Jump to content
MSFN is made available via donations, subscriptions and advertising revenue. The use of ad-blocking software hurts the site. Please disable ad-blocking software or set an exception for MSFN. ×

Sampei.Nihira

Member
  • Posts

    921
  • Joined

  • Last visited

  • Days Won

    30
  • Donations

    $0.00 
  • Country

    Italy

Everything posted by Sampei.Nihira

  1. Why not also use Anti-Exploit software. The one in WD is very good. Usually with non-Microsoft software it is possible to use 12 rules on x64 OS's, which can become 14 on Microsoft software. Also using IL appcontainer apps helps a lot.
  2. They are usually rootkits. Although rootkits can be very scary, you should keep in mind that to "install" a rootkit you need to use malware able to use remote access. Malware usually exploits a vulnerability in the OS and/or some installed application. That is why it is important to use a specific Anti-Exploit software. If the malware that "carries" a possible rootkit is blocked, the rootkit is indirectly stopped as well. On the other hand, if the OS is infected and a rootkit is discovered, its removal may be more difficult to solve than a "common" malware. And often the OS is too badly damaged to need to be re-installed.
  3. https://webkit.org/perf/sunspider/sunspider.html SunSpider1.0.2 might be a good reference point. As Malwarebytes Labs analysis reports: https://blog.malwarebytes.com/reports/2021/08/edges-super-duper-secure-mode-benchmarked-how-much-speed-would-you-trade-for-security/ But I don't think anyone has tested it in non-Edge browsers.
  4. Interesting. I wonder if the JIT disabling of the V8 javascript is working with 360. Basically the enabling of "Super Duper Secure Mode" available in Edge. --js-flags=--jitless The problem will be to check if actually JIT is disabled.
  5. I don't speak about childs process and dll protection because it can be set at OS level. Regarding ACG unfortunately without a JIT shutdown the MS Edge exe will not start. Theoretically it would be possible with the flag: --js-flags=--jitless that you can find in the Peter Beverloo list to disable JIT. Unfortunately some flags although working in Chrome do not work with MS Edge. For example the flag to delete the Insecure Cipher Suites does not work with MS Edge. It would be interesting to check in other chromium based browsers if the above flag is well written, maybe it needs small adjustments, and if it actually disables JIT. Unfortunately it is not the purpose of this thread.
  6. Microsoft Edge's Super Duper Secure Mode lands in Settings - gHacks Tech News Another interesting feature.
  7. I read that some MSFN members have problems with Noscript. An interesting solution is to use UBO in Hard Mode: https://github.com/gorhill/uBlock/wiki/Blocking-mode:-hard-mode For MSFN members who resent the inevitable fixes for broken websites an equally interesting solution is that proposed by Kees1958 + Lenny_Fox. Enter the rules below in "My rules": * com * noop * edu * noop * eu * noop * gov * noop * inf * noop * io * noop * it * noop * net * noop * org * noop change the "it" rule with the one of your Country. There will be very few broken websites that need fixing. The increase in protection of UBO with respect to blocking lists only, and even with respect to the Medium mode, will certainly be greater.
  8. Contrary to my previous intervention, in the new pc, I have chosen as browser MS Edge. The possibility to add more Anti-Exploit rules than other browsers to IL "appcontainer" has greatly influenced my choice.
  9. Although some android browsers are renowned for the ability to install extensions: Firefox Kiwi Browser Yandex Browser not all extensions can be installed in these browsers and especially some of these extensions even if installed do not work as they should. I tried to run a test with the extension: Video DownloadHelper And only with Yandex Browser has proper functionality. You can add more if your experience is different or you want to integrate these few info. TH.
  10. You should see the list in "Privacy". But as you may have read I have no way to verify with UBO Legacy.
  11. Forgive the delay in my response. Obviously I would recommend the lists I used to use as well,you can find them in this thread a few pages back. You might also consider the experimental list below: https://raw.githubusercontent.com/gwarser/filter-lists/master/lan-block.txt
  12. The Covid EU Digital Green Pass NOT in paper format (the one Jaclaz posted) in my opinion is also more respectful of your privacy. It can be shown to the operator without any paranoia. The check is based on 3 parameters. If the certification is valid,first and last name and date of birth. And of course you need an identity document to confirm the data. The operator can also not make any saving of the screen. I forced a screen through a photo:
  13. The vulnerability described below affects uBlock Origin Legacy: https://github.com/vtriolet/writings/blob/main/posts/2021/ublock_origin_and_umatrix_denial_of_service.adoc https://github.com/gorhill/uBlock-for-firefox-legacy/issues/310#issuecomment-876323719
  14. https://www.lifeinitaly.com/news/digital-green-pass-in-italy-and-how-to-get-it/ Last Saturday, I finally completed my Covid-19 vaccine cycle with the Moderna vaccine. And on Monday I got my digital Green Pass which is valid for 9 months. How is the situation in your countries?
  15. I will buy a Lenovo all in one pc. Lenovo IT is offering a 10% discount on your first purchase: As I understand the discount is valid for 30 days after registration. The prices of the PCs are the same as I found on Amazon or in the most famous stores in my country. I have another desktop pc at home, and that one is over 10 years old too. So I would like to buy a new pc.
  16. Yes and no. Without mains power the battery life was very limited. I am also considering purchasing an all in one pc. Compared to my Acer notebook of 16 years ago modern notebooks are rather limited in hardware features. Few USB ports, no DVD RW drive, no RJ-45 port,small screen.........
  17. @ArcticFoxie @RainyShadow Conclusions always wrong...... I opened this thread to warn MSFN friends that unfortunately I will not be attending this subforum as before. I will buy a new notebook probably in September or October. My knowledge in IT security covers also W.10. Certainly with XP I had more satisfaction but at my age you understand that life stops giving and starts taking. We are all necessary but no one is indispensable.
  18. After 16 years probably all electronic components have reached the end of their life cycle. The pc has imploded now probably because in my country the temperatures reach about 34 degrees Celsius in the shade. I have additional cooling fans but you can't row against nature.......
  19. The pc is sixteen years old. It's normal that it imploded. A few days ago I performed a defrag because the HD had become too slow. Then it left me a bank of RAM (500 MB). Also the other bank of RAM had problems because they were frequent freezes. Then the screen finally gave up on me and that was the end of the pc. P.S. I use Android but I'm not thrilled with it.
  20. My Windows XP notebook is dead. With a probable triple failure its repair is certainly uneconomical. My friend has been with me since 2005, so I can not expect anything more. I will buy a new notebook. Although W.10 seems abominable to me and probably W.11 will be even more so, I will not proceed to install W.XP on it. Linux has always bored me. ChromeOS is useless I'm not a MacOS guy. The future, unfortunately for me, is less satisfying than the past.................................
  21. Github wc-polyfill 1.2.0 is out. Just Off released this Jun 22, 2021 Add experimental GitLab support https://github.com/JustOff/github-wc-polyfill/releases/tag/1.2.0
  22. I wouldn't use it. Do this test: https://browserleaks.com/ssl It is interesting for Mixed Content Test.

×
×
  • Create New...