Harden Windows Security v0.6.8 #376
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Improved namespaces and classes
Improved code quality
Improved Scrolling feature on DataGrid in the BitLocker section for backup
Toast notifications not displaying doesn't need to be warning, just information is enough
Fixing the following issue #375
Version bump
Added a border around the DataGrid to make it easier to scroll via touch
It now checks if BattleNet client is installed and then will use a different policy that has the TLS_RSA_WITH_AES_256_CBC_SHA cipher suite required for the game client to connect to the servers. more info here #372
If toast notifications can't be displayed for any reason such as compatibility issue or other modules conflicting with the dlls, the errors will be suppressed so they won't pollute the logs. It's just a cosmetic feature that has no effect on the actual usage of the module or its policies.
Added a notice when user tries to decrypt a drive that is in the middle of the decryption process already.
Added a notice to let the user know the enhanced security level needs removable drive selected.
HotCakeX
changed the title
HotCakeX
changed the title
Removed an unnecessary assembly reference
…otCakeX/Harden-Windows-Security into Harden-Windows-Security-v0.6.8
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What's New
This update mainly focuses on improving the general aspects of the Harden Windows Security module based on user feedback and discussions.
TLS Category
TLS_RSA_WITH_AES_256_CBC_SHAcipher suite.recent discussion: #372
related issue: #38
The check happens by looking for the following 2 files on the system
C:\Program Files (x86)\Battle.net\Battle.net.exeC:\Program Files (x86)\Battle.net\Battle.net Launcher.exeBitLocker Category
Added new notice to inform the user about drive decryption status when they try to decrypt a drive that is already being decrypted.
Added a new notice to inform the user that the Enhanced level encryption requires removable drive selection. The notice is displayed when no removable drive is selected from the dropdown menu and then the user tries to use the Enhanced level encryption.
Improved scrolling experience on the backup page, the datagrid can now be scrolled using mouse wheel or trackpad. Suitable when there are so many BitLocker encrypted drives on the system that user needs to use the scrollbar to view all of them.
Other Changes
The Harden Windows Security module is now able to run as SYSTEM account. Related issue: [Bug]: Starting with Windows 24H2, Hardening Module will no longer work as system #375
Implemented many recommendations by GitHub's Advanced Code quality scan for higher quality code base.
No errors will be displayed in the logs section if for any reason the toast notifications cannot be displayed. It prevents polluting the logs.
Increased the timeout for collecting MDM related info from the system from 10 seconds to 30 seconds when performing compliance check, in case a system has very low hardware specs and is extremely slow.