Real Geek Forums > Archives > Operating Systems > Windows Vista > Windows Vista Security > Folder Location File Extension Security Feature

Folder Location File Extension Security Feature

Posted: 08-20-2006, 04:55 AM
Mark Joya
Guest
Posts: n/a
 
Hello,

I hope you can add the following features to further avoid virus from hiding
in our file system.

1. Folder such as pictures and videos should be tagged with data only
folder. For example, it's impossible for me to have Executable file (.exe) in
my picture, music, videos and etc folder. So by default, it should tagged as
data only folder and no executable file can run from that folder.
2. Microsoft only Application Executable folder. For example, in a server
operating system, we have a folder C:\Windows\System32\wins. Blaster virus
took advantage of that folderby hiding the virus file inside that folder. By
default, those folders should be tagged as Microsoft Executables only folder
so that no other executables from other 3rd party can run in that folder.
3. High risked folders security. For example, temporary internet files
folder. By default, executable files that will run from that folder will run
will be in low-privilege mode since it came from a high risked folder. This
will disallow spywares to run since by default, any objects from internet get
in to this folder.

The closest security model I can suggest is that, it's like the zoning of
internet explorer such as local intranet, internet zone, trusted sites and
etc where it secures that user based on location of the URL. By this time,
it's based on the location of the folder.

I hope this get implemented by right away in vista, and a patch or service
pack in Windows XP.

Thanks!
-Mark Joya

----------------
This post is a suggestion for Microsoft, and Microsoft responds to the
suggestions with the most votes. To vote for this suggestion, click the "I
Agree" button in the message pane. If you do not see the button, follow this
link to open the suggestion in the Microsoft Web-based Newsreader and then
click "I Agree" in the message pane.

http://windowshelp.microsoft.com/com...vista.security
Reply With Quote

Responses to "Folder Location File Extension Security Feature"

Mark Joya
Guest
Posts: n/a
 
Folder Location File Extension Security Feature
Posted: 08-20-2006, 04:56 AM
Hello,

I hope you can add the following features to further avoid virus from hiding
in our file system.

1. Folder such as pictures and videos should be tagged with data only
folder. For example, it's impossible for me to have Executable file (.exe) in
my picture, music, videos and etc folder. So by default, it should tagged as
data only folder and no executable file can run from that folder.
2. Microsoft only Application Executable folder. For example, in a server
operating system, we have a folder C:\Windows\System32\wins. Blaster virus
took advantage of that folderby hiding the virus file inside that folder. By
default, those folders should be tagged as Microsoft Executables only folder
so that no other executables from other 3rd party can run in that folder.
3. High risked folders security. For example, temporary internet files
folder. By default, executable files that will run from that folder will run
will be in low-privilege mode since it came from a high risked folder. This
will disallow spywares to run since by default, any objects from internet get
in to this folder.

The closest security model I can suggest is that, it's like the zoning of
internet explorer such as local intranet, internet zone, trusted sites and
etc where it secures that user based on location of the URL. By this time,
it's based on the location of the folder.

I hope this get implemented by right away in vista, and a patch or service
pack in Windows XP.

Thanks!
-Mark Joya
Reply With Quote
Mark Joya
Guest
Posts: n/a
 
RE: Folder Location File Extension Security Feature
Posted: 08-20-2006, 05:13 AM
Hello,

In addition to my previous suggestions, any application that will copy
hidden files, or will change the file attributes to hidden should notify the
user of the action. Although there should be a apply to all answer when
multiple files are selected.

Any users that will run an application or run an executable file from media
other than the hard disk, background or foreground, should warn the user of
the action. There's very few chance that users will run application from USB
and etc. Usually USB memory will contain data only. But I think the
additional warning is a small hassle to help user secure their computers.

Thanks!
-Mark Joya


"Mark Joya" wrote:
> Hello,
>
> I hope you can add the following features to further avoid virus from hiding
> in our file system.
>
> 1. Folder such as pictures and videos should be tagged with data only
> folder. For example, it's impossible for me to have Executable file (.exe) in
> my picture, music, videos and etc folder. So by default, it should tagged as
> data only folder and no executable file can run from that folder.
> 2. Microsoft only Application Executable folder. For example, in a server
> operating system, we have a folder C:\Windows\System32\wins. Blaster virus
> took advantage of that folderby hiding the virus file inside that folder. By
> default, those folders should be tagged as Microsoft Executables only folder
> so that no other executables from other 3rd party can run in that folder.
> 3. High risked folders security. For example, temporary internet files
> folder. By default, executable files that will run from that folder will run
> will be in low-privilege mode since it came from a high risked folder. This
> will disallow spywares to run since by default, any objects from internet get
> in to this folder.
>
> The closest security model I can suggest is that, it's like the zoning of
> internet explorer such as local intranet, internet zone, trusted sites and
> etc where it secures that user based on location of the URL. By this time,
> it's based on the location of the folder.
>
> I hope this get implemented by right away in vista, and a patch or service
> pack in Windows XP.
>
> Thanks!
> -Mark Joya
Reply With Quote
 
LinkBack Thread Tools Display Modes
Reply

« Previous Thread | Next Thread »

Thread Tools
Display Modes
Hybrid Mode Hybrid Mode

Posting Rules
You may not post new threads
You may post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump


Similar Threads
Thread Thread Starter Forum Replies Last Post
SendTo Folder Location Jack B Windows Vista File Management 1 03-18-2007 03:06 PM
Looking for contact to add another file extension website source Martin Kup Windows Vista File Management 1 02-25-2007 08:11 AM
File extension association Simone Chemelli Windows Vista File Management 3 12-10-2006 01:18 PM
Folder File Extension Security Feature Mark Joya Windows Vista Security 0 08-20-2006 04:54 AM
file/folder security/ownership Piotr Wozniacki Windows Vista Performance & Maintenance 3 06-26-2006 01:03 AM