Advanced Plus Security geminis3's Security Config 2022

Last updated
Mar 28, 2022
About
Personal, primary device
Additional PC users
Not shared with other users
Desktop OS
Windows 10
OS edition
Enterprise
Login security
    • Password-less (PIN, Biometric, Face)
    • Password (Aa-Zz, 0-9, Symbols)
Primary sign-in
Local account
Primary user
Admin user - Full permissions
Security updates
Automatic - allow all types of updates
Windows UAC
Maximum - always notify
Network firewall
Third-party router
Real-time protection
ESET Internet Security 15
Software firewall
Provided by a third-party security vendor. Refer to 'Real-time protection' for details.
Custom RTP, Firewall and OS settings
  • LiveGrid enabled
  • PUP detection enabled
  • Everything else default
Malware testing
No malware samples
Periodic security scanners
MBAM, NPE and HitmanPro
Secure DNS
Cloudflare, Adguard (unfiltered) and NextDNS (unfiltered) on Adguard Home (malware protection enabled) at my RPi 4 (network-wide)
VPN
Windscribe and ProtonVPN
Password manager
Bitwarden
Browsers, Search and Addons
Google Chrome and Firefox with uBO and Bitwarden
Maintenance and Cleaning
CCleaner and Cleanmgr+
Personal Files & Photos backup
Google Drive and local backups on external drives
Personal backup routine
Manual (maintained by self)
Device recovery & backup
Macrium Reflect
Device backup routine
Manual (maintained by self)
PC activity
  1. Working from home. 
  2. Browsing the web. 
  3. Emails. 
  4. Shopping. 
  5. Banking. 
  6. PC and cloud gaming. 
  7. App developer. 
Personal changelog
  • Fresh LTSC 2021 install
  • ESET IS instead of EAM
Feedback Response

General feedback

geminis3

Level 18
Thread author
Verified
Top poster
Well-known
Sep 10, 2015
872
Hoping you guys had a wonderful holiday, this is my security config for 2022. I have Windows 11 Pro installed along with Fedora Workstation 35.

Windows Defender can become very CPU and I/O consuming specially when copying large folders such as node_modules so I ended up buying an Emsisoft Anti-Malware license because it's the less intrusive solution I found (I don't want SSL MITM or bloated suites just a simple AV to replace WD).

1641246297253.png

This year I'm going to replace my current laptop but I'm still not sure wheter to go with a MacBook Pro (M1 Pro) or an Alder Lake based laptop (preferably a ThinkPad but as long as the RAM/NVMe is upgradeable and it doesn't has Nvidia nor hardware that doesn't work properly on Linux I'm fine).

Stay safe!
 
Last edited by a moderator:

Vitali Ortzi

Level 22
Verified
Top poster
Well-known
Dec 12, 2016
1,113
just use Linux you will have more control of what takes your IO
anyway since m1 has unlocked boot-loader its really nice and efficiency is unheared of in any other mobile as long as you dont need x86 or certain applications i think mac is a really nice
unforntaly thinkpads are dead im writing this in a t400 and its dam good except speakers screen and slow ass p8700 cpu
if i had this exact laptop with micro led ,arm ,nice speakers and modern ports it would have been my fav laptop
but ibm design is long dead :(
 

geminis3

Level 18
Thread author
Verified
Top poster
Well-known
Sep 10, 2015
872
Since Linux runs so bad on Nvidia Optimus laptops currently I'm only using Windows 10 LTSC 2021 on this machine, had to ditch Windows 11 since it blocks MSR writes required for CPU undervolting when running VBS (WSL2).

I'm also using EIS since it's more lightweight and doesn't has FP issues unlike EAM (behavior-blocked quarantined my PostgreSQL installation whilst performing a backup routine 🤣).

1648515919841.png


PD: Now I'm waiting for the M2 powered MBP to come out since development will be moving forward to ARMv9 in the next years.
PD2: Asahi Linux is making eyes at me.