What is your security setup these days?

Hi mvdu,

Alot of the FP's, especially Heuristics FP's, have been fixed code-based in v3.9 currently in RC.

So theoretically with this version, false positives should be alot more less when compared to v3.8.

Cheers,
Josh

 

I don't think Sandboxie can be used on Vista 64-bit. I wouldn't really need it if I'm on 64-bit and use NoScript?

 

Adopted setup for wife's laptop (XP Home SP3)

Basics:
- Router HW Firewall (NAT/SPI) with highest wireless protection
- Offline external harddisk with paragon for image and syncback for data backup


Real time
- Rising Free FW (just wait and see whether downloaded version from chinese is really free), with default intrusion detection, URL filter set off
- DefenseWall
- Browser Defender
- Avast, standard shield set to write only
- Keyscrambler free fo rIE8
- Rising PC Doctor
- Script Defender

On demand
- OSAM startup manager
- Panda Anti Rootkit

Bottem line
Staying out of risky places
- Google search + Browser Defender for IE

Intrusion Prevention
- Risings FW (iDS moduel)
- DefenseWall

Dealing with known malware
- Avast, when writing to hard disk

Post infection
- Avast VRDB (file infectors)
- Rising PC Doctor (Trojans)

Testing of DW 2.54 RC1 was so impressive, I changed ThreatFire for old fashioned AV and browser defender for AVG Linkscanner (since it has also exploit protection)

 

Stripped down a bit my setup:

Hardware firewall
LUA + default-deny SRP + KAFU + System-wide DEP
Sandboxie
Prevx Edge Free
SRWare Iron as default browser

Avira + Dr. Web CureIt on demand

Imaging with Paragon Drive Backup (just in case)

and my old PC is flying...

 

Realtime: CIS 3.5 (without the AV) + Avira AntiVir Free 9.0
On-demand: GeSWall 2.8 + Malwarebytes' Anti-Malware 1.36 + SUPERAntiSpyware 4.26
Firefox with NoScript + AdBlock Plus

 

Removed Rising FW.

Now trying Outpost FW Free 6.5

 

yea me too.I also have a few months from the paid version of outpost but for now i'll see if the free version come close.So far i like it.

 

Setup desktop same as laptop, see https://www.wilderssecurity.com/showpost.php?p=1457147&postcount=4672, this only XP Pro version (so some SRP rules implied)

Only replaced DefenseWall for GeSWall Pro, since I have a free lifetime lisence and like the concept of policy sandboxes

GeSWall:
- program startup directories, e-mail directory + WAB, task directory and network access set to confidential
- hardened the IE settings of IE8 (changing allow to read only or redirect)
- Chromium is only allowed to access D:\Downloads and not registry
- disabled all notifications
- set protection to high
- set office applications to do not isolate (untrusted documents are still started isolated)
- added 'Allow"access for \Device\NamedPipe\printer so PDFCreator is able to make PDF's of untrusted documents

 

Realtime;
Sophos Antivirus and Sophos Client Firewall
Firefox with Adblock and no script
McAfee siteAdvisor
Spywareblaster
On demand;
Super antispyware
Malwarebytes anti-malware
Sandboxie

 

Nice setup.

Oh I have a Dr.Web Antivirus v5 license to burn and a Panda Internet Security. PM me if you want. It's on a first comes first served basis.

I got these licenses free from an offer a while back, and I'll probably never use them. But I don't feel like letting them rot

Anyway my setup is in my signature + SAS or MBAM on demand

 

OS
Archlinux

Firewall
NAT/SPI Router

Antivirus
None

Web Browser
Firefox 3.0.10 (WOT and Adblock)

so. my system is very fast. I am very happy.

 

2nd pc

AppGuard - Panda Cloud Antivirus Beta - F-Secure Eploit Shield Beta - Vista Firewall

 

Almost no user interaction required.

Real-time
Online Armor free (RunSafer for browsers, IM client, PDF viewer, Microsoft Office)
Prevx Edge trial

On-demand
Returnil Personal Edition

Backup
Paragon Drive Backup Express
Syncback free

Browsing
Firefox with WOT, AdblockPlus
SRWare Iron

 

Given away the Dr Web license...Still the Panda Internet Security license remains

 

This is precisely what RunSafer is for

Sorry for offtopicness, just pleased to see someone using it as designed

 

Someone,

You can deselect the "warn me when an unknown program starts" option and able the program guard. It will warn on intrusions only, not startup of new programs. You can review them later on (they are shown in grey in autostarts and programs).

Regards

Kees

 

Windows Vista32 SP1 Ultimate:
Windows Firewall
UAC on
Windows Defender off
Avira Premium
Shadow Defender always on
ShadowProtect Desktop
Main browser: Google Chrome

Windows XP Home SP3:
Windows Firewall
AntiExecutable V2
ShadowUser Pro always on
Acronis TI 9
Main browser: IE 8

 

can i have it please

 

Sure can. Well that's it for my weekend giveaway spree

 

ii need suggestion to make a solid setup with Dr Web Antivirus.
I Also have A zone alarm pro licence from the last year giveaway frome zone alarm. anything else missing? or should i just have a free firewall?

 

Good to know. By the way, couldn't RunSafer be set to reduce the rights of certain programs by default? Unless this is only available in the shareware version?

But I still get pop ups when a new installer is launched. So I just disabled it.

 

If you disable program guard in Online Armor does run safer still work?? Every time i tried i wouldnt get that colored border so i just assumed it wasnt working.

 

For layered protection you may choose a Sandbox (Free Sandboxie/Free Geswall) and/or a HIPS(Prevx Edge/Comodo D+) to run alongside DW.

I have DW, Prevx Edge and Sandboxie on one Vista laptop here; running as light as a feather.

I have not used ZA for years. However, if it runs well on your setup then use the license.

If it gives difficulties then there are a lot of free firewalls about or you might take a look at Stem's excellent guides here in the firewall section on using the XP/Vista Windows firewall.

 

KIS8 with Agnis lists
Superantispyware 4.26.1002
Comodo Memory Firewall
Testing Appguard
Malwarebytes on demand
Hosts file (MVPS & hpHosts)
Windows security tweaks.

Any suggestions to make more secure my pc?

 

Resident:
Comodo Internet Security 498 RC2
Avira free
ThreatFire
Secunia PSI
Prevx 3.0 trial
Geswall - new addition
SBIE
Returnil

Browesers:
FF w NoScript, AdBlock, Secure Login
SRWare Iron

On demand:
MBAM
SAS
A2
RootRepeal, Rootkit Hook Analyzer, GMER

Others:
CC Cleaner
Acronis True Image

Some thoughts: I seriously consider using GesWall free instead of SBIE, just learning to configure it with all my apps properly, mostly P2P, browsers, etc.
Wonder if I can use the same GesWall rules for Chrome and Iron... will try to figure it out

Regards