- Feb 13, 2017
- 737
Just a minimalistic security configuration for my old PC. No default-deny solutions here; common sense is my best weapon against threats.
Last edited:
brod's minimalistic config (2018)
- Thread starter brod56
- Start date
- Oct 14, 2014
- 497
Caution seems appropriate for this config. (Sarcasm)
- Feb 13, 2017
- 737
Yeah, pretty strange, I guess they were looking for some Voodoshield or Hard Configuration kind of stuff which I don't find necessary for normal usage. Still respect their opinion though.
- Apr 28, 2015
- 8,915
Tagged temporally as Caution, sorry maybe a bit paranoid here 
Let's see what other power users have to advice
Let's see what other power users have to advice
- Jul 6, 2017
- 2,392
Well, I see it well . Thanks for sharing.
Last edited:
- Mar 24, 2017
- 481
Well, I wouldn't use the password manager that is in Chrome, I would get a real one like KeePass or Stickypasswords.
- Feb 13, 2017
- 737
I have tried Last Pass, interesting product, but the need to pay to use the real time functionality on Android kept me away. The advantage of the Chrome one is that is synced with no problem.
Also, no sensitive passwords there, just some chess sites and fancy stuff.
- Jul 7, 2016
- 339
Your backup strategy doesn't make any sense. OneDrive is not a data backup tool, it's a cloud based storage service. So let's assume that you will move data over there, that means you are potentially putting a lot of data there, which could be costly.
When are you scheduling Macrium Reflect?
I think this is a recipe for disaster. There's no way all of your data will fit on OneDrive without upgrading storage space. Better off going to a snapshot tool like Rollback Rx for your data backup. Do a daily backup with the free Home Edition, then do a weekly backup with Macrium Reflect. This will be more secure and it's more cost effective as well.
When are you scheduling Macrium Reflect?
I think this is a recipe for disaster. There's no way all of your data will fit on OneDrive without upgrading storage space. Better off going to a snapshot tool like Rollback Rx for your data backup. Do a daily backup with the free Home Edition, then do a weekly backup with Macrium Reflect. This will be more secure and it's more cost effective as well.
Add EEK or NPE.
Add HTTPS Everywhere.
Thanks for sharing.
Add HTTPS Everywhere.
Thanks for sharing.
- Jan 16, 2017
- 1,469
I recommend to try NoVirusThanks OSArmor once it supports secure boot.
- Feb 13, 2017
- 737
A recipe for disaster? Lol. I have Office 365 annual subscription for my whole family so I have 1 TB of online storage.
Im doing monthly backups with Macrium Reflect, just in case, I don't even think I will ever need to restore one system image.
I actually already had HTTPS Everywhere, just forgot to add it to the extension list.
Thanks for commenting.
I appreciate your suggestion. As already said in the original post, I'm not using any default-deny solutions on purpose, mainly because the PC is quite old and Voodooshield slowed it quite a bit.
Might try NVT one day though.
Just to clarify, the point of this config is to be as simple as possible. If I wanted to setup a locked-down system I would, just check my 2017 config, it's way more complex, with powershell/wscript executables disabled via Hard Configurator, and Voodooshield Pro on AutoPilot. Here, I just wanted to keep it simple and quick for my old PC.
IMHO, this setup is clearly secure if coupled with common sense, I can't understand the rating.
Last edited by a moderator:
- Jun 8, 2016
- 171
- Dec 23, 2014
- 8,513
It is a good config for normal use, for no-'happy clicker' user. One should also know SmartScreen limitations (archives, pendrives, etc). The weak point may be macros/script/scriptlets embedded in several ways in Office documents (macros, DDE, ActiveX, OLE, OnClick and OnMouseOver actions). Some of those techniques may work even for non-'MS Office' applications. So, one should know how to avoid spam in the first place or use online Office solutions.Just my minimalistic config for the new year.
I have learned a lot of things since I posted my first config back at the start of this year, I tried many solutions, from default-deny ones to sandbox solutions, and just came into this! Simple and fits my needs (no torrenting at the moment).
Happy new year
Last edited:
- Feb 13, 2017
- 737
It is a good config for normal use, for no-'happy clicker' user. One should also know SmartScreen limitations (archives, pendrives, etc). The weak point may be macros/script/scriptlets embedded in several ways in Office documents (macros, DDE, ActiveX, OLE, OnClick and OnMouseOver actions). Some of those techniques may work even for non-'MS Office' applications. So, one should know how to avoid spam in the first place or use online Office solutions.
For sure. I usually check unknow files from mails/prendrives via VirusTotal, I know it is important given the fact that I have no Voodooshield (or other effective anti-ransomware solution) in this machine.
- Feb 13, 2017
- 737
So I've just put my laziness away, and updated the thread fields with proper, more complete information.
Also implemented Hard Configurator recommended restrictions.
Thanks for your comments and sorry if I was a bit rude answering to y'all, I was kinda pissed off with the Caution rating.
Merry Christmas to all the MT community
Also implemented Hard Configurator recommended restrictions.
Thanks for your comments and sorry if I was a bit rude answering to y'all, I was kinda pissed off with the Caution rating.
Merry Christmas to all the MT community
- Apr 28, 2015
- 8,915
- Oct 23, 2012
- 12,527
Similar threads
