Advanced Plus Security n8chavez's System Configuration 2025

[n8chavez]

Here is my system configuration. I try to automate as much as possible, from imaging my SSD to rcloning data backups to an encrypted GDrive. From a security standpoint, I try to keep things proactive, not reactive. I do not use malware scanners, or any third party anti-malware software.

Let me know what you think!

 

[Kongo]

Nice config. Consider setting UAC to "Max" to prevent UAC bypasses. Also consider picking a second additional scanner next to HitmanPro as it can't detect scripting malware for example.

 

[simbatippe1234]

Hi, I am truly impressed, I wish I had the know-how to set up my Laptop similar to yours @n8chavez, real technical & very great Configuration!
Respect!

 

[n8chavez]

Nice config. Consider setting UAC to "Max" to prevent UAC bypasses. Also consider picking a second additional scanner next to HitmanPro as it can't detect scripting malware for example.

Thanks! But that's where VoodooShield comes into play; it detects anything running on my system and prompts me. There's no need for both UAC @ max and VS, since theyr do the same thing.

 

[n8chavez]

Hi, I am truly impressed, I wish I had the know-how to set up my Laptop similar to yours @n8chavez, real technical & very great Configuration!
Respect!

Thanks @ simbatippe1234! I've run variations of this config for over a decade, with no problems. If there's anything I can ever help you configure/setup just ask.

 

[Kongo]

Thanks! But that's where VoodooShield comes into play; it detects anything running on my system and prompts me. There's no need for both UAC @ max and VS, since theyr do the same thing.

Oh, my bad. I think last time I tried VoodooShield it even told me to disable UAC if I remember correctly.

 

[n8chavez]

Oh, my bad. I think last time I tried VoodooShield it even told me to disable UAC if I remember correctly.

It's a fantasic program! I highly recommend it.

 

[Kongo]

It's a fantasic program! I highly recommend it.

I know that it is, but I am not a big fan of a layered approach. At least of using multiple solutions running in real-time.

 

[Andy Ful]

There's no need for both UAC @ max and VS, since theyr do the same thing.

They do not, but the attacks that could use this difference are rare. So, if one does not like UAC on MAX, then using VS (or similar protection) is a good idea.

 

[n8chavez]

They do not, but the attacks that could use this difference are rare. So, if one does not like UAC on MAX, then using VS (or similar protection) is a good idea.

Either VoodooShield or something like OSArmor. Both are very good.

 

[Andy Ful]

Either VoodooShield or something like OSArmor. Both are very good.

Any smart default-deny setup. There are many good choices: SRP, anti-EXE, Comodo auto-sandbox, etc.
Simply, if one blocks/contains something by default then it cannot elevate or it is contained in the sandbox.

Edit.
OSArmor might have to be highly tweaked if one would like to skip UAC on MAX.

 

[n8chavez]

Any smart default-deny setup. There are many good choices: SRP, anti-EXE, Comodo auto-sandbox, etc.
Simply, if one blocks/contains something by default then it cannot elevate or it is contained in the sandbox.

Edit.
OSArmor might have to be highly tweaked if one would like to skip UAC on MAX.

Yuuup. But, after all, we are a community of tweakers!

 

[Andy Ful]

Any of the mentioned solutions (including VS) will be stronger with UAC MAX in the postinfection stage. But, most users who like such solutions will not be probably infected, at all.

 

[n8chavez]

Any of the mentioned solutions (including VS) will be stronger with UAC MAX in the postinfection stage. But, most users who like such solutions will not be probably infected, at all.

Any setup has to balance security with usability. If not why don't we all disconnect and turn off our systems? They would be completely secure then!