The Basic strategy is similar to the 5.2.x Core Prevention policy. The Basic strategy provides protection for the operating system and a set of common applications. This strategy confines the remaining applications (both services and interactive programs) within the Basic sandbox. The Basic sandbox is set up to be highly compatible for programs running within it.
The following Protection Categories are enabled by default in the Basic sandbox:
Obey Global Resource List Restrictions
Software Installation Restrictions
Block modifications to executable files
Block modifications to startup folders
Block registration of COM and ActiveX controls
The significant difference between the 5.2.x Core Prevention policy and the Basic strategy is that the Core policy allows all remaining applications to install software, while the Basic strategy does not. In the Basic strategy, you must explicitly identify your Trusted Updaters.
Imported Document ID: HOWTO95350
Subscribing will provide email updates when this Article is updated. Login is required.