Basic Security tanto259's 2018 configuration

Last updated
Apr 10, 2018
Windows Edition
Pro
Security updates
Allow security updates and latest features
User Access Control
Always notify
Real-time security
Windows Defender
Firewall security
Microsoft Defender Firewall
Periodic malware scanners
Malwarebytes Free
Emsisoft Emergency Kit (on an USB)
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Google Chrome - HTTPS Everywhere, Privacy Badger, Privacy Pass, Yandex Metrica Opt-out, Google's IBA and GA Opt-out
Maintenance tools
Process Explorer
File and Photo backup
OneDrive
System recovery
Macrium Reflect Free
tanto259

tanto259

Level 1
Thread author
Jul 29, 2017
12
48
29
Indonesia
securitypuppy.com
Privacy:
- DNS-over-HTTPS with Cloudflare's 1.1.1.1 through DNSCrypt Proxy

Productivity:
- Microsoft Office 365 Personal
- Ubuntu Subsystem

Virtual Environment:
- Client Hyper-V

Drive and File Encryption:
- BitLocker with XTS-AES 256bit encryption method and TPM + PIN authentication
- PGP through GnuPG (for important files)

Other Settings:
- Apps access to Privacy Settings are whitelist-only, defaulted to Force Deny through Group Policy
- Windows Defender settings are set to Block at First Sight with High Blocking Cloud Protection level and locked through Group Policy
- Connection defaulted to TLS 1.2 and above (still waiting for AdGuard to support TLS 1.3)
 
Last edited:
  • Like
Reactions: Sunshine-boy, Deletedmessiah, tim one and 4 others
I'd recommend that you use Zenema Antimalware (ZAM) and Norton Power Eraser as both of these on demand free scanning tools are quite good!

Links:

Zemana Antimalware (ZAM): Zemana Anti-Malware | Advanced Malware Removal Software

Norton Power Eraser: Norton Rescue Tools

Nice addition with EEK on a USB and Macrium Reflect Free! (y)(y)

You could use Adguard for Google Chrome for maximum protection with both the desktop and Chrome extension enabled.

Good configuration!

~Brian
 
  • Like
Reactions: bribon77, Deletedmessiah, tim one and 2 others
You have a nice setup, Chrome loads web pages in a sandbox, but alternatively, you can also install Sandboxie, a program that creates virtual environments limited in the size of the allocated memory space and on the access to the resources of the computer. Useful, then for a secure web surfing and to test programs or files of dubious origin :)
 
  • Like
Reactions: bribon77, tanto259, frogboy and 2 others
Using ConfigureDefender with Group Policies on Windows 10 Pro, requires setting the colliding policies to 'Not configured' in GPO. If not, then ConfigureDefender settings will be back-overwritten by GPO Refresh feature (after some hours).(y)
 
  • Like
Reactions: Deletedmessiah, tanto259, bribon77 and 1 other person
You must log in or register to reply here.

You may also like...