Runboard.com
You're welcome.

runboard.com       


 
HappyGeezer Profile
Live feed
Blog
Friends
Miscellaneous info


Top of the page

Registered: 01-2009
Location: Southern NewEngland
Posts: 2131
Reply | Quote
Block programs from loading untrusted fonts in Windows 10


Another Windows worry.

quote:


By Martin Brinkmann on February 5, 2016 in Windows - Last Update: February 5, 2016


Microsoft implemented a new security feature in Windows 10's November update build that added an option to the operating system to block the loading of untrusted fonts.

The use of fonts has always been problematic in the Windows operating system from a security point of view as bugs in font-handling code could give attackers high-level privileges.

Bulletins such as MS15-078 indicate that the Windows font system is targeted regularly, and one way to mitigate the impact of these attacks was the new untrusted font blocking security feature built-into Windows 10.

I have mentioned the feature when I reviewed the new version of Microsoft EMET, as it shipped with support for it, but it has been likely missed by at least some users, hence this new article.

The security feature needs to be enabled in the Windows Registry, and there for every machine that you want to enable the feature on.

  1. Tap on the Windows-key, type [sign in to see URL] and hit enter.
  2. Confirm the UAC prompt if it is displayed.
  3. Navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSession ManagerKernel
  4. Right-click on Kernel, and select New > QWORD (64-bit) Value and name it MitigationOptions.
  5. Double-click on MitigationOptions afterwards and use one of the following values for the feature:
  6. To turn it on: 1000000000000
  7. To turn it off: 2000000000000
  8. To set it to audit mode: 3000000000000

Note: It is highly suggested to set the untrusted font blocking security feature to audit mode first, as you may run into issues with third-party applications after enabling the feature on a machine running Windows 10.

Alternatively, if you are running Microsoft EMET 5.5 on the machine, you may enable the "block untrusted fonts" feature using the application interface.



[url][sign in to see URL]

Related article from Softpedia...
[sign in to see URL]



---


2/18/2016, 4:18 pm Link to this post Email HappyGeezer   PM HappyGeezer Blog
 
Queenyforever Profile
Live feed
Blog
Friends
Miscellaneous info

Moderator
Top of the page

Registered: 01-2007
Location: Walking a new path in Nature.
Posts: 2558
Reply | Quote
Re: Block programs from loading untrusted fonts in Windows 10


Very interesting for certain. Will look into doing this.. emoticon

---

✴ Birthplace: Earth ✴ Race: Human ✴ Politics: Freedom ✴ Religion: Love♥

2/18/2016, 6:42 pm Link to this post Email Queenyforever   PM Queenyforever Blog
 
Susa Profile
Live feed
Blog
Friends
Miscellaneous info

ιδιοκτήτης
Top of the page
Premium User



Registered: 07-2006
Location: Oχάιο
Posts: 6448
Reply | Quote
Re:


So this one doesn't really apply to me, yet.

---


SS eH Sp PF
2/18/2016, 8:58 pm Link to this post PM Susa Blog
 


Add a reply






You are not logged in (login)