What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Yanick

    Yanick Registered Member

    Joined:
    May 3, 2011
    Posts:
    274
    I would suggest to skip Roboscan, otherwise the product is good. But the lack of definition updates is very bad. The last update came 11.7. now it's 15.7. so with a signature based antivirus, that just isn't acceptable. I'l dump Roboscan and see how Avetix Free Av works.
     
  2. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    By any chance, did "when my better senses came back to me" = when I sobered up? ;)
     
  3. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    For users of SRP on Windows 8.1: after Windows update there is another folder that is write accessible to users: C:\Windows\System32\Microsoft\Crypto\RSA\MachineKeys. I've added it my blacklist.
    It looks like it would be wise to check permissions in whitelisted folders after new program installations and system updates.
     
  4. guest

    guest Guest

    @hqsec

    You're using a locked-admin SRP, aren't you? Does blacklisting user writeable folders in whitelisted critical folders interferes WU?
     
  5. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Yes I'm using SRP for all users - including administrator. I don't know the effects of SRP on WU as I always update my system and install software with SRP disabled. I have temp folders blacklisted so I expect to have problems installing/updating software and system with SRP enabled. I don't like broken installations so I just temporary disable SRP.
     
  6. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Sandboxie working great is no reason to stop using it. It was kind of dumb on my part so I guess I was drunk on stupidity for two days. After I started sounding like old Tom Waits:cool: and the sound of my new voice scared children around, that's when my good senses came back.;)

    Bo
     
  7. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,832
    Location:
    UK
    Going without Sandboxie is probably the same kind of excitement as motorcycling without helmet! Or perhaps some less delicate analogies...

    Couple of notes on my setup:

    W7x64 with updates and UAC on medium. I demand ctlr-alt-delete for admin actions and run in std user. Various other hardening stuff.
    Yubico Yubikey 2FA for Windows logon, Password Safe and Lastpass - recommended, especially since key management is much easier that than X.509 keys.
    AppLocker set to allow exes only in ProgramFiles/Win
    Emet 4.1 - with standard apps plus Sandboxie itself. Haven't done much with certificate pinning.
    Sandboxie 4.x - applied to most popular apps
    Eset 7 suite
    Zemana antilogger
    Chrome (which I do Sandboxie regardless, works OK)
    Bitlocker, TrueCrypt and EFS variously

    I have banished Flash, Adobe products, Java and iTunes from my host forever, if I need those, they can run in a VM. I run a lot of occasional apps there too.

    I use VMs variously as needed, hosted in Vmware Workstation, some of these are revert-only snapshot types. I find this easier than applying multiple add-ons to the browser.
    Additionally, I have some usb distros/pendrives for things like online banking and only used for that purpose. What I find interesting is that I'm kind of manually (and worse) creating the kind of environment which is intrinsic to Qubes - I like the latest release very much, and the concept even more, but do not have the time or machine to swap to that yet.

    I do not use a smartphone...!

    Would welcome any comments and similar experiences.
     
  8. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Nice analogy.:thumb:

    By the way, I don't use any plugins in my W7. If I ever need Java or Flash, I install it temporarily in a sandbox and after I am done, I delete the sandbox. You don't need to run the VM for that. Sandboxie works perfectly for that purpose.

    Bo
     
  9. JoeBlack40

    JoeBlack40 Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    1,584
    Location:
    Romania
    Giving AVG free a spin to see how it goes.
     
  10. Securon

    Securon Registered Member

    Joined:
    Jan 11, 2009
    Posts:
    1,960
    Location:
    London On
    Good Afternoon! Introducing Homeland Security...Mk 12...WSA Security Plus...AppGuard...and Voodoo Shield. Sincerely...Securon
     
  11. buckslayr

    buckslayr Registered Member

    Joined:
    Jun 1, 2009
    Posts:
    484
    Location:
    Michigan, USA
    Using Sandboxie. I bought a lifetime license when they were still available. Learning how to use it now.
     
  12. KaptainBug

    KaptainBug Registered Member

    Joined:
    Dec 26, 2013
    Posts:
    484
  13. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    How do you find its "automatic updates"? They seem to be rather infrequent.
     
  14. JoeBlack40

    JoeBlack40 Registered Member

    Joined:
    Apr 1, 2009
    Posts:
    1,584
    Location:
    Romania
    Yes,i noticed that.Maybe it's to soon to speak,as i instaled AVG yesterday,but i noticed only one automatic update till now...
     
  15. KelvinW4

    KelvinW4 Registered Member

    Joined:
    Oct 11, 2011
    Posts:
    1,199
    Location:
    Los Angeles, California
    Well on facebook they said that they were reorganizing the marketing structure so it is taking some of their resources, but they are still having daily signature updates. It also has a firewall that avetix doesnt have. Also Im not thinking about relying on signatures but secureaplus's whitelisting system.
     
  16. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,839
    I am starting to take a liking to the setup that is in my signature.

    Very light and not too much.
     
  17. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,974
    Location:
    Boston, MA
    One of my favorite combos! Good job. :thumb:
     
  18. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,175
    my signature and avatar is my set up.
     
  19. Securon

    Securon Registered Member

    Joined:
    Jan 11, 2009
    Posts:
    1,960
    Location:
    London On
    Good Morning! Thanks kjdemuth...it's similar too the Patriots of a couple of yrs back...Brady to Welker...Gronkowski...and Hernandez...a lethal attack...Lol! My! how a couple of years have flown by! Sincerely...Securon
     
  20. Behold Eck

    Behold Eck Registered Member

    Joined:
    Aug 23, 2013
    Posts:
    574
    Location:
    The Outer Limits
    I think thats what`s called a bit of a wobble:eek: but I just would`nt think of going online with out the "golden outline" guarding my back(and other parts).:ninja:
     
  21. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    6,144
    Location:
    Nicaragua
    Hi Eck, I think it can be said that my internet and computer experience before Sandboxie was a bit of a wobble but as I discovered and made the decision of learning how to use Sandboxie, all of the sudden, the anxiety that was usual in me whenever I was browsing or running files or using the computer, went away. Like magic, that wobbling kind of feeling has never come back.

    Those days and nights when I spend hours doing boring scans are gone for good. No more of that stuff for me. And the best part of all of this is that to get the most out of SBIE we don't need to be computers guys or geeks, I am not any of that. I am just a regular guy with great instincts. The day Sandboxie showed up in front of my face for the first time, I knew it was it.

    Bo
     
  22. Behold Eck

    Behold Eck Registered Member

    Joined:
    Aug 23, 2013
    Posts:
    574
    Location:
    The Outer Limits
    Could`nt agree more Bo,
    and thanks again for showing me how to sandbox windows explorer.Now not only am I safe out in the "jungle" but also when taking a stroll through my castle.

    You might not call yourself a geek but your the numbero uno Sandboxie expert through solid experiance,detailed knowledge and use of the product.I`m sure Tzuk himself has asked your opinion on manys an occasion?

    I still do the odd scan but of course nothing`s ever found and run the old threatfire in the back ground but thanks to Sandboxie my system feels extremly light.Some day even I will do with out these but I`ve no reason to run a full AV anymore.

    Cheers Eck:)
     
  23. AlexC

    AlexC Registered Member

    Joined:
    Apr 4, 2009
    Posts:
    1,288
    In Windows 8.1: default install with Windows Defender disabled. Chrome with uBlock.
    Xubuntu: Firefox with Adblock Edge.
     
  24. KaptainBug

    KaptainBug Registered Member

    Joined:
    Dec 26, 2013
    Posts:
    484
    why disable windows defender ?
     
  25. AlexC

    AlexC Registered Member

    Joined:
    Apr 4, 2009
    Posts:
    1,288
    Very noticeable performance improvement :)
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.