virus and malwares

Discussion in 'General Returnil discussions' started by waters, May 1, 2012.

Thread Status:
Not open for further replies.
  1. waters

    waters Registered Member

    Joined:
    Nov 8, 2004
    Posts:
    958
    Does the anti-executable component protect against virus and malwares
     
  2. Coldmoon

    Coldmoon Returnil Moderator

    Joined:
    Sep 18, 2006
    Posts:
    2,981
    Location:
    USA
    Yes, but remember it is just one component in the overall strategy...
     
  3. waters

    waters Registered Member

    Joined:
    Nov 8, 2004
    Posts:
    958
    Thanks ,but how good is that component.Would it stop more or less than the anti virus.How does it compare to AppGuard and others.
     
  4. Coldmoon

    Coldmoon Returnil Moderator

    Joined:
    Sep 18, 2006
    Posts:
    2,981
    Location:
    USA
    It is a simplified approach with the following settings only:

    1. Allow programs to do as they will
    2. Trust only know services
    3. Trust only known exe's

    It works by restricting access as described above with the highest setting being #3. You cannot allow anything and there are no rules to write.

    Also note that comparing it to a traditional HIPS solution is not appropriate as it is not designed to be a stand-alone HIPS solution; rather it is a component part of the whole in a vertical, layered security approach.

    You could think of it as putting an angry dog in front of your door after locking the door...

    Mike
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.