What is your security setup these days?

Well, I figure you'll be seeing this many times in the next few days.

All different types of security software...

+Comodo BOClean

 

LOL
So true.

 

WSFuser: I was under the impression that Online Armor FW didn't work with Server 2003. Judging from your recent addition, I guess I had that wrong.

 

its working fine for me and hopefully it stays like that.

 

Which beta version is it and where can I d/l it?

Btw, why did you drop Prevx1? - just curious.

 

Hi users! how about a Security Software Manager that will boot a different set of security sofware( AT, AS, HIPS, FW) everytime u boot ur PC.

 

You need to be a beta tester to access the downloads.

If you already have a OA license, Mike would be happy to give you beta access.

 

PARTIAL UPDATE From Post 1163

Changed
Added
Removed

WINDOWS XP ACTIVE PARTIAL SETUP

ACTIVE

Online Armor FW (Beta 177)
- Advanced Mode
- Mail & Web Shield Enabled
- Program Guard Enabled
- Firewall Enabled
Comodo BOClean (4.23.001)
Geswall (2.6 rc1)
- Isolate Know Applications
- All Browsers Automatically Isolated
Hostsman (3.0.0.25 Beta1)
- MVPS Host File \ Overwrite
- Auto Updates
Ksspersky Internet Security (6.0.2.621)
- File, Mail & Web Anti-Virus Enabled
- Proactive Defense Registry Protection Enabled
- Anti Spy Enabled

WINDOWS VISTA ACTIVE PARTIAL SETUP

ACTIVE

Geswall (2.6 rc1)
- Isolate Know Applications
- All Browsers Automatically Isolated
Comodo BOClean (4.23.001)
Hostsman (3.0.0.25 Beta1)
- MVPS Host File \ Overwrite
- Auto Updates
Kaspersky Internet Security (6.0.2.621)
- File, Mail, Web Anti-Virus Enabled
- Proactive Defense Registry Protection Enabled
- Anti Hacker (Training Mode) Enabled
- Anti Spy Enabled
User Account Control (UAC)
- Enabled

BROWSERS, HARDENING, ON DEMAND can be found HERE

 

Latest "changes" in bold as of 4/23/07:

Resident:

BOClean
DefenseWall HIPS v2.0 Beta 6[Upgrade]
LinkScanner Pro v2.6[Upgrade]
Look'n'Stop 2.06 Beta 2[+Phant0m's latest r/s];[Upgrade]
Netgear RP614 v2 Router w/NAT & SPI
Primary Response SafeConnect v2.2[New Addition]

On-Demand:

A-Squared(free)
AVG Anti-Spyware[Uninstalled]
Autoruns
Avira AntiVir PersonalEdition Premium[New Addition]
CounterSpy v2.0[Upgraded]
NOD32[Uninstalled]
Process Explorer
Process Walker
RootKit Hook Analyzer
Rootkit Unhooker
Sentinel
SUPERAntiSpyware Pro
Windows Malicious Software Removal Tool

System Hardening:

Applied manual system hardening tweaks
Disabled most WinXP SP2 services
Harden-It
Removed Netmeeting
Removed Windows Messenger
Samurai
Windows Worms Door Cleaner

Miscellaneous:

Primary Web Browser - Opera Weekly Build(w/UserJS scripts)
Email - PocoMail


Peace & Love,

CogitoErgoSum

 

Resident:

Antivir free - resident only because I'm too lazy to turn it off.

On Demand - Lots of programs available like AVG Anti spyware, Super Antispyware, A2, Spybot...... run rarely as they never find anything worth finding.

System hardening : I don't open e-mails from strangers nor do I go looking for trouble.


Recorded viruses - none
Recorded spyware - none
Recorded cookies - too many to record but easily removed
Recorded false positives - too many to record

It's a lot harder to get infected than many people believe.

 

I changed mine. As you can tell by the sig.

 

Hello

Been lurking here for the past few weeks. Its a great forum. After a fair bit of experimenting came up with the sig list.

 

Welcome to the forum Joeythedude and enjoy this thread.

dja2k

 

active---
DLINK DI-624
Jetico v1
avira personal pemium
comodo boclean
ssm full 2.3
hostman with mvps
spywareblaster

on-demand ---
avg antispyware 7.5
superantispyware 3.6

browser--
opera 9.2

 

I choosed to clean my configuration, it's lighter than before and running like sugar

• My Security Setup:

A) In Memory:
- Antivirus/HIPS/Firewall: Kaspersky Internet Security 7.0.0.55 (With personal packet rules).
- HTTP Filter / Proxy: The well known Proxomitron 4.5j (patched) with mixed Sidki's and Kye-U's rules.

B) On Demand:
- Anti-Malware: AVG Antispyware 7.5.0.5
- Anti-Virus: Norton Security scan 1.1.0.27 (nothing in memory, only detection capabilities of NAV 2007... Why not ?)
- Rootkit: Rootkit Unhooker & Autoruns
- Rootkit Scanners: F-secure - BlackLight / AVG - Antirootkit

C) Hardening:
- Updated OS: Latest hotfix merged with Nlite 1.3
- Unused Services disabled: 150mo of memory usage (ATI RADEON )
- Registry security tweaks: Lot of personal registry tweaks that we can find with WWDC, XpAntispy, SafeXP, Hardenit...
- SocketLock

D) Cleaning:
- Files/Registry: Acelogix System Tuneup 1.0.

E) Rights Restriction:
- StripMyRights Enhanced: It's an alternative to DropMyRights without the annoying CMD windows, enhanced because I added a couple of tweaks to launch any executable with restrictions (contextual menu).

F) Alternative Software:
- Browsers: Opera 9.2
- IM: Miranda 0.6.8
- Media Players: GOM Player 2.13 (Video) / XMPlay 3.4 (Audio)
- Tasks Manager: Process Explorer 10.21 (CTRL+ALT+DELETE)
- PDF: Foxit Reader 2.0
- Notepad: NotePad++ 4.0.2
- Defragmentation: O&O Defrag Professional 8.6
- Image Viewer: IrfanView 4.0

G) Downloaded Files and Internet Explorer 7:
- I try to use jotti when it's possible
- Internet Explorer 7 -> all security area to high, all cookies/popup blocked, Flash/Java disabled... In other words... unusable ^^

H) Screenshot:
http://papercuthell.free.fr/Pieteke/proc.jpg

 

KAV kinda running high there....

dja2k

 

ok then

 

D-Link 604 router

Nod32 2.70.32

CounterSpy v 2.0

 

**************
Active
**************
FirstDefense-ISR (Frozen)
PowerShadow
Anti-Executable
Kaspersky Internet Security (Firewall + Anti-Spy)
***************

***************
Demand
***************
Kaspersky Internet Security (Anti-Virus)
SUPER AntiSpyware Professional
PowerShadow
RootKit Unhooker
***************

***************
Utilities
***************
PerfectDisk
CCleaner
JVPowerTools/TuneUp Utilities
ShadowProtect
***************

***************
Hardening
***************
XP-AntiSpy
SafeXP
Seconfig
Windows Worm Door Cleaner
BugOff
HiJackThis
AutoRuns
ProcessExplorer
**************

 

My new security setup :

Frozen snapshot (FDISR), but that's NOT a security software and doesn't belong here.
Look 'n' Stop
Anti-Executable
DefenseWall

I know it isn't impressive and it doesn't even have scanners, not even one and that must be an eyesore to many members.
If I ever get murdered. It was a hitman, hired by the Scanner Industry.

 

I have noticed that several people have FDISR (frozen snap shot) and PowerShadow. What do you gain with PowerShadow? If I understand correctly they do about the same thing.

 

PowerShadow is based on virtualization and it removes any change on your harddisk(s) after reboot and it seems to do that job VERY WELL and FAST according PS-users.

A frozen snapshot isn't based on virtualization and it removes also any change on your harddisk, only [C:] after reboot.
However a frozen snapshot is only an option in FDISR, it does alot more than that.
PowerShadow does nothing else than keeping your harddisk(s) unchanged.
So you can't compare PowerShadow with FDISR.

 

ErikAlbert, I agree with you. I wouldn't be running scanners on-demand if I didn't use my computer to clean others through a harddrive enclouse setup. They are useless if you are dumping everything upon reboot. Though, I do feel that FD-ISR is a active security software, since in a frozen state it is protecting my system from unwanted changes.

WilliamP in regards to running PowerShadow with FD-ISR, better safe than sorry. If I virtulize, I won't have to worry about my anchored data folders suffering from unwanted modification upon reboot.

 

When a frozen snapshot is re-booted doesn't it remove any changes that were made ?

 

On my windows xp box:

SSM free and that's it (no firewall or other stuff)

On FreeBSD 6.2-stable and OpenBSD 4.0-stable

Just the standard install w/ ssh enabled, and pf of course

I'm a real heavy weight when it comes to getting all the security apps you can as you may see

Cheers,

Alphalutra1