Improvements

[Paulo Resende]

First and want to congratulate MS to share with us this
application. It has a great potential (they choose right
when they aqquired Giant Corp).

I have two suggestions:

1 - Many home users share a home computer (father,
mother, children) and many don't have a great knoledge of
computers or security with new threats coming every day.
It would be nice to have an option in MSAS that block
automatically known theats and unknow app/scripts or
actions (even if they could be ok). Known/verified app or
actions wouldn't be blocked. Why this? Because it dosen't
help very much if one children or other person with less
care (and there are many) let an unknown
app/script/action run and respond Allow in alert box
asking "What would you like to do?". In this case if that
unknow app was malicious, protection is over. This case
isn't so uncommon to see.

2 - Also to reenforce security in MSAS, I think that
limited and power users shouldn't be capable of shuting
down MSAS in notification tray icon. Also they shouldn't
be capable of changing MSAS settings (options, real-time
protection, advanced tools), they should only be capable
of running scans and choosing scans options. Only
administrators should be capable of full control of MSAS.

I consider these two measures urgent, because MSAS
protection level will never be high if anyone logged on a
computer with it installed could do anything (with
purpose or because it don't cares or don't have knoledge).

 

[Ron Chamberlin]

Hi Paulo,
Thank you for your very thoughtful comments. MSFT is reading them, and we
can expect improvements in the program from users input.


Ron Chamberlin
MS-MVP

 

[plun]

-----Original Message-----
1 - Many home users share a home computer (father,
mother, children) and many don't have a great knoledge of
computers or security with new threats coming every day.
It would be nice to have an option in MSAS that block
automatically known theats and unknow app/scripts or
actions (even if they could be ok). Known/verified app or
actions wouldn't be blocked. Why this? Because it dosen't
help very much if one children or other person with less
care (and there are many) let an unknown
app/script/action run and respond Allow in alert box
asking "What would you like to do?". In this case if that
unknow app was malicious, protection is over. This case
isn't so uncommon to see.

This is important ! If we take Zone Alarms firewall as a
good example that can be password protected, i have seen
so many broken firewalls beacuse of this, Just klick allow
or permit and GO....... and often we have a "Young Master"
who run this computer

2 - Also to reenforce security in MSAS, I think that
limited and power users shouldn't be capable of shuting
down MSAS in notification tray icon. Also they shouldn't
be capable of changing MSAS settings (options, real-time
protection, advanced tools), they should only be capable
of running scans and choosing scans options. Only
administrators should be capable of full control of MSAS.

I consider these two measures urgent, because MSAS
protection level will never be high if anyone logged on a
computer with it installed could do anything (with
purpose or because it don't cares or don't have knoledge).

This is difficult with home PC´s beacuse of to much work
with limited accounts, game industri wich not support
limited accounts and so on.

 

[Andre Da Costa]

Limited and multiple account issues should be fixed and improved by beta 2,
I think the Windows AntiSpyware Team is well aware of this now.

--

Andre
http://spaces.msn.com/members/adacosta
FAQ for MS AntiSpy http://www.geocities.com/marfer_mvp/FAQ_MSantispy.htm

-----Original Message-----
1 - Many home users share a home computer (father,
mother, children) and many don't have a great knoledge of
computers or security with new threats coming every day.
It would be nice to have an option in MSAS that block
automatically known theats and unknow app/scripts or
actions (even if they could be ok). Known/verified app or
actions wouldn't be blocked. Why this? Because it dosen't
help very much if one children or other person with less
care (and there are many) let an unknown
app/script/action run and respond Allow in alert box
asking "What would you like to do?". In this case if that
unknow app was malicious, protection is over. This case
isn't so uncommon to see.

This is important ! If we take Zone Alarms firewall as a
good example that can be password protected, i have seen
so many broken firewalls beacuse of this, Just klick allow
or permit and GO....... and often we have a "Young Master"
who run this computer

2 - Also to reenforce security in MSAS, I think that
limited and power users shouldn't be capable of shuting
down MSAS in notification tray icon. Also they shouldn't
be capable of changing MSAS settings (options, real-time
protection, advanced tools), they should only be capable
of running scans and choosing scans options. Only
administrators should be capable of full control of MSAS.

I consider these two measures urgent, because MSAS
protection level will never be high if anyone logged on a
computer with it installed could do anything (with
purpose or because it don't cares or don't have knoledge).

This is difficult with home PC´s beacuse of to much work
with limited accounts, game industri wich not support
limited accounts and so on.

 

[Paulo resende]

Yes it could be done with passwords, however we just have
to remember so many these days and for me I think if we
permit only members of the Administrators group having
full control of settings it's a simpler solution and I
think also more like of MS way (how many MS products have
access to settings protected with password?). It's more a
question of defining group membership. Not everyone needs
to be a machine administrator. I know that it's very
common in home computers, that everyone is an admin, but
even for games or other specific applications Power User
would be enough.