Sampei.Nihira

The pc my daughter uses is over 10 years old. On that pc is installed W.10 Home 21H1 which is starting to get overly heavy. I've done some heavy optimization work that probably improved the use of the pc but didn't solve the problem. I did some tests with Xubuntu, Lubuntu, LinuxLite. In my opinion LinuxLite has surpassed the other distros for lightness. In the next days I will install this distro in her pc. Without dual-boot of course. I hope the pc will be reborn to new life. My daughter has already used a Linux distro when she was still a student. But many years have passed since then.

A big hello to all MSFN members. In an OS that is no longer supported, theoretically, it is essential to have an up-to-date browser. But it is possible to survive even with an outdated browser. Those who don't use Noscript but use UBO could block javascripts at a general level and allow those per site. It should be remembered that the advantages of the chrome-sandbox are partially cancelled in an OS such as Windows XP. Especially if your FS is FAT32. Using a limited account or starting the browser with limited-user privileges with PsExec may be more helpful.

Why not also use Anti-Exploit software. The one in WD is very good. Usually with non-Microsoft software it is possible to use 12 rules on x64 OS's, which can become 14 on Microsoft software. Also using IL appcontainer apps helps a lot.

They are usually rootkits. Although rootkits can be very scary, you should keep in mind that to "install" a rootkit you need to use malware able to use remote access. Malware usually exploits a vulnerability in the OS and/or some installed application. That is why it is important to use a specific Anti-Exploit software. If the malware that "carries" a possible rootkit is blocked, the rootkit is indirectly stopped as well. On the other hand, if the OS is infected and a rootkit is discovered, its removal may be more difficult to solve than a "common" malware. And often the OS is too badly damaged to need to be re-installed.

https://webkit.org/perf/sunspider/sunspider.html SunSpider1.0.2 might be a good reference point. As Malwarebytes Labs analysis reports: https://blog.malwarebytes.com/reports/2021/08/edges-super-duper-secure-mode-benchmarked-how-much-speed-would-you-trade-for-security/ But I don't think anyone has tested it in non-Edge browsers.

Interesting. I wonder if the JIT disabling of the V8 javascript is working with 360. Basically the enabling of "Super Duper Secure Mode" available in Edge. --js-flags=--jitless The problem will be to check if actually JIT is disabled.

What version of Javascript engine does 360 use? chrome://version

I don't speak about childs process and dll protection because it can be set at OS level. Regarding ACG unfortunately without a JIT shutdown the MS Edge exe will not start. Theoretically it would be possible with the flag: --js-flags=--jitless that you can find in the Peter Beverloo list to disable JIT. Unfortunately some flags although working in Chrome do not work with MS Edge. For example the flag to delete the Insecure Cipher Suites does not work with MS Edge. It would be interesting to check in other chromium based browsers if the above flag is well written, maybe it needs small adjustments, and if it actually disables JIT. Unfortunately it is not the purpose of this thread.

Microsoft Edge's Super Duper Secure Mode lands in Settings - gHacks Tech News Another interesting feature.

I read that some MSFN members have problems with Noscript. An interesting solution is to use UBO in Hard Mode: https://github.com/gorhill/uBlock/wiki/Blocking-mode:-hard-mode For MSFN members who resent the inevitable fixes for broken websites an equally interesting solution is that proposed by Kees1958 + Lenny_Fox. Enter the rules below in "My rules": * com * noop * edu * noop * eu * noop * gov * noop * inf * noop * io * noop * it * noop * net * noop * org * noop change the "it" rule with the one of your Country. There will be very few broken websites that need fixing. The increase in protection of UBO with respect to blocking lists only, and even with respect to the Medium mode, will certainly be greater.

Contrary to my previous intervention, in the new pc, I have chosen as browser MS Edge. The possibility to add more Anti-Exploit rules than other browsers to IL "appcontainer" has greatly influenced my choice.

Although some android browsers are renowned for the ability to install extensions: Firefox Kiwi Browser Yandex Browser not all extensions can be installed in these browsers and especially some of these extensions even if installed do not work as they should. I tried to run a test with the extension: Video DownloadHelper And only with Yandex Browser has proper functionality. You can add more if your experience is different or you want to integrate these few info. TH.

You should see the list in "Privacy". But as you may have read I have no way to verify with UBO Legacy.

Forgive the delay in my response. Obviously I would recommend the lists I used to use as well,you can find them in this thread a few pages back. You might also consider the experimental list below: https://raw.githubusercontent.com/gwarser/filter-lists/master/lan-block.txt