Advanced Plus Security Shmu26 Windows Config in 2019

Last updated
Oct 10, 2019
Windows Edition
Pro
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Real-time security
Windows Defender with Hard_Configurator
Comodo Firewall
Firewall security
About custom security
Windows Defender with some SRP rules
H_C: EXE and TMP allowed
CFW: ComodoFix config
Windows firewall is enabled.
Periodic malware scanners
--
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Chrome, Edge
Maintenance tools
Hard_Configurator
File and Photo backup
Dropbox
OneDrive
GoogleDrive
System recovery
Macrium Reflect
Risk factors
    • Logging into my bank account
    • Browsing to popular websites
    • Downloading software and files from reputable sites
    • Browsing to unknown / untrusted / shady sites
    • Working from home
Computer specs
i5 6500
integrated graphics
8 gb ram
SSD
shmu26

shmu26

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Pat MacKnife said:
Does configure defender work good in W10 1903 ? and what profile to choose in configure defender
Click to expand...
@oldschool has it nailed for maximum security and usability.
If you experience software blocks, or it impacts system performance, you can disable certain settings. But try with those settings and see if it's good for you.
 
  • Like
Reactions: Andy Ful, blackice and oldschool
blackice

blackice

Level 39
Verified
Top Poster
Well-known
Apr 1, 2019
2,867
shmu26 said:
Unfortunately, Kaspersky's behavior is not quite as consistent as I would hope for. I have a certain program with a firewall block rule, and every once in a while, like tonight for instance, it somehow manages to connect to the internet anyways, causing my whole system to freeze and the program itself to deactivate. So it looks like I am back to:
Windows Defender with ConfigureDefender
Windows Software Restriction Policies with Hard_Configurator
.
Click to expand...
Keep it simple, keep it safe!
 
  • Like
  • Applause
Reactions: brambedkar59, Andy Ful, oldschool and 1 other person
blackice

blackice

Level 39
Verified
Top Poster
Well-known
Apr 1, 2019
2,867
I am considering going back to WD after Sophos deleted Configure Defender while my router was rebooting. To be fair it put it back once I got the internet back and it did cloud analysis.
 
  • Like
  • HaHa
Reactions: shmu26 and oldschool
shmu26

shmu26

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Andy Ful said:
Default-allow setup has <Default Security Level> = Unrestricted. This forces PowerShell to Full Language Mode
Click to expand...
And what happens if I set the Windows environment variable PSLockdownPolicy 4 ? Does "Unrestricted" override the Windows environment variable?
 
  • Like
Reactions: oldschool
shmu26

shmu26

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Manjaro with the default Xfce desktop.

Manjaro keeps the OS and applications very up to date, and since it is Arch, you don't have the security issues of PPAs and/or installing from random downloads like you do with Ubuntu and its forks.

Manjaro requires more troubleshooting and software installation skills than Ubuntu and its forks do, but the forum is helpful and friendly, and google finds a lot of info on Manjaro and Arch.
 
  • Like
Reactions: oldschool, Moonhorse, Gandalf_The_Grey and 1 other person
shmu26

shmu26

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Back to Windows. It's too much work juggling Linux + Windows in a virtual machine, when Windows alone does everything I need. It's less glamorous this way, but KISS wins.
Windows Defender + Hard_Configurator with EXE and TMP allowed.
Comodo Firewall with ComodoFix config and Windows firewall enabled.
 
Last edited:
  • Like
Reactions: Protomartyr, Gandalf_The_Grey, harlan4096 and 1 other person
LDogg

LDogg

Level 33
Verified
Top Poster
Well-known
May 4, 2018
2,261
shmu26 said:
Back to Windows. It's too much work juggling Linux + Windows in a virtual machine, when Windows alone does everything I need. It's less glamorous this way, but KISS wins.
Windows Defender + Hard_Configurator with EXE and TMP allowed.
Comodo Firewall with ComodoFix config and Windows firewall enabled.
Click to expand...
Unless I'm missing something with the Comodofix Config, you have two Firewalls running correct?

~LDogg
 
  • Like
Reactions: Gandalf_The_Grey, shmu26 and harlan4096
shmu26

shmu26

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
LDogg said:
Unless I'm missing something with the Comodofix Config, you have two Firewalls running correct?

~LDogg
Click to expand...
Correct :)
If you don't have an advanced firewall config, CFW and WFW work well together. That's what @cruelsister always says, and it's true.
My CFW has the 3 exceptions of Comodofix Config, and my WFW has the recommended block rules of Hard_Configurator, and it works smoothly.

Explanation: with ComodoFix config, CFW is at less than full strength in system space (this is in order to avoid a slew of unnecessary network blocks), so that's why it is advisable not to disable WFW.
 
Last edited:
  • Like
Reactions: Protomartyr, Gandalf_The_Grey, Back3 and 1 other person
G

Glynn

Level 2
Verified
Aug 16, 2017
67
shmu26 said:
Back to Windows. It's too much work juggling Linux + Windows in a virtual machine, when Windows alone does everything I need. It's less glamorous this way, but KISS wins.
Windows Defender + Hard_Configurator with EXE and TMP allowed.
Comodo Firewall with ComodoFix config and Windows firewall enabled.
Click to expand...
I find that windows inside virtualbox does not want to activate when connected to the internet, any way to solve that issue?
 
shmu26

shmu26

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Glynn said:
I find that windows inside virtualbox does not want to activate when connected to the internet, any way to solve that issue?
Click to expand...
Hmm, I don't know, I didn't have any activation problems. If you are using a single license, keep in mind that the VM is considered a different machine, and thus needs a different license.
If you have a volume license installation, it will work even without any activation at all, but you can't do certain customizations, such as choose your wallpaper.
That's about all I know about it.

Umbra said:
again? you play ping-pong lol.
why not, like me, having one machine for Linux and one for Windows...will save you time...
Click to expand...
Hi Umbra, it's great to see you active once again on MT! :)
Yes, I am guilty of ping pong, but with Macrium Reflect, ping pong is a pretty easy game to play. Sometimes I need to fix grub, that's all.
 
  • Like
Reactions: paulderdash, Glynn and harlan4096
You must log in or register to reply here.

Similar threads

simmerskool
    • Like
  • Question
Question Internet speed -- Networks & Linux ?
Replies
9
Views
458
ChromeOS & Linux
lokamoka820
lokamoka820
simmerskool
Advice Request VMware 17.6.0 network glitch
Replies
6
Views
236
VM and Remote Access
simmerskool
simmerskool
silversurfer
    • Like
    • +Reputation
New Update VMware Workstation 17.6 / 17.6.1
Replies
24
Views
1,961
VM and Remote Access
simmerskool
simmerskool

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top