What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,698
    Location:
    Italy
    W.10 Home x64 22H2
    Local Account - Standard user - Limited permissions
    UAC maximum - Always notify
    Cloudflare DNS
    Onedrive,Cortana,Advertising ID,Web Search - disabled
    Usage of location data for Cortana disabled
    Telemetry OFF
    Removed some Windows optional features.

    Microsoft Defender Firewall hardened with H_C.
    Microsoft Defender hardened with Configure Defender (Customized level) - Cloud Block Level

    • Ransomware protection - disabled
    • No run in a sandbox
    • Core Isolation: Memory integrity - disabled
    • Some softwares hardened with maximum AE protection
    • All Windows Exploit Protection options - enabled

    MS Edge --disable-webgl --no-pings --enable-features=IsolateSandboxedIframes

    • Home page: https://start.duckduckgo.com/
    • Search engine = only DDG
    • Enabled Security Mitigations - Strict
    • Detection Protection - Strict
    • Clipboard permissions - blocked
    • Next DNS DOH - HaGeZi Multi PRO++ + OISD big
    • Share browsing data with other Windows features - disabled
    Policies:
    • AutomaticHttpsDefault = 2
    • HideFirstRunExperience - true
    • DnsOverHttpsMode = secure
    • DnsOverHttpsTemplates = Next DNS
    • TLSCipherSuiteDenyList = "0x002f","0x0035","0xc013","0x009c","0xc014","0x009d"
    • HubsSidebarEnabled - false
    • CryptoWalletEnabled - false
    • SyncDisabled - true
    • AudioSandboxEnabled - true
    • NetworkServiceSandboxEnabled - true
    • Edge3PSerpTelemetryEnabled - false
    • AllowSurfGame - false
    • ExtensionManifestV2Availability= 2
    • WebWidgetAllowed - false
    • ShowRecommendationsEnabled - false
    • ManagedSearchEngines = [{"allow_search_engine_discovery":false},{"is_default":true,"name":"DuckDuckGo","keyword":"duckduckgo.com","search_url":"https://duckduckgo.com/?q={searchTerms}","suggest_url":"https://www.duckduckgo.com/qbox?query={searchTerms}","image_search_url":"https://www.duckduckgo.com/images/detail/search?iss=sbiupload"}]

    Edge://flags:

    Enabled:

    • Block scripts loaded via document.write
    • TLS 1.3 Early Data
    • TLS 1.3 hybridized Kyber support
    • Block insecure private network requests.
    • Parallel downloading
    • Show block option in autoplay settings
    • Experimental Tracking Prevention Features
    • Enable Kyber768 + NIST-P384 TLS Kyber Confidentiality
    • Project Robin experiment
    • Enable Digital Signature for PDF
    • New PDF Viewer
    • Strict-Origin-Isolation
    • Back-forward cache - Enabled force caching all page
    • Third-party Storage Partitioning
    • Origin-keyed Agent Clusters by default
    • Origin-keyed Processes by default
    Disabled:
    • Privacy Sandbox Ads Notice
    Extensions:
    • uBlock Origin Lite
    • SwiftDial
    • Stream Recorder - off by default
    • Video DownloadHelper - off by default

    Firefox

    • Home page: https://start.duckduckgo.com/
    • Search engine = DDG
    • Next DNS DOH - HaGeZi Multi PRO++ + OISD big
    • Tracking protection: Strict
    • DNS over HTTPS : Max Protection
    • HTTPS-only-mode enabled
    • Pocket disabled
    • Clearing browsing data on exit
    • Firefox telemetry disabled
    • Protection against fraudulent content and dangerous software enabled - all enabled
    • Some FastFox.js settings
    • Some Arkenfox.js settings
    Policies
    • OverridePostUpdatePage set to ""
    Extensions
    • uBlock Origin - Hard Mode with TLD's
    • Video DownloadHelper - off by default
    • HLS Downloader - off by default
     
    Last edited: Jul 11, 2024
  2. acid king

    acid king Registered Member

    Joined:
    Jan 19, 2019
    Posts:
    118
    Location:
    europe
    @Sampei Nihira Thanks for report your config
    but it becomes heavy and boring
    even worse, 5 times in 2 months, that's most of the last 2 pages of the forum..
    stop it please LOL
    we don't care about full config flags and policies about edge !
    Betterfox > Edge
     
    Last edited: Jul 7, 2024
  3. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,564
    Location:
    Flat Earth Matrix
    Exactly, if he was not reporting his config there would be nothing to read. He is the only reason I watch this thread.
    You do not care! For example Chromium browsers ignore DOH and use DNS by default. The devil is hidden in details, vulnerabilities abuse those, and 99% malware infects PC via a browser, so closing every door and window can help.

    P.S. You can always put the user on Ignore list, I do it all the time.
     
    Last edited: Jul 7, 2024
  4. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,698
    Location:
    Italy
    There are 2 changes in this configuration that you cannot put in the previous configurations because they are not editable.
    If you don't care, you don't read.
    ;):)
     
  5. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    4,098
    Location:
    Canada
    Windows 21H2:

    WHHL with both SWH and WDAC enabled

    MX Linux 23:

    Uncomplicated Firewall with outgoing restrictions to select ports and some IP addresses
    Apparmor hardening of browsers, Network Manager, pulse Audio and Libreoffice, plus a few other common services.
     
  6. acid king

    acid king Registered Member

    Joined:
    Jan 19, 2019
    Posts:
    118
    Location:
    europe
    @TairikuOkami
    thanks for advice
    done! Sampei Nihira on ignore list and it's now easier to read
    He was constantly bragging about every change edge config and spamming his full config every week.
    It's completely useless and annoying.
    i dont care about security from Edge

    BTW "the devil is blocked" by BLACKFOG with ADX + HitmanPro.Alert / OSArmor (choose one of two).. :)
    Cheers
     
    Last edited: Jul 8, 2024
  7. G1111

    G1111 Registered Member

    Joined:
    May 11, 2005
    Posts:
    2,301
    Location:
    USA
    Firewall & Anti-Virus:
    Router NAT/SPI (Password Protected)
    Windows Firewall (Malwarebytes Windows Firewall Control 6.11.0.0)
    Malwarebytes Premium 5.1.6.117

    Blocking/Hardening:
    AppGuard 6.7.129.2
    HitmanPro.Alert 3.8.26 Build 983
    Quad9 DNS
     
  8. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,660
    Location:
    Under a bushel ...
    @digmor crusher Is this still your security config? Wanting to keep it simple.
     
  9. digmor crusher

    digmor crusher Registered Member

    Joined:
    Jul 6, 2012
    Posts:
    1,237
    Location:
    Canada
    You betcha.
     
  10. acid king

    acid king Registered Member

    Joined:
    Jan 19, 2019
    Posts:
    118
    Location:
    europe
    Hi.
    Did you stop BlackFog ?!
    br.
     
  11. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,660
    Location:
    Under a bushel ...
    Nope. Just looking at alternate configs. I have different setups in different Windows instances.
     
  12. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,497
    Location:
    U.S.A. (South)
    Windows 11 Home 23H2
    NVMe SSD

    Windows Firewall Control (Malwarebytes)
    OLD EXE Radar Pro + NVT Driver Radar Pro
    On- Demand Shadow Defender
    AppLocker & WDAC courtesy AaronLocker- AppLOcker Hardening
    Microsoft Defender
    OLD Secure Folders

    Chrome w/uBlock and AdGuard

    https://github.com/microsoft/AaronLocker


     
    Last edited: Sep 20, 2024
  13. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,698
    Location:
    Italy
    W.10 Home x64 22H2
    Local Account - Standard user - Limited permissions
    UAC maximum - Always notify
    Cloudflare DNS
    Onedrive,Cortana,Advertising ID,Web Search - disabled
    Usage of location data for Cortana disabled
    Telemetry OFF
    Removed some Windows optional features.

    Microsoft Defender Firewall hardened with H_C.
    Microsoft Defender hardened with Configure Defender (Customized level) - Cloud Block Level

    • Ransomware protection - disabled
    • No run in a sandbox
    • Core Isolation: Memory integrity - disabled
    • Some softwares hardened with maximum AE protection
    • All Windows Exploit Protection options - enabled

    MS Edge --disable-webgl --no-pings --enable-features=IsolateSandboxedIframes

    • Home page: https://start.duckduckgo.com/
    • Search engine = only DDG
    • Enabled Security Mitigations - Strict
    • Detection Protection - Strict
    • Clipboard permissions - blocked
    • Next DNS DOH - HaGeZi Multi PRO++ + OISD big
    • Share browsing data with other Windows features - disabled
    Policies:
    • AutomaticHttpsDefault = 2
    • BrowserSignin = 0
    • HideFirstRunExperience - true
    • DnsOverHttpsMode = secure
    • DnsOverHttpsTemplates = Next DNS
    • TLSCipherSuiteDenyList = "0x002f","0x0035","0xc013","0x009c","0xc014","0x009d"
    • HubsSidebarEnabled - false
    • SyncDisabled - true
    • AudioSandboxEnabled - true
    • NetworkServiceSandboxEnabled - true
    • Edge3PSerpTelemetryEnabled - false
    • AllowSurfGame - false
    • ExtensionManifestV2Availability= 2
    • WebWidgetAllowed - false
    • ShowRecommendationsEnabled - false
    • ShowDownloadsInsecureWarningsEnabled = true
    • ManagedSearchEngines = [{"allow_search_engine_discovery":false},{"is_default":true,"name":"DuckDuckGo","keyword":"duckduckgo.com","search_url":"https://duckduckgo.com/?q={searchTerms}","suggest_url":"https://www.duckduckgo.com/qbox?query={searchTerms}","image_search_url":"https://www.duckduckgo.com/images/detail/search?iss=sbiupload"}]

    Edge://flags:

    Enabled:

    • Block scripts loaded via document.write
    • TLS 1.3 Early Data
    • Block insecure private network requests.
    • Parallel downloading
    • Show block option in autoplay settings
    • Experimental Tracking Prevention Features
    • Project Robin experiment
    • Enable Digital Signature for PDF
    • New PDF Viewer
    • Strict-Origin-Isolation
    • Back-forward cache - Enabled force caching all page
    • Origin-keyed Agent Clusters by default
    • Origin-keyed Processes by default

    Extensions:

    • uBlock Origin Hard Mode with TLD's
    • AdGuard AdBlocker Hard Mode with TLD's - off by default
    • Stream Recorder - off by default
    • Video DownloadHelper - off by default

    Firefox

    • Home page: https://start.duckduckgo.com/
    • Search engine = DDG
    • Next DNS DOH - HaGeZi Multi PRO++ + OISD big
    • Tracking protection: Strict
    • DNS over HTTPS : Max Protection
    • HTTPS-only-mode enabled
    • Pocket disabled
    • Clearing browsing data on exit
    • Firefox telemetry disabled
    • Protection against fraudulent content and dangerous software enabled - all enabled
    • Some FastFox.js settings
    • Some Arkenfox.js settings
    Policies
    • OverridePostUpdatePage set to ""
    • DontCheckDefaultBrowser = true
    • OverrideFirstRunPage set to ""
    Extensions
    • uBlock Origin - Hard Mode with TLD's
    • Video DownloadHelper - off by default
    • HLS Downloader - off by default
     
    Last edited: Sep 22, 2024
  14. henryg

    henryg Registered Member

    Joined:
    Dec 13, 2005
    Posts:
    354
    Location:
    Boston
    "Core Isolation: Memory integrity - disabled"

    Is it by choice or due to driver(s) compatibility?
     
  15. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,698
    Location:
    Italy
    Compatibility.
     
  16. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    725
    Location:
    Milan, Italia
    This policy is obsolete.
     
  17. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    3,698
    Location:
    Italy
    Policy removed.
    Thank you.
     
  18. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    725
    Location:
    Milan, Italia
    :thumb:
     
  19. gery

    gery Registered Member

    Joined:
    Mar 8, 2008
    Posts:
    2,182
    Avast Premium
     
  20. Joxx

    Joxx Registered Member

    Joined:
    Sep 5, 2012
    Posts:
    1,738
    Linux.
     
  21. Buddel

    Buddel Registered Member

    Joined:
    Apr 28, 2015
    Posts:
    2,002
    I'm currently giving G Data Internet Security a try. I like it so far.:)
     
  22. Bertazzoni

    Bertazzoni Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    725
    Location:
    Milan, Italia
    I'm still enjoying Windows Security. Built-in. Effectivve. Free. What's not to like? :thumb:
     
  23. Konata Izumi

    Konata Izumi Registered Member

    Joined:
    Nov 23, 2008
    Posts:
    1,563
    Windows 10 (AtlasOS)
    • disabled Windows Defender
    OSArmor Personal
    Malwarebytes Windows Firewall Control
    Google Chrome (DuckDuckGo Privacy Essentials + NoScript)
    Keyscrambler Personal
    Easeus Todo Backup Free
     
    Last edited: Oct 27, 2024
  24. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,904
    Location:
    Slovenia, EU
    Windows 11 23H2

    Macrium Reflect X
    Eset Nod32 Antivirus
    uBlock Origin

    HitmanPro
    Norton Power Eraser
     
  25. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,564
    Location:
    Flat Earth Matrix
    I removed WFC and I solely rely on NextDNS now as my AV and anti-tracking protection. I use DoT+DoH(browsers), the insecure DNS (UDP via port 53) is blocked via a firewall as well as port 80 via browsers. My signature sums it up.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.