What is your security setup these days?

Congratulations on a well-thought out, simple security setup!


----
rich

 

Hi dja2k,
GeSWall is always up and running always as I feel it's now one of my must have security tools. I only fire up SandBoxie when I know i'm venturing into unknown possiable dangerous territory. But to do this first GeSWall has to be changed to low security setting, then I can start SandBoxie. Once SandBoxie is up and running I switch GeSWall back on med security setting. Now I have a sandbox with everything inside on the policy restriction of geswall with Avira and PS backing me up, along with a software and hardware FW. Normal daily surfing Sandboxie is not on.

 

AV+AS : ESET NOD32 Antivirus 3.0.566.0
FW : Vista Firewall , Router

This is it.

 

I've been testing this setup for a few months, after I
had exchausted both myself and my PC with various AV, AS and ISR solutions.
Up to now, there has been NO problem!

>The hardware and sofware Firewalls, control my Inbound & Outbound protection.
>SafeSpace has locked my critical system files down.
>SafeSpace restores a 'clean-computer' situation when I reboot my PC.
>An Image solution (Acronis) will restore my PC in case of a bigger disaster.

Proactive Defense is my philosophy: Keep them out, before they get inside your PC!

-In the past, I tested most of the well-known AntiVirus solutions like
NOD32, Kaspersky, BitDefender, Avira, GDATA AntiVirusKit,
Symantec Endpoint and Norton, McAfee, eScan, TrustPort, CA, Sophos, AVG, Avast! etc.
-The same with AntiSpyware like Spybot S&D, Ad-aware, SUPERAntiSpyware and CounterSpy.
-I even tested ISR software like Rollback Rx, EAZ-FIX, FD-ISR, Returnil etc.

In my case, the 'Real/Active Protection' of the AntiVirus and AntiSpyware solutions I tested
proved inadequate for two reasons:
1) Conflicts with other no-security programs I use.
2) False-Alarms of trusted (i.e. safely-proven) programs
which were taken as malware by the 'Real/Active-Protection' of many AV and/or AS.

Every time, I created a rule for 'program A' so that the 'Real/Active-Protection'
wouldn't get crazy, my AV and/or AS signaled a False-Alarm for another program.
And this story had no end...
Don't tell me that you have NEVER experienced that situation.
I believe that what I just described has been a familiar situation to many AV/AS users.

AntiVirus and AntiSpyware solutions base most of their defense on a passive mode:
Search & Destroy the already infected software.
For me, the issue is 'how to remain dis-infected'.

In the years to come, I believe that the traditional ways of defense (AV,AS, FW etc.)
will give their place to software/hardware that will offer a 3-in-1 solution:
a) Lock-down your critical system files,
b) Create a virtual environment to run unknown files safely, and
c) Recover/Resore Fully & Instantly your setup.

SafeSpace was a good start...

 

Never had a single instance of malware in years of computing with very high-risk surfing.

Current setup:

Firefox
WinPatrol Plus
Avira Security Suite
Acronis

Runs light as a feather.

 

It is because,
(a) I tried a LOT of different AV, AS, ISR solutions.
(b) I experienced different problems with them.

 

Hello Kees1958,

Please see the following link below.

https://www.wilderssecurity.com/showpost.php?p=1137146&postcount=28


Peace & Gratitude,

CogitoErgoSum

 

Just a minor tweak.

added
changed
removed


XP setup 1 & 2

Resident:

Comodo Firewall
NOD32

Other Security / System Hardening:

nLite'd Windows XP SP2 (with service tweaking based on TweakHound's guide)
RyanVM's Post-SP2 Windows XP Update Pack
Xable's Windows XP Post-SP2 Update Pack
Seconfig XP
SocketLock
xp-AntiSpy
Process Explorer
Firefox extensions: AdBlock Plus, Permit Cookies, RefControl, and Secure Login

 

Got a free 345 day license to BitDefender Internet Security 2008 and decided to try it out on Vista. Changes for newly added Vista are on my sig below. My main preferred system is still XP though.

dja2k

 

firefox with noscript add-on ,
antivir premium and online armor free for real time protection.That is all.(From time to time I scan with online scanners and superantispyware and ewido.)

 

Added
Removed

Resident

Online Armor
McAfee AV
SnoopFree
Hostsman
BOClean
Spyware Blaster

On Demand

Spybot 1.4
Ad-Aware SE
AVG Antispyware
A-squared
SUPERAntiSpyware (Paid)

Backup

Acronis TI 10
FD-ISR

Other

Firefox with NoScript,AdBlock+,Scrapbook,Site Advisor,RefControl,CookieSafe,Filterset.G,Tab Mix Plus
Sandboxie
Defensewall HIPS (on trial)
CCleaner
Easy Cleaner
Filemap by BB
FingerPrint
WhatsRunning
RegShot
Tiny Watcher

 

ACTIVE:

Router
Online-Armor v. 2 with Firewall (Latest Beta)
NOD32 3.0.566.0
DefenseWall v. 2.10
Winpatrol Plus (Keeping eye on things)

ON DEMAND

SUPERAntispyware Pro (Pre-Release 4.0)
RootkiUnhooker

BROWSER:

Firefox with No-scripts, Adblock plus, Cookiesafe, Roboform toolbar, Flashblock, Show IP.

OTHERS:

Spywareblaster
ProcessExplorer
Autoruns
Runscanner
CCleaner
ATF-Cleaner

BACK UP:

FDISR 3.21 build 205
ShadowProtect 3.1.0.3


MOST OF ALL COMMON SENSE

 

ACTIVE:

Router
Avast free
DefenseWall v. 2.09
SSM

ON DEMAND

SUPERAntispyware Pro (Pre-Release 4.0)

BROWSER:

Opera

BACK UP:

FDISR 3.21 build 205
ShadowProtect 3.1.0.3

 

I am curious why you would use SUPERAntispyware Pro on demand even though the free will work on demand as well; isn't that like buying a paid product and not using it ?

dja2k

 

Well, I had the free version before. Last year I got the PRO version "on special" for $9.95. Would have been stupid to refuse this offer, right.

 

That sure clears up a lot of curiosity on my book!

dja2k

 

Bought the pro version quite awhile ago now.
Used to run it but now only on demand.
Quite heavy in ram usuage.
Use Defense Wall now. Very light.
I try to keep everything on my computers as lite as possible due to the constant running of Seti and Einstein.

 

Below is my XP Setup:

 

NOD32 2.70.39
SSM full 2.3.0.612 (without network rules)
Jetico 2.0.1.2 (process attack disabled)

...and a busload of registry "modifications"

Not much change in 5 months (if at all), but I do try other software

 

Hello Seer,
By registry "modifications", do you mean hardening?

 

Hi lucas

Well yes, I see many are listing hardening apps which basically do various registry "hacks". Most of these hacks can easily be accomplished through Administrative Tools (and the rest through regedit), so I don't feel the need for additional hardening apps.

Regards,

 

I bought it a long time ago. I actually have a "lifetime" license. I bought it when they had a special offer.

 

Same reason that I use SAS Pro on demand. Also, I have changed approach slightly and use Defensewall HIP's for active protection and SAS to mop up the nasties.

I noticed you listed Defensewall v2.10 in your armoury. Is Defensewall v2.10 available somewhere? I thought latest version was v2.09.

 

I got it right, thanks
If you don't mind me asking, which registry "tweaks" are you doing to harden your OS?

 

Hi lucas

Well, I can't name them all, it's a busload, right?
But here's one -



I'm sure you know the rest...

Best regards,