DropMyRights vs PrevX SOL

Discussion in 'other anti-malware software' started by whitedragon551, Sep 19, 2010.

Thread Status:
Not open for further replies.
  1. whitedragon551

    whitedragon551 Registered Member

    Joined:
    Sep 30, 2008
    Posts:
    3,189
    Location:
    USA
    Im thinking about installing DMR to run my browser with. If I have PrevX SOL from the facebook giveaway is it redundant? I have SOL to protect every website I visit.
     
  2. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
  3. lordraiden

    lordraiden Registered Member

    Joined:
    Jan 30, 2006
    Posts:
    3,067
    I would keep prevx SOL, I think that offers a more solid protection than DMR, also DMR cut down the functionality you will probably find some problems in certain cases. Also Prevx will report to you what's going on.
     
  4. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    I would stick with SOL. Not only can you protect the browser but it works as a second oppinion. During some testing, Prevx will turn red and give me a warning. It doesn't stop any infection but it does warn me when I download any questionable exe's. At that point I can run it sandboxed or send it through jotti/virus total.
     
  5. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    I would keep the Facebook version of PSO as it will protect all your credentials if you do Online banking and make purchases Online even if you are infected and like kjdemuth said you can use it as a second opinion scanner and the free Facebook version will come to an end at some point!

    TH ;)
     
  6. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Can you say "Conflict Of Interest"! :p
     
  7. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
  8. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    very interesting cause i saw video from youtube and OA++ was almost perfect in this test,so for those who runs sandboxie or defensewall or even geswall dont need them when OA++ is onboard;) cause of it's similar restrictions(RunSafer)
     
  9. Sully

    Sully Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    3,719
    It might utilize the RunSafer portion the same way, but RunSafer in OA still allows the object(s) full access to the real system, where other tools isolate the object(s) within a virtual environment. Same mechanism, but drastically different end result.

    Sul.
     
  10. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    I added bold face for purposes of my following comments . . .

    "OA still allows the objects "full access" - NOT so. RunSafer & DMR place stringent boundaries around where the objects can go, & what they can/cannot do when they get there. Even so, Sul is correct that full isolation, as by a sandbox, gives even more stringent protection.

    "Other tools" being those which have sandbox-type attributes: DefenseWall, GesWall, Sandboxie, Bufferzone, et alia.
     
  11. Sully

    Sully Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    3,719
    This is sort of true, depending on how you define "full access".

    DMR and RunSafer both use the SAFER flags on process creation. It is only removing the full access token and instead using that of a basic user. The process created by OA, DMR or Sandboxie will all have read and execute rights to just about everywhere. A restricted token will not be able to access other users profiles, but most else is open.

    The "full access" that I refer to I guess is the user profile or custom directories. A process with a reduced token, as created via OA or DMR, has "full access" and if it modifies/deletes, those changes are real. Sandboxie on the other hand, unless an exception is made, only modifies/deletes the object(s) in the virtual environment.

    You are correct in a sense I suppose, they all have "full access" to most of the file structure.

    Sul.
     
Loading...
Thread Status:
Not open for further replies.