I don't download weird apps from non-trusted sites, I don't accept or download attachments which look suspicious or before I do I check them with virustotal.
I keep an eye for the site DNS to be sure I'm on the real and legit one and not on some fake phishing site. I keep the 'hide known extensions' unchecked so I can see all extensions. I save my personal data on a flash usb from time to time. I think that's it so far. What do you think? Is there anything else I could do?
I would recommend Secunia PSI also, it verifies all the installed software for critical updates www. Adobe Reader 9 and later include the entire Adobe AIR framework, which is a full user privilege desktop framework. Given the number of targeted attacks against Flash and Adobe Reader, I use a different PDF reader there are several and I only view flash content within the context of a totally untrusted account I have set up for browsing purposes.
I will use this configuration for my family. Wasn't there a blurb from an article showing Security Essentials coming in last That's new, do you have any proof other then it's got "Microsoft" in the title? If you're in a domain disable it, if you're not leave it enabled. For years the first thing you did after installing windows was to disable the messanging service.
As demonstrated by the links you quoted in your last post. And now you're complaining I'm not citing anything When set to highest, it's the same as Vista and doesn't auto-elevate unsafe components. I just got Win7 from Newegg today, been busy installing it on some new disks.
I'll try to write up a summary of my install process tomorrow. Have not used NoScript in years, I should give it another try. I love your suggestion of an account dedicated solely for credit card and banking.
When creating an account the options are "Administrator" or "Standard". Is there a way to make a user even more restricted than "Standard"? Leawo Spam post reported.
Please report these posts to the moderators so they can be removed and banned. After rebooting some other service must have called on it, cause it's running.
I'll leave the Services alone for now on. JoeJoe: On a brand new install of Windows 7 Home bit. This is a list of the advice collected from this thread that I am using on my Home PC. Thanks to all for your help on this. For computer location chose "Public Network", this disables Network Discovery and assumes you are not interested in built in Windows file sharing.
Run Windows Update immediately upon first login. In the same "System Properties" from the above step is an "Advanced" tab, where you will find a Performance "settings" button. Which provides increased protection from memory based attacks. Requires a reboot. In the "Network and Sharing Center" control panel, click "Change advanced sharing settings". Here you can turn off file and printer sharing. Created two "Standard" user accounts; One for everyday use and the other dedicated solely to online banking and credit card activity.
Login to the "Administrator" account only when absolutely nessassary. Very classy of you to compile everything there at the end of the thread. I have the same question Report abuse.
Details required :. Cancel Submit. Andre Da Costa Article Author. Save the file to your hard disk and extract it. Right click click the Windows 7 Downgrader executable and click Run as administrator.
When the downgrade is complete, you should be successfully downgraded to the specific edition. The settings in this template are very restrictive. As an advanced user you may ignore them.
The most helpful setting in this template is the "Display for user setting" group. Let's have a look at them. Also in this template, you should check the following settings, whether they suit your requirements: Prevent ignoring certificate errors If you are an advanced user, you may want to disable it.
If you are an advanced user, you may want to disable these policies to have access to these pages. You may ignore this policy as it disables some basic functionality as "Changing certificate settings", "AutoComplete for forms" or "Save this program to disk option".
You may need those as an advanced user. The SCM manager allows you not only to change settings in the default templates, but also to add your own settings and save them in your customized templates.
Generally, you should not run any components, especially network based, if you do not use them. By disabling them, you decrease the exposure of your system against future vulnerabilities and attacks. For more relaxed configuration for example: for home , you may want to use file sharing, remote desktop and maybe you don't want to type password in UAC control each time. Then you should consider changing these settings:.
There are 4 levels of UAC in Windows7, the default level 3 indeed produces less window prompts, but unfortunately due to that it is much easier to bypass it completely. Therefore, I recommend to use the strictest level 4 " Always Notify ". You should be always informed, when an application uses administrator privileges. This way, you will have a chance to exclude certain applications, which do not work correctly with these mechanisms.
Next, choose ' configure apps ' to implement full EMET protection on programs, which access the Internet. I used it on the following applications:.
0コメント