Advanced Plus Security LDoggs Security Setup

Last updated
Aug 21, 2018
Windows Edition
Pro
Security updates
Allow security updates
User Access Control
Always notify
Real-time security
Comodo Firewall & Netcraft
Firewall security
Periodic malware scanners
CCE w/ Killswitch, Zemana Antimalware, Norton Power Eraser & Emsisoft Emergency Kit
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Browser: Opera (latest version) (default browser)
Extensions: Nano Blocker & Defender, SingleClick Cleaner, Cookie Autodelete, Random User-Agent, Privacy Possum, CSS Exfil Protection, Auto History Wipe, Netcraft, Script Defender & i don't care about cookies.

Browser: Comodo Ice Dragon
Extensions: Scriptsafe, uBlock Origin, ClearURLs, Behind The Overlay, Netcraft, Cookie Autodelete, Random User-Agent, Trace, Decentraleyes & CanvasBlocker

Browser: Firefox Quantum (not on current system)
Extensions: NoScript, Decentraleyes, Cookie Auto Delete, Trace, uBlock Origin, IDN Safe, CSS Exfil Protection, ClearURLs, Skip Redirect, Smart Referer, Malwarebytes, BehindTheOverlay, Ghostery, Keyboard Privacy, CanvasBlocker, Netcraft & Random User Agent
Maintenance tools
O&OShutup 10, Defraggler, RevoUninstaller, SysHardener 1.5 (Evjl Rain settings) for additional system security and lockdown, procexp, Windscribe VPN Free 15GB plan, VLC Media Player, OpenOffice, 7zip, Virtual DJ Pro, CDBurnerXP, AOMEI Backupper Standard, Bleachbit, PrivaZer & Wise Care 365
File and Photo backup
AOMEI Backupper Standard
System recovery
AOMEI Backupper Standard

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
Removed from FF:
- Avira Browser Safety
- Privacy Possum

Installed for Firefox Quantum
- CSS Exfil Protection
- ClearURLs
- Skip Redirect

Installed:
- Unchecky
- Andyful/ConfigureDefender

I don't use any DL Manager's so that's fine by me! I may stick with DuckDuckGo for my search engine.

~LDogg
I think you can remove CSS Exfil Protection because FF 57 and above already has new XSS/CSS (cross-site scripting) protection

Firefox 57 to Get New XSS Protections | SecurityWeek.Com
 
  • Like
Reactions: harlan4096

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
My apology.

I mixed up FF's XSS (cross-site scripting) with the CSS Exfil Protection extension's CSS which stands for Casading Style Sheets

CSS Exfil Protection extension is still needed
 
Last edited:
  • Like
Reactions: harlan4096

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
@LDogg

Since you are using Skip Redirect & IDN Safe on your PC for FF Quantum here's something for you

Try the Third-Party redirection test

title

if after the test it comes to either of the below sites

A record breaking domain?

㯙㯜㯙㯟.com <=== IDN Safe will block and show this site sometimes

Then the redirection test fails i.e. Skip Redirect fails....and this applies to similar redirect block extensions

Unfortunately, there's no flag setting in FF Quantum for PC (and android) to block redirections.

FYI, Chrome browser (for desktop and android) passed the redirection test with flying color because an experimental flag setting prevents redirection
 
Last edited:
  • Like
Reactions: lowdetection

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
Looks like it was blocked, nothing else actually was redirected but nothing was shown. So who knows.

~LDogg
 

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
Yep it was blocked! Just came up on the two rectangles on the site! Thank again.

~LDogg
 

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
Yep it was blocked! Just came up on the two rectangles on the site! Thank again.

~LDogg
You'll need to disable other protection like your AV, ScriptSafe etc to show that you are just using ONLY Skip Redirect or IDN Safe separately.

My ESET IS also blocked and I "passed" the test which in fact Skip Redirect didn't
 

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
You'll need to disable other protection like your AV, ScriptSafe etc to show that you are just using ONLY Skip Redirect or IDN Safe separately.

My ESET IS also blocked and I "passed" the test which in fact Skip Redirect didn't
I don't have an AV xD

It passed to which is great.
LDogg
 

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
I only saw 2 even aftwer disabling most.
~LDogg
 

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
Added to FF Quantum: Norton Safe Web extension
Added searx.me to search engine list on FF Quantum
Added: Bleachbit
Added: PrivaZer
Added: UnChecky
Windows Defender is turned on.


Removed from FF Quantum: Removed PureVPN Extension
Removed: CCleaner
Removed: Ricochet

Never going to use a PW Manager though, I do not trust them. xD
 

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
Updared 18/06/2018.

Added Glary Utilities 5.9.
Any more reccommendations on FF Quantum extensions @HarborFront?

~LDogg
 
  • Like
Reactions: harlan4096

Thales

Level 15
Verified
Top Poster
Well-known
Nov 26, 2017
708
Bleachbit. Privazer or Glary. Just pick one
I prefer Glary :D
 

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
Bleachbit is no longer on my system. PrivaZer does a deeper clean then Wise Disk Cleaner, I use Wise everyday. Glary isn't just for cleaning, it's for other system related aspects too. They all serve a massive purpose.

~LDogg
 
  • Like
Reactions: harlan4096

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
Last edited:
  • Like
Reactions: harlan4096

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
What are the extensions you use for Quantum and Ch
First, let's start off with what we want to protect from the web. Here's the list I believe we need protection from.

- ads & ad trackers
- malicious sites
- analytics
- browser fingerprinting
- social widgets
- microphone (disabled in Windows)
- webRTC leak
- unwanted cookies
- webbugs
- clickbait links
- in-browser cryptojackers
- browser hijackers
- browser lockers
- phishing and online scams
- PUPs, toolbars and pop ups
- overlays
- CSS (Cascading Style Sheets)
- CDNs (Content Delivery Networks)
- redirects (setting flag in Chrome browser)
- session replay scripts (protected by Keyboard Privacy + Ghostery + EasyPrivacy filter)
- spoofing/randomizing user-agent/timezone/header(etag and referer)/geolocation
- clean URL tracking
- WebGL
- other web annoyances
- ultrasonic tracking (not needed). If you need protection then you can use TunnelBear Blocker (Chrome)/Silver Dog (FF)

Then you decide what extensions are need

For Chrome, by default, it protects against
- CSRF/XSRF (cross-site request forgery). Disabling 3rd-party cookies helps in preventing CSRF
- XSS (cross-site scripting)
- Clickjacking (aka UI redressing)
- Punycode

so there's no need of any extensions

Privacy extensions I'm using for Chrome are

1) Decentraleyes
2) MalwareBytes
3) Ghostery
4) AdBlock (with only EasyList + EasyPrivacy + AdBlock custom filters)
5) Auto Overlay Remover
6) Cookie AutoDelete
7) CSS Exfil Protection
8) Keyboard Privacy
9) minerBlock
10) ScriptSafe
11) Privacy Possum
12) Pure URL
13) Random User Agent
14) TrackMeNot
15) Noiszy
16) I don't care about cookies
17) Auto History Wipe

For FF Quantum I try to get the similar extensions for Chrome. By default FF protects against

- CSRF/XSRF (cross-site request forgery). Disabling 3rd-party cookies helps in preventing CSRF
- XSS (cross-site scripting)
- Clickjacking (aka UI redressing)
- Punycode (not very effective. I rather use IDN Safe)

Privacy extensions I use

1) Decentraleyes
2) MalwareBytes
3) Ghostery
4) AdBlock (with only EasyList + EasyPrivacy filters)
5) Behind the Overlay
6) Cookie AutoDelete
7) CSS Exfil Protection
8) Keyboard Privacy
9) minerBlock
10) ScriptSafe
11) Trace
12) ClearURLs
13) CyDec Platform Anti-Fingerprinting
14) TrackMeNot
15) IDN Safe
16) I don't care about cookies
17) Skip Redirect
18) YouTube Container
19) Temporary Containers

For History I set 'Clear history when FF closes'

Notes:-

1) I disabled Google Safe Browsing/Tracking Protection in Chrome/FF
2) I blocked ALL 3rd-party cookies in Chrome/FF setting
3) Have Do-Not-Track disabled as it'll depend on the site in not tracking you. You think the site won't track you even with the setting enabled?
4) Expect some compatibility issue with extensions in Chrome like between ScriptSafe/Trace/Cydec or between Ghostery/TunnelBear Blocker
5) I don't use any Popup Blocker. That's because in FF Quantum you can enable a setting to completely remove popups. In Chrome, so far, I have not encounter any popups so not using one for the moment. Also, in Chrome, I have Fanboy's Annoyances List in my AdBlock to handle this
6) I find Smart HTTPS/HTTPS Everywhere not so useful as most sites are HTTPS nowadays. Also, if the site cannot be forced to changed from HTTP-to-HTTPS then the site still will be using HTTP.
7) I use VPN to increase my privacy
8) Security settings/extensions is another matter like Strict Site Isolation and AppContainer in Chrome and Enabling 1st-Party Isolation and DNS-over-HTTPS (for privacy as well) settings in FF
9) Make sure you are not bogged down by the extensions/filters you installed

For Overlays you can test at the below sites. Just make sure you disable other adblockers

1) Work In Progress - Adolescent Brains Are A Work In Progress | Inside The Teenage Brain | FRONTLINE | PBS
2) Pinterest

You can either use overlay blocker extensions or adblocker (uBO, AdBlock, ABP, AdBlocker Ultimate etc) which comes with element hiding feature to remove them

And if you are really serious with your privacy I'll suggest you try out the high privacy Ungoogled Chromium browser instead of Chrome. Use with searx.me search engine and there goes your high privacy.

2 disadvantages though

1) Its version release is behind Chrome. Security can be an issue here if version lacks too far behind
2) A bit of hassle regarding the installation of the extensions. You can't install extensions directly from Chrome Play Store. You'll need to extract the crx file for each extension and there's no auto update for the extensions. You'll also need to monitor and update manually with new extracted crx files

Ungoggled Chromium
 
Last edited:

LDogg

Level 33
Thread author
Verified
Top Poster
Well-known
May 4, 2018
2,261
Updated FF Quantum 20/06/2018.

Removed: Poper Blocker
Added: minerBlock, TrackMeNot, Malwarebytes & BehindTheOverlay.

Thank you again, @HarborFront

~LDogg
 
  • Like
Reactions: harlan4096

Evjl's Rain

Level 47
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
minerBlock
this extension is totally unneeded because you already have malwarebytes and ublock origin
ublock, make sure you enable: uBlock filters – Resource abuse & EasyPrivacy
if you do so, ublock can block much much more cryptominers than any any extension combined. Trust me

those extensions copy and paste each others and they are useless against new miners

optional, you can replace Easylist by English filter (by adguard), which also some extra cyrptominer protection
 

HarborFront

Level 71
Verified
Top Poster
Content Creator
Oct 9, 2016
6,014
this extension is totally unneeded because you already have malwarebytes and ublock origin
ublock, make sure you enable: uBlock filters – Resource abuse & EasyPrivacy
if you do so, ublock can block much much more cryptominers than any any extension combined. Trust me

those extensions copy and paste each others and they are useless against new miners

optional, you can replace Easylist by English filter (by adguard), which also some extra cyrptominer protection


I beg to differ as it doesn't just use a blocklist
MinerBlock is an efficient browser extension that focuses on blocking browser-based cryptocurrency miners all over the web.

This extension uses two different approaches to block miners. The first one is based on blocking requests/scripts loaded from a blacklist, this is the traditional approach adopted by most ad-blockers and other mining blockers.

The other approach which makes MinerBlock more efficient against cryptojacking is detecting potential mining behavior inside loaded scripts and kills them immediately.

This makes the extension able to block inline scripts as well as miners running through proxies.
 
Last edited:
  • Like
Reactions: oldschool

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top