DropMyRights vs PrevX SOL

Im thinking about installing DMR to run my browser with. If I have PrevX SOL from the facebook giveaway is it redundant? I have SOL to protect every website I visit.

 

i would read this review by Symantec first before taking any decision:
http://www.symantec.com/connect/articles/reducing-browser-privileges

as for me, i don't want to use anything that will cripple my experience as either a computer user or an Internet user.

 

I would keep prevx SOL, I think that offers a more solid protection than DMR, also DMR cut down the functionality you will probably find some problems in certain cases. Also Prevx will report to you what's going on.

 

I would stick with SOL. Not only can you protect the browser but it works as a second oppinion. During some testing, Prevx will turn red and give me a warning. It doesn't stop any infection but it does warn me when I download any questionable exe's. At that point I can run it sandboxed or send it through jotti/virus total.

 

I would keep the Facebook version of PSO as it will protect all your credentials if you do Online banking and make purchases Online even if you are infected and like kjdemuth said you can use it as a second opinion scanner and the free Facebook version will come to an end at some point!

TH

 

Can you say "Conflict Of Interest"!

 

Great article. I am a long-time user of DMR for all internet facing apps.

By the way, OnlineArmor's Run Safer performs the same function as DMR.

 

very interesting cause i saw video from youtube and OA++ was almost perfect in this test,so for those who runs sandboxie or defensewall or even geswall dont need them when OA++ is onboard cause of it's similar restrictions(RunSafer)

 

It might utilize the RunSafer portion the same way, but RunSafer in OA still allows the object(s) full access to the real system, where other tools isolate the object(s) within a virtual environment. Same mechanism, but drastically different end result.

Sul.

 

I added bold face for purposes of my following comments . . .

"OA still allows the objects "full access" - NOT so. RunSafer & DMR place stringent boundaries around where the objects can go, & what they can/cannot do when they get there. Even so, Sul is correct that full isolation, as by a sandbox, gives even more stringent protection.

"Other tools" being those which have sandbox-type attributes: DefenseWall, GesWall, Sandboxie, Bufferzone, et alia.

 

This is sort of true, depending on how you define "full access".

DMR and RunSafer both use the SAFER flags on process creation. It is only removing the full access token and instead using that of a basic user. The process created by OA, DMR or Sandboxie will all have read and execute rights to just about everywhere. A restricted token will not be able to access other users profiles, but most else is open.

The "full access" that I refer to I guess is the user profile or custom directories. A process with a reduced token, as created via OA or DMR, has "full access" and if it modifies/deletes, those changes are real. Sandboxie on the other hand, unless an exception is made, only modifies/deletes the object(s) in the virtual environment.

You are correct in a sense I suppose, they all have "full access" to most of the file structure.

Sul.