Advanced Plus Security LDogg Rugged Laptop Config (2019)

[LDogg]

Welcome to my setup for this year, I wasn't going to post but I thought why not. Not much has changed from the other one apart from in depth explanations in most categories. The main aim of this setup was to be light as possible with the strongest protection I could muster, twinned with very good browsing habits.

Something brand new to my config is my device specs, enjoy them

Hope you all like my config, feel free to leave a reply and/or constructive feedback. Happy New Year as well!

~LDogg

 

[LDogg]

Updated: 11/01/19

Added: WPE 1.2.940. Firewall Rules: Spy setting.

~LDogg

 

[Moonhorse]

Wich browser are you using? You have extensions listed, but i guess you forgot to add the browser into config

And if you do use youtube, is forticlient still limiting it to restricted mode

 

[LDogg]

Wich browser are you using? You have extensions listed, but i guess you forgot to add the browser into config

And if you do use youtube, is forticlient still limiting it to restricted mode

I'm using Brave. That was the case xD. Forticlient isn't limiting me at all on YouTube.

~LDogg

 

[sepik]

Very nice setup!
I do like to ask about:
Forticlient: Any performance issues or slowdowns while browsing the net or filecopying, archiving/unarchiving? Does it do many i/o writes(crucial
for SSD i think), how about CPU usage?
Vuze: Is it java-based torrent client? Im using qbittorrent.
Firewall: Are you using default windows firewall or a third party firewall software that uses windows firewall? Maybe you want to run Atelier Firewall test(its signed, safe to run, tho some AVs blocks it even its signed). Test 1-3 are basic firewall test that any firewall should pass. Test 4-6 are more like advanced techniques to get an access to internet. Test 4-6 are kind of a combined Firewall+HIPS test. Any malware can do that also, so i suggest to add HIPS component to your setup.
And there might be a situation that you dont know that some malware is lurkin inside your computer and using above methods(test 4-6) to get an internet access. That is why keystroke encryption comes to play. I think.

But thanks for these:
Scriptsafe - Unwanted content, blocking of scripts on websites
Trace - Overall website privacy + higher domain levels blocked
Click n Clean - Set to wipe all data on browser exit
Poper Blocker - Primarily for successful blockage of Pop Ups

Have to test those!
Regards,
-sepik

 

[LDogg]

Very nice setup!
I do like to ask about:
Forticlient: Any performance issues or slowdowns while browsing the net or filecopying, archiving/unarchiving? Does it do many i/o writes(crucial
for SSD i think), how about CPU usage?
Vuze: Is it java-based torrent client? Im using qbittorrent.
Firewall: Are you using default windows firewall or a third party firewall software that uses windows firewall? Maybe you want to run Atelier Firewall test(its signed, safe to run, tho some AVs blocks it even its signed). Test 1-3 are basic firewall test that any firewall should pass. Test 4-6 are more like advanced techniques to get an access to internet. Test 4-6 are kind of a combined Firewall+HIPS test. Any malware can do that also, so i suggest to add HIPS component to your setup.
And there might be a situation that you dont know that some malware is lurkin inside your computer and using above methods(test 4-6) to get an internet access. That is why keystroke encryption comes to play. I think.

But thanks for these:
Scriptsafe - Unwanted content, blocking of scripts on websites
Trace - Overall website privacy + higher domain levels blocked
Click n Clean - Set to wipe all data on browser exit
Poper Blocker - Primarily for successful blockage of Pop Ups

Have to test those!
Regards,
-sepik

Forticlient: no performance issues or slowdowns at all!
Vuze: this is java based
Firewall: only using WIndow Firewall
HIPS: what software do you recommend I should use to add for HIPS for my setup?

No problem, have a test with them and see what you think about the extension.

~LDogg

 

[oldschool]

I see Fortclient and WD. Are you using two AVs?

 

[LDogg]

Window Defender I'd say is more anti-malware but can run alongside Forticlient or another AV with no issue.

~LDogg

 

[oldschool]

Window Defender I'd say is more anti-malware but can run alongside Forticlient or another AV with no issue.

~LDogg

How? I thought WD disables itself when you install another AV? Not all AVs?

 

[LDogg]

How? I thought WD disables itself when you install another AV? Not all AVs?

To be honest I'm not quite sure, with Avast, WD disabled itself straight away. Maybe with the other components of Forticlient it may not recognise it as an AV.

~LDogg

 

[LDogg]

Updated: 17/01/19

Added: McAfee WebAdvisor extension to Edge.

~LDogg

 

[LDogg]

@HarborFront what's your current extension setup then?

~LDogg

 

[HarborFront]

@HarborFront what's your current extension setup then?

~LDogg

Privacy/Security extensions for my FF set up

1) ClearURLs
2) Skip Redirect
3) Behind the Overlay
4) Behavioral Keyboard Privacy
5) IDN Safe
6) uBO(Hard Mode with Decentraleyes noop rules) + filters
7) Decentraleyes
8) Privacy-Oriented Origin Policy
9) TrackMeNot
10) Google Container
11) Temporary Containers (also, enable first party isolation in FF)
12) CSS (Cascading Style Sheets) Exfil Protection
13) I don’t care about cookies
14) Cookies AutoDelete
15) Netcraft
16) Nano Defender
17) Malwarebytes
18) User-Agent Switcher
19) CanvasBlocker **
20) ScriptSafe **
21) Trace **
22) ETag Stoppa **
23) Browser Plugs Fingerprint Privacy Firewall **


Privacy/Security extensions for my Chrome set up

1) Cookie AutoDelete
2) Auto History Wipe
3) BehindTheOverlay
4) Local CDN
5) Neat URL
6) User-Agent Switcher and Manager
7) Keyboard Privacy
8) Noiszy
9) TrackMeNot
10) CSS Exfil Protection
11) I don’t care about cookies
12) Anti Rebind
13) Netcraft
14) uBO (Hard Mode with Decentraleyes noop rules) + filters
15) Nano Defender
16) WebRTC Control **
17) ScriptSafe **
18) Cache Killer **
19) BP Privacy Block All Font and Glyph Detection **
Note :- Unable to prevent canvasfingerprint blocker from revealing its own fingerprint unlike in FF

With the above set up (with **) I passed ALL the tests in the below links and get 100% anonymity in whoer.net for both browsers

browserleaks.com (some tests are irrelevant)
bromite.org/detect
audiofingerprint.openwpm.com/
Lucb1e.com :: Cookieless Cookies
whoer.net

Edit :- Sorry, a mistake here. Changed item 19) for Chrome

 

[Deleted Member 3a5v73x]

Privacy/Security extensions for my FF set up

1) ClearURLs
2) Skip Redirect
3) Behind the Overlay
4) Behavioral Keyboard Privacy
5) IDN Safe
6) uBO(Hard Mode with Decentraleyes noop rules) + filters
7) Decentraleyes
8) Privacy-Oriented Origin Policy
9) TrackMeNot
10) Google Container
11) Temporary Containers (also, enable first party isolation in FF)
12) CSS (Cascading Style Sheets) Exfil Protection
13) I don’t care about cookies
14) Cookies AutoDelete
15) Netcraft
16) Nano Defender
17) Malwarebytes
18) User-Agent Switcher
19) CanvasBlocker **
20) ScriptSafe **
21) Trace **
22) ETag Stoppa **
23) Browser Plugs Fingerprint privacy Firewall **


Privacy/Security extensions for my Chrome set up

1) Cookie AutoDelete
2) Auto History Wipe
3) BehindTheOverlay
4) Local CDN
5) Neat URL
6) User-Agent Switcher and Manager
7) Keyboard Privacy
8) Noiszy
9) TrackMeNot
10) CSS Exfil Protection
11) I don’t care about cookies
12) Anti Rebind
13) Netcraft
14) uBO (Hard Mode with Decentraleyes noop rules) + filters
15) Nano Defender
16) WebRTC Control **
17) ScriptSafe **
18) Cache Killer **
19) Blend In and Spoof Most Popular Properties **
Note :- Unable to prevent canvasfingerprint blocker from revealing its own fingerprint unlike in FF

With the above set up (with **) I passed ALL the tests in the below links and get 100% anonymity in whoer.net for both browsers

browserleaks.com (some tests are irrelevant)
bromite.org/detect
audiofingerprint.openwpm.com/
Lucb1e.com :: Cookieless Cookies
whoer.net

Could you please post a screenshot with open chrome or firefox for educational purposes? Thank you.

 

[Deleted member 178]

20+ privacy extensions while using Chrome on Windows... Ultimate paradox lol.

 

[stefanos]

To be honest I'm not quite sure, with Avast, WD disabled itself straight away. Maybe with the other components of Forticlient it may not recognise it as an AV.

~LDogg

I was sure only for immunet.

 

[Dhruv2193]

Good security setup.

 

[HarborFront]

Could you please post a screenshot with open chrome or firefox for educational purposes? Thank you.

See attached photos of my FF(top) and Chrome(below) privacy/security extensions (with a few extras) set ups and tests done at whoer.net

 

[Deleted member 178]

lol i have 90% anonymity just by using 1 VPN and 3 extensions, and i lost 10% because my system time is different than my IP address time (they guess im under a VPN). LOOOOOOOOOOOOOOOOOOOL.

Skill is all.

 

[LDogg]

I was sure only for immunet.

I guess not now. A second one with Fortinet too.

Good security setup.

Thank you my kind fellow!

~LDogg