Basic Security Chri.Mi Security Config 2020

Last updated
May 2, 2020
How it's used?
For home and private use
Operating system
Linux
Log-in security
Security updates
Check for updates and Notify
User Access Control
Real-time security
Is Linux!
Firewall security
About custom security
Hardening Chromium
Periodic malware scanners
N/A
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Chromium
Maintenance tools
Pacman
Pamac
Manjaro Settings Manager
File and Photo backup
N/A
System recovery
Timeshift
Risk factors
    • Gaming
    • Browsing to popular websites
    • Streaming audio/video content from shady sites
Computer specs
N/A

Chri.Mi

Level 7
Thread author
Well-known
Apr 30, 2020
337
Replaced Avast with WV in real time. Replaced WV with EEK in malware removal tools. Installed Driver Easy. Went back on Admin account.Disabled Windows Defender.
 

Chri.Mi

Level 7
Thread author
Well-known
Apr 30, 2020
337
Replaced WV with Comodo Firewall (based on Cruelsister config). Using WV as virus removal Tool again. I had just forgot to report some config settings.
P.S. I dont know if have to write Macrium Reflect under data backup too, theorically data is backup too
 

Chri.Mi

Level 7
Thread author
Well-known
Apr 30, 2020
337
Y but is not for this i using comodo. I use it like anti-exe, allowing just a tweaked TVL. In practice all work around Autocontainment with rules for Malicious block, Unknown block, Safe allow (but not for child process, i think should give more protection vs exploits). Then Firewall will block Malicious and Unknown (blocking sandbox items) and allowing safe. Virusscope for all processes. Script protection with some exe copied from Hard Configurator (Script Interpreters + Enhanced).
 

Chri.Mi

Level 7
Thread author
Well-known
Apr 30, 2020
337
Disable virus scope .
Better running wise vector instead if you really need an AV Engine .
BTW remove everything from trusted vender except the applications you use .
I dont wanna disable virusscope, i can always run into sandbox items, and no give problems so why disable.
Dont need AV last time i got infection was years ago.
Already did. I get the list from applications on my pc, i rebuild when delete or integrate new programs.
 

Vitali Ortzi

Level 26
Verified
Top Poster
Well-known
Dec 12, 2016
1,590
I don't use an AV either .
Since Microsoft done so much optimizations to drivers / kernel and made many Enterprise grade mitigations available to the household.
 
  • Like
Reactions: Chri.Mi

Vitali Ortzi

Level 26
Verified
Top Poster
Well-known
Dec 12, 2016
1,590
nice so network and host exploits only ?

like this ?
‏‏Config.PNG
still SRP based protection as well ?
 

Vitali Ortzi

Level 26
Verified
Top Poster
Well-known
Dec 12, 2016
1,590
you can just run a server in a vm with the SLF file i sent you a few days ago.
run the server only when you need changes to the policy if you have only one machine .
better if you can just use an old pc to run as a server .
btw you can use Gmail as SMTP if you want to.
make a new google account then go to your google account allow Less secure apps .
and type in SPEM setup
smtp.google.com
use ssl and port 465 to connect
and username and password of your google account
1588873796587.png
 

Vitali Ortzi

Level 26
Verified
Top Poster
Well-known
Dec 12, 2016
1,590
you can just run a server in a vm with the SLF file i sent you a few days ago.
run the server only when you need changes to the policy if you have only one machine .
better if you can just use an old pc to run as a server .
btw you can use Gmail as SMTP if you want to.
make a new google account then go to your google account allow Less secure apps .
and type in SPEM setup
smtp.google.com
use ssl and port 465 to connect
and username and password of your google account
View attachment 239009
then you could just port H_C to application control via polices and even surpass it while adding a few inbuilt ones as well just remember to set test mode a few weeks set exceptions only then production mode .
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top