Advanced Security 7Oz-64 security config 2023

Last updated
May 15, 2022
How it's used?
For home and private use
Operating system
Linux
On-device encryption
N/A
Log-in security
    • Basic account password (insecure)
Security updates
Check for updates and Notify
Update channels
Allow stable updates only
Network firewall
Enabled
About WiFi router
Asus rt-ac-88u,no ipv6, Ai protection On, Vpn On, NextDNS On, ddos protection, spoofing protection, rebind dns protection
Real-time security
Just firewall, no need real time protection.
Firewall security
Built-in Firewall for Mac/Linux
About custom security
Using ufw or firewalld frontend firewall (medium logging for review connection), strict policy (drop inbound, forward and mostly accept outbound, ipv6 disabled in grub, geoclue disabled, manual update and maintenance.
Periodic malware scanners
RkHunter + unhide
Malware sample testing
I do not participate in malware testing
Environment for malware testing
N/A
Browser(s) and extensions
Chromium + Adguard+malwarebyte's browserguard+keepassxc
Secure DNS
NextDNS (oisd + easylist)
Desktop VPN
IVPN (wireguard protocol, no ipv6), hardcore mode
Password manager
KeepassXC (kdbx4), strong passphrase + Key file (not stored on local computer) , strong different password (almost two hundred entries), always set 2FA (totp), when it' s available, browser integration.
Maintenance tools
sudo journalctl --rotate
sudo journalctl --vacuum-time=1s
sudo find /tmp -type f -delete
sudo apt autoremove --purge
rm -r -f ~/.local/share/Trash/*/*
rm -rfv ~/.cache/thumbnails
sudo du -sh /var/cache/apt
sudo apt-get clean
sudo apt-get autoclean && sudo apt-get autoremove
sudo fstrim -av
File and Photo backup
Several External HDD
System recovery
If something goes wrong, i've all my personal files backed up on several external HDD, and i will freshinstall Linux
Risk factors
    • Browsing to popular websites
    • Browsing to unknown / untrusted / shady sites
    • Browsing the dark web
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Downloading software and files from reputable sites
    • Downloading software and files from unknown / untrusted / shady sites
Computer specs
Asus X79
I7 3930k
amd rx560
64 Go DDR3
Pci Nvme Samsung 970 Pro To (Bios modded to handle Nvme)
What I'm looking for?

Looking for medium feedback.

7Oz-64

Level 1
Thread author
Jan 16, 2023
18
that.png
 
Last edited:

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,506
G DATA Internet Security : Browser protection disabled (AdGuard do the job), Anti Keylogger Protection disabled (Key Scrambler do the job)
Have you tested this?
In the test done here AdGuard did a terrible job in protection you from malware and phishing sites.
 

7Oz-64

Level 1
Thread author
Jan 16, 2023
18
Have you tested this?
In the test done here AdGuard did a terrible job in protection you from malware and phishing sites.
@Gandalf_The_Grey
Not here, i've ever make comparison between Adguard and UBO, almost same result, i tend to add canvas defender for reporting fake value, but no, same for jshelter. For me AdGuard doing is job. Honesty UBO is more light than adguard, but it's a personal choice.
 

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,506
@Gandalf_The_Grey
Not here, i've ever make comparison between Adguard and UBO, almost same result, i tend to add canvas defender for reporting fake value, but no, same for jshelter. For me AdGuard doing is job. Honesty UBO is more light than adguard, but it's a personal choice.
I don't mean uBO vs AdGuard in adblocking, but AdGuard vs G Data in malware and phishing blocking.
uBO vs AdGuard is a personal choice, both are great.
 

7Oz-64

Level 1
Thread author
Jan 16, 2023
18
I don't mean uBO vs AdGuard in adblocking, but AdGuard vs G Data in malware and phishing blocking.
uBO vs AdGuard is a personal choice, both are great.
Oups, ok @Gandalf_The_Grey
Explanation : G DATA browser security only work correctly with normal Google Chrome, the one i use is located in C:\Users\AppData, not in regular Programfiles, so GDATA can't handle it, same for antikeylogger protection even if i added it manually (Chrome hang and crash).
 

7Oz-64

Level 1
Thread author
Jan 16, 2023
18
Forgot to mention these infos :

PC Specs :
Motherboard : Asus Extreme IV X79 ((all latest firmware(ME engine, Ethernet........)
Proc : I7 3930K
Ram : 64GB
Bios : Modded Bios to handle Nvme pci ssd, personal settings applied
Graphic : amd rx560
SSD: Samsung 970 Pro 1 To + WD HDD 4 To
Wifi : No module installed just Ethernet cable

Router : Asus with Merlin firmware, customized for maximum security + (added IVPN parameters)
 
  • Like
Reactions: harlan4096 and Nevi

7Oz-64

Level 1
Thread author
Jan 16, 2023
18
Update :
Ok so due to staff's feedback, following changes :
Install Normal Google Chrome, so i can use Web protection and anti-keylogger from Gdata, then remove adguard and Keyscrambler, so Chrome is now protected by G Data and NextDNS , little bit faster browsing. Tested with bad links found in this thread Need Advice - [Updated 29/12/2018] Browser extension comparison: Malwares and Phishings, and i can say that Gdata addon block 14/15 links (notification alert).
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top