What is your security setup these days?

[Nevis]

Quote:

Originally Posted by Konata Izumi

Windows 7 Professional 32-Bit

OS Internals (no extra overhead or cost)

• Safe Admin Tweaks [MANUAL] (UAC Hardened, Autorun and Autoplay disabled.)
• Software Restriction Policy (Disallowed: Set as default)
• Windows Firewall setup 2-way [IN/OUTBOUND: Block] (Improved via Baseline Security Templates)

Realtime protection

• Geswall FREE
  
• Sandboxie Free (for running/testing unsecure software)

Tool:

1. ProcessExplorer
2. Microsoft Security Compliance Manager 1.0 (for downloading Baseline Security Templates)
3. MS LocalGPO (for applying Baseline Security templates) :
   Baseline Security Template: (Merged IE8SSLFUser -> IE8SSLFComputer -> Win7SSLFUser -> Win7SSLFDesktop : Allow Legacy Apps to run, Allow Administrators Group to debug programs to fix compatibility with EMET)
4. EMET 2 (Opt-out, Opt-in, Opt-in)
5. CCleaner

Setup:

1. Google Chrome [Set as Default Browser but NOT ALLOWED to run] ( --safe-plugins | Jailed by GesWall| Low Integrity | click-to-play plugin | SRP Restricted | EMET )
   
2. Mozilla Firefox 4.0 Beta 12 [For regular and banking] (Not Isolated by GesWall | EMET | tweaked settings for privacy | Sandboxied )
   
   I have 2 Firefox shortcut to run Firefox in 2 different Sandbox (one for regular browsing and another one for banking)
   
   
   • Regular Sandbox (NoScript/Adblock Plus/Adobe Flash installed here together with my games and messenger)
   • Banking Sandbox (Only Firefox allowed to run and access Internet / No Add-ons installed )
     
     Since I'm using Sandboxie FREE I cant use two sandboxes at a time. I had to terminate all programs from running from Regular Sandbox in able to use Banking Sandbox vice versa.
   
   
3. All Download directories is in separate partition with low rights and have a deny ACL to prevent low rights processes executing in low rights container and is untrusted by Geswall
   (downloaded low rights processes can't execute in medium / high rights directories)
   
4. IE8 Jailed by GesWall.
5. ClearCloud DNS
   

Maybe I can add Prevx SafeOnline and allow screen readers on my Regular Sandbox so that Prevx SOL can protect my browser during regular browsing.
Prevx Malware detection is a plus.

or maybe add Returnil System Safe FREE to make me a bit more paranoid.

A screenshot of my processes attached:

good setup

could u explain what u mean by " Chrome not allowed to run "

[trjam]

I really like this setup.

[Konata Izumi]

Quote:

Originally Posted by Nevis

good setup

could u explain what u mean by " Chrome not allowed to run "

I'm not really sure... but I installed Chrome so that Firefox / Internet Explorer won't be my default browser that will open .HTML shortcuts
(if they did they wont be sandboxed/geswalled)


because I made Geswall NOT to isolate Firefox and IE to allow them to run in Sandboxie

and as you know I'm using Sandboxie FREE which cannot FORCE browsers to RUN in Sandboxie too.


I launch Firefox sandboxed with these 2 shortcuts

Regular Session:

Code:

"C:\Program Files\Sandboxie\Start.exe" /box:Gaming  C:\Program Files\Mozilla Firefox 4.0 Beta 12\firefox.exe

Banking Session:

Code:

"C:\Program Files\Sandboxie\Start.exe" /box:Banking  C:\Program Files\Mozilla Firefox 4.0 Beta 12\firefox.exe

(Firefox installed in the OS is untouched) ^^

[ExtremeGamerBR]

• TP-Link TL-WR941ND (SPI Firewall)
  • Windows 7 SP1 Home Premium 64 Bits:
    • Windows Firewall: Disabled
    • Windows Defender: Disabled
    • Admin Account
    • Data Execution Prevention
    • User Account Control:
      • Default Level
    • Structured Exception Handling Overwrite Protection
    • Address Space Layout Randomization
    • Enhanced Mitigation Experience Toolkit 2.0
      • All Internet Softwares
    • USB and DVD Drives Autorun: Disabled
    • MVPS Hosts (Block Banners)
    • Norton DNS (Block Malicious Websites)
    • Windows Internet Explorer 8:
      • Drive-by Protection via 1806 Trick
      • InPrivate Filtering
      • Protect Mode
      • Sandboxed by Avast!
      • Avast! Webrep

• Resident:
  • Avast! Internet Security 6.0.1000:
    • All Shields Enabled
    • Password Protect

• Backup:
  • Marium Reflect Free:
    • Only System Image
  • Microsoft SyncToy:
    • Daily Synchronization

[LoneWolf]

RealTime
Online Armor 4.5.1.431
Sandboxie 3.53.05
Zemana 1.9.2.243

Light Virtualization
Shadow Defender 1.1.0.325

BackUp
Macrium Reflect Full Edition 4.2/3141

OpenDNS / Opera 11.01

[trjam]

another combo

[JoeBlack40]

My signature.Light and super strong.

[Kernelwars]

brought back sandboxie..

[Nevis]

Quote:

Originally Posted by Konata Izumi

I'm not really sure... but I installed Chrome so that Firefox / Internet Explorer won't be my default browser that will open .HTML shortcuts
(if they did they wont be sandboxed/geswalled)


because I made Geswall NOT to isolate Firefox and IE to allow them to run in Sandboxie

and as you know I'm using Sandboxie FREE which cannot FORCE browsers to RUN in Sandboxie too.


I launch Firefox sandboxed with these 2 shortcuts

Regular Session:

Code:

"C:\Program Files\Sandboxie\Start.exe" /box:Gaming  C:\Program Files\Mozilla Firefox 4.0 Beta 12\firefox.exe

Banking Session:

Code:

"C:\Program Files\Sandboxie\Start.exe" /box:Banking  C:\Program Files\Mozilla Firefox 4.0 Beta 12\firefox.exe

(Firefox installed in the OS is untouched) ^^

thx for explanation

[Konata Izumi]

I'm using the setup linked in my SIGNATURE below for Windows security.

I have Linux Mint (dualboot) on the same PC. Currently in stock settings. Fully Updated.

any recommended software?

[lws]

Uninstalled Comodo firewall. Installed Outpost Security Suite free to see if it gets along with Geswall mainly out of curiosity although Comodo firewall was compatible with Geswall.

[Kernelwars]

trying eset nod32

[jmonge]

appguard and hitman pro here and very happy

[Kernelwars]

do the happy dance J eh?

[jmonge]

yeap very light and secure

[Konata Izumi]

Re-did my nice Windows setup for less maintenance. I'd be using Linux from now on. Windows will be my family's OS.

Windows 7 Pro for Family Setup:

EMET
Trusteer Rapport
MBRGuard
Returnil System Safe FREE 2011
Sandboxie FREE


Linux Mint 10 "Julia" setup:

Firewall enabled and Fully Updated.

[zerotox]

For a week or so I'm back to my mostly used and very light and glitch-free set-up. It's in my signature.

Windows 7 Home Premium SP1 x32
Avast! Free Antivirus 6.0.1000

This is all I have...

[ShaneR34]

Just switched from MSE and Windows Firewall to AIS 6.

I had no problems with my previous setup, I just felt like something new to "play" with.

This is on a Windows 7 home premium x64 system with the OS on pretty much all defaults.

EDIT: Forgot, I also have Hitman Pro (set to perform quick scan on boot) and MBAM installed. I do an on demand scan about once per month or two.

[trjam]

I really think Safezone with the safe desktop has got to be one of the coolest new ideas this year.

[JuanP1000]

Trying something lighter---see signature

[Nevis]

Quote:

Originally Posted by JuanP1000

Trying something lighter---see signature

doesnt look lighter with so many real time ON

[ivan2k2]

Windows 7
DEP, SEHOP, UAC, EMET

Windows Firewall

realtime:
SpyShelter free
GeSWall free

on demand:
Hitman Pro
MBAM

some other security related tools and tweaks...

[ShaneR34]

Quote:

Originally Posted by trjam

I really think Safezone with the safe desktop has got to be one of the coolest new ideas this year.

I must admit that it's kinda neat. I like the ease of the sandbox as well. Whether I make use of them or not is another question...but, nice to have available

[Boyfriend]

OS:
-Windows 7 Ultimate SP1 x86 (Fresh Installation)

Real-Time Protection:
-Kaspersky Internet Security 2011 CF2 (11.0.2.556 b.a.c.d) configured and password protected
-Sandboxie Free (3.52) configuration locked, dropped rights
-Deep Freeze Standard (7.20.020.3398 )
-WinPatrol 2011 Plus (20.0.2011.0) will be added soon

On-Demand Protection:
Suggestions?

Complementary Protection:
-Strict Group Policies
-SRP/UAC/SEHOP/DEP/EMET
-Unsigned Drivers = Block
-Autorun = Disabled
-Unnecessary user tracking = Off (configured GPO & Event Viewer, Opt-out from CEIP)

Browsing Configurations:
-Google Chrome (Adblock Plus, Ghostery, Disconnect, Chrome Flag, SaferChrome + few others productivity add-ons) (protected via Sandboxie)
-IE, VLC, MPC-HC protected via Sandboxie (shortcut icon)
-Norton DNS

Backup:
-Daily synchronization of important data
-Weekly backup of system drive via Bootable USB (Active@ Boot Disk Creator 5.1.2)

Comments/Suggestions will be welcomed as always