What is your security setup these days?

i will give OA++ Another chance

An updated Online Armor 5.1 beta build is available:
http://tmp.emsisoft.com/oa/trunk/5.1...ArmorSetup.exe

Changes:
Fixed an issue that could cause a massive boot delay or freezes on some systems.False positives with Roboform have been fixed.
Fixed an issue where settings for blocked applications weren't saved correctly.
Opera should no longer be detected as an installer.

 

go boy just dont fry everything..leave some bacon for your friend to fry too my good friend

 

bad news the problem is there still

 

I am thinking of downgrading to Windows XP from 7 Pro or tweak 7 so it uses almost the same resource usage as XP.

 

Why?

System specs?

 

Running Privatefirewall on one machine means I need DropMyRights to take the place of OA's RunSafer.

Does anyone know offhand if DMR can be configured to always start a program (like Sandboxie's forced programs feature)?

And can it then be easily (quickly) disabled like by a context menu right-click, if I want the program to not run with reduced rights?

Hoping someone knows this.

PS- Yes I use SBIE's DropRights but there are still times when I might want an unsandboxed app to run with reduced rights.

 

There are multiple ways to do this. You can use DMR approaches, or SRP approaches, or other ways, as Kees has been experimenting with.

You might find simply appointing a Low Integrity Level is all you need.

Sul.

 

back to Avira

 

Sandboxie
MBAM Pro
Comodo firewall
Keriver Free
Mailwasher
LastPass

Haven't had a single threat since having Sandboxie, so doing away with AV and just using MBAM as it has good website blocking, browsing lightning quick now and system feeling light as a feather.

 

Sully was to modest, you are on XP, so I suggest PGS (runs great on XP and Vista, use run as Admin, configure the ones you need to run as basic user). Program made by Sully.

How to http://mrwoojoo.com/PGS/PGS_HowTo.htm

Download http://mrwoojoo.com/PGS/PGS_index.htm

With FajoXPSE you will get the security tab of XP Pro and Vista/Windows http://www.fajo.de/main/en/software/fajo-xp-fse I use to set a deny execute on the download directory (works also on XP). Off course you could use the 1806 trick also to prevent against drive-by's when not using SBIE


Regards Kees

 

i want to try Malware Defender again from
http://labs.360.cn/

 

Real time
1. Border medium rights (LUA) to high (Admin)
a) UAC full
- Disabled installer detection
- Only allow signed applications to elevate
b) Beyond trust power broker, run as LUA (unable to elevate)
- Internet facing aps (IE9, WMP, Mail)
- Office 2003 programs (Word, Excel, Powerpoint)


2. Medium rights world protection (also applicable for admins and untrusted users )
a) Deny Execute for all users
- For all drives containing data (D, E) through icacls.exe
- For Download directory, Program Auto start and Public Users directory through icacls.exe
- For Local intranet and Restricted sites zones through SRP
- For USB drives through SRP
b) Drive by protection for Mail and Browsers (IE9 and Chrome)
- 1806 default deny block of downloaded executables (removable with right click properties)
- This closes gap for all unsafe user directories on C-drive (e.g. Users\Kees\etc)
c) Taken away write access of all HKCU autorun entries for users with REGIL.EXE (only admin may change them)

3. Border from low to medium rights
a) Running IE9 hardened through Group Policy (no user changes allowed, forced in zone and allways running Protected Mode)
b) Running Chromium with --safe-plugins switch (Chromium is unsigned has internal sandbox containing tabs in low rights, job objects and alternate desktop = total isolation), using McFee site advisor extension

4. GeSWall Pro guarding Chromium, saving to D:\Downloads, moving to C:\Install removes the geswall block, but still keeps the 1806 block (this to overcome geswall remove untrusted file through right click does not work under UAC).

5. Windows FW 2 way

6. EMET 2.1
- Internet Facing: E9, Chrome, Mail, WMP
- Office Aps: Word, Excel, PPT
- Acrobat Reader

On demand
1. Antivirus scans
a) Hitman Pro
b) Bitdefender extension for Chrome
c) MalAware

2. Backup
a) Paragon for Image Backup
b) Syncback for Data Backup

Deselected geswui.exe from startup because it uses 0.06% CPU at peaks GeSwall Policies still works
Btservice.exe and GSWserv.exe together now using less than 0.01% CPU

Links for background info
1. Beyond Trust see
https://www.wilderssecurity.com/showthread.php?t=304969
2. Safe-Admin see
https://www.wilderssecurity.com/showpost.php?p=1852017&postcount=2
https://www.wilderssecurity.com/showpost.php?p=1852018&postcount=3
https://www.wilderssecurity.com/showpost.php?p=1852024&postcount=5

 

Ditched CIS 5.8 beta.
Running:
Comodo firewall 5.5
Avast 6 free
Sandboxie (paid)

 

Malware Defender

 

Until DefenseWall and Sandboxie become free and 64bit I have nothing to add to my setup =p

I just hope that all of these are compatible with Win8 since I'll be upgrading as soon as it's out.

 

Good luck waiting on that

 

Haha yeah, I'm not expecting it... ever =p

 

If you really want Sandboxie or DefenseWall for free, you could try and translate them to a language not yet supported. Maybe the authors will be kind to you.

Now, do you know any foreign languages, that may still not be supported?

 

I know geek, does that count?

Sul.

 

I could do Spanish or French >_>

but I feel like most people could have that covered haha I doubt I'm the first to offer.

 

what is better to have a security setup

Or to Keep changing between Programs

 

Mine is all done for the most part. I don't see me adding or changing any programs. I'm very happy with it, though I could be happier.

 

good setup man

 

Got rid of NAV 2011 (can't see myself paying for an AV again) and have installed Malware Defender. I'm really surprised at how configurable this program is. I'm going to keep it on Learning for a day or two then switch over to Normal. Can't believe I haven't tried it till now.

 

We got a member here on Wilders that knows the answer for sure Mr T