SECURITY: Complete ErzCrz config 2021

Last updated
Apr 6, 2021
About
Personal, primary device
Additional PC users
Not shared with other users
Desktop OS
Windows 10
OS edition
Home
Login security
    • Password-less (PIN, Biometric, Face)
Primary sign-in
Microsoft account
Primary user
Admin user - Full permissions
Other users
Other accounts are Admin users
Security updates
Automatic - allow all types of updates
Windows UAC
Maximum - always notify
Network firewall
ISP-issued router
Real-time protection
Microsoft Defender
Software firewall
Microsoft Defender Firewall
Custom RTP, Firewall and OS settings
- System Hardened with Hard_Configurator at Recommended Settings
- Microsoft Defender tweaked with ConfigureDefender set to High. (I'd go with Interactive but I prefer a more set and forget setup)
- FirewallHardening - Recommended H_C rules added
Malware testing
No malware samples
Periodic security scanners
Emisoft Emergency Kit, HitmanPro
Secure DNS
Sky Shield (ISP)
VPN
Sophos VPN for working from home connection.
Password manager
Keepass 2
Browsers, Search and Addons
Chromium Edge
uBlock Origin (@Lenny_Fox 's tweaked Medium/Hard Mode) blocking 3p.
Maintenance and Cleaning
MacrumReflect Free (backups only after major updates) OneDrive backup of documents weekly.
Personal Files & Photos backup
Monthly backup to external drive and Occasional OneDrive Sync
Personal backup routine
Manual (maintained by self)
Device recovery & backup
Backup disc image, updated every few months.
Device backup routine
Manual (maintained by self)
PC activity
  1. Working from home. 
  2. Browsing the web. 
  3. Browsing to unknown sites. 
  4. Emails. 
  5. Shopping. 
  6. PC and cloud gaming. 
  7. Multimedia. 
  8. Streaming. 
Computer specs
Computer hardware
Acer Aspire E15
Intel Core i3-400SU
Intel HD Graphics 4400
12 Gig DDR 11 RAM
1TB HDD
Personal changelog
17.02.2021 - Changed email client from Windows Mail to ThunderbirdBack
06.04.2021 - Back to Windows Mail, SecurityNightmare's Maximum Exploit settings enabled. MD running in it's own Sandbox, Controlled Folder Access enabled. Removed BD Traffic Light and using HTTPS Everywhere in Strict mode.
13.05.2021 - Reverted back to my old favourite Comodo, Firefox and Thunderbird.
22.05.2021 - Returned to MD + H_C setup.
28.08.2021 - Back to using HitmanPro 2nd opinion scanner, using H_C 6 Beta and updated uBO tweak. Thinking about using CFA again and treating messages as more informative unless is breaks something.
Feedback Response

General feedback

oldschool

Level 61
Verified
Mar 29, 2018
5,031
Thanks, I'll have a look ;)

P.S. Currenty reviewing anti-exploit tweaks. I stopped customizing that a little while ago and went back to default. What are you using these days?
I think I'm back at defaults for no reason in particular, or maybe I was troubleshooting something. I forget! But then again, I'm using built-in & Privacy Badger in Edge and compartmentalizing browsers. ;)
 
Top