XP Home Security Plan

Discussion in 'other anti-malware software' started by Windows_Security, Apr 20, 2014.

Thread Status:
Not open for further replies.
  1. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    Hi,

    I need to figure out a security setup using a Dell laptop with first generation AMD dual core's (@1.7 Ghz) with 2 GB ram. I will put in a second hand fairly new 1.8 drive (I have put in a hybrid disk in my wife's laptop, so will put in her old 7200RPM HDD 1.8 drive) because old disk died.

    They don't install a software. Only updates of browser and pdfvieuwer need to come through. They are not pc savy, but are safe surfers.

    I thought I had made up my mind for the basics: but :)

    1. Add Software Restriction Policies with PGS
    - default deny for all files all users
    - add deny for folders in Windows which user has write access to
    - punch a hole in the defense by allowing TEMP folder unrestricted access
    - run Office2003 as basic user

    2. Add GesWall Free with Pro data base
    - add TEMP folder as untrusted
    - exclude firefox updater and flash updater as protected (never run isolated)
    - add Firefox to protected aps, but allow access to all of its folders and registry keys
    - add Outlook and WMP as untrusted and allow file access
    - keep Foxit PDF reader, but remove all other program protections.
    - set everything to auto-block and disable geswall gui at start (no visual signs of GW).

    3. Add Bitdefender free (cloud version).

    4. Added FF (who would have thought that) with pdf.js and adblock edge







    Any other suggestions (please consider it is a low end CPU 1.7Ghz dual core AMD Turion)
     
    Last edited: Apr 22, 2014
  2. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    658
    Location:
    Italy
    Chrome + HTTP Switchboard is better. ;)

    Yandex DNS,Norton Connect Safe,Open Dns......
     
  3. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    HTTP Switchboard for average user not a good idea.

    I will add Bitdefender TrafficLight with AdGuard because of their simple interface and icon warning usage. Together with chrome safe browsing this will do.
     
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    5,066
    Backup of user files to external disk or other removable media. Just in case disk dies again and because backup is always good :)

    hqsec
     
  5. FleischmannTV

    FleischmannTV Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    1,071
    Location:
    Germany
    Have you thought about DefenseWall?
     
  6. Feandur

    Feandur Registered Member

    Joined:
    Jun 15, 2005
    Posts:
    401
    Location:
    Australia
    1) Sumatra or PDF-Xchange may be marginally safer.
    In terms of pdf readers, I refer to the Secunia Vulnerability Review, 2014....
    * SumatraPDF - 0 Vulns;
    * PDF-XChange Viewer - 1 Vuln [like Foxit], but can be run as a portable app' [ie, lightweight]
    2) Chrome - addons can have security benefit for little slow-down.
    When watching streaming movies or TV shows I notice:-
    * Adblock plus (with the 4 block lists) blocks 40 - 50 things;
    * Avast Online Security blocks 5-6 things;
    * TrafficLight never blocks more than 1-2 things.
    I conclude that TrafficLight may be better at blocking bad websites but Avast OlineSecurity is better at the tracking stuff.
    AdblockPlus is indispensable.​

    @FleischmannTV
    Defense Wall ground to a slow crawl anything less than a 1st generation Core2duo E6300 CPU [ranked 1175 on PassMark].

    To be sure, DF has improved from those days, and might be worth a try as it provides policy restriction, restricted rights, and a firewall. An AV could be run on-demand to mop up the debris left by DW, such as EAM.

    To take the 'first hit' / "bow of an ice-breaker" so to speak, something like Voodoo shield v1.30, which appears to be stable - or MBAE, which is not yet stable.

    -Nai Iluvatar le tiro,
    feandur
     
  7. trott3r

    trott3r Registered Member

    Joined:
    Jan 21, 2010
    Posts:
    830
    Location:
    UK
    There is Appguard which is low cpu and works well in my xp setup.

    I would have a scanner of some sort whether it is chica or scheduled scans with hitman pro.
     
  8. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    Yes they have an old Maxtor one touch backup (250GB), I will split up harddisk in 50 GB for software and 250 GB for data and will put free file sync on it.
     
  9. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    I try to minimize on expenses, so I am looking at freeware. They are really not risky surfers and don't install software for fun (at all). Since the OS is not receiving any updates anymore and I will put on Office 2003 (have a license laying useless), I thought TTF was the easiest way to keep their OS clean.
     
  10. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,695
    Location:
    Zagreb, Croatia
    Try with GeSWall then.
     
  11. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    Thx. I have added HMP with weekly scan TTF should keep Windows +Program Files clean. I was afraid HMP direct disk access should interfere with TTF, but it is working fine together. So have changed first post
     
  12. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    I allowed chrome updater to have access to Chrome's program file directory and registry, so was able to create a GW rules set which did not need any intervention to allow chrome updates. With TTF I am using regular options, with GW I am using sort non-standard rules to make chrome update work. I don't want a setup which I have to maintain, that is why I choose TTF (but am still considering GW).
     
  13. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    Thanks for the info. With fox-it they also get a PDF-printer, so I will keep it that way. Adguard should have same protection as Adblock
     
  14. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    Aloha, fellow XP diehard. :thumb:

    Just in case all of the above (great) suggestions fail, IMAGE your system drive every 3-4 days, & retain each image ~30-45 days.
     
  15. ejames82

    ejames82 Registered Member

    Joined:
    Mar 23, 2007
    Posts:
    156
    I heard somewhere that foxit now comes bundled with conduit. I am sure everyone on here knows that conduit is not good news.
     
  16. Feandur

    Feandur Registered Member

    Joined:
    Jun 15, 2005
    Posts:
    401
    Location:
    Australia
    ...fair enough! :thumb:
    I use a separate pdf-printer/writer PDFCreator.....but each to their own.
     
  17. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    I did some performance testing on TTF and it is pretty impressive. It shaves of about 5 MB/sec read spead and 20 MB/sec write speed. So you won't notice it on starting programs and reading files (between 0.01 and 0.02 secs) and due to the write cache of most disks you will hardly notice it on data writes either. Only large powerpoints and postbox files will add around 0.3 - 0.4 secs delay. People tend to be more tolereant in save delays than start delays so for those sparce occasions they will problably forgive it subconsiously. I think I will stay with TTF in stead of tweaking and optimizing GesWall rules to allow updates of protected programs (with the risk I have not foreseen access to some protected parts and will cause trouble for the average skilled pc users which they are).

    Still doubting whether to add an real time AV or Chica (MBAM 1.75) :) Anyone knows whether Chica will receives MBAM updates after MBAM conversed there user base to V2?

    Thanks for the suggestions
     
    Last edited: Apr 21, 2014
  18. nsm0220

    nsm0220 Registered Member

    Joined:
    Aug 30, 2013
    Posts:
    138
    Location:
    USA
    make sure you get a sandbox program like Sandboxie or Comodo Firewall so you don't have to worry about getting hit by malware
     
  19. Esse

    Esse Registered Member

    Joined:
    May 26, 2011
    Posts:
    383
    I did an install on almost the same hardware as you mentioned.
    First i did try Avira Free and Online Armor but that was horrible slow when it came to boot times.
    Now I am using Panda Cloud 2.9Beta with Online Armor and it is much faster in comparison. I guess PCAV 3.o final will be the way to go after this.
    Trusteer Rapport for online banking even if it slows things down a bit, it is free after all.
    Nitro PDF reader.
    Hitmanpro and Emsisoft Emergency Kit for on demand.

    /E
     
  20. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    Thanks: I have considered would GeSWall (because it is free and with redirect option it does the same as SBIE, when you make the network private, you can also add control outbound), but thought HMPA would warn for browser change and after every reboot, the system is reset, I hope MBAE goes out of beta soon, so I know whether they offer a free-ware version also.
     
  21. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    Okay good tip, any idea when Panda 3.0 will be available (2.9 beta is running quite some time now)?
     
  22. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    1,732
    that pc is capable to run windows 7 home premium. dont bother unexperienced user with an outdated OS and overkilling security software

    further:
    hmp(a) sux - it needs an active web connection to offer full security

    foxit is more vulnerable als you think of - get pdf x-change viewer
    let chrome or foxit use its internal pdf viewer - at least when viewing is faulty you can download pdf. pdf plugin inside browser is still a no-no due security reasons

    acl is pretty pointless here, set up a limited user account

    chica is ok but still as hmp a second opinion scanner

    Toolwiz - i wont count on chinese software... shadow defender would be my decision

    what i hardly miss is a regular full image program like acronis, paragon, o&o or drive snapshot
     
  23. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    1,984
    Location:
    Canada
  24. ichito

    ichito Registered Member

    Joined:
    Jan 14, 2011
    Posts:
    1,485
    Location:
    Poland - Cracow
    XP SP3 on laptop 0,9 GB RAM 1,7 GHz
    - Kerio 2.1.5 + Seconfig XP
    - NVT ExeRadar Pro (Lockdown Mode "Advanced")
    - HitmanPro.Alert + CrytpoGuard
    - Firefox with NoScript, ABP, Bitdefender TL
    - Wondershare Time Freeze, 1-Click Kervier Free
    - on demand EEK, MBAM, Runscanner.Net, CrowdInspekt
    - STDU Viewer for PDF files
     
  25. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,079
    Location:
    Netherlands
    @Brummelchen
    No it is not driver's supported until Vista, problem with build in graphics, it crashes on flash when I install the Vista driver.
    It has internet connection, limited account provides a problem for updating their internet facing programs.
    Yes using chrome's flash and pdf reader

    @wat0114
    Ahh will do that, set a default deny, with an allow for temp file (still had Sully's PGS here laying around somewhere), thx

    @ichito
    Thanks, will check out TDU viewer\

    @bellgamin
    Well, freezing the system with TTF should have same effect.[/USER]
     
    Last edited: Apr 21, 2014
Loading...
Thread Status:
Not open for further replies.