Allow custom blocking of "SystemSpace" #31
Description
Hi.
I read all documentation so if I am mistaken somewhere, I apologise.
As far as I can see, all things within "SystemSpace" from below can be ran by default without whitelist.
‘Windows’
‘Program Files’
‘Program Files (x86)’ - only on Windows 64-bit
‘ProgramData\Microsoft\Windows Defender’.
I find this rather problematic. Is it not possible to remove this? This can be problematic in some instances. Let me give you an example.
As you might have heard, lately there are a lot of steam games with malware. The most common practice is, the game is uploaded to steam as a legit game, and later the game is updated with malware. As users often install steam games in default location so under Program Files (x86), these malware have freedom to just run from that folder.
If it's not possible to remove all together the ability to remove these "SystemSpace" folders because they might break windows, could you please at least make it so you can blacklist certain folders within "SystemSpace" and then whatever executable you want to run from within that, you can whitelist individual files.
So to give an example. I'd like to blacklist the whole steam folder C:\Program Files (x86)\Steam, and then manually choose which files are allowed to be ran by it. This is already the case when I install games in UserSpace locations - games don't run, updates fail, unless I manually whitelist them, which is what I want for SystemSpace.
Thanks.