Security approaches that "just work"

[Melf]

Lately I've been trying a lot of different programs, tweaking this and that, trying to obtain that holy grail combination of protection and convenience. But I'm getting a little tired of that at the moment, so for a refreshing change: What security software do you use that "just worked" out of the box? No adding exclusions for commonly used applications, no cutting yourself off from the internet, etc, just install it and life proceeds grandly.

Examples for me that "just work":
DefenseWall (alas no 64-bit support)
Probably a lot of AVs since they cater to the mass market (I haven't tried many recently - recommend?)
Probably a lot of behaviour blockers (I haven't tried many recently - recommend?)
Any other recommendations?

Examples for me that need "too much" configuration for basic users:
Sandboxie, Appguard, Applocker (give great protection once configured, of course)

[Barthez]

People opinions are by their nature subjective (sometimes strongly), so I foresee a AvsB type of thread in here. But let's hope I'm wrong.

Consider this post a reminder

[fax]

Webroot Security Anywhere Essential 8. It just works and no configuration is needed.

[justenough]

As Barthez says, this is just my subjective opinion, but I'm not much more than a basic user and Sandboxie worked at the beginning with standard settings. Even now after a few years there aren't that many modifications to Sandboxie on my computer, so after I understood what a sandbox was for it's been easy to use.

[Dark Shadow]

Faronic Anti-Excutable it just works out of the box.It build it's own white list with whats on your system and your done.Quiet as a mouse until somethimg tries to execute,then it's a simple allow or deny.

[pirej]

I know that some of the people had issues with it.. BUT .. im using Comodo Internet Security for the last 1.5-2 years without any tweaking or problems, and the last 5-6 months with some "tweaks".
Before CISecurity.. i was using Comodo Firewall together with Avira Personal.. again without any tweaking or problems for a couple of years

[blacknight]

Never problem with CIS. Very good also OA.

[m00nbl00d]

I imagine that depending on the user and on the system, everything needs a little bit of tweaking.

But, if you want something without giving you too many headaches, then go with the following:

1. Standard user account - A true standard user account. This will keep most malware off limits from important system areas. Not perfect, but already offers a great deal of security.

2. Google Chrome - I chose this web browser for two reasons. It has a strong sandbox, not to mention Google is making it stronger. It's already stronger in Chromium, and most likely in Chrome Canary/Developer versions; maybe even in Beta version. It comes with Adobe Flash Player built-in, and that means it will keep it up-to-date.

The most recent Adobe Flash Player does have automatic updates, and hopefully it does work. And, it won't be a fiasco such as Java's automatic updates.

3. Block ads

4. Microsoft EMET - Add the most targeted application's to Microsoft EMET, such as the web browsers, pdf reader, other Internet facing applications.

Google Chrome does come with a built-in PDF Reader, so you may not need a third-party one, if Google's one satisfies your needs. But, I did get some warnings from it saying it couldn't open some parts of PDF files, and if I wanted to open them in Adobe Reader. From what I could see, it was all there... maybe my eyes tricked me. lol

5. No Java - If there's no need for Java, then don't have it. If you do need Java for some website, then you could create a specific Chrome profile for it, for instance. It wouldn't take much of your time, really. I've done that for my relatives, who do need it for IRS tasks... This profile can only access the IRS website.

Once we do these steps... no headaches, unless some applications breaks due to some of the EMET mitigations, which would require trial and error.

But, you truly can't install something and practically forget it. Everything needs a bit of tweaking... I think. lol

[Osaban]

Quote:

Originally Posted by Melf

...: What security software do you use that "just worked" out of the box? No adding exclusions for commonly used applications, no cutting yourself off from the internet, etc, just install it and life proceeds grandly.

No single security layer will give you maximum security for every contingency, but if I were to pick one it would certainly be Shadow Defender which also has a short learning curve.

Pros: Effective against any disruptive malware, light on resources, easy to operate, highly compatible with most systems and programs.
Cons: Doesn't protect against data theft, anything new acquired while in virtual mode must be 'committed' if one wants to retain it, its developer vanished therefore no support.

Used with a good outbound firewall, SD offers great security against just about anything.

[Amit]

for me 'layered security approach' just works' ......but I were to pick one software that works....hmm....I would 2....wsa and eam definitely works....

[elstupido]

SUA
Chrome
Sandboxie
MSE 4

[kjdemuth]

I'm kind of biased but....
Sandboxie
Comodo firewall
Avast
geswall
WSA (any flavor)
Defensewall

[jmonge]

for me its Online armor and anti-executable

[blasev]

It depends on what you mean by "just work"


Emsisoft Anti Malware is one of them for me,

my own subjective reasons :

• easy to use and user friendly

• one of the best detection in the market

• It has behavior blocker has community rating so people can make decision on that. BB can be set to "auto" for a very low pop up compared to HIPS.

• surf protection is working good, can be customized easily

• fast scanning with two anti malware engine

but... it will all need a few "work" (a very few)

so if you really want a fully "quite" AV, I'll go with MSE or PCAV.

-----------


the "perfect" choice is the one that make you happy , although it's not the best choice.

[Noob]

Quote:

Originally Posted by jmonge

for me its Online armorand anti-executable

I second Online Armor, as long as you leave it at default you will not get much pop ups and have a tight control over what can be done or not when an unknown program runs.
And as others have mentioned, some Windows tweaks.

About the AV, well it depends if you can like em or not.

[Hungry Man]

No single security solution at this time really provides hands-free security that's lasting.

[Melf]

Lots of opinions to compare, thanks guys.

Quote:

Originally Posted by m00nbl00d

Standard user account, Google Chrome, Block ads,Microsoft EMET,No Java

Already do these things , except for EMET. I will have to add that to my list to try, it will be good to see how sloppily coded some of the programs I use are (i.e. whether EMET will break them ).

I think I'll give Faronics AE and OA a try as well (tried OA a while ago but mainly for its FW, was not interested so much in the HIPS at that time).

Will try and steer clear of the real-time AV options for now... too much random performance hit for me at inopportune times (e.g. during gaming). On-demand upload to virus total is always good though... why use one scanner when you can use them all

Interesting several people list SBIE as "just works". I guess it's all about the feel of it, I just didn't like having to scrutinize what was in my sandbox each time, worrying that I might delete some work I wanted by accident.

Also at the time I tried it I was turned off by key log leak test performance, but I have since learned that absolutely nothing "just works" against these other than a) within-browser low-integrity isolation e.g. Chrome, b) a firewall to stop info getting out, or c) not running the thing in the first place. Hook-based solutions (e.g. SpyShelter or any HIPS) have too many false positives to be of much use for 'uneducated' users, and rights-based solutions (e.g. SBIE) require too much per-application fussing around, imo.

[Kees1958]

Agree with M00nbl00d a standard user takes most of the problems, add a freeware AV to it and you are done.

[Keyboard_Commando]

Like several have already said, a Limited Rights user account is the way to go.

Something I have really been impressed with are the DNS protection offerings. And Norton ConnectSafe is my fave. You can configure the policy of protection A) Security: against malware, phishing and scams sites B) Security + Porn sites, includes sites that contain sexually explicit material. C) Security + Porn sites + Family protection, (for families with children) includes sites that feature: mature content, abortion, alcohol, crime, cult, drugs, gambling, hate, sexual orientation, suicide, tobacco or violence.

Norton ConnectSafe - How To

I have tried out these different settings myself and I am very impressed. Free no hassle protection. OpenDNS is another good one as well.

And I agree you can't really tell a potential Sandboxie user they can just use it 'out of the box', so to speak, without any thought about how to implement its usage into their daily computer habits. Sandboxie does require a fairly decent level of computer dexterity to fully understand its excellent protection. Most of the members here have that above average computer comprehension. That's why Sandboxie is soo highly thought of by some members here and it gets mentioned when topics like this one are all about wanting 'simple security'. The average user just can't be bothered with the steep learning curve of Sandboxie, IMO. Can't really blame them as lifes too short

[Dark Shadow]

Quote:

Originally Posted by Kees1958

Agree with M00nbl00d a standard user takes most of the problems, add a freeware AV to it and you are done.

Thats how I set up my kids computer with a standard Account,with MSE and Malwarebytes pro and it works just peechie.

[Solarlynx]

Really all security applications must "just work" if "just work" means that a security product does not need solution of the user what to do in a decisive moment - you know that various pop-ups urgently asking what to do then:

1. Comodo Internet Security, Comodo Firewall, Comodo AV - it definitely is not so user friendly - you sometimes must be an IT expert to understand what the hell they are asking you.

2. Avast, Avira, AVG, Eset, DefenseWall - they trouble you insignificantly.

3. Standard User Account, Microsoft Security Essentials, Sandboxie, Comodo Time Machine - definitely "just work" - pop-ups are extremely rare and very simple to understand.

4. all DNS, EMET - "just works" without any pop-ups