What is your security setup these days?

Wolf, since you are back with Firefox, check this addon, is perfect to make Firefox function and look like a real browser.
https://addons.mozilla.org/es/firefox/addon/classicthemerestorer/

You can test it, practice making changes, under Sandboxie.

Bo

 

Will check it out Bo. Thanx.

 

Polished my signature and profile, although nothing really changed.

*Actually, considering Crystal Security and using ZAM's on-execute protection in the future. That'll be interesting to say the least.

*Activated my free license for HMP.A and removed EMET+MBAE. Working great!

*Trying EEK again.

 

Windows 7 Pro SP1 x64

Firewall & Anti-Virus:
Router NAT/SPI (Password Protected)
Emsisoft Internet Security 9.0.0.4799

Blocking/Hardening:
AppGuard 4.1.45.1
Malwarebytes Anti-Exploit Premium 1.05.3.1016
Norton ConnectSafe DNS (Malware, Phishing)

 

Windows 8.1 (64 bit)

Real-time:
EXE Radar Pro
Sandboxie Pro
HitmanPro.Alert 3
Windows Firewall Control 4

On demand (monitoring)
Process Explorer
System Explorer

On demand (scanning)
VirusTotal Uploader
Malwarebytes Anti-Malware

-------------------------------------
If HMPA keeps conflicting with Sandboxie, I will probably have to replace it with MBAE. I'm also thinking about giving Zemana Antilogger Free a try, and I'm still considering to reinstall (and buy) SpyShelter.

 

Windows 8.1 Pro x64:
Software Restriction Policies
User Account Control on max
Windows Firewall
Various security tweaks

Google Chrome:
uBlock: Ads + Privacy + Malware + Social & 3rd party scripts and frames
Group policy template - only whitelisted extensions allowed & cache disk directory redirected to RamDisk
Configured advanced settings, plugins, flags, apps, search engines for security and privacy

Backup:
Macrium Reflect Standard for daily incremental updates

 

That is a setup I can endorse

 

My new security setup (WIndows XP Home, Admin account):

1. Panda Free Antivirus
2. Malwarebytes Anti-Exploit Premium (all shields up)
3. CryptoPrevent
4. Chrome runs limited (plugins click to play, μblock, poperblocker)
5. Firefox secondary browser runs limited (NoScript tighten restrictions, Strict Pop-up Blocker) mainly for playing an online flash game
6. Norton Dns on router
7. Blue Coat K9 Web Protection
8. SpywareBlaster
9. No Java

 

Thnx, Kees. I know that it's similar to some of your previous setups

 

Here is my security setup:

1. $os with all security patches installed
2. $av
3. $firewall
4. Several protections to reduce the impact of exploits
5. Reduced user rights
6. Extensive use of encryption

IMHO it doesn't make sense to tell which exact protections you're using.

BTW: I have also taken additional steps to prevent attacks like: http://www.jakoblell.com/blog/2013/...ns-server-configuration-of-tp-link-routers-2/

Also an additional advise: Deny access to T2EMBED.DLL (Prevents the embedding of TTF fonts.) TTF exploits are the Holy Grail of exploits...

Takeown.exe /f "%windir%\system32\t2embed.dll"
Icacls.exe "%windir%\system32\t2embed.dll" /deny everyoneF)
Takeown.exe /f "%windir%\syswow64\t2embed.dll"
Icacls.exe "%windir%\syswow64\t2embed.dll" /deny everyoneF)

 

Ahh yes I remember Duqu what was it, in 2011? Also the reported TrueType font parsing vulnabilities mid 2013 and end 2014.

To be honest I did not have it on my radar, due to the relatively large time between those incidents, so thanks for sharing this

 

Good Afternoon! WSA Security Plus...Mbam Pro...Appguard. Sincerely...Securon

 

VoodooShield Pro and Adguard Premium

 

Windows-7 Prof 32-bit, 2GB RAM.
Router
Windows FW
Emsisoft AM
MBAE free

The user of the PC is non-techy. The setup is on PC almost for 2 months and still no questions or lamentations from the user.

 

Feb. 23, 2015 - Updated, Added, Removed

Network

• Two Netgear Nighthawk R7000-100PAS Routers (Stock Firmware)
• Four Netgear PowerLine AV 500 Adapters
• Wired Cat5e Connection between both Routers
• WPA2-PSK AES Encryption
• SPI & NAT Firewalls Enabled
• OpenDNS Configuration

Computers

• Desktop - Windows 8.1 Pro with Media Center x64
• Laptop - Windows 8.1 x64

Built-In Security

• USER ACCOUNT CONTROL: HIGHEST SETTING
• EMET 5.1: MAXIMUM SECURITY SETTINGS
• WINDOWS SMART SCREEN: ENABLED
• WINDOWS DEFENDER: DISABLED
• WINDOWS FIREWALL: DISABLED

Resident

• Emsisoft Internet Security 9.0.0.4971 Beta (Paid)
• Appguard 4.2.6.1 Beta (Paid)** - Medium
• NVT ERP 3.1.0.0 Build1-22022015 Beta (Paid)** - Alert Mode
• Sandboxie 4.15.12 Beta (Paid) - Sandboxie Container Folder on RAMDisk
• Adguard Premium 5.10.1190.6188 (Paid)
• DNSCrypt 0.0.6 - HTTPS Enabled
• DNSCrypt Windows Service Manager 0.2 - DNSCrypt.eu Denmark

On-Demand

• PeerBlock 1.2 (P2P Blocking List)
• Shadow Defender 1.4.0.578** (Paid)
• Macrium Reflect 5.3 build 7256*
• VMWare Workstation 11.0.0 Build 2305329** (Paid)

Browser, Immunization, Tweaks

• Chrome 40.0.2214.115 x64 (HTTPS-Everywhere, Gmelius) - Chrome Profile Folder on RAMDisk and Sandboxed
• Homepage and Search Providers set to Startpage (Chrome and IE)
• LastPass 3.1.50 Premium (Chrome and IE)
• Spyware Blaster 5.0 (All Protection Enabled + Customblocking.txt)
• CryptoPrevent 7.4.11

*Macrium Reflect (Full Daily Backup -Desktop, Full Weekly Backups - Laptop)
**VMware Workstation, Appguard and NVT ERP only installed on Desktop[/s] \ Shadow Defender only installed on Laptop

dja2k

 

http://t7j7l.blogspot.com/2015/02/my-security-setup.html

 

Don't they partially double/triple each other?
EIS - powerful BB
AG - HIPS, Restrictions
ERP - advanced AntiExecutable

 

Perhaps some overlap. I run a similar setup (signature) and mine have had no conflicts and I feel safer with a layered approach. I get prompts from the different programs depending on what is happening. The MBAE test tool (in AG medium mode) I get waring from MBAE first. In AG locked down mode AG reacts first. EICAR test EIS reacts first, I just feel safer online running the three programs.

 

I'm excessive at times (usually at network level, where it counts), but this overlap is over the top. Also I wonder why he is running P2P on Peerblock and not the most powerful databases like Malcode, Spyware, and C&C?

 

Perhaps they do overlap but I've been running them all together for a long time now without issues. Also I only use Pearblock for Torrent Downloading and nothing else

dja2k

 

my linux is set with the gufw enabled with no av installed..

nothing else thats it.

 

Good Evening! Going partially Back to the Future. Re-installed ESET V4 I.S. in tandem with WSA Security Plus. Can't believe how light and nimble Eset V4 is. Sincerely...Securon

 

Peerblock is very good as a malware blocker. I pay the $9 a year for advanced lists, and constant updates for that reason. It blocks another 1.2 million malicious/suspicious IP's from all of my desktops. I've been working on a script to integrate Peerblock lists into Untangle. So far I haven't gotten far, but it would be.. Remarkable.

 

We run the same setup, 3 programs is enough for me also.

 

Sandboxie and HitmanPro.Alert 3 build 155 RC