Author Topic: [Wish] Hardened Mode - "Trusted Aggressive"  (Read 3109 times)

0 Members and 1 Guest are viewing this topic.

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
[Wish] Hardened Mode - "Trusted Aggressive"
« on: October 01, 2016, 08:59:33 AM »
I really like Hardened Mode because of it's protective potential, but sometimes it gets annoying when otherwise trusted apps get updated. For example games in Steam that are in Early Access and they get updates more often than regular games.

Would it be possible to add third Hardened Mode option named "Trusted Aggressive" that would operate the same as current "Aggressive" mode, just with added trusted parent, unverified child relationship? For example, if Steam app (Trusted) launches a newly updated game (Unverified yet), it should automatically treat that app as trusted since Trusted app is launching it.

This should GREATLY decrease the number of unwanted app blockings because they were updated and avast! doesn't have the record for it yet.

I'm also aware that this could potentially be exploited from outside via app injections. I'd be willing to take that risk within this separate additional mode. Or even better, would it be possible to detect such external injections and still block them while not blocking things that are actually executed by a trusted parent itself?

Would love to hear an opinion from avast! team about this, so it could maybe be pushed out as a feature for new major avast!+AVG product in early 2017 as was mentioned recently.
Visit my webpage Angry Sheep Blog

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48523
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #1 on: October 01, 2016, 04:37:21 PM »
It would also help with some of the files in Windows updates that are currently being detected since they are "new".
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #2 on: October 01, 2016, 10:15:04 PM »
Yeah, if they only include selected things like Valve's Steam, EA Origin, GOG Galaxy, Windows Updates, that would already resolve huge number of unnecessary blocking.
Visit my webpage Angry Sheep Blog

Offline Rednose

  • Pirate Party Member
  • Avast Überevangelist
  • Massive Poster
  • *****
  • Posts: 3739
  • Bits of Freedom : https://www.bof.nl
    • Nederlandstalig Avast! forum
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #3 on: October 02, 2016, 01:04:17 AM »
I think this is a good idea :)

But Avast should only decide what can be included.
And from that list from Avast, the user should have a choice of what he wants to be included.

Greetz, Red.
« Last Edit: October 02, 2016, 01:07:52 AM by Rednose »
OS: Win 10 / iOS 17 / Debian 12 / Tails 5
Real Time: Avast Premium Security
On Demand: Malwarebytes
VPN: NordVPN ( NordLynx ) with Threat Protection ( Lite )

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48523
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #4 on: October 02, 2016, 01:52:47 AM »
I think this is a good idea :)

But Avast should only decide what can be included.
And from that list from Avast, the user should have a choice of what he wants to be included.

Greetz, Red.
If you give the user a choice, you're also broadcasting it to the bad guys. :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline Rednose

  • Pirate Party Member
  • Avast Überevangelist
  • Massive Poster
  • *****
  • Posts: 3739
  • Bits of Freedom : https://www.bof.nl
    • Nederlandstalig Avast! forum
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #5 on: October 02, 2016, 02:01:51 AM »
If you give the user a choice, you're also broadcasting it to the bad guys. :)

Like I said : The choice should be limited by Avast !

But maybe I ONLY want to include Windows Updates, and NOT Valve's Steam, EA Origin and GOG Galaxy :)

Greetz, Red.
« Last Edit: October 02, 2016, 02:43:59 AM by Rednose »
OS: Win 10 / iOS 17 / Debian 12 / Tails 5
Real Time: Avast Premium Security
On Demand: Malwarebytes
VPN: NordVPN ( NordLynx ) with Threat Protection ( Lite )

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #6 on: October 02, 2016, 08:24:01 AM »
Certainly, Hardened Mode should get it's own settings section with more options for users to configure it. It's a powerful component that with some extra extended settings could become even more widely used than just for clueless users and grandmothers/grandfathers...
Visit my webpage Angry Sheep Blog

Offline igor

  • Avast team
  • Serious Graphoman
  • *
  • Posts: 11849
    • AVAST Software
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #7 on: October 02, 2016, 09:43:15 PM »
I get the point, but the problem I see is that programs like Explorer.exe (or browsers, popular file managers, ...) are also trusted... so this trust inheritance would basically allow anybody to run anything.

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #8 on: October 02, 2016, 10:25:00 PM »
I get the point, but the problem I see is that programs like Explorer.exe (or browsers, popular file managers, ...) are also trusted... so this trust inheritance would basically allow anybody to run anything.

That's why it could be selective. Or exclusive. For example, you can make it a global thing, but exclude Explorer.exe from such parent-child trust behavior. Or simply only include things like mentioned above, Steam, Origin, GOG Galaxy, Windows Update components and nothing else.
Visit my webpage Angry Sheep Blog

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31080
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #9 on: October 02, 2016, 10:29:22 PM »
Bad idea.
If by default inheritance is disabled, there will be a lot of users who will allow things because they have no clue about security and/or what they are doing.
Kinda like the story about the many locks on the back door and leaving windows and other door wide open.
« Last Edit: October 02, 2016, 10:45:41 PM by Eddy »

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #10 on: October 02, 2016, 10:42:58 PM »
Bad idea.
If by default inheritance is enabled, there will be a lot of users who will allow things because they have no clue about security and/or what they are doing.
Kinda like the story about the many locks on the back door and leaving windows and other door wide open.

You don't understand it Eddy. No one said Parent-Child trust should be unconditional. I'm very much aware of that. But users not giving the flexibility is the same as them just turning Hardened Mode off or demanding whoever admins their system to turn it off. Or do you want a Hardened mode that is virtually as secure but 10 times more flexible and user friendly?
Visit my webpage Angry Sheep Blog

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31080
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #11 on: October 02, 2016, 10:47:30 PM »
Give user the choice to lower security and they will do so.
What's the point of offering them security ?

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: [Wish] Hardened Mode - "Trusted Aggressive"
« Reply #12 on: October 02, 2016, 11:19:14 PM »
Give user the choice to lower security and they will do so.
What's the point of offering them security ?

And what's the point of security that is more of an annoyance than a helpful thing. What have you achieved then? Nothing.
Visit my webpage Angry Sheep Blog