What is your security setup these days?

Yep you are right about some colours, going back to March 18, the colors mean:
added
changed
removed

I don't see any relation with your new/old.
But that must be me I guess.

Gerard

 

Sorry my mistake. You are right. Wrong choice of English words by this Belgian guy.

 

Buy me a Leffe (triple) and I won't talk about it

 

Dropped Red
Added Blue

Avira Suite
Sandboxie

GesWall Pro
ShadowDefender

And thats all folks.

 

added
changed
removed


XP setup 1

Resident:

Ad Muncher
System Safety Monitor (Free Edition)
ThreatFire
Windows Firewall

On-demand:

Avira AntiVir
Prevx CSI

Other Security / System Hardening:

nLite'd Windows XP SP2 (with service tweaking based on TweakHound's guide)
RyanVM's Windows XP Post-SP2 Update Pack
Siginet's Windows XP Post-SP2 Critical UpdatePack
Seconfig XP
xp-AntiSpy
Process Explorer
Firefox extensions: AdBlock Plus and Permit Cookies


XP setup 2

Resident:

Ad Muncher
Prevx
Windows Firewall

On-demand:

Avira AntiVir

Other Security / System Hardening:

nLite'd Windows XP SP2 (with service tweaking based on TweakHound's guide)
RyanVM's Windows XP Post-SP2 Update Pack
Siginet's Windows XP Post-SP2 Critical UpdatePack
Seconfig XP
xp-AntiSpy
Process Explorer
Firefox extensions: AdBlock Plus and Permit Cookies

 

On-Access:
Avast 4.8
Winpatrol
SnoopFreee
SpywareBlaster
Windows Firewall
Sitehound (for IE)

On-Demand:
SAS Free

Firefox Add-ons:
Adblock Plus
NoScript
Sitehound-Preview


Ditched Sygate Personal Firewall since it freezes every startup.
Looking for a new firewall, any suggestions ??(anything but Kerio Personal Firewall 2.1.5)

 

Hi nomarjr3. So we keep this thread on topic, could you start a new thread in the Other Firewalls forum for firewall related questions. Thanks.

Snap

 

Due to problems with Sandboxie (serious ones such as I can't execute any .exe file on my pc except for forced sandbox apps like firefox)

And got tired of bloat and slowness of Outpost...

So my new set up is:

Router with SPI / NAT (incoming connections)
Nod32
System Safety Monitor 2.4.0.621 (with outbound network control on)

That's it!

 

This is a new one for me in a sense.

Returnil RVS (as always)

FirstDefense-ISR (Only Genuine Version)

Comodo D+ Pro

EQS 4.0 Beta (Alcyon's Rulesets)

SandboxIE (Latest)

SuRun 1.04 (Newest)

We'll see how this set up fairs. With SuRun this SetUp is really tight.

As always a DriveSnapshot Image is taken and stored for recovery purposes if needed.

 

OA or LNS

 

I searched Firefox extensions and did not see this.

 

Sitehound website

 

Yes, I've seen this, Thanks.
I just thought there might be an add-on at the Firefox extensions site.

 

Why would you pay $30 for something which McAfee Site Advisor does for free?

 

SiteHound is free but they also have a paid version with more features.

And btw, SiteAdvisor has a paid version too.

 

Vista 32 SP1 set-up "changes" in bold as of 4/12/08:

Resident:

DefenseWall HIPS v2.30(Compatible w/Vista SP1)
Netgear RP614 v2 Router w/NAT & SPI
Primary Response SafeConnect v3.0.0.1443
Vista Firewall

Other "Paid" Security Applications at My Disposal(Not currently installed):

DriveSentry Full
LinkScanner Pro
Look'n'Stop
RegRun Platinum
SuperAntiSpyware Pro
Task Catcher
WinPatrol Plus

On-Demand:

Autoruns
AVZ Antiviral Toolkit
GMER
Prevx CSI+
Process Explorer
RegRun Reanimator
Returnil 2008 Personal Edition(For testing purposes);[Uninstalled]
RootKit Hook Analyzer
Shadow Defender(For testing purposes);[Installed]
SUPERAntiSpyware Free
System Repair Engineer(SREng);[Installed]

System Hardening:

Applied manual system hardening tweaks
Disabled non-essential Vista services
Enabled Software DEP for all programs and services
Disable UAC with TweakUAC
Disabled Windows Defender
Uninstalled Java Runtime Environment
Windows Worms Door Cleaner

Backup:

ERUNT(registry)
Paragon Drive Backup

Miscellaneous:

Primary Web Browser - Opera v9.27(w/UserJS scripts; Java disabled, JavaScript enabled(userscripts only), but with options disabled, Iframes disabled and plug-ins disabled);(https://www.wilderssecurity.com/showpost.php?p=1207602&postcount=6)
Email Client - The Bat! Home


Peace & Gratitude,

CogitoErgoSum

 

FirstDefense-Instant System Recovery (FDISR) Not really a "security" program but it fits my needs.

SourMilk out

 

New setup for me.

Avira Premium
Defensewall 2.30
Returnil
SuRun 1.04 with LUA account
Windows Firewall
Hardware Firewall (Router)

I haven't gone with SRP this time as I found it too restrictive.

 

New security.

Sunbelt Personal Firewall + Router D-Link DI-604

Anti-Executable - HIGH
To block any unauthorized executable, including the nasties like KillDisk, Robo(t)dog, ...

DefenseWall HIPS
1. To restrict all untrusted applications to the very bone (policy-based).
2. Locking Data Partition : no reading, no writing, no stealing of personal data.

FirstDefense-ISR - Industrial Frozen Snapshot Technology.
- full automatic total removal of any malware (existing, new, undiscovered and unborn).
- full automatic safe cleaning of registry, history and all junk files.
- full automatic total uninstall of any unwanted new existing software.
- full automatic repair of any system problem or software problem.
All this during each reboot in less than 2 minuts. A real time-saver.
The best scanners couldn't break it.

ShadowProtect + Zero Tool.
In case FirstDefense-ISR fails.

ThreatFire removed due to superfluity in the total picture.
Outpost Firewall Pro 2008 removed due to presence of Anti-Spyware scanner.
WinXPproSP2 Firewall disabled due to lack of outbound protection.

 

Erik - I'm curious - not long ago FD-ISR was all that was needed..... reboot and its gone. Then came AE, then Hips, and now Kerio. where will it all end ?
By the way FWIW I agreed with you that FD-ISR frozen was good enough

 

Kerio Firewall is a replacement for Windows Firewall (= no outbound), I replaced MSIE with FF also.
AE is needed because FDISR is weaker than some other ISR-softwares, especially regarding destructive malwares which do low level disk changes.
DefenseWall HIPS locks my Data Partition during surfing.
I always said an ISR-software requires security software that stop the "execution of malware", that is something else than "removal of malware".
You don't agree, because you assume it won't happen.

 

I didn't realize that you had changed to FF. If you also use NoScript then I would be even more inclined to argue (not assume) that "it won't happen"

 

Router with NAT/SPI firewall

XP box (general home box)
Level1 - CFP Pro with D+ (lightened D+ https://www.wilderssecurity.com/showthread.php?t=199867)
Level2 - DefenseWall 2.30 (default threatgate programs + ScriptDefender)
Level3 - Avira 8 free, guard with check at write only, smart extensions, archives recursive 3)
Browser is Opera with IE7 skin/buttons

Vista64 box (gaming box)
Level1 - Vista FireWall with outbound control via free Vista Fire Wall Control (LUA https://www.wilderssecurity.com/showthread.php?t=185220)
Level2 - HauteSecure with global profile (https://www.wilderssecurity.com/showthread.php?t=205330)
Level3 - Avast 4.8 free, default shield at write only, simular smart extensions, others fullly enabled
Browser is IE7 (in default protected mode)

Not using ThreathFire Pro (XP), Mamutu (XP), GeSWall Pro (XP) and PRSC (Vista64) lisences anymore

 

- Behind a router
- Vista Home Premium (UAC on, Windows Defender off)
- Antivir 8 free (like this already)
- Vista Firewall
- Threatfire
- dropped BOClean
- K9 Web Protection
- Firefox (noscript, adblock plus)
- Key Scrambler with IE 7
- FirstDefense for any major problems

 

I only run with NOD32 v3 (resident) and ShadowProtect (on demand).

I don't like the idea of messing around with my VISTA install by adding hooks, drivers, boot stuff, and layers of protection via HIPS, ISR or behaviour blockers or anything else.

To me, this stuff only slows you down and adds unnecessary complexity to my O/S and I can't see why I should bother with it. Although I do see how it's fun to try out these programs and see how they work.

I keep my C: drive small by storing all music and video on a secondary D: drive and run a full image of C: weekly. I also backup the data using Genie about once a week as well. I keep about 2 months worth of images.

This way I run CLEAN and nothing slows me down or affects the running of my O/S on a daily basis.

I also run on-demand scans using CureIT, SAS and GMER fairly regularly.

The only problem I see is that I could be exposed with a nasty I don't know is there and it gets placed in the image. Hasn't happened yet.