SECURITY: Complete oldschool's config 2021

Last updated
Oct 8, 2021
Personal, primary device
Additional PC users
Not shared with other users
Desktop OS
Windows 10
OS edition
Login security
    • Password (Aa-Zz, 0-9, Symbols)
Primary sign-in
Local account
Primary user
Standard user - Limited permissions
Security updates
Automatic - allow all types of updates
Windows UAC
Maximum - always notify
Network firewall
Third-party router
Real-time protection
Microsoft Defender
VoodooShield Pro
Software firewall
Microsoft Defender Firewall
Custom RTP, Firewall and OS settings
ConfigureDefender @ Default +
VoodooShield | Smart Mode | Aggressive
Malware testing
No malware samples
Periodic security scanners
HitmanPro Free
Secure DNS
Quad9 DOH
Password manager
Little Black Book
Browsers, Search and Addons
strict tracking prevention
µBO hard mode
Brave search

strict tracking | total cookie protection
µBO hard mode
Brave search
Privacy features enabled via settings
about:config tweaks for usability and privacy Firefox Privacy or: How I Learned to Stop Hardening and Love Strict Tracking Protection and
Yet Another Firefox Hardening Guide | Chris Xiao

Brave shields @ aggressive + per-site switches
Brave search
All internal privacy settings enabled
Maintenance and Cleaning
Windows built-in
Personal Files & Photos backup
External - Free Agent drive
Personal backup routine
Manual (maintained by self)
Device recovery & backup
Aoemi Backupper Pro
Restore points as needed
Device backup routine
Manual (maintained by self)
PC activity
  1. Browsing the web. 
  2. Emails. 
  3. Shopping. 
  4. Downloading software. 
  5. Multimedia. 
  6. Streaming. 
Computer specs
Lenovo l340 i3 8145U CPU @ 2.10 GHz 2.300 GHz 8GB DDR4 RAM 1 TB HDD
Personal changelog
7-1-21 Updated config as above
7-10-21 Switched out µBO & ClearURLs for Trace
7-13-21 Switched ClearURLs for Trace in Brave
7-16-21 Updated config as above - Edge as main browser
7-18-21 Brave uninstalled
7-21-21 Reverted to µBO as sole extension in browsers.
Updated Firefox search engines
Replaced Adguard DNS with Cloudfare DNS
8-24-21 Replaced µBO with Privacy Badger
8-28-21 Configured three browsers for compartmentalization
8.30.21 Back to µBO hard mode all three browsers
9.29.21 Back to Microsoft Defender and NextDNS
10.1.21 Added VoodooShield Pro
Feedback Response

General feedback


Level 22
Feb 25, 2017
2021 Configuration details above + Simple Windows Hardening.

Edit: No ClearURLs in Brave because its ETag filtering doesn't work in Chromium. Brave has some built-in protection against URLs tracking and referers, and disables Hyperlink Auditing.
Great config. Maybe you should consider purchasing an Adguard Lifetime license which can replace ClearURLs in both browsers and add some nice extra features like encrypted custom DNS etc.


Level 38
Mar 16, 2019
Great config. Maybe you should consider purchasing an Adguard Lifetime license which can replace ClearURLs in both browsers and add some nice extra features like encrypted custom DNS etc.
I think his current config is faster. Adguard is much slower than built in adblockers/extension based adblockers + extensions like ClearURLs. Adguard will also consume some extra CPU power. Besides, he's also using NextDNS, so he got most things covered.


Level 10
Aug 19, 2019
Nice setup! Undecided still on my 2021 setup myself. Used mostly H_C this past year but with a recent Comodo release I've been having a fresh go at that but we'll see. Free options still the way I'm going.

Anyway, I digress, well done one the new setup for the year! I must check out Brave browser and ClearURLs again if going down the non H_C Route.

Merry xmas


Level 33
Apr 1, 2019
I got the opposite and more false positves. That's why i switch to NextDNS
@oldschool just wants to let the Russians know what he’s up to these days :ROFLMAO:. But, seriously what kind of speed difference are you seeing? I visit the same sites for the most part so most of my dns kid is cached a lot of the time. Cloudflare is leaps and bounds faster than anyone, but they occasionally are having issues, especially resolving my work IPs for our corporate VPN. May go back to Quad9 which is slower. But anything is better than Comcast injecting ads.