Sand Security Configuration

[Sand]

1) I set up a VM with AppGuard and ReHIPS to start studying them for a future changement;
2) I will set up another VM with Comodo Firewall to study that too.

 

[Handsome Recluse]

Not much difference for competing products.
You'd use VoodooShield for default-deny if ever that happens? Since VoodooShield and Sandboxie are quite effective. Though you didn't mention Sandboxie license.

 

[Sand]

I already use VodooShield as one layer, but not the only one. Is one point I will keep stable because of good development.
For me there are many differences in the security suite as they need to deal with other things I use like DNScrypt, and some product don't work well with it, like KIS2017. Sandboxie, I use Sandboxie 5.19.4.

 

[brambedkar59]

Why have you installed windows firewall control? Doesn't Eset IS already has a firewall?
Running two firewalls at the same time may cause issues just like running two AVs.
Too many realtime scanners for my taste, well if it works then good for you.
Thanks for sharing your config.

 

[Sand]

Because I can control what happen with no much problems, exporting and editing .xml configuration.
Yes has already a firewall.
As I said, every product has custom rules, The Antivirus work for when there is no connection for ZAM, ZAM work with the Antivirus when there is cloud, VodooShield work with Cloud as Anti-Exe. Hitman Pro Alert is configured to not conflict with ESET Payment Protection is disabled.

If I encounter problems, like with ESET loading 192.168.1.1, or Hitman Pro Alert accessing same page on TP-LINK router I will delete them. From when I use dd-wrt I solved problem with Hitman Pro Alert and for now ESET do things I know, when he starts behave bad I remove it.

 

[Exterminator]

Secure config! Thanks for sharing it with us

 

[brod56]

Might be a bit overkill. I never liked ESET, I think you would be better with Voodoshield +HitmanPro.Alert.

 

[JM Safe]

Good config, but overkill.

Also, you have a lot of browser extensions which can cause instability and vulnerabilities.

Thanks for sharing.

 

[Sand]

Changelog:

-Removed Aomei Backupper, Added Macrium Reflect;
-Installed a Raspberry Pi PiHole DNS Server;

Waiting to take any further actions until new version of Hitman Pro Alert and Zemana are released,

Regards to you friends, and thanks for Suggestions, appreciated

 

[Sand]

Changelog:

-Removed Eset Internet Security;
-Removed Unchecky;
-Removed Zemana AntiMalware due to lack of development and no bug fix over these months

Setted on realtime only VodooShield, and HitmanPro Alert, and Sandboxie, still using Adguard lifetime.

Router login on SSH port 22 changed to using only RSA2048, instead of password, due to events of guys nmapping me

 

[Sand]

Changelog:

-Resolved PiHole IPv6 AAAA not blocked;
-Added only RSA login also on Raspberry PiHole;
-Unchecky hosts files added to PiHole list;

Evaluating if switching the default ssh port 22 to something else, I don't know if RSA can be bruteforced in some way or has some bugs.

 

[ZeroDay]

I already use VodooShield as one layer, but not the only one. Is one point I will keep stable because of good development.
For me there are many differences in the security suite as they need to deal with other things I use like DNScrypt, and some product don't work well with it, like KIS2017. Sandboxie, I use Sandboxie 5.19.4.

KIS works fine with DNSCrypt here.

 

[Sand]

@ZeroDay is version 2018? I tested one year ago with 2017 and was problem, thank you for info

 

[S3cur1ty 3nthu5145t]

You can edit your original post above to reflect what you have now for security, which as it appears above had looked over kill, but the changes seem to tone it done some to a more well rounded configuration.