LUA/SRP/Kafu/DEP/SuRun Explanation

Hi guys, Can anybody through light on these technologies and how to apply these on Windows system.
Expecially ssj100.. Buddy can you help me..

 

Thanks Ssj100 Haha your style

 

good reply Sj100 , nothing more to add just GO FOR IT ! IT OWNZ!

 

SRP is too difficult, i have some software installed in different partitions, how to allow them? for exsample s:\program files? And I tried it with PGS, but can't understand it.

 

Use NAME (abc.exe) in stead of PATH within PGS

 

It's really simple: Just create a new path rule that sets S:\Program Files to "Unrestricted." That allows everything inside that folder and any subfolders to run. Note, that if your user has write access to that folder, it also means that it provides a very easy way to bypass SRP.

 

You might wish to clarify that a 'program files' directory should not have write access, but it is not a global mindset. Profile directories, custom directories, directories on storage drives will likely need write access. It is because a User by default cannot create/modify in c:\ , c:\windows and c:\program files that LUA is 'more' safe. If you have a custom 'program files' directory on another drive, to be as secure as LUA it is this directory that should be set with the same permissions as c:\program files, which means read or execute only.

Does that make sense?

Sul.

 

You don't need to do it all at once !!

Just try one bit at a time and see if it suits you.
See if you can switch your habits a bit.

Any one will significantly help your computer security and you don't need to use them all.
And of course you can still use security programs and mix them in too.

 

Why have you quoted my post ?

 

I can't find any Options in PGS, about subpath, and there are only deny allow and restrict, so i guess you didn't use PGS, but windows own tools to do this?

 

Nope, PGS is easier to use than XP Pro's own, Read the tutorial

For restricted/denied/allowed you can enter a variable or a path or a name

 

uhm... does this work on XP Home?

 

Just seemed odd to me.
My point was that you can be more secure with just part of that setup than not at all.
Pretty uncontroversial I would have thought !

 

A path rule in SRP is a rule that points to an executable or a directory. A path rule may be notated in the following manners:
simple name: notepad.exe
simple name with wildcards: *pat.exe, note*.exe, notepad.*

Environment Variables: %sysdir%\solitaire.exe, %windir%\notepad.exe, %programfiles%\mozilla firefox\firefox.exe
Environment Variables with wildcards: %sysdir%\sol*.exe, %windir%\note*.exe, %programfiles%\mozilla\firefox.*

A path can be what is known as 'Fully Qualified', meaning it must contain the entire path, such as c:\program files\mozilla\firefox.exe.

SRP can implement a policy rule on just names, full paths or environment variables. But it can also implement on just a full path of a directory, without an executable mentioned. Such as the default Allow rule for c:\program files. This rule allows any executable in any subdirectory of c:\program files to execute. It is important to note that if you are not using a simple name you must use a fully qualified path, but in SRP's case you MAY USE environment variables.

In PGS you must choose a TYPE of path rule, Simple, Full or Env Var. It is this way so that it may check to be sure if you are wanting a full path, that the path exists. You may drag and drop a directory or executable to the text box rather than typing it in if you would like.

Sul.

 

Is there some security measure we can implement in Vista/Windows 7 also?
I can do SRP in here what about the others??

 

If you are referring to using SRP in vista or 7, it is ready to do so. You can use Lucy's reg file method, if you have the right version you can use secpol.msc to implement it or you can use PGS. All the info you need is in the 'recommended threads' sticky thread in the 'other security software' forum.

Sul.

 

Hey sul, could you please post the links of these...

 

Here is a link to the 'recommended threads' thread.
https://www.wilderssecurity.com/showthread.php?t=137918
Look at the bottom three recommendations.

If you want to have a go at PGS, head here
http://www.mrwoojoo.com

Sul.