I have been thinking if you use these filters in Ublock Origin: ||*/*exe$document,important ||*/*dll$document,important ||*/*js$document,important ||*/*pdf$document,important ||*/*hta$document,important ||*/*vbs$document,important and use the default filters along with ad block warning removal list, Fanboy's enhanced tracking list, all the malware list, Fanboy's annoyance list, and Peter Lowe's Ad and tracking server list this would reduce malware on any system (specifically Windows). I use Chrome OS and none of this affects me, I used to use Windows a lot, I never get infected etc. I am a advanced user etc. basically I know what I am doing. I use Chrome OS as my daily driver/work horse/ main machine. I have a WIndows XP desktop(do not use anymore), and a Windows 7 Ultimate laptop(for light gaming). Anyways you can add different file types for linux or mac or whatever such as .deb or .gz but anyways along with uac at max and Windows Defender and Chrome with ublock or ublock and umatrix like I use I think it would be really hard for an average user to get infected, you can add time freeze or Shadow Defender or appguard or VoodooShield or sandboxie and you can also block kernel exploit downloads with this .sys blocking and I would also select where to download in Chrome so you can cancel any downloads you do not want before they get downloaded. Let me know your thoughts and hope to have good discussions about this. Thanks, with all do respect, Malwar
You will never secure the average home user, you will only create headaches for yourself further down the line, especially with rules like that. You should be using those kind of rules for yourself, not average joe. If these rules ever break something, it will simply frustrate and annoy them, and that will come back on you. Fanboy's enhanced tracking list, for example, is known to cause problems. It is basically an extreme solution that average users should not be using. It shouldn't even be on the table as a consideration. Focus on creating a simple, conflict-free setup. You are falling into the trap of "more is better", it's not, less is.
I think I have over-complicated my settings to some extent as I often find sites where embedded videos will not play. I am considering resetting to default and starting over. Are there any of the default filters that are perhaps unnecessary?
I also agree - block pdfs and even exes from downloading and you will surely get calls from average home users.
inserted lately with your help, has to be removed now, ublock is blocking login now for my online banking. for firefox: dont know HTA and VBS. PDF can be setup as download instead viewing. JS is not recommended, its like JS on/off setting in firefox - with uBlock or uM absolute futile, those are script blockers - use the matrix! DLL could make same trouble as EXE (see above), some content is delivered this way.
Just disable strick blocking for your bank site and it doesnt block .js files from the website just for downloading.
No I mean users who actually just browse the web and kids. Not people who use .pdf files and sfuff. Just youtubers and happy clickers.
I agree also.I was speaking mainly on terms of kids (like my little cousin) and older people who just browse the web and click on everything.
Basically set it up for that user. If they just read stuff configure it where they can read and block weird domains and etc. Like .gov (for example) etc. Likr allow the sites they use and block them from downloading files. Like my cousin he loves youtube for example but he had literally trojans and worms downloaded and he was like I didnt mean to click this or that and I removed them with hitman pro and emisisoft and malwarebytes and combofix and installed sandboxie and chrome and ublock and showed him how to use stuff the tools proficiently.
All this was to give you an idea of how to do it and what to block not you have to use these rules or you will forever be shamed...no these were just ideas.
