What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    146
    Hi bo elam
    Thanks for pointing that out. I have never created a sandbox in Sandboxie for programs other than my browsers.
     
  2. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    4,033
    Location:
    Nicaragua
    Using one sandbox, is really the first step with Sandboxie. Separating/isolating your browsers in their own sandbox (I think this is what you doing now, Right?) is perfect as a second step.

    To get more, you sandbox most or all (what I do) programs you run in a daily basis. And to get even more, you sandbox your USB drives and Downloads folder.

    I think you like Sandboxie, I ll help you like it more :). But tell me what I am asking you in the first paragraph and also tell me if you are using the free or paid version.

    Bo
     
  3. pling_man

    pling_man Registered Member

    Joined:
    Feb 11, 2010
    Posts:
    520
    Location:
    UK
    Hi lunarlander & bo elam.

    I do restrict what can run, internet access, and limit file access in my sandboxes and have a few for different applications.
     
  4. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    146
    Hi bo elam

    I currently run all browsers inside 1 sandbox. I suppose running them in separate sandboxes is better. What is the reason for sandboxing the Downloads folder? I have a license for Sandboxie.
     
  5. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    4,033
    Location:
    Nicaragua
    Absolutely, run your browsers in separate sandboxes. Why? If you sandbox all browsers in one sandbox, they are isolated from the system but not from each other. To maximize isolation, you separate programs from each other by using dedicated sandboxes for each browser or program, doing this allows you to tailor setting in each sandbox according to the browser, program, or purpose of the sandbox. More security, sandboxing works better.

    Downloads folder? Since you have a license, you can force folders. Forcing your Downloads folder is like a safety net. Basically, anything that's placed in a forced folder, runs sandboxed automatically when executed. For this to work perfectly, its good to get in the habit of downloading to one folder and one folder only. Thats what I do. The only exception are installers that I am going to run out of the sandbox (very, very rare for me). This files I download to the desktop.

    Bo
     
  6. Quassar

    Quassar Registered Member

    Joined:
    Oct 19, 2011
    Posts:
    77
    I have similar situation but i created on HDD small partition called TEMP where moved all %temp% system folder to this one and other programs which create logs file etc.. and work so fast casue is also wiped by RamDisk 5GB Capacity from Shadow Defender :)
     
  7. justenough

    justenough Registered Member

    Joined:
    May 13, 2010
    Posts:
    1,513
    For years Sandboxie has kept me safe.
     
  8. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,188
    Welcome to the club...:thumb:
     
  9. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,115
    Location:
    Among the gum trees
    For years common sense (maybe not so common) has kept me safe. :p
     
  10. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    849
    believe me it's so not common that it should be referred to as "rare sense".there wouldn't be half of the infections,had it been "so common".
     
  11. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    3,386
    Truth!
     
  12. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,396
    Location:
    Location Unknown
    I'd like some opinions on a possible Hitmanpro.alert + VoodooShield + SBIE + Windows Firewall Control combo. Is it too repetitive? I'd like something with a cloud scanner and this combo seems light and secure.
     
  13. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    1,964
    I used KIS + VS for some days. VS is really lite, no additional burden.

    I stopped using KIS as I found it's too intrusive and somehow heavy on my PC (4 GB ROM).

    Now I try ZoneAlarm FW free + Emsisoft AM + MBAE.
     
    Last edited: Jul 3, 2017
  14. Tinstaafl

    Tinstaafl Registered Member

    Joined:
    Jul 30, 2015
    Posts:
    409
    Location:
    USA
    I can vouch for HitmanPro.Alert + VoodooShield! No problems at all running those two together. Also running with Avira for AV and Windows 10 Firewall Control. Light and secure!

    Don't use Sandboxie, though, but I figure that the anti-executable VoodooShield is good enough. "VoodooShield’s three layers of protection include an application whitelisting lock, a machine learning / Ai
    decision engine and a multi-engine blacklist scan."
     
  15. Tinstaafl

    Tinstaafl Registered Member

    Joined:
    Jul 30, 2015
    Posts:
    409
    Location:
    USA
    Haven't had a chance to try this feature out yet, but this is available in VoodooShield advanced features. You can respond to an intercepted file prompt with "Block", "Sandbox", or "Allow".

    Local Sandbox
    Although the Cuckoo / Remote Sandbox is the preferred sandbox, VoodooShield also offers the ability
    for the user to execute a blocked file in a local sandbox, which runs the file with limited rights. Files that
    require administrator approval to perform certain tasks will typically fail in the local sandbox. But keep
    in mind, files that require administrator approval are capable of performing dangerous actions on the
    computer, so if a file fails in the local sandbox, there is a good chance that the user should not execute
    this file outside of the sandbox.
    Cuckoo / Remote Sandbox
    VoodooShield also offers the ability for the user to execute a file in a remote sandbox, safely in a remote
    computer, and receiving a full detailed analysis of the file’s execution, before deciding to run the file on
    their machine. The user also has the ability to watch the Cuckoo Sandbox analysis in real-time, in a
    Remote Desktop session, which allows the user to see first-hand the implications of running the blocked
    file, safely, on a remote machine before they choose to allow the file, as demonstrated in the
    ransomware sample below.
     
  16. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,188
    Too hard to find Common Sense in a world of Absurdity... :D
     
  17. Warklen

    Warklen Registered Member

    Joined:
    Jan 17, 2009
    Posts:
    110
    Sandboxie-VoodooShield-WindowsFireWallControl.

    Really liking VoodooShield
     
  18. Crystal_Lake_Camper

    Crystal_Lake_Camper Registered Member

    Joined:
    Mar 20, 2016
    Posts:
    69
    qihoo 360 total security ( premium ) - voodooshield pro - binisoft windows firewall control ( paid ) - unchecky - adguard premium desktop.
     
  19. imuade

    imuade Registered Member

    Joined:
    Aug 4, 2016
    Posts:
    292
    Location:
    Italy
    So, you don't use any AV beside VooDooShield?
    Actually, since VS goes to check VirusTotal, I don't see any benefit in using VS with an AV already used in VT.
    Maybe it would be better to couple VS with a behavior blocker, but nowadays there aren't many standalone BB left
     
  20. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    4,115
    Location:
    Among the gum trees
    VS will stop almost all infections, but on its own the weakest link will always be the user. An AV with PUP detection is a great backup. An even better backup is an image backup before you make changes to your machine.
     
    Last edited: Jun 30, 2017
  21. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,084
    Location:
    North Carolina
    Norton Antivirus
     
  22. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    1,909
    Location:
    Cape Town, South Africa
    I use the first three (not WFC) without issues.
     
  23. Tinstaafl

    Tinstaafl Registered Member

    Joined:
    Jul 30, 2015
    Posts:
    409
    Location:
    USA
    +1 :thumb:
     
  24. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    1,882
    AVG INTERNET SECURITY Zemana Antimalware pro
     
  25. imuade

    imuade Registered Member

    Joined:
    Aug 4, 2016
    Posts:
    292
    Location:
    Italy
    Just moved from CCAV to VS, everything is working smoothly and my PC is quite fast.

    Windows 10 Creators Update
    Windows Firewall + TinyWall
    VooDooShield free (AutoPilot Mode)
    Zemana Antimalware free and HitmanPro free (on demand)
    Chromium with Adaware Ad Block
    OpenDNS
    SmartScreen enabled
    UAC disabled
    Windows Defender disabled
    Some hardening as explained here http://hardenwindows10forsecurity.com/
     
    Last edited: Jul 2, 2017
Loading...