Vasudev Security Config 2021
- Thread starter Vasudev
- Start date
Performed an in-place upgrade from 1809 to 1909.1171
Updated to build 1237 Preview. Updated most PCs to build 1909.1171.
- Oct 9, 2014
- 579
It looks simple but good config to be protected.
Are you not using a password manager?
Are you not using a password manager?
I'm using LastPass. For some reason, I forgot to add Lastpass here but added in Mobile security section.
- Aug 21, 2018
- 505
I really recoomend, SEP IDS/FIRWALL component only. It can do a lot more than WFP. WFP based firewalls can be really easy to by-pass during boot-phase. Never ever trust windows own firewall.
This is true for every software firewall if system is compromised.
- Aug 21, 2018
- 505
@security123
Some firewalls uses their own driver, which loads way before windows own firewall. Sophisticated malware can make windows outgoining windows firewall rules or even disable it.
Some firewalls uses their own driver, which loads way before windows own firewall. Sophisticated malware can make windows outgoining windows firewall rules or even disable it.
Which also increase attack surface further.
Malware can also run at system start too. And malware don't care about filtering as they can system binary's called LOLBins
- Aug 21, 2018
- 505
@security123
Firewalls that loads before windows own firewall does provide outbound connection protection during the boot stage. Zonealarm, SEP, Comodo, even McAfee can do that. LOLbins are targeded for system files only and they cannot connect to internet IF third party net filterin driver is loaded (block all connections before Zonealarm own driver is loaded, for example).
Firewalls that loads before windows own firewall does provide outbound connection protection during the boot stage. Zonealarm, SEP, Comodo, even McAfee can do that. LOLbins are targeded for system files only and they cannot connect to internet IF third party net filterin driver is loaded (block all connections before Zonealarm own driver is loaded, for example).
I stopped using 3rd party firewall since it prevented OS updates, borked by installation and messed up my app settings. I'm glad I had a clean image from MR otherwise would have lost 72 hrs long tweaked OS.
Testing:
Bitwarden with 2FA with MS Authenticator. Tried Authy it was good, I felt MS Authenticator cloud backup had most of my 2FA accounts so migrated to it so that I don't have to keep track of multiple master passwords.
Bitwarden with 2FA with MS Authenticator. Tried Authy it was good, I felt MS Authenticator cloud backup had most of my 2FA accounts so migrated to it so that I don't have to keep track of multiple master passwords.
Migrated from Lastpass to Bitwarden on Windows, Linux and Android. Deleted all lastpass data in the server to prevent data leaks.
Updated to build 1316.
Updated to build 1316.
Yes. I have a decade old laptop with conexant audio issue on 1909 and 20h2 had it too. So, usually all PCs use same build otherwise they stay on older build i.e 1909.
Similar threads
