SudoJudoParticipantThe problem I found with SRP are the incessant blocking of good things, and constant prompts.
- November 30, 2019 at 11:42 pm
AppGuard, even after just a couple days nearly drove me to drink. AppGuard, IMO, is so limited in usability that I don’t really know anyone that can/would use it, even on the commercial level. When you block almost everything, it isn’t hard to achieve nearly perfect protection!
Speaking from enterprise market.. This is what we do to secure the average enterprise environment;
1) Strong lockdowns with Group Policies.
2) Limited (Standard) user accounts.
3) Security Profiles for folder/drive access.
4) Install Endpoint Security Product.
5) Implement a quality backup solution.
For anything needing even stronger security we setup a VDI (Virtual Desktop Environment) which allows complete isolation in HyperV for desktops, and at the same time, an instant wipe and restore of them with any issues.
There really isn’t any need for AppGuard/SRP at the enterprise level. HOWEVER, there would be a need for WLC-Enterprise, because it would provide great insight into what is running that is safe.
For VS, the fact it does so much and does it without breaking systems like AppGuard does, and without incessant, annoying prompts, means for almost everyone it is a superior product. It also explains why AppGuard generally speaking, wouldn’t have much of a widespread market.
I think if VS offered some of the lockdown options within OSArmor it would be really helpful. Maybe a couple of footprint options on install that enable OSArmor type lockdowns depending on desired profile ‘Light, Firm, Paranoid’. Would something like that be helpful at all?00