Is the setup secure?

Spruce · 27. Nov 2010, 09:51 AM

Hello!

Can You please review my security setup and suggest me improvements, if any?

Usage: I use Windows XP on a PC having a pretty good configuration. I surf the internet a lot, and transfer content daily from definitely infected PCs.

Setup:
On-access Antivirus: Avast!
Firewall and HIPS: Comodo (with Defense Plus; Pro-active)
On-demand Antivirus: Superantispyware and Malwarebytes' Antimalware
Secunia Software Inspector
Browser Protection: Sandboxie
Good Surfing Practices: Web of Trust; NoScript; AdblockPlus
DNS: Comodo Secure DNS
I work with a Limited User Account, using 'Super User Run' (SURUN) for one
internet facing application.

Kindly review my setup and tell me if there are any loopholes in it, or if there is any room for improvement through alternative or additional measures.
Thanks.
:-)

MidnightCowboy · 27. Nov 2010, 12:05 PM

The thing to appreciate that no set up for Windows is secure, nor is it ever likely to be.

That said, the use of Sandboxie in the manner for which it was designed pretty much eliminates the need for a lot of the stuff you have installed. So long as it is all working to your satisfaction though I would resist the temptation to start switching bits off or removing things.

As it is, the setup you describe is more than adequate to enable you to achieve the best possible level of security to match your usage habits.

Anupam · 27. Nov 2010, 07:37 PM

If you transfer a lot of content to and fro from infected PCs, I will suggest adding Panda USB Vaccine, so that it will disable the autorun feature of USB sticks. It can also vaccinate newly inserted USB sticks.

I will also suggest adding TimeFreeze to your kit. It is a very easy-to-use virtualization software. If you are unsure about a USB stick, you can turn on TimeFreeze, check the USB stick. If everything is alright, you can turn TimeFreeze protection off. If not, reboot the system, and no changes will be done to your system. You can use TimeFreeze free for similar purpose, or for testing out new software.

bo.elam · 28. Nov 2010, 12:25 AM

Spruce I like what you have now. Let me ask you since you are using
Comodo Firewall and Defense Plus. Does the FW/Defense plus install
comes with the Comodo Sandbox or not? I have wanted to try it but
don't want the Comodo sandbox since I am using Sandboxie. If it
does, does the Comodo Sandbox get along with Sandboxie on your
machine?

Bo

J_L · 28. Nov 2010, 02:57 AM

Quote:

Originally Posted by bo.elam

Spruce I like what you have now. Let me ask you since you are using
Comodo Firewall and Defense Plus. Does the FW/Defense plus install
comes with the Comodo Sandbox or not? I have wanted to try it but
don't want the Comodo sandbox since I am using Sandboxie. If it
does, does the Comodo Sandbox get along with Sandboxie on your
machine?

Bo

They get along fine, Comodo auto-sandboxes untrusted programs, while SandBoxie manually sandboxes. SandBoxie is a true virtual environment, while Comodo sandbox only limits rights. Just make sure you don't use both on the same program.

bo.elam · 28. Nov 2010, 03:32 AM

Quote:

Originally Posted by J.L.

They get along fine, Comodo auto-sandboxes untrusted programs, while SandBoxie manually sandboxes. SandBoxie is a true virtual environment, while Comodo sandbox only limits rights. Just make sure you don't use both on the same program.

Thanks J.L. By your reply I get that FW/DP can not be installed without the Comodo
Sandbox.

Bo

Spruce · 28. Nov 2010, 07:54 AM

Quote:

Originally Posted by MidnightCowboy

The thing to appreciate that no set up for Windows is secure, nor is it ever likely to be.

That said, the use of Sandboxie in the manner for which it was designed pretty much eliminates the need for a lot of the stuff you have installed. So long as it is all working to your satisfaction though I would resist the temptation to start switching bits off or removing things.

As it is, the setup you describe is more than adequate to enable you to achieve the best possible level of security to match your usage habits.

Thank You, MidnightCowboy!
I have now also installed Hitman Pro which scans my PC at every startup.
I also use a good hosts file.

Since there are even other internet-facing applications which I use, I was tempted to install 'PeerBlock.' Do you think it is really required, considering the setup I already have? I hope it is not. :-)

Spruce · 28. Nov 2010, 08:06 AM

Quote:

Originally Posted by Anupam

If you transfer a lot of content to and fro from infected PCs, I will suggest adding Panda USB Vaccine, so that it will disable the autorun feature of USB sticks. It can also vaccinate newly inserted USB sticks.

I will also suggest adding TimeFreeze to your kit. It is a very easy-to-use virtualization software. If you are unsure about a USB stick, you can turn on TimeFreeze, check the USB stick. If everything is alright, you can turn TimeFreeze protection off. If not, reboot the system, and no changes will be done to your system. You can use TimeFreeze free for similar purpose, or for testing out new software.

Thank You Anupam!
I guess I was already using Panda USB vaccine.
Well, I have now installed Wondershare Timefreeze too. It's working fine.
Thanks :-)

Spruce · 28. Nov 2010, 08:12 AM

Quote:

Originally Posted by J.L.

They get along fine, Comodo auto-sandboxes untrusted programs, while SandBoxie manually sandboxes. SandBoxie is a true virtual environment, while Comodo sandbox only limits rights. Just make sure you don't use both on the same program.

Thank You J.L.
I used to use 'ZoneAlarm Firewall' and 'Winpatrol' HIPS earlier, but I am quite satisfied using the integrated Comodo Firewall and Defense Plus.
I use Sandboxie only for Firefox, and it is going along quite well with Comodo.

MidnightCowboy · 28. Nov 2010, 09:05 AM

Quote:

Originally Posted by Spruce

Thank You, MidnightCowboy!

Since there are even other internet-facing applications which I use, I was tempted to install 'PeerBlock.' Do you think it is really required, considering the setup I already have? I hope it is not. :-)

For P2P purposes yes, but try not to go overboard with the number of extra lists you install. It's also important only to source these from the official site.

It's quite easy to add an exception for a listed site you may not want to block from the log display so it's not as complicated to use as it might look at first sight.

27. Nov 2010, 09:51 AM	#1 (permalink)
Spruce Member Join Date: Nov 2010 Posts: 6	Is the setup secure? Hello! Can You please review my security setup and suggest me improvements, if any? Usage: I use Windows XP on a PC having a pretty good configuration. I surf the internet a lot, and transfer content daily from definitely infected PCs. Setup: On-access Antivirus: Avast! Firewall and HIPS: Comodo (with Defense Plus; Pro-active) On-demand Antivirus: Superantispyware and Malwarebytes' Antimalware Secunia Software Inspector Browser Protection: Sandboxie Good Surfing Practices: Web of Trust; NoScript; AdblockPlus DNS: Comodo Secure DNS I work with a Limited User Account, using 'Super User Run' (SURUN) for one internet facing application. Kindly review my setup and tell me if there are any loopholes in it, or if there is any room for improvement through alternative or additional measures. Thanks. :-) __________________ Spruce Plexus

27. Nov 2010, 12:05 PM	#2 (permalink)
MidnightCowboy Site Manager Join Date: Aug 2008 Location: South American Banana Republic, third bunch from the left Posts: 9,250	The thing to appreciate that no set up for Windows is secure, nor is it ever likely to be. That said, the use of Sandboxie in the manner for which it was designed pretty much eliminates the need for a lot of the stuff you have installed. So long as it is all working to your satisfaction though I would resist the temptation to start switching bits off or removing things. As it is, the setup you describe is more than adequate to enable you to achieve the best possible level of security to match your usage habits. __________________ Knows nothing and cares even less

27. Nov 2010, 07:37 PM	#3 (permalink)
Anupam Moderator Join Date: Jul 2008 Location: India Posts: 9,484	If you transfer a lot of content to and fro from infected PCs, I will suggest adding Panda USB Vaccine, so that it will disable the autorun feature of USB sticks. It can also vaccinate newly inserted USB sticks. I will also suggest adding TimeFreeze to your kit. It is a very easy-to-use virtualization software. If you are unsure about a USB stick, you can turn on TimeFreeze, check the USB stick. If everything is alright, you can turn TimeFreeze protection off. If not, reboot the system, and no changes will be done to your system. You can use TimeFreeze free for similar purpose, or for testing out new software. __________________ Anupam

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

28. Nov 2010, 12:25 AM	#4 (permalink)
bo.elam Senior Member Join Date: Nov 2009 Posts: 1,224	Spruce I like what you have now. Let me ask you since you are using Comodo Firewall and Defense Plus. Does the FW/Defense plus install comes with the Comodo Sandbox or not? I have wanted to try it but don't want the Comodo sandbox since I am using Sandboxie. If it does, does the Comodo Sandbox get along with Sandboxie on your machine? Bo