, but hey, Dwall/Sandboxie +ZAP(zonealarm) does the same job, much more effectively. IMO.