What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,367
    Thanks, I like to have a layered defense w/o the hassle of daily updating.

    As far as a Policy Based HIPS goes there currently is only DefenseWall and GeSwall, neither which is 64-bit at the moment.
    Perhaps a 64-bit Classical HIPS would work for you.

    Not a bad choice, SpyShelter Firewall is pretty strong but falls short on some personal testing done by myself, (Xp Home SP3 32-bit) your mileage may vary.

    Thanks for the tips Kees, but I'm having no performance issues or any incompatibility issues running DW and AG together.
    Perhaps your suggestion will be of use to other members here. :)
     
  2. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,870
    Location:
    Canada
    i am very happy with Online Armor Premium:thumb: :thumb:
    and i bet if i add AppGuard for sure it will be more security added to my system like double layer:thumb:
     
  3. x942

    x942 Guest

    Added:

    Virtual Machine running Debian LXDE for web browsing and mail. Everything is isolated and behind a virtual NAT. The only thing shared is the clipboard (one-way to the guest). Nothing leaves the VM.
     
  4. 1chaoticadult

    1chaoticadult Registered Member

    Joined:
    Oct 28, 2010
    Posts:
    2,247
    Location:
    Chaotic Land
    I'll remind you.
     
  5. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,870
    Location:
    Canada
    is oa premium competible with kaspersky antivirus 2012?
     
  6. Sherlock_Holmes

    Sherlock_Holmes Registered Member

    Joined:
    Mar 21, 2010
    Posts:
    1,315
    Location:
    Mumbai
    Must remain vigilant :eek: :eek: :eek:
     
  7. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Appguard,MSE and MBAM real time and still very fast.:thumb:
     
  8. Sevens

    Sevens Guest

    DefenseWall Personal Firewall 3.18 beta
    Malwarebytes Anti-Malware (on demand)
    Blue Coat K9 Web Protection
     
  9. syncmaster913n

    syncmaster913n Registered Member

    Joined:
    Mar 24, 2012
    Posts:
    153
    What about COMODO Defense+ ?
     
  10. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,367
    What about it?
    Comodo Defense+ is more of a classical HIPS, is it not?
     
  11. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Bufferzone has the option to sandbox all new executables on your harddisk + other drives (contain all, contain signed, contain none).

    I believe the sandbox of C+ (indeed a classical HIPS) can be configured to sandbox all new unsigned programs, so that is some sort of (policy) containment.

    But I agree that GeSWall and DefenseWall resemble the definitions of policy based HIPS more closely. AppGuard also qualifies as a policy based HIPS with the HIPS being limited to file, registry, memory protection and execution protection (although quiet effective with this first stage attack vector focus)
     
  12. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    2,068
    Location:
    Europe
    Defense+ is a classical HIPS if you disable the sandbox and set it in Paranoid Mode.
     
  13. Newby

    Newby Registered Member

    Joined:
    Jan 12, 2007
    Posts:
    153
    In blue the changes. Don't want to offend Kees1958, but SAFE-LUA was my signature :D
     
  14. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,481
    Running Sandboxie and Privatefirewall. Downloads are my main vulnerability, so I have the download folder sandboxed, and an Emsisoft Emergency Kit shortcut for scanning just the download folder before taking anything out.
     
  15. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    8,938
    Location:
    North Carolina
    back to Coranti. Big C you are right. Alot of protection that is not noticable.:thumb:
     
  16. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,367
    DefenseWall 3.18
    Shadow Defender 1.1.0.325
    [SIZE="+"]Macrium Reflect ~ System Explorer ~ SeconfigXp ~ AdMuncher ~ OpenDNS ~ Opera[/SIZE]
     
  17. JohnMult

    JohnMult Registered Member

    Joined:
    Mar 26, 2012
    Posts:
    86
    Location:
    Greece
    Re: What is your security setup these days? (updated)

    Comodo Internet Security Premium (Antivirus, Defence+, Firewall)
    DropMyRights (All my browsers) or LUA
    EMET Microsoft (All my browsers, java, Office Programs, Media Player, Foxit Reader)
    Norton DNS (Security Policy)
    AVG LinkScanner 2012
    Spyware Blaster
    Google Chrome (Adblock Plus with Easy List) casual browsing
    Firefox (NoScript and Referer disabled) searching unknown Internet
    Disabled autorun
    All latest updates
     
  18. x942

    x942 Guest

    Host:
    Ubuntu XFCE 11.10
    UFW (Firewall)
    chkrootkit
    rkhunter
    bastille (hardening script)
    PSAD (port-scan attack detector)
    TripWire IDS

    Apparmor profiles for:

    Chrome Dev. + Chrome Sandbox + NaCl
    Transmission
    VLC
    Pidgin
    Virtual Box
    and all the built in profiles.


    Virtual Machine (All Web Browsing):
    Debian Linux LXDE
    UFW - Firewall
    SeLinux installed and enabled
    chkrootkit
    rkhunter
    Chrome Dev.
    No sharing of any kind to host.
    Networking --> NAT


    Web Browsing:
    Chrome Dev.
    Ad block plus
    Ghostery
    Java-script blocked - enabled on persite basis.
    click-to-play
    Always incognito (--incognito)
    Seccomp Sandbox (--enable-seccomp-sanbox)


    Encryption:
    Host - LUKS/LVM
    External HDDs - TrueCrypt
    IronKey - Hardware encryption + TrueCrypt.
    KeepassX - passwords (stored on IronKey).

    Router:
    DD-WRT
    WPA2 Enterprise (AES) - 64 Char. ASCII Password.
    Untangle FireWall - Checks incoming packets for malware + IDS (Snort) + Auto-blocking flagged IPS + Blocking all China and Russia based IPS + Malware-blocking Hosts file + blocking PDFs.

    Search:
    DuckDuckGo
     
  19. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,133
    Network
    DDWRT Router running recommended build - Remote Access disabled
    DDWRT firewall turned on
    OpenDNS with DNSCrypt

    Realtime Protection
    No AV running.
    All ports closed - no need for a firewall.

    System Hardening -- Ubuntu 12.04
    As few programs installed as possible.
    BIOS Password
    Apparmor Enabled - Profiles for all programs



    Browser -- Chrome Dev
    Seccomp Sandbox + Default Sandbox + AppArmor
    Block 3rd Party Cookies
    Built in malware protection
    Default PDF reader -- no adobe necessary
    Adblock Plus with DNT
    HTTPS Everywhere

    A "private" profile with more aggressive privacy/ data settings.

    Chrome Privacy Profile
    No cookies/ no data sent to Google
    Block form validation
    ScriptNo with strict settings
    Working on getting it to run with a RAMDisk.
     
  20. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,133
    I need to look into Bastille.
     
  21. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,870
    Location:
    Canada
    still the same here my faborite firewall:thumb:
    Emsisoft Firewall 5.5
     
  22. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,133
    How long has this one lasted j?
     
  23. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,870
    Location:
    Canada
    1 week already and it is here to stay i dumped any program for this one it is for me complete
     
  24. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,133
    1 week might be a record. Although you were on Malwarebytes for a while.
     
  25. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,870
    Location:
    Canada
    Mbam Pro is a top notch program i really recomend it:thumb: i have it in my own computer:thumb: