What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    517
    Location:
    United States
    See my thread here.
     
  2. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Yep, it is like AppGuard plus Trusteer without the key encryption of trusteer and the memory protection of AppGuard.

    I have got a free lisence of AppGuard. For x64 there is no leaner and effective solution than AppGuard. AppGuard has the protection of full flown HIPS without the overhead, because it focusses on the entrypoints of malware only. Don't be disappointed on low matousec or Comodo test scores, in practise it is really strong.

    My personal top HIPS sandboxing
    On x64 1. AppGuard , 2 SBIE
    On x32 (x86) 1. DefenseWall 2. SBIE

    On Vista and higher with UAC enabled it really does not matter whether you use first or second choice (personal preference make the difference, not protection power).

    You have a Pro version, why not use the power of GPO?
     
  3. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,637
    DefenseWall 3.21
    Shadow Defender 1.1.0.325

    AdMuncher 4.93
    Macrium Reflect 4.2

    OpenDNS
    Opera
     
  4. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    517
    Location:
    United States
    What is everyone's opinion on using EMET with Sandboxie? Do you think it would help much?
     
    Last edited: Feb 28, 2013
  5. jo3blac1

    jo3blac1 Registered Member

    Joined:
    Sep 15, 2012
    Posts:
    739
    Location:
    U.S.
    NoScript is the best!
     
  6. luciddream

    luciddream Registered Member

    Joined:
    Mar 22, 2007
    Posts:
    2,545
    Most definitely. I think DEP especially + a restricted Sandbox provides very good app protection against exploits... not to mention all the other app specific mitigations offered by EMET.
     
  7. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    517
    Location:
    United States
    But why? Who cares if my browser get's exploited if it's in a sandbox? It can't do anything right? The only thing I can think of would be to log passwords or crash the program.
     
    Last edited: Mar 1, 2013
  8. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,738
  9. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    517
    Location:
    United States
    I do have internet access, start/run access, and have the rights dropped of all my sandboxes. I also have blocked access to any of the locations I store my files.
     
  10. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Disagree: Nothing beats lynx browser in terms of security.

    To put "software mutilation" (disabling features which enhance the user experience of software) in perspective
    Allowing all scripts blindly originating from *.com, *.net, *.edu, *.inf, *.org, *.eu, *.nl and blocking all others will reduce my chance of being infected through the internet with 90%. My browser offer this feature. Add a decent AV with web-filtering and script filtering (like Avast) and you end up with a infection chance that is less than the chance of being victim of an airplane accident.

    "Best" does not look so good anymore :D
     
    Last edited: Mar 1, 2013
  11. jo3blac1

    jo3blac1 Registered Member

    Joined:
    Sep 15, 2012
    Posts:
    739
    Location:
    U.S.
    Sounds interesting solution. Lynx browser. Never heard of it. Will need to do some research.
     
  12. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Don't bother it is a text based browser dating from ancient history when I had hair :blink:, we all dressed as if it was mardy grass all the time :cautious: and Larry Elison sponsored research on SMP cpu's (multiple cores CPU's sharing same bus) as a cheap version of massive parallel processors (like the cray had at that time).
     
    Last edited: Mar 1, 2013
  13. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    4,047
    Dear Kees1958.
    But surely lynx browser is one of pioneers in browsing and thus should we not be thankful for those as our modern browser would most likely not have evolved.:D
     
  14. th3m

    th3m Registered Member

    Joined:
    Jan 28, 2013
    Posts:
    11
    When you guys mention EMET, which version do you mean? 3.0 or 3.5?
     
  15. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    5,789
    Location:
    Nicaragua
    Hi J L, you are right about SBIE not being bulletproof, as far as I know the sandbox has been leaked a couple of times, who knows, it might of have happened a couple more times than that but when it happens is so rare, always involving special circumstances, that I guess that's why you didn't link anything more recent than 2009.

    Bo
     
  16. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    517
    Location:
    United States
    Exactly what I was thinking. Tzuk is pretty active with the development of Sandboxie. When something get's reported, he fixes it promptly. I'm not too worried about being infected this way as this would most likely be malware targeted at defeating Sandboxie. Imo, the odds of coming across something like that is slim as a very small percentage of the internet user population uses the program and so it wouldn't make sense to create something like that and distribute it when you could be infecting countless other computers. I'm not saying it won't happen, but when it does, I have my on-demand scanners to (hopefully) detect it and images to restore.
     
  17. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    While I share your thought, and I'm a paid user, we can't forget that Sandboxie isn't massively used.

    For example, how many users does Google Chrome (with its own sandbox) have? Compare it with Sandboxie users. Should Sandboxie ever have at least the same amount of users, how fast could Sandboxie's developer keep up with patches, not to mention compatibility issues.

    Like every other piece of software, Sandboxie is just code and for sure with its fair amount bugs. I wonder how things would be like if Sandboxie was scrutinized the same way Google Chrome is.

    I'm glad Sandboxie isn't widely used. ;)
     
  18. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,823
    So, I've been testing these setups on a test machine I have for quite some time now, not only for me, but for a few computer clients I have. These are all very good setups, but I would like to get the public opinion on these

    Which one of these would you choose?

    Number 1:
    avast! Free Antivirus
    NoVirusThanks EXE Radar Pro x64
    Zemana AntiLogger Free

    Number 2:

    avast! Free Antivirus
    Malwarebytes Anti-Malware Pro
    Zemana AntiLogger Free

    Number 3:

    avast! Free Antivirus
    Malwarebytes Anti-Malware Pro
    NoVirusThanks EXE Radar Pro

    Number 4:
    avast! Free Antivirus
    Online Armor Free

    Number 5:

    avast! Free Antivirus
    Online Armor Free
    Sandboxie

    Number 6:
    avast! Free Antivirus
    Online Armor Free
    NoVirusThanks EXE Radar Pro

    Number 7:
    avast! Free Antivirus
    NoVirusThanks EXE Radar Pro
    Sandboxie
     
  19. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,550
    Location:
    Canada
    for me i think you are doing a good job and your security set up is very strong
     
  20. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,823
    Thank you :D

    I just want to provide a good and strong setup for my clients. I was thinking Number 2 would probably be more suitable for them.

    As for me, I am jumbling between the rest that I listed.

    What makes it hard, is that they all perform well in my tests....Kind of hard to choose.
     
  21. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,975
    Location:
    Boston, MA
    5 or 7. Sandboxie has to be involved. Avast 8 free is too good to pass up.
     
  22. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,823
    Thank you for your input, I'll consider your suggestions
     
    Last edited: Mar 1, 2013
  23. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,823
    I forgot to add one to my list....

    Number 8:

    avast! Free Antivirus
    Sandboxie
    Zemana AntiLogger Free

    If I remember correctly, that setup was the lightest out of all the one's I tested/listed.
     
  24. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,975
    Location:
    Boston, MA
    I might actually try number 7 myself. I already have ERP and sandboxie. Tough choosing between WSA AV and Avast.
     
  25. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,823
    You honestly can't go wrong with either of them, WSA AV and Avast are very light and provide great protection.

    I don't know, that is one hard decision to make

    Although, for me...it's avast! all the way
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.