What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Exactly the same and Boring. Which proves my security defenses are above board against everything.....except Windows itself.
     
  2. Moose World

    Moose World Registered Member

    Joined:
    Dec 19, 2013
    Posts:
    905
    Location:
    U.S. Citizen
    Salutations/Greetings,
    @LoneWolf
    Truly appreciate the update. many thanks, but what about Instant Recovery?
    Are you still using?


    Always the best, Kind regards,
     
  3. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,782
    Yes
     
  4. JohnMult

    JohnMult Registered Member

    Joined:
    Mar 26, 2012
    Posts:
    133
    Location:
    Greece
    1. Linux Lite
    2. Firewall on
    3. Firejail Firefox with uBlock Origin in Medium mode and Quad9 in Network settings
    4. Proton VPN on demand
    End of the story. Extremely satisfied with my current setup.
     
  5. JohnBurns

    JohnBurns Registered Member

    Joined:
    Jul 4, 2004
    Posts:
    778
    Location:
    Oklahoma City
    Realtime: Windows Defender, McAfee Total Access-Total Protection, Malwarebytes, HMP Alert, UAC Highest Level,
    OnDemand: Adwcleaner, MRT, Emsisoft EEK
    Macrium
     
    Last edited: Jan 18, 2022
  6. acid king

    acid king Registered Member

    Joined:
    Jan 19, 2019
    Posts:
    101
    Location:
    europe
    MB & HPM alert realtime work good together for you ?!
     
  7. Fad

    Fad Registered Member

    Joined:
    Feb 25, 2009
    Posts:
    456
    Location:
    England
    The same few things for several years now, I almost feel as though I should be using something else !
    Things have come and gone in the meantime, tested various applications from time to time but this setup seems to work for me.
     
  8. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,156
    Location:
    Canada
    Same old here on W10.

    Defender with Configure Defender, Simple Windows Hardening, Firewall Hardening, UBO, Macrium Reflect, Windscribe.
     
  9. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    4,208
    a great setup, apart from ws (for my money, of course). :thumb:
     
  10. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,156
    Location:
    Canada
    They had a offer some time ago, 60 GB a month free, so thats why I am using it, has worked very well for me so far.
     
  11. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    4,208
    yeah, i have an account which i got from the same giveaway but i never used it. not sure if it's still active. i don't use commercial vpn's anyway.
     
  12. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    Would you say what are your feelings using SD and DF, any particular preference? Last time I used DF was a long time ago (about 14 years) At the time I found it a hassle to reboot in order to enter a frozen state, is it still required? TIA for any comment.
     
  13. JohnBurns

    JohnBurns Registered Member

    Joined:
    Jul 4, 2004
    Posts:
    778
    Location:
    Oklahoma City
    Yes, no problems....
     
  14. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,342
    Location:
    Italy
    Xubuntu 21.10 (PC my daughter)
    Strong password enabled
    Quad9 DNS
    UFW Firewall - enabled

    Google Chrome --disable-webgl --cipher-suite-blacklist=0x0035,0x002f,0xc014,0xc013

    • Javascript blocked for HTTP://*
    • Privacy Sandbox + FLoc disabled
    • Clears cookies and data from sites when you close
    • Search Engine and Home web-page DuckDuckGo
    • Always HTTPS
    • DNT enabled
    Chrome://flags - Enabled:
    • Block scripts loaded via document.write
    • Strict Extension Isolation
    • Strict-Origin-Isolation
    • HTTPS-First Mode Setting
    • Privacy Review
    • Smooth Scrolling
    • Parallel downloading
    • Reduce User-Agent request header

    Extensions:

    • UBO - Hard Mode - with TLD by Kees1958
    • Decentraleyes
    • Trace - (Only enabled) - Google Header Removal + Alternate Error Page + Webform Autofill + SafeBrowsing Extended Reporting
    • Stream Recorder
    • VideoDownloadHelper
    _________________________________________________________

    I eliminated the 4 categories of insecure chipher suites TLS 1.0/1.1/1.2
    I removed the flag "Anonymize local IPs exposed by WebRTC" because it is not necessary.
     
    Last edited: Jan 21, 2022
  15. Quassar

    Quassar Registered Member

    Joined:
    Oct 19, 2011
    Posts:
    251
    Location:
    Poland
    Windows 10 21H2 19044.1466
    Hardering:

    PowerShell script, CMD, java - all disabled
    Deny elevation of unsigned executables.
    Windows Features removed: Internet Explorer, XPS; SMB, Legacy Features, Media Features, etc...
    Ask password for Admin Account
    Enable Secure Sign in screen
    http://hardenwindows10forsecurity.com/

    Account Type: Local Account/Admin
    UAC: Maximum
    SmartScreen: Enabled
    VPN: ------
    Anti-Exe: ------
    HIPS: SpyShelterFW
    HIDS: ------
    AntiRansom: ------
    Firewall: SpyShelterFW + NetLimiter
    Keystroke Encryption: SpyShelterFW
    SRP: Sandboxie (in advanced cfg), SpyShelterFW
    Password Manager: Keepass 2.x
    AV: ------
    On Demand:
    Avira Rescue (on pendrive), Malwarebytes, Hitman Pro
    Virtualization: VMware Workstation, Shadow Defender
    Sandbox: Sandboxie
    Encryption: VeraCrypt
    Browser: Vivaldi, Tor Browser
    Blocker: Adguard
    Backup: Macrium Reflect

    Tools:
    Sysinternals Suite, SysTracer, DiskPulse.(sniff changes in files/process/services)
    WireShark, Net Limiter (sniff and control bandwtich network)
    Process-Lasso + Park Control (priority process + allocate games/programs in specific cores for improve work)
    ThisIsMyFile (unlock and delete protected files)
    HostMan(MVPS HOSTS) + HostsServer (next black filter for sites & monitor)

    Nothing new old song whole few years
    SpyShelter with Shadow Defender its light beast - rest its for fun but also usable :D
     
  16. moredhelfinland

    moredhelfinland Registered Member

    Joined:
    Mar 31, 2009
    Posts:
    344
    Location:
    Finland
    On my Lenovo B50-10(dual core 2.1ghz, 4gb 1333 mhz ram, very slow ssd and even slower Intel HD gpu)

    - O&O Shuttup
    - Edge browser basic tweaks (dont start at startup, when closing dont leave processes to run in background etc basic tweaks)
    - Edge seems to be faster than Chrome, Firefox was slowest one (on this hw). Memory usage is better then Chrome and Firefox.
    - Symantec Endpoint Protection (minor tweaks here and there, firewall in ask mode if needed)
    - PrimoCache (trial version): 640 mb dedicated for read cache, 128 for write cache, 8 kb block size, prefetch on boot
    - Bitsum CPUBalance beta v1.1.0.3 (latest Lasso governor) and "exclude system services from restraint unticked)
    - ublock origin and mcafee web booster to disable stupid autoplay videos

    Quite snappier than what it was before applying above basic tweaks, but i do like the result afterrall.
     
  17. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,342
    Location:
    Italy
    :thumb:
    Interestingly, with Edge + UBO you can insert a Beacon blocking rule differently than you can with Chrome.
    If you want to do some testing:


    https://armin.dev/apps/ping-spotter/
     
  18. moredhelfinland

    moredhelfinland Registered Member

    Joined:
    Mar 31, 2009
    Posts:
    344
    Location:
    Finland
    @Sampei Nihira
    Nah, just doing basic tweaks to get the slow pc "alive".
    About privacy tweaking, thats another thing to do, which im not after for :D
     
  19. tipo

    tipo Registered Member

    Joined:
    Dec 29, 2008
    Posts:
    440
    Location:
    romania
    switched to linux mint cinamon, that`s my new security setup. ;):D hope all works well.
    sorry for the off topic.
     
  20. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    4,063
    Location:
    Canada
    Not off topic. The security setup you use these days is not O/S specific :)
     
  21. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    326
    Question,

    Does anyone here use BitDefender (total protection) and Shadow Defender together? When I use Shadow Defender to go into Shadow Mode, it always prompts to say something like ~a program is still using the disk, close it to enable full protection. If I OK that, the Shadow Mode indicator still shows up on screen. But I don't know if BitDefender is making a hole in Shadow Defender's defenses. I don't get that message when I am not using BitDefender.
     
  22. StillBorn

    StillBorn Registered Member

    Joined:
    Nov 19, 2014
    Posts:
    297
    Many moons ago I used SD coupled with various AV/AM apps, including BitDefender with absolutely no issues. This was on an old Windows 7 box FWIW. More or less purely on a whim, I switched to Faronics DF believing the app was better maintained in keeping up with the times.
     
  23. plat

    plat Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    2,233
    Location:
    Brooklyn, NY
    Windows 11 with Secure Boot and Core Isolation enabled, b/c I believe in general, a "latest" OS is the securest one.
    Defender b/c it's built-in and therefore less bulk on the system drive. Supplements: Hard_Configurator FirewallHardening, NVT OSArmor, Sandboxie Plus (off and on). Browsers are always latest: right now: Opera and Firefox, both boxed. No, Edge. You are not welcome here. :cautious:

    One static image on a flash drive to fall back on. :isay:
     
  24. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,342
    Location:
    Italy
    W.10 Home x64 21H1
    Local Account - Standard user - Limited permissions
    UAC maximum - Always notify
    Quad9 DNS
    Onedrive,Cortana,Advertising ID,Web Search - disabled
    Usage of location data for Cortana disabled
    Telemetry OFF
    Removed some Windows optional features.

    Microsoft Defender Firewall hardened with H_C.
    Microsoft Defender hardened with Configure Defender (Customized level)

    • Ransomware protection - disabled
    • No run in a sandbox
    • Core Isolation: Memory integrity - disabled
    • Some softwares hardened with maximum AE protection
    • All Windows Exploit Protection options - enabled
    MS Edge --disable-webgl
    • Enabled Security Mitigations - Strict
    • Detection Protection - Strict
    • Disabled 4 Insecure Cipher Suites - TLS 1.0/1.1/1.2
    Edge://flags:

    Enabled:

    • Block scripts loaded via document.write
    • Automatic HTTPS
    • Experimental Tracking Prevention Features
    • Strict-Origin-Isolation
    • Strict Extension Isolation
    • Super Duper Secure Mode
    • Enable Digital Signature for PDF
    • Show block option in autoplay settings
    Disabled:
    • Show feature and workflow recommendations
    • Allow tab-to-search using Microsoft Search with Bing
    • Allow Microsoft Search with Bing for any default search engine
    Extensions:
    • (MS Store) - Decentraleyes
    • (Chrome Store) - UBO - Hard Mode
     
  25. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    5,507
    Looking for some suggestions. I am running Win11 Ent at home. Just using WD with Configure Defender set to High. Ubo on both Edge and Chrome but that's pretty much it.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.