SECURITY: Complete The Cog in the Machine's Laptop Security Config 2021

Last updated
Jan 19, 2021
About device
Primary device
Device access
This device is only used by self.
Operating system
Windows 10
Licensing
Pro
Sign-in identity
Sign-in with Local account
Log-in security
    • Account password
Permissions
Administrator user account
Guest account status
Disabled
Security updates
Automatic - allow security updates only
Windows UAC
Maximum - always notify
Malware samples
No - malware is not downloaded
Firewall protection
Provided by a third-party security vendor - see details below.
Real-time malware protection
NortonLifeLock Security Online 22.20.5.39
RTP & OS hardening settings
- Boot Time Protection = Aggressive
- SONAR Advanced Mode = Aggressive
- Block Traffic for Malicious Applications = Agressive
Periodic scanning
Norton Power Erase
Browsers
Browsers
  • Microsoft Edge
  • Brave
  • Firefox
Extensions
  • Sticky Password
  • IDM
  • Mendeley
Password manager
Sticky Password Lifetime
Domain Name System (DNS)
Adguard DNS
Virtual Private Network (VPN)
BULLETVPN
Optimisation apps
Revo Uninstaller Pro
My Files & Photos backup
Koofr & Microsoft OneDrive
My Files backup schedule
Automatic - sync to a trusted cloud provider, or local attached storage
Device recovery & settings
AOMEI Backupper Pro
Device backup schedule
Manual - backups are made in my own time to local attached storage
Computer specifications
  • Acer Aspire ES1-572-586C
  • Intel Core i5-7200U
  • Intel HD graphics 620
  • Adata 8 GBs RAM
  • Adata Ultimate SU630 480 GBs SSD
Device activity usage
  1. Generic web browsing
  2. Checking web mail and emails
  3. Shopping
  4. Financial and sensitive documents
  5. Downloading and installing new software(s)
  6. Working from home
  7. Office software and video conferencing
  8. Streaming audio and video content from the Internet
My request for feedback

Maximum – critical feedback

Gandalf_The_Grey

Level 42
Verified
Trusted
Content Creator
Apr 24, 2016
3,126
@security123 @Gandalf_The_Grey I installed Brave without admin rights, so is this a security risk? I mean what are the possible scenarios I might run into?
Probably nothing.
It's the same when i try to install software on my work laptop where I have no admin rights, it will be installed only for the current user.
So no problem if you are the only user of your system.
 

Gandalf_The_Grey

Level 42
Verified
Trusted
Content Creator
Apr 24, 2016
3,126
I created a local standard account which I use it to run Office and Mendeley and nothing else. I did not want Brave to be installed there. I wonder if I can install Firefox per user too. Thank btw for answering my questions.
You're welcome, always happy if I can help :D
I think you can do that also for Firefox, just deny admin rights.
There are programs that will fail to install without admin rights there you have no choice.
 

The Cog in the Machine

Level 25
Verified
May 10, 2019
1,414
I really love Brave, racked the shields up to max, I no longer use AdGuard for Windows which gives me the the full speed I pay for - Anti-Tracker with IVPN few problems & PC runs great - It ought to be law to use Brave :)
Will I am afraid to install Adguard next to AVG as this might some issues and I really do not have time to deal with issues now.
 

Cortex

Level 25
Verified
Aug 4, 2016
1,423
Will I am afraid to install Adguard next to AVG as this might some issues and I really do not have time to deal with issues now.
The issues I've always had with AdGuard for windows is a cut in internet speed that really is it - all But I really like the speed i pay for but that's just me, & Brave shields do a pretty good job as far as I'm concerned - I feel that's just me but not overly convinced AdGuard for Windows does all they say (prepared for flaming)
 

oldschool

Level 59
Verified
Mar 29, 2018
4,854

oldschool

Level 59
Verified
Mar 29, 2018
4,854
brave://flags
Capture.PNG
 

silversurfer

Level 68
Verified
Trusted
Content Creator
Malware Hunter
Aug 17, 2014
5,778
I installed Brave without admin rights, so is this a security risk? I mean what are the possible scenarios I might run into?

System space (folders of program files, Windows folder.) is protected by UAC, malware haven't easily access to this area of the system, especially if your are using SUA (Standard User Account) instead of admin account.

User space isn't protected by UAC, it's system area like C:\Users\username\AppData\Local there usually the payloads are spawned/dropped by malware.

Conclusion: for security reasons it's always recommended to install your browsers into C:\Program Files
 

The Cog in the Machine

Level 25
Verified
May 10, 2019
1,414
Recent changes:

- Installed Bullguard Internet Security
- Replaced Mendeley with Zotero
- Started using Revo Uninstaller Pro
- Replaced Enpass with Sticky Password.

Sticky Password is working on a "big feature", as they described it and I am wondering what that would be. Anyway, SP now officially supports Brave Browser. I only wish if it has in-built OTP generator. I might start using Authy or FREEOTP. Any thoughts on this?
 
Top