- May 11, 2013
- 1,687
Today i bought a new BTO X•BOOK 17CL56 - GTX specially for my company FMA Intel Secure.
My other laptops are on their limits when it comes to developing and testing software and while those laptops are great i got fed up and wanted something new.
This laptop will ONLY be used for programming, testing and other FMA related tasks.
BTO Website see laptop
Laptop specification:
17CL56: NVIDIA GTX880m 8GB, Full HD, 90% Gamut Glare, (+/- 29500 3DMARK Score)
4x 8GB DDRL3 (1600mhz) Kingston HyperX Memory
Intel Core i7-4940MX Extreme Edition (8M Cache - Max 4GHz) Quad Core
2x Samsung 1TB 840 EVO 2.5 inch SSD
Alright here a little extra info about my configuration.
Symantec Endpoint Protection 12.1.4 (Set in client & session mode)
* Controlled by a Network Admin Session Server (NASS).
Note: Laptop does cannot make changes to the system itself, as it is all session based.
So turn off the laptop and everything is instant being reset to the values within the NASS and SEP Server.
Only software running on this system will be developer software with limited internet access.
You cannot connect to the network or server without your IP being listed as client the system is set up in such way that NO connection can be made without authorization.
For casual browsing the system is using a dummy tunnel which emulates a desktop computer in full virtualization mode.
Secure-link Integrated Security Gateway.
* Application identifier and Monitoring (Token and Session based)
* Next Generation Hardware Firewall (Intrusion Prevention/Deception)
* Integrated Threat Prevention (IPS, URL, antivirus, antimalware, Content Scanning)
* User management and Integration
* Full Network and Traffic Virtualization (Session based)
* Full Network Administration, Crash recovery, VPN, Network Backup, DDos rerouting.
FMA Intel Secure Online Backup 5TB
* All critical data is being stored on a own dedicated server within a local data-center fully secured by Alto Palto (USB Key based VPN access with full connection encryption)
Norton Online Backup 25 GB
* Only contains system images and documents.
Symantec System Recovery Server Edition
* One click 100% wipe and full re-install
Symantec Drive Encryption (PGP)
* Encrypts OS data and Local hard drive
As you can see this is a solid setup and leaves no room for malware, spyware & intruders, given the fact that the system is configured using the TNDA standard (Trust None Delete All).
Every 15 minutes a completely new unique session is being made when the system is running and the old session is being deleted on the spot and you can only continue a session if you use a USB Key token. So without the USB Key all data is during the previous session is deleted and the system is being put back into a predefined state.
Security as good as it gets IMHO.
So review and rate my security setup.
Enjoy.
To satisfy MT guru BoraMurdar i have replaced IE (And disabled it) with Opera browser.
Because his awesomeness demands every user in the world to block IE by default.
Now dear BoraMurdar can we get a amen?
Lmao for you BM your wish is my command.
My other laptops are on their limits when it comes to developing and testing software and while those laptops are great i got fed up and wanted something new.
This laptop will ONLY be used for programming, testing and other FMA related tasks.
BTO Website see laptop
Laptop specification:
17CL56: NVIDIA GTX880m 8GB, Full HD, 90% Gamut Glare, (+/- 29500 3DMARK Score)
4x 8GB DDRL3 (1600mhz) Kingston HyperX Memory
Intel Core i7-4940MX Extreme Edition (8M Cache - Max 4GHz) Quad Core
2x Samsung 1TB 840 EVO 2.5 inch SSD
Alright here a little extra info about my configuration.
Symantec Endpoint Protection 12.1.4 (Set in client & session mode)
* Controlled by a Network Admin Session Server (NASS).
Note: Laptop does cannot make changes to the system itself, as it is all session based.
So turn off the laptop and everything is instant being reset to the values within the NASS and SEP Server.
Only software running on this system will be developer software with limited internet access.
You cannot connect to the network or server without your IP being listed as client the system is set up in such way that NO connection can be made without authorization.
For casual browsing the system is using a dummy tunnel which emulates a desktop computer in full virtualization mode.
Secure-link Integrated Security Gateway.
* Application identifier and Monitoring (Token and Session based)
* Next Generation Hardware Firewall (Intrusion Prevention/Deception)
* Integrated Threat Prevention (IPS, URL, antivirus, antimalware, Content Scanning)
* User management and Integration
* Full Network and Traffic Virtualization (Session based)
* Full Network Administration, Crash recovery, VPN, Network Backup, DDos rerouting.
FMA Intel Secure Online Backup 5TB
* All critical data is being stored on a own dedicated server within a local data-center fully secured by Alto Palto (USB Key based VPN access with full connection encryption)
Norton Online Backup 25 GB
* Only contains system images and documents.
Symantec System Recovery Server Edition
* One click 100% wipe and full re-install
Symantec Drive Encryption (PGP)
* Encrypts OS data and Local hard drive
As you can see this is a solid setup and leaves no room for malware, spyware & intruders, given the fact that the system is configured using the TNDA standard (Trust None Delete All).
Every 15 minutes a completely new unique session is being made when the system is running and the old session is being deleted on the spot and you can only continue a session if you use a USB Key token. So without the USB Key all data is during the previous session is deleted and the system is being put back into a predefined state.
Security as good as it gets IMHO.
So review and rate my security setup.
Enjoy.
To satisfy MT guru BoraMurdar i have replaced IE (And disabled it) with Opera browser.
Because his awesomeness demands every user in the world to block IE by default.
Now dear BoraMurdar can we get a amen?
Lmao for you BM your wish is my command.
Last edited:
