Latest Changes
Aug 21, 2018
Operating System
Windows 10
Windows Edition
Pro
System Architecture
64-bit OS
Security Updates
Automatic with Deferred upgrades - Security updates only
User Access Control
Always Notify
Firewall
3rd-party Firewall - Network security provided by a trusted vendor
Device Security
Windows Defender SmartScreen (Windows 10)
User Account
Administrator - User has complete control over the device
Recent Security Incidents
No malware or privacy issues
Malware Testing
None - No Malware on host PC or VM
Real-time Web & Malware Protection
Comodo Firewall & Netcraft
Custom Settings For Real-Time Protection
Custom - Minor changes for Increased Security
Virus and Malware Removal Tools
CCE w/ Killswitch, Zemana Antimalware, Norton Power Eraser & Emsisoft Emergency Kit
Browsers and Extensions
Browser: Opera (latest version) (default browser)
Extensions: Nano Blocker & Defender, SingleClick Cleaner, Cookie Autodelete, Random User-Agent, Privacy Possum, CSS Exfil Protection, Auto History Wipe, Netcraft, Script Defender & i don't care about cookies.

Browser: Comodo Ice Dragon
Extensions: Scriptsafe, uBlock Origin, ClearURLs, Behind The Overlay, Netcraft, Cookie Autodelete, Random User-Agent, Trace, Decentraleyes & CanvasBlocker

Browser: Firefox Quantum (not on current system)
Extensions: NoScript, Decentraleyes, Cookie Auto Delete, Trace, uBlock Origin, IDN Safe, CSS Exfil Protection, ClearURLs, Skip Redirect, Smart Referer, Malwarebytes, BehindTheOverlay, Ghostery, Keyboard Privacy, CanvasBlocker, Netcraft & Random User Agent
Web Privacy
Nano Blocker & Defender, Decentraleyes, Cookie Auto Delete, IBM-backed Quad9 DNS , uBlock Origin, IDN Safe, Trace, ClearURLs & other web extensions
Password Manager
None.
Web Search
DuckDuckGo
System Utilities
O&OShutup 10, Defraggler, RevoUninstaller, SysHardener 1.5 (Evjl Rain settings) for additional system security and lockdown, procexp, Windscribe VPN Free 15GB plan, VLC Media Player, OpenOffice, 7zip, Virtual DJ Pro, CDBurnerXP, AOMEI Backupper Standard, Bleachbit, PrivaZer & Wise Care 365
Data Backup
AOMEI Backupper Standard
Frequency of Data backups
Weekly
System Backup
AOMEI Backupper Standard
Frequency of System backups
Regularly

LDogg

Level 28
Verified
Sounds good

Well ice dragon might be best alternative for firefox, due comodo security enchanments and constant updates. Its also bit lighter.

Also superior sll certificates are nice feature.

Actually i moved to quantum because you said quantum is nice and few other comments from people...but now im feeling going back to ice dragon because it brings more features over firefox. Im gonna install ice dragon back and have deep insight to see hows performance against firefox
IceDragon is a light light mainly on CPU and RAM usage, plus loads pages a bit faster too as well. Looks like the best version of the FF fork out there.

Only down side is that the normal On protection for VoodooShield doesn't activate with it.

~LDogg
 

Moonhorse

Level 26
Content Creator
Verified
IceDragon is a light light mainly on CPU and RAM usage, plus loads pages a bit faster too as well. Looks like the best version of the FF fork out there.

Only down side is that the normal On protection for VoodooShield doesn't activate with it.

~LDogg
Smart does?
 

LDogg

Level 28
Verified
Updated: 31/07/18

Hardened Comodo Ice Dragon, stopped all Telemetry settings using about:config.

Also stopped webgl, GeoLocation, Fingerprinting, TLS domains, media peer connection to false & a lot more.

Hardening links:
- Guide: Hardening Mozilla Firefox For Privacy & Security 2016 | Cyber Security Wiki | Viking VPN Service
- Privacy Tools | Encryption against global mass surveillance

@Gandalf_The_Grey @Moonhorse hope you like my settiings

Edit: removed Netcraft on Comodo Ice Dragon due to update of XSS & Phishing per @HarborFront reply.

Scriptsafe now at LDogg settings (Privacy/Fingerprint/General) screenshots:
 

Attachments

Last edited:

Gandalf_The_Grey

Level 18
Verified
Updated: 31/07/18

Hardened Comodo Ice Dragon, stopped all Telemetry settings using about:config.

Hardening links:
- Guide: Hardening Mozilla Firefox For Privacy & Security 2016 | Cyber Security Wiki | Viking VPN Service
- Privacy Tools | Encryption against global mass surveillance

@Gandalf_The_Grey @Moonhorse hope you like my settiings

Scriptsafe now at LDogg settings (Privacy/Fingerprint/General) screenshots:
You block a lot. Thank you and @Moonhorse for the screenshots and some ideas/settings to play with (y)
I think i will use @Moonhorse more relaxed settings because I share this computer with other family members.
Also I want to test the combo of AdGuard/uBlock and ScriptSafe against @Evjl's Rain s links for testing the protection of extensions.
 

LDogg

Level 28
Verified
I block a lot due to testing, the ones I've left unticked failed in tests. I'm glad I could help you out! Also as an additional side note, Scriptsafe hasn't broken any websites for me whatsoever. Only thing that break is if you tick to block <IMG> this breaks Thumbnails for YouTube when testing, so I've left unticked.

My pleasure @Gandalf_The_Grey hope this helps you going forward!

Edit: Also not ticked "Client Rectangles" breaks Facebook when you try to message someone & "Clipboard Interference" stop you copying & pasting from sites when testing.

~LDogg
 

Moonhorse

Level 26
Content Creator
Verified
if you have time to tweak every site you visit and manage to build blocked/allowed domains list, you will control/dominate internet for sure ( default mode: block)

if you share computer / browser, it would be smartest to have default mode on allowed...you can still benefit alot from it without affecting in browsing experience at all

Default mode: block; you dont benefit from having decentraleyes if you have that still installed @LDogg , since you dont allow google domains.

Sadly i have seen few sites using captcha, and i cant complete them without enabling few domains from google, but i can allow them just temporary

Isnt it bit overkill to have voodooshield + comodo firewall?

You can run exe.files on virustotal online and comodo has anti-exploit for browser already?

I have installed comodo dragon as my main browser, i give it a go with blocking everything by default and tweaking browser same way as you do
 
Last edited:
  • Like
Reactions: Gandalf_The_Grey

LDogg

Level 28
Verified
if you have time to tweak every site you visit and manage to build blocked/allowed domains list, you will control/dominate internet for sure ( default mode: block)

if you share computer / browser, it would be smartest to have default mode on allowed...you can still benefit alot from it without affecting in browsing experience at all

Default mode: block; you dont benefit from having decentraleyes if you have that still installed @LDogg , since you dont allow google domains.

Sadly i have seen few sites using captcha, and i cant complete them without enabling few domains from google, but i can allow them just temporary

Isnt it bit overkill to have voodooshield + comodo firewall?

You can run exe.files on virustotal online and comodo has anti-exploit for browser already?
You can benefit from Decentraleyes, I made a .txt file that needs to go into uBlock Origins rules section. If you wish to have the .txt file for your ruleset that's fine. It makes Decentraleyes be able to block Unwanted CDN Networks, JQuery from Google Search Libraries and more. Then Enable the "block requests for missing resources" setting inside Decentraleyes.

VDS + CFW isn't overkill. Avast + CFW + OSArmor + VDS would be the very definition of overkill. VDS is a white listing anti-exe, CFW is a self explanatory Firewall w/ sandbox capabilities, both cover various attack surface vectors which is why I have them installed. It's the reason I need no AV, as this setup is light, adding an AV would make my config very much overkill.

On websites that still use jQuery 1.91 it's beneficial to use, when testing Decentraleyes does block Google Hosted Libraries.

~LDogg
 
Last edited:

LDogg

Level 28
Verified
Mainly helps for YouTube, here as well, xat, Decentraleyes would stop the jQuery files being linked. Anything else from Google I block by default such as UTM, googletagmanager, googletagservices etc etc.

Some sites can break if googleapis.com is blocked outright.

~LDogg
 
  • Like
Reactions: Moonhorse