SECURITY: Complete DeletedMessiah's 2020 configuration

[Deletedmessiah]

Still on 1809 because I'm lazy to clean install newer builds
Enterprise 1809 gets updates till May 2021. I'll update to 2009 build or whatever it'll be called later this year.

 

[harlan4096]

Update Your system, soon 1809 will lose support...

You may also set UAC to Always Notify.

Please kindly reflect Your changes editing Your config, and announcing them here, thanks for sharing

 

[oldschool]

Please consider using Standard User Account.

 

[The Cog in the Machine]

Please consider using Standard User Account.

Could you please elaborate more? I am afraid that I don't understand why.

 

[oldschool]

Could you please elaborate more? I am afraid that I don't understand why.

If your machine is compromised using AA, the attacker has full access to your system. You limit the damage using SUA.

 

[ForgottenSeer 823865]

Could you please elaborate more? I am afraid that I don't understand why.

If your machine is compromised using AA, the attacker has full access to your system. You limit the damage using SUA.

Benefits of using Standard User (Non-Administrator) accounts

and

Filesystem and Registry Virtualization in UAC

This article/blog discusses the filesystem (FS) and registry virtualization as done by UAC in order to support legacy applications and still...

securityinternals.blogspot.com

"Starting from Windows Vista the users, even those who are members of the local admin group, cannot be the administrators constantly. This is so that the users do not cause any damage to the system by accident or by malicious intent. "

Of course sophisticated malware won't care much, but better have it than nothing.

 

[CyberTech]

Read it and also there is a tutorial

GT Explains: Difference Between Standard User and Administrator in Windows 10

Learn the difference between Standard user and Administrator accounts, and know why you should prefer Standard user account as your daily, primary account.

www.guidingtech.com

 

[Deletedmessiah]

Forgot to mention Shadow Defender before. I don't use it much but its a very useful tool to have around.

 

[Deletedmessiah]

Replaced Enhancer for Youtube with ImprovedTube. It got better than the last time I tried and don't need h264ify extension with it.

 

[Deletedmessiah]

Removed Emsisoft Browser extension. Don't feel like I need it with smartscreen, ubo, tracking protection etc. On top of it, Eset web protection is pretty aggressive.

 

[Deletedmessiah]

Replaced old versions of Revo uninstaller pro and Iobit uninstaller portable with HiBit uninstaller after the recent hype in the forum. HiBit is very fast and effective so far.

 

[Andy Ful]

Read it and also there is a tutorial

GT Explains: Difference Between Standard User and Administrator in Windows 10

Learn the difference between Standard user and Administrator accounts, and know why you should prefer Standard user account as your daily, primary account.

www.guidingtech.com

I would not recommend this article for more experienced users. It contains some incorrect information. The most important mistake? The author thinks that SUA is safe because the user cannot install applications and malware cannot do it too (many applications can be installed on SUA without knowing Admin password). From the text it follows, that author somewhat mixed SUA and Guest accounts.
But anyway, the article can be useful to novice users who will not see the difference. The main idea is OK.

Post edited (in italics).

 

[CyberTech]

I would not recommend this article for more experienced users. It contains some incorrect information. The most important mistake? The author thinks that SUA is safe because the user cannot install applications and malware cannot do it too. From the text it follows, that author somewhat mixed SUA and Guest accounts.
But anyway, the article can be useful to novice users who will not see the difference. The main idea is OK.

Oops i posted a tutorial for The Cog in the Machine, well sorry about that thanks for the head up..