SRP... Minus DLL restriction. To get this further restriction, it is necessary to get into the registry, under...
Don't you see the signature? ;) Concerning the Web browser, even if they are all different in their approach of security, they are relatively...
After the applocker poc bypass, now this one, And tomorrow? Other poc we might never see in the wild or 0-day vulnerabilities not...
Trust me there is no devil hidden in the details. basically, you need admin credentials everytime you receive a UAC prompt. Try and personalise...
You create a LUA in few seconds. Don't bother with set up as there is none. You create it, and you use it. Gone are the malwares which require...
Yes, Right, it restricts drastically the actions which can be performed. I used too quickly the info from Didier Stevens. Anyway, I store my...
With Standard Microsoft tools available, 1) is not achievable as SRP and AppLocker do not protect against it by design. I don't know about...
It was surely the case with XP. I don't know about Win7, but starting a new user account from scratch doesn't take so much longer, and it is...
HE is the right answer ;-) 1- Well, this scenario will never hapen. 2- SUA is already great at limiting the effects of an untrusted running...
Hi, Not me anyway. I have Ubuntu 10.10. I have UFW firewall UI. I have AppArmor enabled though, with the full list of app default rules...
I have no knowledge, little willingness. Merry Christmas!
~comment removed~ As been said by others, focus on backup strategy: - backup your personal data (synctoy is a nice simple microsoft tool) -...
Re: Virtualization and Sandboxing...Differences Agree. Behaviour blockers try to guess from the number and types of violations if a...
Re: Virtualization and Sandboxing...Differences Not at all. Actually a sandbox is a contained and controlled environment in which programs can...
Re: Maximising Windows VISTA security with LUA and SRP (even without ultimate) Yes it does, but incompletely. If you apply it as it is, you will...
m00nbl00d, I am afraid , from my understanding, that you didn't manage to understand the difference between how and what. "How" refers to...
Some pending questions before evaluating the validity of such test. Provided that the normal way to use a computer should be under LUA, or...
It's interresting to know that this scenario of a dll or exe embedded in office format would be a fail for SRP which can't separate office from...
Instead of messing around and missing the obvious: http://www.blackviper.com/ This site is pretty serious and offers different scenarii...
Firewall is useless if you have no listening service or app. On top of that, probability is high you are behind a router which would make the...
There are no benefits of SRP over AppLocker. These are basically the very same feature, except that AppLocker is implemented at the kernel...
Sandboxie uses virtualisation whereas Apparmor uses policy, much like Geswall (MAC application using windows capabilities) and DW (same, but uses...
I will let more knowledgeable people answer this question. Nevertheless, I have the default ubuntu FF apparmor default profile in enforced mode...
Same for executables: No execute right, by default. Concerning executables in archives, it is not worrying in the first place security wise as...
That is wrong. Now, Ubuntu is officially maintaining it and AppArmor will be integrated in the next version of the linux kernel (LSM). If...
Separate names with a comma.
