• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Anyone know anything about "Default Deny" within Windows?

K

Ken90630

Golden Member
Hey, All,

Do any of you happen to know anything about the "Default Deny" feature within Windows? As in how I turn it on, configure it, things to know, things to be wary of, etc.?

It's apparently a feature that causes Windows to automatically refuse permission to install anything on the computer automatically. This would have obvious appeal in terms of Web security. 🙂 Presumably it can be turned off temporarily when a person wants to let the machine download something automatically (Norton updates, for example)?

There was a little snippet about this feature in one of my computer magazines recently, but they don't say anything else about it. A search on Microsoft.com and also the Help menu on my computer (W2K Pro) yielded nothing tangible.

Anyone wanna impress the heck out of me with some info on this? 😎

PS: I'm posting a duplicate of this post in the Operating Systems folder in order to maximize potential responses. 😀
 
Don't know. 😕

There's an article on adware & security on page 10 of the September 2004 issue of PC Today. In the last paragraph, it states:

"In fact, security services provider TruSecure states that 95% of time spent patching is worthless. 'Of the 452 vulnerabilities patched by Microsoft since Jan. 1, 2000, only about 15 have been used for exploits,' says Russ Cooper, TruSecure's surgeon general. 'By having default deny and e-mail attachment filtering, for instance, you could have prevented 90% of the attacks that happened over the last four years,' he adds. (Default deny, which causes Windows to automatically refuse permission to install anything on your computer automatically, will stop this attack.) Microsoft representatives have also addressed the issue, stating that the company is working to make Windows more effective at stopping suspicious behavior by default."

That's how I learned of this. As you can see, however, that's all they say about it.
 
Found this:
implement a default deny inbound policy using router ACLs or firewall policies. Outbound perimeter default deny will add significantly to inbound protection as it will stop progression of inside infection originating from partner networks, VPN connections, or similar vectors.

This was on a TruSecure webpage

Another reference:
Deny standard database ports (MS-SQL, Oracle, MySQL)" has been added as a new default DENY firewall rule under Home | Network |
Firewalls.


I think it is more of a policy than a setting in windows
 
Yeah, I think you're right. The first article on that list of Google pages (that you linked to) kinda leads me to believe the same thing. I think that article in PC Today could have been worded a little more accurately, as it implies that it's a Windows feature.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top