What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. LoneWolf
    Offline

    LoneWolf Registered Member

    Thanks, I like to have a layered defense w/o the hassle of daily updating.

    As far as a Policy Based HIPS goes there currently is only DefenseWall and GeSwall, neither which is 64-bit at the moment.
    Perhaps a 64-bit Classical HIPS would work for you.

    Not a bad choice, SpyShelter Firewall is pretty strong but falls short on some personal testing done by myself, (Xp Home SP3 32-bit) your mileage may vary.

    Thanks for the tips Kees, but I'm having no performance issues or any incompatibility issues running DW and AG together.
    Perhaps your suggestion will be of use to other members here. :)
  2. jmonge
    Offline

    jmonge Registered Member

    i am very happy with Online Armor Premium:thumb: :thumb:
    and i bet if i add AppGuard for sure it will be more security added to my system like double layer:thumb:
  3. x942
    Offline

    x942 Registered Member

    Added:

    Virtual Machine running Debian LXDE for web browsing and mail. Everything is isolated and behind a virtual NAT. The only thing shared is the clipboard (one-way to the guest). Nothing leaves the VM.
  4. 1chaoticadult
    Offline

    1chaoticadult Registered Member

    I'll remind you.
  5. jmonge
    Offline

    jmonge Registered Member

    is oa premium competible with kaspersky antivirus 2012?
  6. Sherlock_Holmes
    Offline

    Sherlock_Holmes Registered Member

    Must remain vigilant :eek: :eek: :eek:
  7. Dark Shadow
    Offline

    Dark Shadow Registered Member

    Appguard,MSE and MBAM real time and still very fast.:thumb:
  8. Sevens
    Offline

    Sevens Guest

    DefenseWall Personal Firewall 3.18 beta
    Malwarebytes Anti-Malware (on demand)
    Blue Coat K9 Web Protection
  9. syncmaster913n
    Offline

    syncmaster913n Registered Member

    What about COMODO Defense+ ?
  10. LoneWolf
    Offline

    LoneWolf Registered Member

    What about it?
    Comodo Defense+ is more of a classical HIPS, is it not?
  11. Kees1958
    Offline

    Kees1958 Registered Member

    Bufferzone has the option to sandbox all new executables on your harddisk + other drives (contain all, contain signed, contain none).

    I believe the sandbox of C+ (indeed a classical HIPS) can be configured to sandbox all new unsigned programs, so that is some sort of (policy) containment.

    But I agree that GeSWall and DefenseWall resemble the definitions of policy based HIPS more closely. AppGuard also qualifies as a policy based HIPS with the HIPS being limited to file, registry, memory protection and execution protection (although quiet effective with this first stage attack vector focus)
  12. blacknight
    Offline

    blacknight Registered Member

    Defense+ is a classical HIPS if you disable the sandbox and set it in Paranoid Mode.
  13. Newby
    Offline

    Newby Registered Member

    In blue the changes. Don't want to offend Kees1958, but SAFE-LUA was my signature :D
  14. justenough
    Offline

    justenough Registered Member

    Running Sandboxie and Privatefirewall. Downloads are my main vulnerability, so I have the download folder sandboxed, and an Emsisoft Emergency Kit shortcut for scanning just the download folder before taking anything out.
  15. trjam
    Offline

    trjam Registered Member

    back to Coranti. Big C you are right. Alot of protection that is not noticable.:thumb:
  16. LoneWolf
    Offline

    LoneWolf Registered Member

    DefenseWall 3.18
    Shadow Defender 1.1.0.325
    [SIZE="+"]Macrium Reflect ~ System Explorer ~ SeconfigXp ~ AdMuncher ~ OpenDNS ~ Opera[/SIZE]
  17. JohnMult
    Offline

    JohnMult Registered Member

    Re: What is your security setup these days? (updated)

    Comodo Internet Security Premium (Antivirus, Defence+, Firewall)
    DropMyRights (All my browsers) or LUA
    EMET Microsoft (All my browsers, java, Office Programs, Media Player, Foxit Reader)
    Norton DNS (Security Policy)
    AVG LinkScanner 2012
    Spyware Blaster
    Google Chrome (Adblock Plus with Easy List) casual browsing
    Firefox (NoScript and Referer disabled) searching unknown Internet
    Disabled autorun
    All latest updates
  18. x942
    Offline

    x942 Registered Member

    Host:
    Ubuntu XFCE 11.10
    UFW (Firewall)
    chkrootkit
    rkhunter
    bastille (hardening script)
    PSAD (port-scan attack detector)
    TripWire IDS

    Apparmor profiles for:

    Chrome Dev. + Chrome Sandbox + NaCl
    Transmission
    VLC
    Pidgin
    Virtual Box
    and all the built in profiles.


    Virtual Machine (All Web Browsing):
    Debian Linux LXDE
    UFW - Firewall
    SeLinux installed and enabled
    chkrootkit
    rkhunter
    Chrome Dev.
    No sharing of any kind to host.
    Networking --> NAT


    Web Browsing:
    Chrome Dev.
    Ad block plus
    Ghostery
    Java-script blocked - enabled on persite basis.
    click-to-play
    Always incognito (--incognito)
    Seccomp Sandbox (--enable-seccomp-sanbox)


    Encryption:
    Host - LUKS/LVM
    External HDDs - TrueCrypt
    IronKey - Hardware encryption + TrueCrypt.
    KeepassX - passwords (stored on IronKey).

    Router:
    DD-WRT
    WPA2 Enterprise (AES) - 64 Char. ASCII Password.
    Untangle FireWall - Checks incoming packets for malware + IDS (Snort) + Auto-blocking flagged IPS + Blocking all China and Russia based IPS + Malware-blocking Hosts file + blocking PDFs.

    Search:
    DuckDuckGo
  19. Hungry Man
    Offline

    Hungry Man Registered Member

    Network
    DDWRT Router running recommended build - Remote Access disabled
    DDWRT firewall turned on
    OpenDNS with DNSCrypt

    Realtime Protection
    No AV running.
    All ports closed - no need for a firewall.

    System Hardening -- Ubuntu 12.04
    As few programs installed as possible.
    BIOS Password
    Apparmor Enabled - Profiles for all programs



    Browser -- Chrome Dev
    Seccomp Sandbox + Default Sandbox + AppArmor
    Block 3rd Party Cookies
    Built in malware protection
    Default PDF reader -- no adobe necessary
    Adblock Plus with DNT
    HTTPS Everywhere

    A "private" profile with more aggressive privacy/ data settings.

    Chrome Privacy Profile
    No cookies/ no data sent to Google
    Block form validation
    ScriptNo with strict settings
    Working on getting it to run with a RAMDisk.
  20. Hungry Man
    Offline

    Hungry Man Registered Member

    I need to look into Bastille.
  21. jmonge
    Offline

    jmonge Registered Member

    still the same here my faborite firewall:thumb:
    Emsisoft Firewall 5.5
  22. Hungry Man
    Offline

    Hungry Man Registered Member

    How long has this one lasted j?
  23. jmonge
    Offline

    jmonge Registered Member

    1 week already and it is here to stay i dumped any program for this one it is for me complete
  24. Hungry Man
    Offline

    Hungry Man Registered Member

    1 week might be a record. Although you were on Malwarebytes for a while.
  25. jmonge
    Offline

    jmonge Registered Member

    Mbam Pro is a top notch program i really recomend it:thumb: i have it in my own computer:thumb: