//
you're reading...
Microsoft / Windows, Security

Good Practice #1: Default Deny

Posted by 3 Comments

Let’s face it. Security had long been an issue in the Windows platform. This is partly because it had been implementing the dumbest practice in security: Default Permit.

During the last few days I’ve been trying several anti-virus and anti-spyware solutions in the market. And well, nothing really works. Why? Because they’re enumerating badness. Instead of allowing only legitimate applications to run, it just blocks all known viruses and spywares.

Three days ago, I stumbled upon this little freeware from Horizon Datasys, Inc. called Exe Lockdown. Basically, the idea behind it is to deny any executable to execute unless explicitly permitted. Default deny.


Exe LockDown Screenshot

Now, this is how real programmers do it. Everything you’ll ever need is in this window. One window to do get the job done plus a really small footprint, what else can you ask for?

And this is Exe LockDown in action:

Access Denied!

When you choose to allow a program, you will be prompted for a password:

Enter Password

Of course it will not allow you to do some crazy things like disable access to c:\windows for pretty obvious reasons but it does allow you to block access to c:\windows\temp.

Amazing, isn’t it, how such a small freeware can accomplish what those over priced AV solutions failed to accomplish? I guess I’ll give Exe LockDown five stars out of five. 😀

About princess of antiquity

Abbi Cabanding is a member of the Security Bloggers Network and had been blogging on information security since 2006. She is also a member of the Association for Computing Machinery. She studied Computer Science and Fine Arts at the University of the Philippines - Diliman.

Discussion

3 thoughts on “Good Practice #1: Default Deny

  1. Reply to this comment

  2. Nice one that program.
    although not the first of it’s kind that I’ve seen.
    and about Windows and security….
    Security has been an issue for everyone, not just people who use windows.
    But no argue that Microsoft haven’t done a very good job.
    I’ll Cross my fingers for them (and vista).
    Not that i don’t enjoy watching Microsoft get beaten up, but in the bottom line, even as a Linux user, i know that security problems in windows eventually effects us all.

    Posted by Moti | February 18, 3:20 am, 3:20 am
    Reply to this comment

  3. I was about to refer you to MJR but Ryan beat me to it 🙂

    Posted by cmlh | February 18, 6:25 pm, 6:25 pm
    Reply to this comment

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

Sin of Silence E-Book


SIN OF SILENCE:
THE STORIES OF OUR DAYS
download:
single-page view
two-page view

On Wordpress

  • 96,864 readers

Subscribe via FeedBurner

Enter your email address to receive notifications by email.

Princess of Antiquity on Twitter

  • @mongster They decided to terminate the accord on the 50th anniversary of the Diliman Commune. 1 year ago
  • RT @VictoriaCaela: We've seen this over and over again. The daughter are the 16M screaming for blood. And the Tatay has constantly delivere… 1 year ago

RSS Princess of Antiquity on Tumblr

  • An error has occurred; the feed is probably down. Try again later.

Creative Commons

Creative Commons License
Original content in this work is licensed under a Creative Commons License.
%d bloggers like this: