Right now, I'm using Bitdefender Total Security & Bitdefender Box 2 plus the stuff listed below.
vgchat's security config
- Thread starter vgchat
- Start date
UAC, live protection, on-demand scanners, safe browser extensions, and a method of backup. Nice setup regardless of the Moderate tag.
- May 4, 2018
- 2,261
Things that could change for your setup:
~LDogg
- search engine to Startpage (also uses Google but more privacy)
- Add ZAM Free & Emsisoft Emergency Kit as on demand scanners
- Adwcleaner should be an installation product if you know adware or PUP is present, it's results can be too aggressive
- Use Macrium Reflect or Aomei Backupper as backup software solution
- Cookie Autodelete (do not use if you intend to stay logged into websites)
- Netcraft (oustanding Phishing protection for your browser)
- Scriptsafe (whitelist websites to block or allow script & more, also good for fingerprinting protections)
- Malwarebytes Browser Extension (definitely a better alternative to Bitdefender Traffic Light)
~LDogg
Since I'm using Bitdefender Box 2, which no one has acknowledged in posts yet, wouldn't I not need netcraft & the Malwarebytes Browser Extension?
Scriptsafe... maybe, Cookie Autodelete, I'd rather stay logged in, cookies don't bother me too much.
Scriptsafe... maybe, Cookie Autodelete, I'd rather stay logged in, cookies don't bother me too much.
You are well covered on that front. Don't forget that BitDefender Total Security also has web protection built in, not to mention Chrome also has its own built in protection which is quite good. Unless you feel like you absolutely need those extensions, I would just use what you already have to keep it simple. Keep in mind while you are well covered, they are not 100% full proof, using what you already have in-conjunction with safe browsing habits will keep you very safe.
Last edited by a moderator:
- Apr 28, 2015
- 8,684
@vgchat: I tagged your config yesterday before going offline... also sometimes I give some time to other users to make their own suggestions before to give mines.
There are some rules for tagging security configs, They are not public (of course), one of the reasons is because every user would adapt easily their config to the rules to get always "Secure Complete" tag then...
Some of the rules to tag a config as Moderate Risk affect directly to some specific/critic fields... and Your config has a lack in one of these fields, some of the already mentioned suggestions will cover it, and it's not so difficult to guess...
Please kindly specify the exact version of Bitdefender Total Security.
A complete Disk Imaging Backup solution would be welcome, the 2 already commented products are free and reliable.
Follow the suggestions in the 1st paragraph from @LDogg's post.
Thanks for sharing
There are some rules for tagging security configs, They are not public (of course), one of the reasons is because every user would adapt easily their config to the rules to get always "Secure Complete" tag then...
Some of the rules to tag a config as Moderate Risk affect directly to some specific/critic fields... and Your config has a lack in one of these fields, some of the already mentioned suggestions will cover it, and it's not so difficult to guess...
Please kindly specify the exact version of Bitdefender Total Security.
A complete Disk Imaging Backup solution would be welcome, the 2 already commented products are free and reliable.
Follow the suggestions in the 1st paragraph from @LDogg's post.
Thanks for sharing
- May 4, 2018
- 2,261
Some AVs have difficulty with phishing sites, hence why this was suggested, Netcrsft also offer CSS protection.
Malwarebytes was suggested as a better alternative to BD Trafficlight extension, plus can fill holes BD could miss. After all an AV is a filter.
~LDogg
- Jul 1, 2017
- 317
I am interested in your config, do you mind give more examples of capabilities of the bitdefender box?
I think you will need a reliable backup solution such: Acronis/Aomei/Macrium, etc...
But if the bitdefender rescue take care of it, then ok
I think you will need a reliable backup solution such: Acronis/Aomei/Macrium, etc...
But if the bitdefender rescue take care of it, then ok
My suggestion is to take a look back at the basics. As mentioned, backing up your personal files and system, would be part of that.
*Safe Habits*
-Knowledge: This should be the base of any good security configuration. Learning safer habits and utilizing your security as a "just in case" instead of trying to use many layers of applications to make up for lack of understanding.
-This should include the following aspects.
1. Be leery of clicking links especially in email or instant messages. Verify URL's, not only by manually looking at them, but also running them through URL scanners such as the one at Virus Total. If you are unsure still, the best course of action is to not click that link.
Bookmark important sites: A misspelled address could take you to a false site that mirrors the site you intended to go to. A book marked address will take you to the same site every time.
Passwords: In general you would be better off utilizing one of the many password managers, but as it often sometimes is, most average users do not, or can not, so keep this little bit of information in mind if this is the case.
Do not use the same password for all sites, if you are limited on what you can remember then please make sure to be careful and not use the same password for any of the sites you frequent as the ones you use for your email. If the site is to be breached, you would not want them to gain access to your email via same used passwords. Passwords should be strong, hard to guess or crack, password managers all have generators built in for building and storing strong passwords.
2. Updates/Patches:
Run maintenance on your system as you would a vehicle, consider it preventive maintenance. Always make sure to keep your system and applications patched. These patches and updates are for a good reason, they are plugging holes in your surface of attack. While i recommend keeping patched always, i would also state to do your research on certain updates for the OS/drivers/applications before applying, make sure there is not a fresh set of new bugs to contend with that are worse then what they are patching, this happens more often then most realize.
If you limit the amount of 3rd party applications on your system, you also limit the time doing maintenance, you limit the amount of freshly introduced bugs, and you keep your surface of attack smaller, and in the end, your machine will thank you for it by running better and being more enjoyable.
3. Back ups:
This is more important then security. No security out there can achieve 100% protection, if they could, they would already have a monopoly on the market and would have run all others out of business. Prepare for the worst, strive for the best.
Personal items are of the utmost important files on your system, once lost, they can not be replaced. Backing up externally or into the cloud "both recommended by me", so as to ensure you always have a copy of it obtainable. If something were to happen, you lose nothing this way, and can start freshly if needed.
Using images to create snapshots of your system works well for those who neither have the knowledge or time to repair/wipe a system. Windows has a built in option, although there are 3rd party options. It is a good idea also to keep on hand Microsofts media creation tool burnt to a flash drive, updated when needed. With this you can run repairs or wipe the system and build it from a clean install, which after a nasty infection, is always recommended to ensure you have eradicated the issue.
4. Security:
It has always been recommended for users to try applications for themselves. These products all have trials "most of them anyway", for this very reason. Test drive them for a couple weeks, does it fit your uses, is it running ok on your system and resources, are you comfortable with the settings and layout to get around and adjust it as necessary.
Learning the product is recommended here. Most throw them on with default settings and never venture in to settings to realize there is much more then meets the eye. Google search is handy for learning these, as are the manuals most of the products companies produce and are freely accessible. Watching youtube videos of a product will not help you decide what is best for you. You need to experience the product and settings to fully grasp it.
Understand you are a home user, and you are not targeted like corporations and businesses. The chances of you seeing sophisticated attacks and malware on that level are quite slim. There is no need for paranoia when you cover your basics, keep everything patched, backed up, use caution/safe habits when surfing.
Be careful what you divulge to websites "personal information", these as seen in the news are not as secure as they should be, once your information is in someone else's hands, anything can happen to it.
Know that the more security you pile on your system, the chances of incompatibilities/bugs arise and issues may occur. Finding a proper balance of application to knowledge ratio is fully recommended.
~illumination
-Knowledge: This should be the base of any good security configuration. Learning safer habits and utilizing your security as a "just in case" instead of trying to use many layers of applications to make up for lack of understanding.
-This should include the following aspects.
1. Be leery of clicking links especially in email or instant messages. Verify URL's, not only by manually looking at them, but also running them through URL scanners such as the one at Virus Total. If you are unsure still, the best course of action is to not click that link.
Bookmark important sites: A misspelled address could take you to a false site that mirrors the site you intended to go to. A book marked address will take you to the same site every time.
Passwords: In general you would be better off utilizing one of the many password managers, but as it often sometimes is, most average users do not, or can not, so keep this little bit of information in mind if this is the case.
Do not use the same password for all sites, if you are limited on what you can remember then please make sure to be careful and not use the same password for any of the sites you frequent as the ones you use for your email. If the site is to be breached, you would not want them to gain access to your email via same used passwords. Passwords should be strong, hard to guess or crack, password managers all have generators built in for building and storing strong passwords.
2. Updates/Patches:
Run maintenance on your system as you would a vehicle, consider it preventive maintenance. Always make sure to keep your system and applications patched. These patches and updates are for a good reason, they are plugging holes in your surface of attack. While i recommend keeping patched always, i would also state to do your research on certain updates for the OS/drivers/applications before applying, make sure there is not a fresh set of new bugs to contend with that are worse then what they are patching, this happens more often then most realize.
If you limit the amount of 3rd party applications on your system, you also limit the time doing maintenance, you limit the amount of freshly introduced bugs, and you keep your surface of attack smaller, and in the end, your machine will thank you for it by running better and being more enjoyable.
3. Back ups:
This is more important then security. No security out there can achieve 100% protection, if they could, they would already have a monopoly on the market and would have run all others out of business. Prepare for the worst, strive for the best.
Personal items are of the utmost important files on your system, once lost, they can not be replaced. Backing up externally or into the cloud "both recommended by me", so as to ensure you always have a copy of it obtainable. If something were to happen, you lose nothing this way, and can start freshly if needed.
Using images to create snapshots of your system works well for those who neither have the knowledge or time to repair/wipe a system. Windows has a built in option, although there are 3rd party options. It is a good idea also to keep on hand Microsofts media creation tool burnt to a flash drive, updated when needed. With this you can run repairs or wipe the system and build it from a clean install, which after a nasty infection, is always recommended to ensure you have eradicated the issue.
4. Security:
It has always been recommended for users to try applications for themselves. These products all have trials "most of them anyway", for this very reason. Test drive them for a couple weeks, does it fit your uses, is it running ok on your system and resources, are you comfortable with the settings and layout to get around and adjust it as necessary.
Learning the product is recommended here. Most throw them on with default settings and never venture in to settings to realize there is much more then meets the eye. Google search is handy for learning these, as are the manuals most of the products companies produce and are freely accessible. Watching youtube videos of a product will not help you decide what is best for you. You need to experience the product and settings to fully grasp it.
Understand you are a home user, and you are not targeted like corporations and businesses. The chances of you seeing sophisticated attacks and malware on that level are quite slim. There is no need for paranoia when you cover your basics, keep everything patched, backed up, use caution/safe habits when surfing.
Be careful what you divulge to websites "personal information", these as seen in the news are not as secure as they should be, once your information is in someone else's hands, anything can happen to it.
Know that the more security you pile on your system, the chances of incompatibilities/bugs arise and issues may occur. Finding a proper balance of application to knowledge ratio is fully recommended.
~illumination
- Jan 8, 2011
- 22,361
Your setup from a security stand point is fine, but a good comprehensive setup also includes a good backup solution. As illumination said take it back to basics. You have already gotten some great suggestions for back up solutions. I would only add that maybe you should consider increasing the frequency of your backups form monthly to either weekly or daily as a lot can happen in a month. Keep in mind that a backup solution is not only to help you in the event you get hit with malware, but also in the event of hardware/system failures (ie: hard drive dies).
Well as I mentioned, I do take backups onto a external 2TB usb HDD every 2 weeks. But I don't use any software to do it, I'm only concerned with backing up gamesaves, documents, images, movies, music, books, guides and installers.
With Bitdefender Box 2, it includes a 1 year license for bitdefender total security on any device you install it on, for mobile, it lets you install Bitdefender Security. So I'm running the latest version of Bitdefender Total Security, 2019.
It's very much a hardware firewall basically. It monitors traffic incoming & outgoing for any devices connected to it, even IoT devices like a "smart microwave". It can detect ddos attempts on a device, filter out bad urls etc..
With Bitdefender Box 2, it includes a 1 year license for bitdefender total security on any device you install it on, for mobile, it lets you install Bitdefender Security. So I'm running the latest version of Bitdefender Total Security, 2019.
It's very much a hardware firewall basically. It monitors traffic incoming & outgoing for any devices connected to it, even IoT devices like a "smart microwave". It can detect ddos attempts on a device, filter out bad urls etc..
Last edited:
- Apr 28, 2015
- 8,684
Please edit You config to reflect the changes or complete Your config, and announce them here, thanks.
- May 4, 2018
- 2,261
No, I stay away from vm's & doing stuff like that.
That is a good way to avoid intentionally infecting yourself, smart move...
You have all your basics covered except a system back up of some sort... Personally i keep a copy of windows media creation tool freshly burnt to a flash drive for repairs or wipes instead of using built in/3rd party images.
