What do u think about my new security setup?

Discussion in 'other anti-malware software' started by tisungho, Mar 1, 2008.

Thread Status:
Not open for further replies.
  1. tisungho

    tisungho Registered Member

    Hi, I saw so many posts about Sandboxie, GesWall, DefenseWall,... They are kinda new to me. I've got confused a lot about them. It is my new testing security setup:

    Layer 1: Comodo 3 (with D+): It is for protecting network hacking (like banking) and early or zero-day attack/malware.

    Layer 2: GesWall Free: If somehow Layer 1 gets failed and malware gets into my PC, GesWall will isolate and monitor them.

    Layer 3: Avast Free: If there is something wrong with Layer 2, Avast will take its action and take care of those malware.

    What do you think about it? Is it good enough?
    I'm thinking about installing Returnil but I don't know if it's worth to install because it's somewhat similar to sandbox which GesWall is currently handling.

    Thank you!
  2. Hermescomputers

    Hermescomputers Registered Member

    First when you think of layers you should think of a group of tools that target specific attack vectors.. Not just a pile of software.

    The only thing, I would add is web browser specific:

    Web Browsing Layer
    Firefox + No Script
    Linkscanner Pro
    McAfee SiteAdvisor

    This is the only attack vector not covered, in that web browsers are now the entry point for many hostile injections...
    I give more explanation on this issues in this post: http://www.wilderssecurity.com/showpost.php?p=1193772&postcount=2

    You could benefit with a sandbox if you are high risk... ie porn surfing or if you like to jump start programs from the internet... In that case do it in sandboxie... but for simply surfing the web, the above information will prove secured enough...
    Last edited: Mar 1, 2008
  3. Dark Shadow

    Dark Shadow Registered Member

    I think you have some good combos as long as the play nice together you should be fine.
  4. tisungho

    tisungho Registered Member

    I'm currently using FF + No Script. I'm not an aggressive surfer though.
    One thing I found in a sandbox program is that it requires too much user actions which causes boring to newbies like me.
  5. Hermescomputers

    Hermescomputers Registered Member

    Then you don't need it. The real risk is already covered by NoScript, as long as you pay attention to which script you allow or not... Just be careful.

    You can use Firebug to learn more about the scripts on those sites if unsure... (It Needs a solid understanding of Script languages to be effective though).
  6. aigle

    aigle Registered Member

    GesWall is browser specific and will cover all of it. It,s a Sandbox.
  7. Kees1958

    Kees1958 Registered Member

    Brilliant. Could consider GeSWall Pro or DefenseWall paid when you do a lot P2P downloading (at the moment DE is a little better than GW).

    Regards Kees
  8. tisungho

    tisungho Registered Member

    Thanks! I'll consider it. What about Returnil? Should I use it together with GesWall?
  9. Long View

    Long View Registered Member

    Better than Sandboxie I would have said.
  10. Long View

    Long View Registered Member

    Try Returnil and Geswall without Avast for a while and see what you think. If you have an old machine you may see a small speed improvement.

    I suppose I should qualify this by saying that as I have never seen a virus nor any spyware I don't have much time for security. If you, for some reason, find that you get infected easily then put on a hair shirt, two or three layers of other clothing and a fur coat like many others do even in summer.:cautious:
  11. tisungho

    tisungho Registered Member

    Many layers of clothes but without pants :D I'm just kidding!

    Yes, I feel that Avast is a little bit redundant in case of having Returnil. But it is "just in case"... Returnil is solid but it's requires to restart Windows everytime I turn off its protection. That's what I don't like. Is it necessary if I leave it ON all the time or I just turn it on for some special cases?
  12. Long View

    Long View Registered Member

    I use DeepFreeze 6, Returnil and Shadow defender on different machines and have them turned on pretty much all the time, turning off to update a program.
    I have had to modify my systems so that the outlook pst file is not on C: and also I have moved the firefox profile from C:

    anyway with no real security programs running I find my systems quicker and I have never been infected.
Thread Status:
Not open for further replies.