What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. waldovanlaeken

    waldovanlaeken Registered Member

    Joined:
    Jul 11, 2007
    Posts:
    36
    Location:
    Belgium
    I run on my main computer :


    Kaspersky Anti-hacker (firewall)

    Wormguard (Diamonds CS)

    EAZ-FIX V8 (ISR)

    IE7 (browser)

    XP-Antispy ( http://xp-antispy.org/content/view/12/40/ )

    Email > Live Mail (hotmail) scanned automaticly with Trendmicro.

    > i'm using this setup for a long time, although before EAZ-FIX i used Deep Freeze, but didn't like that i can't reboot to test software without losing all changes.

    I also keep full image backups (not snapshots) on external media. I made the image's with EAZFIX. But i never needed to use them.

    NEVER had any kind of infection (besides the ones i created myself for testing).

    It seems DeepFreeze & EAZ-Fix seems to provide enough protection. Although i'm aware of ISR limitations against MBR infecting malware.
     
  2. hammerman

    hammerman Registered Member

    Joined:
    Jul 14, 2007
    Posts:
    283
    Location:
    UK
    I use SandboxIE for web browsing only. After browsing I just empty the sandbox and I'm clean. If I do need to keep anything I've downloaded, I recover it from the sandbox and it immediately becomes Untrusted with Defensewall.

    Defensewall used for all other internet-facing applications including e-mail.

    Defensewall also gives me additional keylogger prevention. EQSecure did not pass all AKLT tests.

    Although EQSecure could probably do the same job as MJ RegistryWatcher and FileChangeAlarm, I find them so useful in providing a record of important file and registry changes.
     
  3. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,782
    Decided to try AE again.
    Working well this time, no problems noticed yet.
    Much better then last time.
     
  4. Bio-Hazard

    Bio-Hazard Registered Member

    Joined:
    Jan 10, 2007
    Posts:
    529
    Location:
    Cornwall, UK
    ACTIVE:

    Router (SPI and NAT)
    Online-Armor AV+ v. 2 with Firewall (Latest Beta)
    DefenseWall v. 2.20
    Mamuto (Trial from GAOTD)
    Winpatrol Plus (Keeping eye on things)
    Hostsman with MVPS hostfile

    ON DEMAND:

    SUPERAntispyware Pro (Pre-Release 4.0)
    Malwarebytes' Antimalware (Paid)
    Prevx CSI (Free)

    BROWSER:

    Firefox with No-scripts, Roboform toolbar, Show IP.

    OTHERS:

    Hijack This
    Spywareblaster
    ProcessExplorer
    Runscanner
    CCleaner
    ATF-Cleaner
    Secunia PSI

    BACK UP:

    FDISR 3.21 build 205
    ShadowProtect 3.1.0.3
     
  5. fmverv

    fmverv Registered Member

    Joined:
    Jan 27, 2008
    Posts:
    4
    PC - Security
    - Win XP - Limited User
    - Firefox with NoScript & SiteAdvisor
    - Comodo FW 3.X
    - Avira - AntiVir PE Classic
    - Truecrypt - All data is on a separate encrypted partition.
    - Thunderbird email - email displayed as plain text.
    + Windows + All mainstream apps patched.
    (Check isc.sans.org and several other sites
    daily for info on vulnerabilites and updates)

    PC - Recovery
    - Acronis TrueImage - Disk Imaging Backup.

    PC - Mointoring
    - Autoruns, ProcessExplorer & ProcessMonitor
    - Wireshark

    Router with dd-wrt firmware.
    - Outgoing ports restricted to HTTP, HTTPS, FTP & NTP.
    - Logs all outgoing connections and DNS requests.
    - MVPS hostfile in the router. Auto updates twice weekly.
    - OpenDNS
     
  6. Huupi

    Huupi Registered Member

    Joined:
    Sep 2, 2006
    Posts:
    2,024
    How you guys keep this all under control ?

    That much,is it really needed to keep you clean ?

    Take a lesson from the retired Moderator,he said after many years of fattening up,he just ended his trimming all the way down to a simple but effective setup,and he could'nt be happier with it !!
     
  7. Dieselman

    Dieselman Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    795
    Thank you...........................
     
  8. MikeNAS

    MikeNAS Registered Member

    Joined:
    Sep 28, 2006
    Posts:
    697
    Location:
    FiNLAND
    I use Md5Checker to do same what FileChangeAlarm do. In every reboot I scan all files checksums and compare those. I have all partitions shadowed so it's just verification tool.
     
  9. Huupi

    Huupi Registered Member

    Joined:
    Sep 2, 2006
    Posts:
    2,024
    You must be a very paranoid man.

    Or is it just hobby ?
     
  10. Hermescomputers

    Hermescomputers Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    1,069
    Location:
    Toronto, Ontario, Canada, eh?
    This is a smart practice, but you usually don't need to scan your entire hard disk, only particular areas... AV's and Antispyware use the same techniques... only automated and they give it a big fancy technical name..;) Conversely you can use Comodo Firewal Defense + , by keeping your pending files to zero and making a list of files to monitor you can achieve the same objectives without much labor on your part. Just move everything into your "Own Safe Files", but keep monitoring the files for change... You can also selectively block entire directories from being modified in the first place or single files if need be...
     
    Last edited: Mar 1, 2008
  11. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,934
    Location:
    SW. Oklahoma
    Seriously guys. Why in the world would you need all of that software. It seems a bit of overkill. I used to be a bit paranoid like that also but learned it just wasn't necessary. I have cut down to an antivirus and I use Vista firewall with extended security and Vista FW control. spywareblaster, Opera browser and Mamutu. And after dropping probably eight or nine security apps I still don't get infected. And I do surf all over the net. I am not an actual high risk surfer but I do go where some fear to tread. With this setup The comp is fast and still amply protected.
     
  12. Hermescomputers

    Hermescomputers Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    1,069
    Location:
    Toronto, Ontario, Canada, eh?
    Nice try Grampa!:argh:
    Just read your own sig!

    You see to understand the inner workings of security one needs to push the envelop a bit...
    Besides, not all users have the same needs as no two users do exactly the same thing online or go to the same sites...

    Their need has nothing to do with yours...

    Also Vista? I wont even go there!
     
  13. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,102
    Location:
    North Carolina USA
    I use my sig and dropped Sandboxie. I really think I am as secure and safe as those of you who list 20 different applications. But, everyone is entitled to choose as they wish.:)
     
  14. BlueZannetti

    BlueZannetti Registered Member

    Joined:
    Oct 19, 2003
    Posts:
    6,590
    Actually, I'm with bigc on this on. With age comes experience, which shouldn't be dismissed.

    It's useful to differentiate what's needed vs. what's doable. One can arrive at a workable security system that is based on a complex assembly of multiple applications working in synchronized layers, or apply a parsimonious ethic and develop and equally secure but straightforward solution. Both work, one has the advantage of simplicity.

    My own primary system is akin to Curt's. Simple. Understandable. Reasonably and appropriately robust. It's an AV/light virtualization when desired (I prefer partition virtualization as opposed to application sandboxing)/SuRun (or LUA/Run as admin credentialing as needed, SuRun seems much more convenient though).

    On a new PC designed for Vista, it is quite fine as long as the user doesn't defeat features such as UAC. The issues with Vista are related to too many versions, marginal legacy support, an enduser cost that, objectively speaking, borders on insanity, and so on, which are unrelated to security. From a security perspective, it appears fine at the present.

    Blue
     
  15. Hermescomputers

    Hermescomputers Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    1,069
    Location:
    Toronto, Ontario, Canada, eh?
    Hello BlueZannetti,

    Of course, (I'm not dismissing experience) as this is what I'm telling users about myself as well... and you are absolutely right, on all points. However my take on this is that many here take an all or nothing approach, while others are pushing a single applications for which they, in the most obvious sense have no idea what they are blabbing about... or perhaps something else more... well, economic is taking place...

    I tell people that they need to be intelligent about their choices of tools and to target their own specific high risk vectors, not just some random pilling up of software but to be systematic about what they are doing...

    As for Vista, my gripe is not security related at all, but I think you can read some of my other posts to get my perspective on many issues related... As a computer dealer, and as a support company I personally despise Vista...
     
    Last edited: Mar 1, 2008
  16. BlueZannetti

    BlueZannetti Registered Member

    Joined:
    Oct 19, 2003
    Posts:
    6,590
    I agree, it's all too true that an "all or nothing" ethic is an undercurrent of many discussions. It really is counterproductive in the long term. For example, use of an objectively "weaker" approach that the user in question actually understands is likely to yield a better final result than implementing a complex solution that they have no hope of understanding.

    The one qualifier that I'd add here is that if a user needs to be told to target their own specific risk vectors (and this is common advice), they probably don't really know what this means.

    If it's part of an ongoing discussion, the needed details may emerge. However, I think we've all dealt with situations in which trying to elicit information remotely can be a losing proposition since implicit information held on both sides of the conversation is precisely that - implicit - which can lead to huge gaps in an appreciation of the real issues. If it's the in the context of live support, the likelihood of a good outcome rises dramatically.

    In any event, this is one of the reasons I tend to migrate to and recommend simple solutions that work in broad strokes.

    Ignoring for the moment some of the good features of Vista (and some are there), I tend to look at Vista as one of the best objective reasons for seriously considering a Mac - and that's basically tied to a detailed consideration of the ongoing total cost of ownership.

    Blue
     
  17. MaB69

    MaB69 Registered Member

    Joined:
    Dec 9, 2005
    Posts:
    540
    Location:
    Paris
    Hi all,

    New setting since Emisoft's GAOTD offer (thanks to them)

    Online Armor Personal
    Antivir Premium
    GeSWall Pro
    Mamutu
    AdMuncher

    Firefox 3 beta with NoScript/CSLite/PAP Sidebar/Redirect Remover/Secure Login/WOT

    Tiny Watcher

    RollbackRx pro 7.21

    Regards,

    MaB
     
  18. Aaron Here

    Aaron Here Registered Member

    Joined:
    Jun 4, 2006
    Posts:
    1,205
    Location:
    USA
    My PC:
    Eset Smart Security
    Rollback Rx

    Wife's PC:
    Removed the expired trial version of McAfee Total Protection which came with her laptop and just installed Faronics Anti-Executable ....that's it. ;)
     
  19. Huupi

    Huupi Registered Member

    Joined:
    Sep 2, 2006
    Posts:
    2,024
    You get it !! Transparant and easy to manage for you and your wife.
     
  20. Hermescomputers

    Hermescomputers Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    1,069
    Location:
    Toronto, Ontario, Canada, eh?
    Hahaha... You made me laugh on this one. I had a conversation with a friend last week about how frustrated I was with users calling me to ask if a Mac was a better alternative... (As I sell very few Mac's my answer is usually NO). Primarily due to all the "Attack" Marketing this company is doing right now, it shows it's real color, but mostly because I have to debunk all the garbage like Mac doesn't get viruses and it is more secure, and Mac doesn't crash, or mac never brakes down...

    And the list goes on...

    As for the Good features in Vista, of course there are plenty, it's basically XP Pro with a face lift, just add a few security improvements just for fluff and voila a brand new OS... Personally I'm not at all impressed with this one... I wont upgrade until perhaps the next gen, with a better file system if they ever live up to that promise... Otherwise I can get all the "upgrades" better by using products from Stardock or by visiting Wincustomize and improve windows with real useful and nice looking fluff.... for free!

    On the other hand, If you want a "Real" upgrade to xp move up to XP Pro X64 or Vista X64... which seems to me to be Win Server 2003 64 bit slightly reworked as a consumer OS, But anything else is nothing more than a thinly disguised face lift in my opinion... Albeit one with a massive marketing budget!
     
    Last edited: Mar 1, 2008
  21. BlueZannetti

    BlueZannetti Registered Member

    Joined:
    Oct 19, 2003
    Posts:
    6,590
    Well, I did say "for seriously considering a Mac", and I do believe that's accurate. It's not necessarily better, although in some circumstances, it certainly is. The same "all or nothing" perspective noted above applies here as well. None of us use a PC for the OS or the brand name. We use it to accomplish specific tasks in a specific environment that may require certain secondary attributes. That's what determines which is more appropriate.

    For the record, the latest laptop purchased for the family was a Vista Ultimate equipped one for my wife. That made sense based on her needs. Mac wasn't on the radar screen since it would be used in a pure Windows environment. Yea, a Mac could be used, probably with near equal facility, but it was not a transparent drop in.


    Blue
     
  22. zip

    zip Registered Member

    Joined:
    Apr 19, 2007
    Posts:
    359
    Location:
    Mars
    avast! 4.8
    Opera 9.26
    WinPatrol 14
    ZoneAlarm 7

    Light, fast & solid!
     
  23. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    8,013
    Current setup is Win Server 2003 with SAV 10. Light, fast, clean, and that's it... :)
     
  24. fred22

    fred22 Registered Member

    Joined:
    Dec 6, 2004
    Posts:
    229
    look'n'stop
    kasperspy av
    sandboxy

    on demand
    a-squared anti malware
    gmer


    wwdc
    bugoff
    all unneeded services disabled

    pretty fast atm
     
  25. Pedro

    Pedro Registered Member

    Joined:
    Nov 2, 2006
    Posts:
    3,502
    For some time now:
    iptables
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.