What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Windows 7 Ultmate 32 bits (E5200 dual core at 3 GHZ with SSD + 2xHDD + NAS)
    Changes in blue, to clearify the overall picture:
    - first bullet in all three groups is threatgate protection (external sources)
    - second is user space protection (sandbox also protects medium IL)
    - third is admin space protection (incl. user loadpoints)


    Intrusion mitigation
    - Enabled Windows build-in FireWall for outbound application filtering (Router's SPI is also enabled)
    - Execute content in Chromium's sandbox with Chrome PDF/PPAPI-flash player, allow javascript from [*.]NL & COM
    - hardened system: GPO templates (NSA, Outlook, Chromium), locked user loadpoints, disabled 60 services, added EMET

    Execution control
    - Deny execute file/access for Everyone in e-mail, download, media folders and USB (ACL/GPO)
    - Deny execute of all executable files in all basic user writeable folders for HomeUsers (SRP)
    - Deny elevation/installation for unsigned executables/drivers for all Users (UAC/GPO)

    Blacklist scanning
    - IP-blacklisting: using Norton DNS via router and BD trafficlight in browser
    - On-execute check: Crystal Security hash lookup at VirusTotal
    - Loadpoint heuristics: HitmanPro (EWS) cloudscan

    I might as well stop with micro tweaks (back to initial safe_admin), Regards Kees :D
     
    Last edited by a moderator: Aug 18, 2013
  2. safeguy

    safeguy Registered Member

    Joined:
    Jun 14, 2010
    Posts:
    1,794
    I think you mentioned somewhere before that you don't install new software often. I wonder why don't you use SUA as your default daily account then? Safe_SUA for daily use and Safe_Admin for admin tasks?

    Also, why not 64-bit? You don't seem to use any software that is affected by KPP and based on this, your hardware seems capable enough to support 64-bit.

    P.S. I like the "Safe_Admin" name. Goes well with my pseudonym here:p
     
  3. :D I try out approx 10 to 15 zero days a month, not much software :eek: Have found only one zero day since 2010 elevating to admin, escaping SRP (binary was in a form which was not denied execution with ACL either). Did not survive re-boot (due to GPO policy and WFS protection), borked up windows though (unable to install/update programs anymore).

    SUA on XP is great, since Vista we have UAC, SRP enforces deny execute for medium level processes anyway, while allowing admins to install, security difference with SUA is minimal. Ease of use advantage SUA has reduced over time (more programs running in LUA and more tricks to run elevated).

    thx for the suggestions

    regards Kees
     
  4. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    4,051
    I have comodo firewall 5.12 and avast 8 running here in tandem very nicely.I think i shall keep this combo as i dont have much faith in the comodo antivirus for some peculiar reason.
     
  5. KelvinW4

    KelvinW4 Registered Member

    Joined:
    Oct 11, 2011
    Posts:
    1,199
    Location:
    Los Angeles, California
    The reason why I dont use the Antivirus is because it's very heavy.
     
  6. Overkill

    Overkill Registered Member

    Joined:
    Mar 16, 2012
    Posts:
    2,343
    Location:
    USA
    What kind of ram usage does ax64 use?
     
  7. mattdocs12345

    mattdocs12345 Registered Member

    Joined:
    Mar 23, 2013
    Posts:
    1,887
    Location:
    US
    Your signature says otherwise.
     
  8. The Hammer

    The Hammer Registered Member

    Joined:
    May 12, 2005
    Posts:
    5,751
    Location:
    Toronto Canada
    He means he doesn't use Comodo's. By the way the bright yellow in your sig is really hard to read.
     
  9. mattdocs12345

    mattdocs12345 Registered Member

    Joined:
    Mar 23, 2013
    Posts:
    1,887
    Location:
    US
    I know... I just changed it. I also changed my security set up. Got rid of ZAL Free and EEK.
     
  10. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,742
    Location:
    Canada
    Rompin Raider. i understand:) but it is good to test them all even if you dont need it,but proactive protection is the real malware blocker:thumb:
     
  11. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,974
    Location:
    Parallel Universe
    Only WSA on Win 8.
     
  12. Antarctica

    Antarctica Registered Member

    Joined:
    Feb 25, 2003
    Posts:
    1,965
    Location:
    Canada
    Windows Firewall with TinyWall
    Emsisoft Anti-Malware
    AppGuard

    Same configuration for the last 6 Months without any problem
     
  13. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,742
    Location:
    Canada
    WebRo0t AntiVirus 2o13 with firewall:thumb: :thumb:
     
  14. Tyrizian

    Tyrizian Registered Member

    Joined:
    Apr 26, 2012
    Posts:
    2,838
    Been running this setup since July 29th, still quite happy with it:

    avast! Free Antivirus
    Blue Coat K9 Web Protection
    Sandboxie (Lifetime)
     
  15. KelvinW4

    KelvinW4 Registered Member

    Joined:
    Oct 11, 2011
    Posts:
    1,199
    Location:
    Los Angeles, California
    What shields did you install?
     
  16. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    BufferZone
    Online Armor
    Avast
     
  17. Francis93

    Francis93 Registered Member

    Joined:
    Feb 1, 2011
    Posts:
    311
    Any suggestions to complement/supplement ESET Smart Security on Windows 8 Pro x64?

    ESET is so bored and he needs a friend, badly. ;)
     
  18. ams963

    ams963 Registered Member

    Joined:
    May 3, 2011
    Posts:
    5,974
    Location:
    Parallel Universe
    Webroot SecureAnywhere of course.;)
     
  19. Francis93

    Francis93 Registered Member

    Joined:
    Feb 1, 2011
    Posts:
    311
    Been thinking of WSA lately, might give it a try. :):thumb:
     
  20. kupo

    kupo Registered Member

    Joined:
    Jan 25, 2011
    Posts:
    1,121
    BufferZone? Is it still getting updates? I tried to email support but they didn't replied.
     
  21. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,742
    Location:
    Canada
    ESET Nod32 Antivirus 6 of course:thumb: :thumb:
     
    Last edited: Aug 15, 2013
  22. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    The timestamp on the installer is 19 February 2013. Rather old. Close to abandonware. Hopefully will not.
    There's some issues with IceDragon in the Zone, unlike SBIE.
     
  23. Antimalware18

    Antimalware18 Registered Member

    Joined:
    Dec 12, 2008
    Posts:
    417
    Still using whats in my sig :thumb:

    Been using 360 for seven days now, im going for a personal record :D
     
  24. CrusherW9

    CrusherW9 Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    517
    Location:
    United States
    Are you using Avast! to only auto scan your downloads folder? I was thinking about trying something like this with my setup. That way, it's less of a hassle to recover things to my downloads folder, scan them with Hitman Pro, and then wait 10 seconds to close the HMP screen. I was actually pondering enabling the auto recover feature of Sandboxie but it just seems like too much of a hole.
     
  25. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,742
    Location:
    Canada
    ESET Nod32 Antivirus 6 has hips and it is better and better
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.