What is your security setup these days?

Hi lunarlander & bo elam.

I do restrict what can run, internet access, and limit file access in my sandboxes and have a few for different applications.

 

Hi bo elam

I currently run all browsers inside 1 sandbox. I suppose running them in separate sandboxes is better. What is the reason for sandboxing the Downloads folder? I have a license for Sandboxie.

 

Absolutely, run your browsers in separate sandboxes. Why? If you sandbox all browsers in one sandbox, they are isolated from the system but not from each other. To maximize isolation, you separate programs from each other by using dedicated sandboxes for each browser or program, doing this allows you to tailor setting in each sandbox according to the browser, program, or purpose of the sandbox. More security, sandboxing works better.

Downloads folder? Since you have a license, you can force folders. Forcing your Downloads folder is like a safety net. Basically, anything that's placed in a forced folder, runs sandboxed automatically when executed. For this to work perfectly, its good to get in the habit of downloading to one folder and one folder only. Thats what I do. The only exception are installers that I am going to run out of the sandbox (very, very rare for me). This files I download to the desktop.

Bo

 

I have similar situation but i created on HDD small partition called TEMP where moved all %temp% system folder to this one and other programs which create logs file etc.. and work so fast casue is also wiped by RamDisk 5GB Capacity from Shadow Defender

 

For years Sandboxie has kept me safe.

 

Welcome to the club...

 

For years common sense (maybe not so common) has kept me safe.

 

believe me it's so not common that it should be referred to as "rare sense".there wouldn't be half of the infections,had it been "so common".

 

Truth!

 

I'd like some opinions on a possible Hitmanpro.alert + VoodooShield + SBIE + Windows Firewall Control combo. Is it too repetitive? I'd like something with a cloud scanner and this combo seems light and secure.

 

I used KIS + VS for some days. VS is really lite, no additional burden.

I stopped using KIS as I found it's too intrusive and somehow heavy on my PC (4 GB ROM).

Now I try ZoneAlarm FW free + Emsisoft AM + MBAE.

 

I can vouch for HitmanPro.Alert + VoodooShield! No problems at all running those two together. Also running with Avira for AV and Windows 10 Firewall Control. Light and secure!

Don't use Sandboxie, though, but I figure that the anti-executable VoodooShield is good enough. "VoodooShield’s three layers of protection include an application whitelisting lock, a machine learning / Ai
decision engine and a multi-engine blacklist scan."

 

Haven't had a chance to try this feature out yet, but this is available in VoodooShield advanced features. You can respond to an intercepted file prompt with "Block", "Sandbox", or "Allow".

Local Sandbox
Although the Cuckoo / Remote Sandbox is the preferred sandbox, VoodooShield also offers the ability
for the user to execute a blocked file in a local sandbox, which runs the file with limited rights. Files that
require administrator approval to perform certain tasks will typically fail in the local sandbox. But keep
in mind, files that require administrator approval are capable of performing dangerous actions on the
computer, so if a file fails in the local sandbox, there is a good chance that the user should not execute
this file outside of the sandbox.
Cuckoo / Remote Sandbox
VoodooShield also offers the ability for the user to execute a file in a remote sandbox, safely in a remote
computer, and receiving a full detailed analysis of the file’s execution, before deciding to run the file on
their machine. The user also has the ability to watch the Cuckoo Sandbox analysis in real-time, in a
Remote Desktop session, which allows the user to see first-hand the implications of running the blocked
file, safely, on a remote machine before they choose to allow the file, as demonstrated in the
ransomware sample below.

 

Too hard to find Common Sense in a world of Absurdity...

 

Sandboxie-VoodooShield-WindowsFireWallControl.

Really liking VoodooShield

 

qihoo 360 total security ( premium ) - voodooshield pro - binisoft windows firewall control ( paid ) - unchecky - adguard premium desktop.

 

So, you don't use any AV beside VooDooShield?
Actually, since VS goes to check VirusTotal, I don't see any benefit in using VS with an AV already used in VT.
Maybe it would be better to couple VS with a behavior blocker, but nowadays there aren't many standalone BB left

 

VS will stop almost all infections, but on its own the weakest link will always be the user. An AV with PUP detection is a great backup. An even better backup is an image backup before you make changes to your machine.

 

Norton Antivirus

 

I use the first three (not WFC) without issues.

 

+1

 

AVG INTERNET SECURITY Zemana Antimalware pro

 

Just moved from CCAV to VS, everything is working smoothly and my PC is quite fast.

Windows 10 Creators Update
Windows Firewall + TinyWall
VooDooShield free (AutoPilot Mode)
Zemana Antimalware free and HitmanPro free (on demand)
Chromium with Adaware Ad Block
OpenDNS
SmartScreen enabled
UAC disabled
Windows Defender disabled
Some hardening as explained here http://hardenwindows10forsecurity.com/

 

My sig as usual

 

Great setup!