Win 7 x64 safety precautions hints/advice

Discussion in 'other security issues & news' started by korben, Dec 9, 2009.

Thread Status:
Not open for further replies.
  1. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    I'm interested in free applications only.
    what are your safety suggestions?

    how to set UAC?
    turn on/off win defender/ firewall?
    install avira or CIS or MSE or ThreatFire or Panda Cloud or?
    Windows 7 Firewall Control Plus

    I've got some xp with cis, tf and avira

    any input will be greatly appreciated!
     
  2. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    335
    Running out of a standard account would be my first and most important recommendation since the UAC is not designed to be a hard security feature. It's to make running from a standard account more feasible.

    I do have my UAC set to maximum.

    Have reliable images so you can successfully restore your setup.
     
  3. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    ok, noted!

    Any other suggestions??
     
  4. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    335
    It depends on what you're doing with your computer of course.

    MSE and Windows 7 firewall.

    recommend being behind a router with firewall.

    DEP turned on for all programs.

    Keep software up to date.

    Use trusted sites for downloads.

    Firefox with Adblock plus, and maybe Noscript if you think you need it.

    I'm of the opinion that you don't need to spend significant money to secure your computer. I'm a minimalist partly because I'm confident being behind a standard user account in Win 7 64 bit, plus a little common sense never hurts.

    :thumb:
     
  5. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    MSE and Windows 7 firewall.
    what about MSE EULA? not troubled by this?

    recommend being behind a router with firewall.
    check!

    DEP turned on for all programs.
    could you point to the right direction? unknown to me...

    Keep software up to date.
    check!

    Use trusted sites for downloads.
    check!

    Firefox with Adblock plus, and maybe Noscript if you think you need it.
    check!

    I'm confident being behind a standard user account in Win 7 64 bit, plus a little common sense never hurts.
    common sense - check!
    user accounts?
     
  6. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    335
    Am I troubled by MSE EULA?

    No. If I was, then I probably wouldn't even use Windows 7.

    Where's DEP (all programs)?

    In Win 7 go to Control Panel, then System and Security, then System, then Advanced System Settings, then under Advanced tab (performance > settings), under Data Execution Prevention tab you will find the choice I mentioned.

    User accounts?

    Yes, MS advises that each user even if you're the only user, establish a "standard account" in Win 7. Might want to search the threads on standard account because there's much to read on the topic.
     
    Last edited: Dec 10, 2009
  7. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    DEP -> turn on for ALL except...

    should I include any exceptions?

    You're being very helpful, thanks :)
     
  8. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    If you have Win7 Ultimate, read up on AppLocker. If you don't, then read up on the less effective (but still useful) SRP.

    Don't worry about AV software. Just use a limited account, DEP, SRP/AppLocker, and Firefox with NoScript.
     
  9. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    335
    You're certainly welcome.

    As far as exceptions for DEP, I have none.

    However, you may have a program like a defragger that will not run properly unless you include it as an exception.

    :thumb:
     
  10. wat0114

    wat0114 Guest

    This and throw in the Win 7 fw for good measure and you have as close to the perfect minimalist setup you can achieve. It's my current setup (using applocker and the fw with two way control via custom created rules) but holding off on Firefox until the latest release. If you want antivirus, a simple on-demand like the free malwarebytes should do.
     
  11. tsec

    tsec Registered Member

    Joined:
    Nov 18, 2008
    Posts:
    181
    Win 7 x64 Ultimate here

    CIS seems to run fine for me.

    :)
     
  12. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    Been reading and thinking..still no testing duh

    Returnil 2010 is not THE security I am seeking, am I correct?
     
  13. PoetWarrior

    PoetWarrior Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    335
    A decision only you can make.

    :)
     
  14. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    Shadow Defender, you pay only once, good choice? I know i know..it;s up to me ;)
     
  15. Keyboard_Commando

    Keyboard_Commando Registered Member

    Joined:
    Mar 6, 2009
    Posts:
    690
    Anything that needs to be put into the exception list is potentially leaving you vulnerable. DEP is ensuring the code conforms to a Microsoft safety standard (as it were). Anyway, DEP compatibility shouldn't be a problem for newer software on Windows OS', though - I used to have problems with DEP and a defragger I was using. Check your backup solution works whilst DEP is enabled, also.

    Turn DEP on for all programs and services is the way to go.
     
  16. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    Appreciate it, mate!

    what about that lil thing called... Shadow Defender?

    Would it suit me and my win 7 x64?
     
  17. Keyboard_Commando

    Keyboard_Commando Registered Member

    Joined:
    Mar 6, 2009
    Posts:
    690
    I am using Shadow Defender on my Win 7. I am not entirely sure if it's in beta, though. It has been working fine for me, anyway.

    There are a lot of Shadow Defender threads and user experiences if you do a search of this site. There is no sustitute for trying it. Because you only get an idea if it will suit you by trying for a while ( it allows 30 days trial). It is definitely not everyone's cup fo tea.
     
  18. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    ip v6 - disable?
     
  19. wat0114

    wat0114 Guest

    I wouldn't bother. I don't see it as a security risk or performance hit.
     
  20. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    many times seen people advising for disabling and saying it's useless as of yet

    java6u17x64 - worth installing?
    been browsing for 2 days without any hitches or glitches
     
    Last edited: Dec 21, 2009
  21. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,786
    I have java installed, but rarely have any need for it. I went for years without it and never even noticed till one day I did need it on some speed test site. You can probably do without till a need arises...
     
  22. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
  23. korben

    korben Registered Member

    Joined:
    Nov 5, 2009
    Posts:
    740
    Returnil 2010 3.1 works perfectly fine on x64.
     
Loading...
Thread Status:
Not open for further replies.