overall security solution

My setup these days has too much overlap for my liking? So which solution do you think is best and why?

Option A
Outpost firewall - HW firewall Stateful firewall
NOD anti-virus / KAV depends on machine
DefenseWall
Proxomitron web-filter (with Kye-U filters)
Safe N Secure

Option B
Outpost firewall - HW firewall Stateful firewall
NOD anti-virus / KAV depends on machine
DefenseWall
Proxomitron web-filter (with Kye-U filters)
PrevX

Option C
Outpost firewall - HW firewall Stateful firewall
NOD anti-virus / KAV depends on machine
RegRun with AntiHacker - u/l lic
Online Amour
DefenseWall
Process Guard
Proxomitron web-filter (with Kye-U filters)

Option D
Outpost firewall - HW firewall Stateful firewall
NOD anti-virus / KAV depends on machine
RegRun with AntiHacker - u/l lic
Online Amour
DefenseWall
AppDfender + RegDefender Free
Proxomitron web-filter (with Kye-U filters)


Option E
Outpost firewall - HW firewall Stateful firewall
NOD anti-virus / KAV depends on machine
RegRun with AntiHacker - u/l lic
DefenseWall
Process Guard
Proxomitron web-filter (with Kye-U filters) or Webwasher depends on machine
PrevX


Option
Something Else BoClean?



On-demand
Spybot S&D
Ewido anti-trojan
A2 anti-trojan
BitDefender
Port Explorer


All Windows machines running also:

First Defence ISR or RollBack RX
CCleaner
Firefox browser
Opera browser
TOR / GhostSurf sometimes

Tweaks
SafeXP
HTAStop
Computer Security Tool - free lic
Secure-It

 

my personal choice would be option E without prevx (i find prevx to be heavy and not to my liking). it covers most everything and it should run well.

 

I think it might be good to ask yourself: how many behavior blockers do you really need, and why? If you're wanting to cut down, I would just look at the features of each and pick the one that covers all the things you want covered. Having multiple isn't necessarily going to make you more secure. Having your bases covered is good, but how many bases do you really have?

Most of these options have a lot of overlap, it would probably be better to really acquaint yourself with what each has to offer, I'm sure you'll feel more secure once you do. Some of those apps will offer more consolidation than others, but ultimately you'll have to decide what you want it concentrated on.

 

With NOD and Defensewall I believe you are extremly well protected against internet&email-malware.

I was interested in Prevx but have a feeling it might be too much slow down on my PC and I am just starting to get familiar with ProcessGuard so I will stick to my present setup until it fails me.

So I´d vote for B without knowing enough about Prevx, but whenever I read ie Notoks descriptions of how it works - it sounds good...

Best Regards

 

None

 

This is the setup i'm running with at the moment. Prevx is lighter than it used to be on my sys at least.

Prevx does look interesting and easy but I have to admit being quite attracted to a Apdefend/RegDefend alternative with may be OA for active content.

 

Whats the difference between OA for active content and Outposts active content plugin?

Best Regards

 

An interesting question that I can't answer directly - having used OA I just prefer it over outpost

 

Outposts active content plugin is much more configurable and lets u individually manage javascript, activex, graphics, etc. i use firefox with noscript, permit cookies, and proxomitron so i had need for the plugin.

OA's content filtering...i dont know much about it. u can ask Mike at the OA forums.

 

I have, over the years, got "fairly" familiar with the use of OPs Active Content, so I asked because of this discussion of overlap and learning about which "bases", and "how many", one wants to have covered.

I think its natural that if youve learned one programs function, say OA active
content, you might use OP with the Active Content Plugin deactivated, since OA takes care of that!?

I choose the suggested setup B beacause its not so far from what I use myself. NOD32 is better than free Antivir, but with Defensewall in combo with a reasonably good AV, its good enough protection for me.

As I wanted some check om whats executing when I install a program I use ProcessGuard. I dont understand it fully yet, but I can permit once and see before I permit always.

So Prevx is interesting, but it might be a lot of overlap for me to put in Prevx instead of PG taking the functions of DW and OP and AV into consideration? PG HIPS and DW HIPS are two different kind of HIPS as far as I understand.

I will not try to steal this thread but if anyone cares to comment on if I have to much overlap in my setup that would be interesting and maybe not so totally off topic.

Defensewall have a new Rollback function and is developing all the time. Still lacks some sort of warning system to tell me if there are "unusual" amount of activity in the untrusted zone.

If I used Prevx - can I trow out PG and DW then?

Best Regards

 

Its, a lot of stuff, I think you don,t need to think like this, just see what u need.

1- AV- there are many good one, choose any of them you like.
2- Firewall- same as AV
3- Antispyware- Spysweeper and spyware doctor for paid, or if free MSAS, or might be if u put OA, you can bypass this but not sure
4- HIPS- PG or OA, again OA will cover option 3 and 3
5- Registry protection, ...? I don,t know, difficult for me

Proximitron- I have no idea, never used. On-demand put whatever you want but it is wise to use limited stuff as if u put a lot, my experience is that it will just stay static as u need time to run all these ondemand scanners.

 

Just forgot Rollback Rx, not a security measure but in a way it can be. Really nice.

 

Yes when I run OA i disable the filter in Outpost

Feel free - more debate is better

Yep I like it a lot too

May be I like the manual aspect of PG. And the community aspect of Prevx. Not really sure about DefenseWall Prevx but my sense is they are different I like the sandboxing of my Interent apps

 

AV is NOD or KAV depending on machine

Firewall is either Outpost. Zonelabs and maybe Tiny (if I get the courage to switch) depends on machine

Antispyware ZeroSpyware or free MSAS

Registry protection - Regrun or one of the HIPS but could be Regdefend, SNS, kinda support from OA,PG and Prevx

HIPs - thats the difficult area. All slightly different, maybe best overall could be

Tiny
Prevx
Appdefend + Regdefend
or SNS


I tend to group Defensewall and OA into a more specialist area

And PG I've had for a very long time so an old friend - would liek to see next version but suspect that Ghost Security suite will be better overall

 

That,s a long list. I think you are making it diffuclt for you. As I said just choose any comination you like, i don,t think there is much difference in most of these choices. And BTW you can,t get 100 security anyway. The nore choices you wil consider, the more difficult will be to decide.

about HIPS, you have to run only one otherwise I don,t know hoe u can tackle these pop ups. They really kill me.

And I can,t understand how the decision of Av and firewall depends upon machine? And even if it depends, which machine you are going to get?

 

I have three machines


Depending on the combination the number of pop ups is not all that high unless you install an app.

As you say there are many choices but I'd rather go for the strongest solution

Prevx and SNS are about equiv - clever not too many popups

OA looks very promising but ... PG and outpost do most of this

PG and Appdefend are about the same (different protection or granularity depending how you look at things)- strong with more popups

Regdefend interesting addition to Appdefend but SNS could do both PREVX mostly AD +RD

Tiny - not sure I could configure this to my satifaction so a no at the moment but it looks great


Oh as you say Rollback and FisrtDefence are useful for high availability and fixing screw ups - both great apps

 

for AV at least, i would not feel comfortable having KAV on older comps but nod32 would be fine. even on an athlon xp 2000 w/ 512mb, kav is too much.

 

So KAV needs more resources.

 

IMHO, yes. others may run KAV and not notice any performance hit.