What is your security setup these days?

HOT DOG!

Finally, At least for now i have some extra behavioral blocking implimented since i found from my past archive collection an older early CyberHawk! version, in fact the one i always liked best because it was steady, responsive, and a terminator. Worked well with SSM then, now it'll get a chance to run with EQS.

 

Maybe........But all in the right places.

 

UPDATE LIST JUNE 04, 2008

ADDED, REMOVED, CHANGED

NETWORK
Look HERE

RESIDENT - XP MCE 2005 SP3 <--- Primary OS
Online Armor AV+ 2.1.0.1xx (Beta)
- Custom Bluetach Blacklists Enabled (For Global and P2P Dependent)
- RunSafer Enabled for all Browsers, Email Clients, Messengers, Media Players
Sandboxie 3.26.07 (Paid)
- Enabled for all Browsers and Email Clients
- Immediate Recovery Enabled
- Automatic Sandbox Delete Enabled
Hostsman's HostsServer (MVPS Hosts File)
Script Sentry 2.7.1 (All Extensions Associated)
Process Explorer 11.13 (Task Manager Replacement Enabled)

RESIDENT - VISTA ULTIMATE SP1 <--- Backup OS
Look HERE

HARDENING - XP
Look HERE

OTHER - XP & VISTA
Spyware Blaster (Immunized)
Sybot Search & Destroy (Immunized)
A-Squared Anti-Malware (Free)
RoboForm (Paid) \ FF Plugin
Avira Antivir Personal (Free)
- Configured with FF Download StatusBar Plugin
Hostsman 3.2.61 Beta1 (MVPS hosts file)
KeyScrambler Personal (Firefox Plugin)
DrWeb CureIt
OpenDNS (Enabled \ Static IP Configured)

BROWSERS - XP & VISTA
Firefox 3 (RC1)
Opera 9.50 (Beta)
Internet Explorer 8 (Beta 1)

BACKUP
Look HERE

dja2k

 

ADDED:

CYBERHAWK 1.1.1.3

Yeah i know, but it's "LITE" (6MB), doesn't bog down or introduce common confusion like it's new daddy, and best of all i think it's the last version where Custom Rules were introduced as well as when you click DENY, it's a fierce TERMINATOR!!

Picks up dll injections nicely (Tested)

It's just enough to fill in and compliment EQS for my needs. (Stable)

 

I'd be interested in trying that version Easter. Can you upload it somewhere?

 

Geswall Pro, does very, very well.

 

added
changed
removed


Vista setup 1 + 2

Resident:

HostsMan
Windows Firewall

Other Security / System Hardening:

vLite'd Windows Vista SP1 (with service tweaking)
xp-AntiSpy
Process Explorer
Firefox extensions: AdBlock Plus, and Permit Cookies

 

my security arsenal:

Defensewall hips 2.43
SpyWareBlaster 4
DriveSentry 3.0.34
AppRanger 1.7.1.0
Mvps Host File

 

I've noticed that so many people use many programs or tools for their security.
Yet, most of them are not enthousiastic about antispyware programs, especially multiple antispyware programs providing real-time protection.

For me, it's currently very simple.

McAfee Virusscan Plus 2008, customized. (temporary solution, it has an at least somewhat decent firewall, decent antivirus, some antispyware protection, and the SiteAdvisor, I have most of the system guards on alert/enabled)

Spy Sweeper 5.5.7 (version without antivirus), customized.

Counterspy, highest security settings.

All providing real-time protection, and configured in a way that allows them to work together.

IE 7, above-average security settings.

Windows XP Home Edition service pack 2. Everything patched as much as possible. A bit outdated computer, 512 MB RAM. The only thing (besides perhaps Windows) that is a resource hog is McAfee.

In the past year McAfee prevented a piece of malicious javascript to install a trojan (the attempt was blocked, and it didn't leave a piece of the script on my computer).

Aside from some cookies, in the past 12 months I got infected only once with one low-risk adware infection, which was easily removed by Counterspy.

So no complicated hardening, windows policies, whitelisting, limited user accounts, anti-trojans, antirootkits, or all those other things.

And it works very well, aside from McAfee that is a resource hog and that is sometimes a beast which needs to be tamed.

 

Hello , forgive my ignorance , sometimes ... MY SECURITY : Windows XP SP2 , 1 Go RAM , IE 7 , Windows Firewall ... # HARDENING of Windows ( hardeners : Advanced WindowsCare Personal ; SEEM )... In Windows Task Manager , I have 13 Processes Windows + 7 other Processes = 20 ! In system tray ( near clock ) - 5 icons . In Services , I have 33 services started . This is starting point . Startling ?.. NO . ## SECURITY SOFTWARES ## # ACTIVE ( all free ; effectives and very , very lights ) : Avira AntiVir Personal - Free Antivirus ( Configuration : EXPERT Mode / enabled : all additional settings , all files , Guard - heuristic on High ) ; Comodo BOClean ; # PREVENTIVE ( all free ) : DEP enabled on all Programs ; SpywareBlaster ; Seconfig XP ; # ON DEMAND ( all free ) : CCleaner ; RegSeeker ; Wise Registry Cleaner ; Advanced WindowsCare Personal ; MBAM (Malwarebytes AntiMalware ) ; BugHunter ; A - squared HiJackFree ; SecCheck ; Secunia PSI ; ToolbarCop ; Hijack This - version 1.99.0.1 ; SREng ( System Repair Engineer ) ; SEEM ( System Eyes & Ears Monitor ) ; Process Explorer ; ESET SysInspector ; SysProt AntiRootkit ; RootAlyzer ; USEC Radix ; GMER . And sometimes : Windows XP disque defragment , CHKDSK ( check disk ) and Windows Live OneCare free scanner ... My little TRUSTWORTHY list ... There we are ! With Kindest Regards PS . Now : forest ... photo ...

 

I ditched GhostWall and replaced it with Sygate Personal Firewall Professional v5.5.2710, which is also used by Symantec under the name "Smart Firewall", which is a part of Norton Internet Security and both use the unmatched IPD/IDS technology, blablabla ...
I can only hope that this firewall isn't made of straw, fire and straw don't go together according firemen.
Any mistake of this firewall will be removed by the Industrial Frozen Snapshot Technology of Leapfrog.

 

Seeing as you run a frozen snapshot i take it that the firewall is in case anything new tries to connect out during a session?

 

Since WinXPproSP2 Firewall doesn't protect me against outbound, I had to find a firewall to do this. Sygate was the most userfriendly one, at least for me. Inbound was not a problem. Frozen or not frozen has nothing to do with it.
A frozen snapshot acts like a normal snapshot, the only difference is the reboot.

 

Pedro

See your PM box.

Dropped OZONE

Interferes with Cyberhawk catching dll injections. Although it did seal the Device\Physical Memory area well, but then EQS can do that too plus MANY, MANY more protections!

 

Vista 32 SP1 set-up "changes" in bold as of 6/6/08:

Resident:

DefenseWall HIPS v2.43[Update]
Netgear RP614 v2 Router w/NAT & SPI
Primary Response SafeConnect v3.0.0.1443
Vista Firewall

On-Demand:

Autoruns
AVZ Antiviral Toolkit
GMER
Prevx CSI+
Process Explorer
RegRun Reanimator
Returnil 2008 Personal Edition(*Note: For testing purposes only.)
RootKit Hook Analyzer
SUPERAntiSpyware Free
System Repair Engineer(SREng)

System Hardening:

Applied manual system hardening tweaks
Disabled non-essential Vista services
Enabled hardware DEP for all programs and services(OptOut)
Uninstalled Java Runtime Environment
Windows Worms Door Cleaner

Backup:

ERUNT(registry)
Paragon Drive Backup

Miscellaneous:

Primary Web Browser - Latest Opera v9.5 Beta(w/UserJS scripts; Java disabled, JavaScript enabled(userscripts only), but with options disabled, Iframes disabled and plug-ins disabled);(https://www.wilderssecurity.com/showpost.php?p=1257643&postcount=1)
Email Client - The Bat! Home
Disable UAC with TweakUAC
Disabled Windows Defender


Peace & Gratitude,

CogitoErgoSum

 

Hello , CogitoErgoSum trustworthy ... MY SECURITY : de gustibus et coloribus non disputandum ?.. Quod capita , tot sensus . Aura popularis ... Alea jacta est ; quod erat demonstrandum . Ne quid nimis ? Ultima ratio regum : sublata causa , tollitur effectus . Vive valeque ... PROROOTECT

 

Hello PROROOTECT,

If you are addressing me, I would like to respond, but unfortunately, do not understand the language you are speaking.


Peace & Gratitude,

CogitoErgoSum

 

http://www.stars21.com/translator/latin_to_english.html

 

Hello Macstorm,

Thanks for the link and your efforts. Unfortunately, the Latin to English translators at this site do not provide a direct and understandable translation.


Peace & Gratitude,

CogitoErgoSum

 

You're welcome.

But at least you can figure out what he's saying

Take care

 

Back with my previous setup.
Tring to decide between DefenseWall and GesWall.
I'm kinda leaning towards DW.

 

Went ahead and bought DefenseWall.
Just waiting for my lic key now.

 

You won't regret.

 

Definetly the right choice!

 

good choice lonewolf.Defensewall is easy to use while you get strong protection.