you're reading...
Microsoft / Windows, Security

Good Practice #1: Default Deny

Let’s face it. Security had long been an issue in the Windows platform. This is partly because it had been implementing the dumbest practice in security: Default Permit.

During the last few days I’ve been trying several anti-virus and anti-spyware solutions in the market. And well, nothing really works. Why? Because they’re enumerating badness. Instead of allowing only legitimate applications to run, it just blocks all known viruses and spywares.

Three days ago, I stumbled upon this little freeware from Horizon Datasys, Inc. called Exe Lockdown. Basically, the idea behind it is to deny any executable to execute unless explicitly permitted. Default deny.

Exe LockDown Screenshot

Now, this is how real programmers do it. Everything you’ll ever need is in this window. One window to do get the job done plus a really small footprint, what else can you ask for?

And this is Exe LockDown in action:

Access Denied!

When you choose to allow a program, you will be prompted for a password:

Enter Password

Of course it will not allow you to do some crazy things like disable access to c:\windows for pretty obvious reasons but it does allow you to block access to c:\windows\temp.

Amazing, isn’t it, how such a small freeware can accomplish what those over priced AV solutions failed to accomplish? I guess I’ll give Exe LockDown five stars out of five. 😀


About princess of antiquity

Abbi Cabanding is a member of the Security Bloggers Network and had been blogging on information security since 2006. She is also a member of the Association for Computing Machinery. She studied Computer Science and Fine Arts at the University of the Philippines - Diliman.


3 thoughts on “Good Practice #1: Default Deny

  1. Nice one that program.
    although not the first of it’s kind that I’ve seen.
    and about Windows and security….
    Security has been an issue for everyone, not just people who use windows.
    But no argue that Microsoft haven’t done a very good job.
    I’ll Cross my fingers for them (and vista).
    Not that i don’t enjoy watching Microsoft get beaten up, but in the bottom line, even as a Linux user, i know that security problems in windows eventually effects us all.

    Posted by Moti | February 18, 3:20 am, 3:20 am
  2. I was about to refer you to MJR but Ryan beat me to it 🙂

    Posted by cmlh | February 18, 6:25 pm, 6:25 pm

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Sin of Silence E-Book

single-page view
two-page view

On Wordpress

  • 96,913 readers

Subscribe via FeedBurner

Enter your email address to receive notifications by email.

Princess of Antiquity on Twitter

RSS Princess of Antiquity on Tumblr

  • An error has occurred; the feed is probably down. Try again later.

Creative Commons

Creative Commons License
Original content in this work is licensed under a Creative Commons License.
%d bloggers like this: