Windows 10: Is anyone using Windows Defender Controlled folder access?

Page 1 of 4 123 ... LastLast
  1.    16 Apr 2018 #1

    Is anyone using Windows Defender Controlled folder access?


    I was not aware of Windows Defender's built in Ransomware protection! However the first problem I have encountered is that my games can't access the documents folder to grab the save file/game settings etc! It is a great idea but seems very restrictive. What are your thoughts?
      My ComputerSystem Spec

  2. Cliff S's Avatar
    Posts : 21,193
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       16 Apr 2018 #2

    You're going to need to take time to add all the .exe you want.
    Including Windows own ones, like WordPad, Notepad, Paint and so on.


    You can find those in C:\Windows and C:\Windows\System32
    Then you need to add the ones in Programs and Programs x86.

    Some programs will also need certain .dll's or files in the ..bin and .etc folder also access given, to write to your C: partition and any other disk or partition you decided to add.


    It took me a whole Saturday to do it, because after I did the ones I knew & thought about, I ran some of the ones I wasn't to sure of.

    Also, installers(the ones you trust) will need permission too, so don't just click through, and always save them when downloading), incase you need to run the installer again, after you have given permission.
      My ComputersSystem Spec

  3.    16 Apr 2018 #3

    @Cliff S

    Yikes that sounds like a long long job. So each and every file say in Documents you allowed through has to be added individually correct? You cannot allow whole folders it seems.
      My ComputerSystem Spec

  4. Cliff S's Avatar
    Posts : 21,193
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       16 Apr 2018 #4

    Kol12 said: View Post
    @Cliff S

    Yikes that sounds like a long long job. So each and every file say in Documents you allowed through has to be added individually correct? You cannot allow whole folders it seems.
    Not the files are allowed only the programs that can write to your disk(s)
    The idea is to keep unwanted changes from happening to your installation and user folders(or any other dive/partitions.).
      My ComputersSystem Spec

  5.    16 Apr 2018 #5

    Hi there

    Filtering / controlling at individual file level seems IMO a bit of a cackhanded way of doing it -- I'd imagine that a better (or at least seemingly more sensible way) would be to provide protection at the directory level .

    That said though if your program can actually read by HDD sector / cluster then (although complex to do - it's dooable for some reasonably clever coders -- all you need to know is NTFS file structure and HDD geometry) your rogue program could easily bypass any of this type of file restriction especially on the NTFS file system.

    Surely it would make more sense also only allow to have specific users who have "execute authority" which presumably can be done in Windows with some sort of adding users to specific groups..
    However at least Ms is on the right track.

    Personally I'd also like to see some type of "Sandboxing" HDD writes so that users can examine logs before actually updating HDD -- by this type of Sandboxing I don't mean running Virtual machines but not commiting changes to HDD until some process allows it. If anything untoward is on the system then in this way changes aren't committed to HDD.

    Not sure how difficult or what changes to the Windows kernel is required -- at least Ms is on the right lines here -- the more sophisticated Virus writers know that people often take clean image of their system -- but spectacularly fail to adequately back up or control their data and this is what they are trying to do now rather than break your OS.

    It's about time NTFS was replaced by a much better more modern file system with decent journalling -- NTFS is "Out of the Ark" as far as computing systems are concerned -- good in its day but been around for donkeys years. Obviously legacy hardware will have to support it for a while but a decent new FS with some sensible software RAID possibilities should be a priority for Windows updates / improvements.

    Cheers
    jimbo
      My ComputerSystem Spec

  6.    16 Apr 2018 #6

    Cliff S said: View Post
    Not the files are allowed only the programs that can write to your disk(s)
    The idea is to keep unwanted changes from happening to your installation and user folders(or any other dive/partitions.).
    Ah I see, you allow the particular application/game access to the protected Documents folder for the files it needs. I had things back to front and was allowing the individual files rather than the application, that would be cackhanded.
      My ComputerSystem Spec

  7.    16 Apr 2018 #7

    I actually turned on Controlled Folder Access last night. I am slowly but surely getting every needed program added. I would like to add something:

    If you add a program and it doesn't work still, you will need to reboot. I had this happen last night with my screenshot program. If it still doesn't work, you might need to add the dll, etc like Cliff posted.
      My ComputerSystem Spec

  8. Bree's Avatar
    Posts : 8,536
    10 Home x64 (1803) (10 Pro on 2nd pc)
       16 Apr 2018 #8

    Access Denied said: View Post
    ... If it still doesn't work, you might need to add the dll, etc like Cliff posted.
    The notification from Defender helps with this, it tells you the exact name of the exe, dll, bin, etc. that was blocked.
      My ComputersSystem Spec

  9.    16 Apr 2018 #9

    Bree said: View Post
    The notification from Defender helps with this, it tells you the exact name of the exe, dll, bin, etc. that was blocked.
    Wow, that is great to know. Thank you for pointing this out.
      My ComputerSystem Spec

  10.    16 Apr 2018 #10

    Also would like to add something for anyone using Macrium..... Be sure to add the folder(s) where your backups are located. That way nothing can mess with your backups except Macrium. (and the programs you allow of course :P)
      My ComputerSystem Spec


 
Page 1 of 4 123 ... LastLast

Related Threads
How to Add or Remove Protected Folders for Controlled Folder Access in Windows 10 Starting with Windows 10 build 16232, Controlled folder access is introduced in Windows Defender Antivirus. When Controlled folder access is turned on, it...
Defender Controlled Folder Protection Question in AntiVirus, Firewalls and System Security
Hello There After using Avast for 16 years, and discovering a file was writing a lot to the drive, decided to try Defender longer this time, now if i decide to enable Controlled Folder protection or Ransomware protection after 1803 Released, ...
cannot change CONTROLLED FOLDER ACCESS option in Windows Defender in AntiVirus, Firewalls and System Security
177065
Odd Defender 'Controlled Folder Access' alert in AntiVirus, Firewalls and System Security
Fall Creators Update 1709 introduced a new 'Controlled Folder Access' function in Defender. This is off by default, but I have turned it on to test it. I've had to allow a couple of apps access (VLC was one) but other than that it seem unobtrusive....
Solved About the "Controlled Folder Access" in windows defender... in AntiVirus, Firewalls and System Security
Although not that important, I noticed that when you open Winders Defender, and then click on Virus and threat protection settings, and then scroll down to controlled folder access,.. It states, " Protect your files and folders from...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 08:53.
Find Us