This forum is in archive mode. You will not be able to post new content.

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - winguy

Pages: [1]
1
Operating System / Re: Windows 7 Secure setup
« on: January 24, 2014, 08:12:56 AM »
Quote from: Kulverstukas on January 24, 2014, 07:28:01 AM
No AV is "good" and I don't use any... only malwarebytes to scan stuff from time to time. Dual boot just to test weird executables would be an overkill... a VM is enough, but keep in mind modern malware usually have methods for breaking out of VM's and sandboxes and stuff. A Dual boot would be better for this.... but like I said, all that could be reduced to common sense... until that tho, this is good.

So after reading your takes on my set up here is the new version:
- VM (vbox)
- Autoplay disabled
- 2 Users (day to day will be a standard user)
- NAT
- No shares (i don't need them)
- Snort + Wireshark
- ProcessHacker
- Secunia
- Malwarebytes + Microsoft security essentials.
- EMET

Sounds better?
Thanks for the help!

2
Operating System / Re: Windows 7 Secure setup
« on: January 24, 2014, 07:14:53 AM »
Quote from: proxx on January 23, 2014, 08:08:02 PM
Thats not "secure"
I suggest you run a BSD/nix vbox with a real firewall and route the traffic through that.
Run snort, blacklisting etc.
Move homefolder to other partition.
Amongst a couple other things I cant name right now.
Move homefolder to other partition. - why does this help?
"blacklisting"? of what? ips?

-------------------------------

Quote from: Kulverstukas on January 23, 2014, 08:28:50 PM
That does not sound secure and is completely unneeded. You will never be secure if you don't know what you are doing, no matter how much AV's and FW's you install.
Basically you only need malwarebytes to do a scan once a month or so, everything else is replaced by common sense.
Set downloads folder to only be written? no, that is not how windows attributes work.
Secure boot? that won't help if you get a rootkit.
No shares enabled? makes life harder. Just set a password, or only share stuff when you need stuff shared...
The VM for unknown crap and disabled autorun are the only wise decisions IMO.

What I can suggest is read more on social engineering, windows filesystems, learn a bit of coding and develop a common sense. Also you might want to look at ProcessHacker, it's awesome.
And 64bit? only if you have 4+GB of RAM, otherwise you don't need 64bit.
Might as well consider using online file scanners to check an executable, fuck virus makers, I hate malware actually, when the sole purpose of it is to mess the system up...
What about an AV? which one do you consider good? are there any good free ones?
About the dl folder when I tried to execute an exe from a folder with only r&w it didn't let me, so i considered it another step into a more secure zone.

What about dual boot - one secure partition and one for crap software?

3
Operating System / Windows 7 Secure setup
« on: January 23, 2014, 05:37:13 PM »
Hello guys.
I started learning about security related stuff not long ago.
I really like to play games with windows, which is kind of hard to live with, if you want security.
So I decided to try to setup the best secure yet operatable setup for win7 that I could come up with.
I wanted to hear your suggestions before I implement it.
Here is what I thought about:

1) Clean install win 7 64 bit
2) Create a "Secure" folder for my internet downloads (only r &w not exec)
3) VM to test files that look suspicious
4) Antivirus Avast + malwarebytes (I want free tools)
5) Nod32 trail on the vm + trackwinstall + what chanhed + sysinternals
6) Secure boot (UEFI)
7) no shares enabled
8 ) NAT for fw
9) AUTO run disabled.

Any major problems? and suggestions for the set up?
Thanks in advance.


Pages: [1]


Want to be here? Contact Ande, Factionwars or Kulverstukas on the forum or at IRC.