Anonymize local IPs exposed by WebRTC (enable)
Reduce default 'referer' header granularity. (enable)
Hyperlink auditing (disable)
Enable AppContainer Lockdown (enabled - by default, but as long as it is in flags I enable it)
Enable GPU AppContainer Lockdown (enable)
PDF isolation enabled
Block unsafe downloads over insecure connections (enabled)
Mark non-secure origins as non-secure (mark actively as dangereous)
TLS 1.3 downgrade hardening (enabled)
Default-deny protection is not friendly to most people, so I have much time to help others.
I wasnt aware about that, configuredefender were part of H_C
The Close button works, but sometimes you have to clik it two or more times (slow clicks).I wasnt aware about that, configuredefender were part of H_C
Well i applied defender high settings, close button didnt work so i just exit with X
Is there any way to do check i have such settings enabled, without opening configuredefender?
I know something about srp and H_C but not anything bout configuredefender
Disablecatchupfullscan trueThe Close button works, but sometimes you have to clik it two or more times (slow clicks).
I will probably look at this issue in the future version. The actual WD settings can be easily seen in the PowerShell Console by using the command:
Those settings are not configured by Configuredefender. I think that they are the default settings. I do not have the setting disablelowcpupriority (it should be probably EnableLowCpuPriority). Read the below:Disablecatchupfullscan true
Do this mean on-demand scanning is disabled?
And about disablelowcpupriority_ true, shouldnt this one boost performance?
Since the threat protection will block torrents/warez sites, and those are pretty much where you could download something suspicious i would say its worth to addI did not know about Neustar DNS
For users who want protection against malicious domains for security purposes. Includes Reliability & Performance.LowMalware, Ransomware, Spyware & Phishing.
It's powerfull DNS for Malware, Ransomware, Spyware & Phishing ?
Thanks for your replySince the threat protection will block torrents/warez sites, and those are pretty much where you could download something suspicious i would say its worth to add
Im myself from eu, i used cloudflare before but i cant say i have any difference in loading speed than with neustar
Today i visited few sites that were advertised in twitch ( are fake/ phishing sites) and neustar dns aswell blocked them, but with the malware category
But yes, neustar is protection wide best DNS you can get
Edit: only downside of DNSthreat blocking is that you cant whitelist domains, but i can well put the neustar business protection on without getting blocked by any sites i visit
Im just gonna stay using Windows defender and avoid system utilities like ccleaner etc. use windows cleaning tools/ defrag instead
This does make sense, fair play.Im just gonna stay using Windows defender and avoid system utilities like ccleaner etc. use windows cleaning tools/ defrag instead
I just ran O & O shutup > Syshardener on max > and im gonna keep it like this. Im not gonna add any bb like OSA or any other tool for that
Default-deny setup is not for everyone. It is intended for the users, who rarely install the new applications, because new applications often require some whitelisting.Update 23.1.2019
- Removed hard configurator ( due family pc, and it feels like im in locked mode all the time)
+ Syshardener 1.5 added ( max settings) To replace H_C
H_C Is great, but i ran into problems whitelisting even i got the help i needed. Its way to learn Smartscreen and i respect that
now i feel bit awkward,