Over 1 million tech questions and answers.

Ctrlz's Security Config

Q: Ctrlz's Security Config

Hi,
I'm looking for a safe, quick, free and easy-to-mantain security configuration.
Actually I'm using CIS, it seems a good balance between easy-to-use and all-in-one product, even if I find it very different from what I remember (version 5 or so).
Whitelisting and sandboxing make hips, imho the main suite power, almost useless:

if an app is trusted, can do almost everything -> no alert
if an app is untrusted, it is sandboxed -> no alert
Open to any suggestion or alternative configuration

RELEVANCY SCORE 200
Preferred Solution: Ctrlz's Security Config

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Ctrlz's Security Config

I would consider some type of system/data backup solution.
Both Macrium Reflect & AOMEI backupper offer good free solutions.
Consider an additional on demand scanner(s).
You might consider enabling Smartscreen.
Other than the lack of a backup solution your config looks good.
Thanks for sharing it with us

Read other 3 answers
RELEVANCY SCORE 45.6

This is my security config. At current time I am operating with one core so tHE PERFORMANCE IS POOR
 

A:My security config

Maybe you could use a anti-executable like NVT exeRadarPro , it uses low resources and then complement it with an On-Demand scanner like Hitman Pro ; so you will be protected without having a real-time AV eating up your resource usage.
 

Read other 0 answers
RELEVANCY SCORE 45.6

This is my security configuration on my 3yr old Laptop.
 

A:xYz's Security Config

Nice Configuration,but maybe you want to add a second opinion scanner like Hitman Pro to your config.And https everywhere in your browser
 

Read other 2 answers
RELEVANCY SCORE 45.6

What do you Think?
 

A:Sia Security Config

Real-time Malware Protection: Nothing !Click to expand...

I hope you have Windows Defender enabled ? If not it is strongly recommended
 

Read other 2 answers
RELEVANCY SCORE 45.6

Sandboxie and AppGuard are the best of their kind, what else I could say? lol
 

A:Mr.X Security Config

Minimal yet effective approach, however just for safety measures, perhaps consider adding either a RT AV or an On Demand scanner.
 

Read other 14 answers
RELEVANCY SCORE 45.6

Any suggestion please
 

A:A.S.K's Security Config

Upgrade to windows 10 maybe? is more secure than 8.1 for pop up blocker use Popup Blocker (strict) and for adblock use ublock
 

Read other 1 answers
RELEVANCY SCORE 45.6

Hi Guys, this is my second thread about my security config. Hope this time it is according to what is expected .
All the best.
 

A:Paf's Security Config

Triple boot?
 

Read other 6 answers
RELEVANCY SCORE 45.6

Hi !

My current box:

HP netbook Atom N450, 2GB RAM, 1 TB HD.

Running a customized Windows NT 5.1 (XPSP3) patched with POSReady updates until EOL in mai 2019.

I only run my OS in stateless ramdisk mode for performance, security and privacy reasons.

Just started using security and antimalware software.

I used an unpatched XP with NO Firewall and NO antivirus for several months and I never got infected as far as I know. (The C drive gets flushed after reboot so it's hard to tell)
For a long time I exclusively used brain + ramdisk to stay out of trouble and I has worked like a charm.

At the moment I am busy hardening my OS to stay safe in the future.

Using my "obsolete" Windows XP daily for online payments and banking without any fear...
 

A:NT Five's Security Config

Best config I have seen in a long time = anti-executable + light virtualization + outbound network notifications ... I would not change a thing.

How do you have your RAM Disk configured ? Net cache only or have you added apps to RAM Disk image ?
 

Read other 24 answers
RELEVANCY SCORE 45.6

Thanks for taking a look!
 

A:CK7's Security Config

CK7 said:





Thanks for taking a look!Click to expand...

Very good config.

A few notes and additions:
You might want to add a firewall application, since Avast Free Antivirus does not include any network firewall or HIPS (behavior blocker) components. These components are an essential extra layer of security.
For these tasks, I would personally recommend COMODO Firewall (free) which contains three powerful security modules:
1. Network Firewall (allows you to control connections coming in or going out of your computer).
2. HIPS ("Host Intrusion Prevention System" checks any file for suspicious behavior and allows you to create rules for how that file should run and what it can do on your computer).
3. Sandbox (virtual environment for isolating unrecognized or potentially malicious applications, so that they cannot harm your actual system or files).
COMODO Firewall is an extremely powerful application, and with a little bit of configuration it can become a very effective security layer. In case you run into any trouble configuring COMODO Firewall, there are many COMODO users here on MalwareTips who are all eager to help.
If you see that you do not like COMODO Firewall, you may use Sandboxie as a virtual sandbox application for isolating suspicious files and running applications (e.g. browsers) securely in an isolated and protected environment, without having to worry that any malicious files may harm your computer. (note that Sandboxie ... Read more

Read other 5 answers
RELEVANCY SCORE 45.6

Not looking back.
 

A:above Security Config

Config is ok maybe try adding an on demand scanner and anti-virus. You should also edit your title. For example to follow the rules you should change the name to, Above's Security Config.
 

Read other 6 answers
RELEVANCY SCORE 45.6

I keep a casual security config. I don't keep a bullet proof security setup because it is cumbersome.
Also my device is slow and weak which further discourages anything elaborate.
After reading other configs, I decided to get a strong AV ie Kaspersky, changed my dns to Norton, maxed my Adguard settings and do monthly scans.
 

A:RVS Security Config

If you have a slow device than kaspersky should not be your security program of choice. It runs heavy! Especially if you have a laptop ; it sucks the lifeblood out of your battery. You would be better of with win defender , emsisoft anti malware or eset. Ad kb ssl enforcer to your browser as an extra security meassure. Also think about getting a backup program like aomei backupper standard , better safe than sorry Thanks for sharing your config!
 

Read other 1 answers
RELEVANCY SCORE 45.6

No system image backups: fresh system installation on worst case scenario.
 

A:Gone Security config

I would add ZAM Free, Disconnect, HTTPS Everywhere. Add a good backup solution, such as Macrium Reflect Free or AOMEI Backupper.

Thanks for sharing.
 

Read other 2 answers
RELEVANCY SCORE 45.6

This is my security config I just improved cuz i had an infection recently. Damn Usb flash drives.
 

A:Security Config

If you have a particular issue with USB malware, consider MCSHIELD. Have you considered installing Windows 10? If not, why? Thanks for sharing your config.
 

Read other 1 answers
RELEVANCY SCORE 45.6

What do you Think?
 

A:Sia-Dst Security Config

Real-time Malware Protection: Nothing !Click to expand...

I hope you have Windows Defender enabled ? If not it is strongly recommended
 

Read other 12 answers
RELEVANCY SCORE 45.2

Hi,

I'm really new to this.

Hoping to get a suitable protection without compromising my computer resources

Computer Specs:
UX305FA(MS)-FC051H
Core M-5Y10 processor
4GB RAM
128GB M2.SSD
Intel Integrated Graphics 5300 HD

Currently using this laptop for sourcing study references and materials (like reference medical books, pdfs, etc). You may say that I'm a happy clicker for that reason since I'm taking some "risk" to get those...

At time, I do watch movies online, some online games (those light type).

Any advice/ suggestions would be appreciated.

Thanks!
 

A:CMLew Security Config

Consider one or two on demand scanners
I would suggest some other type of back up solution in addition to system restore
CCleaner or Privazer
Consider a program such as Sandboxie
 

Read other 45 answers
RELEVANCY SCORE 45.2

Any suggestions please
 

A:Ben10 Security config

looks good to me. You have some pretty good on-demand scanners there.
 

Read other 15 answers
RELEVANCY SCORE 45.2

I thought i had a good security solution,but after reading so much posts on this forum:i dont know.
My set up is this:
OS windows 8.1.
Security:
AV.:bitdefender total protection 2016(500 days left)
Malwarebytes antimalware premium (600 Days left)
Superantispyware Professional.
Hitmanpro.
malwarebytes anti exploit premium.
'spywareblaster.

what do you think any answer would be good.
 

A:Carsten's Security Config

I would like to suggest you to create a thread with your current config here: https://malwaretips.com/forums/security-configuration-wizard.12/ so we can discuss it
 

Read other 4 answers
RELEVANCY SCORE 45.2

I thank you all for the Giveaways
 

A:Azure security config

Thanks for sharing your config, but you have an anti-all pc, well is not a good idea, if i were you i would use malwarebytes into passive mode /free mode/ uninstall comodo firewall and xvirus as bitdefender total security cover what those programs does. And i would recommend you to uninstall and leave only the necessary extensions, due to the fact that they consume a lot of ram and make the browser more unstable and some time they may crash. in resume just use what you need. is not true the fact that with many antimalware soft you will be protected, it is the opposite.

Comodo and bitdefender are not good friends... having them on at the same time will cause a hole in your firewall... because none of them will be able to work correctly
 

Read other 52 answers
RELEVANCY SCORE 45.2

Hi, folks. Old reader of MT, novice as to community member. Good luck.
 

A:Bombus Security Config

Looks good to me so far, but regarding "Non. I have them all in a word document" - I would use a password protected, even better 2FA protected PW manager, for e.g. LastPass, to prevent password stealing by trojans / data loss.
BTW there is a ZAM giveaway ATM, feel free to join in
 

Read other 13 answers
RELEVANCY SCORE 45.2

Anything to add remove or change? Feel free to tell me
 

A:Beveraz Security Config

I would add Zemana as an on demand scanner. You have too many extensions IMO I am personally not a fan of adblockers but for you I'd recommend leaving uBlock and Avast Online Security.
 

Read other 4 answers
RELEVANCY SCORE 45.2

This is my config.
 

A:SkepT Security Config

Keep those backups up to date.

Thanks for sharing.
 

Read other 9 answers
RELEVANCY SCORE 45.2

Hi, although I tried various antiviruses and I'm considering myself as a fan of this stuff, lately I'm somehow bored and I stay with Windows 10 and its default antivirus, firewall...

Thinking about change for a few weeks already but did not decided yet. Hope I get some inspiration here ;-)
 

A:ufon007 Security Config

Why SmartScreen disabled? It is absolutely recommended to enable it to avoid infections. Windows Defender is improved with the latest version, but I recommend to add also ZAM Free and MalwareBytes.

Add HTTPS Everywhere, add at least CCleaner Free for System Utilities.

Add Macrium Reflect Free or AOMEI Backupper.

Thanks for sharing.
 

Read other 6 answers
RELEVANCY SCORE 45.2

It's a pretty light and simple setup. No annoying pop-ups
 

A:jtshadow92's Security Config

you can ad emet or malwarebytes anti exploit for system hardening https everywhere as extra browser extension. the rest looks ok to me ( not a mcafee fan ) since download malware samples I do suggest the use a virtual machine for that ( vm ware ) , or shadow defender or rollback rx ( disaster recovery )
 

Read other 3 answers
RELEVANCY SCORE 45.2

this is my current config, as of June 5 2016
 

A:Shmu26's new security config

Good setup.I like it.@shmu26
 

Read other 18 answers
RELEVANCY SCORE 45.2

I don't take good care of my PC lol xD

--------------------------------------------------------------------------------------------------------------------------
Koko's Rescue Disk
Credit in making this goes to @BoraMurdar!
Make your own at Bora's Fix Tools!

A bootable USB created with YUMI containing:
Hiren's Boot CD
MiniTool Partition Master
Avast Rescue Disk
Kaspersky Rescue Disk
AOMEI Backupper
Windows Defender Offline
MiniTool Parition Wizard
Lazersoft Recovery
Windows 7, Windows 8, and Windows 10 setup ISO's.
A folder containing a extensive list of tools below.
--------------------------------------------------------------------------------------------------------------------------
Extensive list of tools
If something ever happens, these tools will be running in Hiren's Boot CD MiniXP

--------------------------------------------------------------------------------------------------------------------------
​EDIT 1:

Changed AVG to Avast Premier (Better detection ratio IMO)
Removed AVG Tuneup, added disk defragmentation pro and EaseUS partition master.
Added backup solution (AOMEI Backupper Free, every 3 days = 1 backup!)
Changed Adblocker plus to uBlock,
Added Sandboxie, and Unchecky.
Debating whether or not to replace VirtualBox with VMware.
EDIT 2:

Changed VirtualBox with VMware station Pro 12
Added f.lux, (Had this forever, it's awesome!)
EDIT 3:

Added Rescue Disk. Thank you to @BoraMurdar!
EDIT 4:

Added Lazersoft Reco... Read more

A:Koko's Security Config!

For a backup solution might i suggest Macrium Reflect or Aomei Backupper, both have a very good free version.
 

Read other 24 answers
RELEVANCY SCORE 45.2
A:siavash66 security config

Real-Time Protection:
Emsisoft Anti-Malware
Malwarebytes Anti-Malware
Kaspersky Total SecurityClick to expand...

Seems a bit too much to me even if they works together, the resources consumption is high. EAM is not so necessary when you have KIS and MBAM;
 

Read other 6 answers
RELEVANCY SCORE 45.2

Edit:REHIPS added as sandbox app.
 

A:Rishi's Security config

Make sure the backups are up to date.
 

Read other 14 answers
RELEVANCY SCORE 45.2

Hello.
You can see my new security configuration there.
 

Read other answers
RELEVANCY SCORE 45.2

I have always had a problem with malware, as I am always on the Internet. I am wondering, what antivirus software should I use and how many? The one thing I know nothing about in computers is malware, so my defense is probably lacking.
 

A:snopdog666 Security Config

Not best, but better is AVG or Avast.
Add more scanner for on-demand scanner. Zemana AntiMalware, Hitman Pro and Malwarebytes antimalware.

Hitman pro is free for scan system but you need to buy the product if you try to remove viruses too.
Zemana AntiMalware and Malwarebytes antimalware is free for scanning system and remove malwares.

Try CCleaner for Privacy and Optimisation.

thats it from me.. and welcome to MalwareTips
Enjoy
 

Read other 7 answers
RELEVANCY SCORE 45.2

Infected with CIS Hips off full virtualization then changed config .-)).
 

A:Davidov Security config

I really like your conf., but i think you would do better with Online Armor free that is a powerfull firewall with HIPS defense not provided by your antivirus and very easy to use.
 

Read other 23 answers
RELEVANCY SCORE 45.2

It's primary advantages include:
Very high-level physical system protection with minimal resource impact
Compatibility between installed software
Simple configuration (I'm not saying Comodo is simple to use; for novice it can be difficult)
It works and is sufficient for day-to-day computing...

Bottom line is that it works very well both on my specific system and for me personally. Consequently, it is security configuration that I will continue to use...

It's primary disadvantages include:
Adguard and KeyScrambler Pro\Premium are paid software; Comodo and KeyScrambler Personal are freeware
Implementation and learning curve with Comodo (but there is always great help for those determined to make it work)
User does need a moderate amount of IT knowledge

 

A:HJLBX SSD-Only Security Config

Good config.

Maybe it's good idea upgrade to W10, W10 store part of pagefile on memory under "system" process.

PD: Actually SSD's doesn't need the same care as first models.
 

Read other 83 answers
RELEVANCY SCORE 45.2

Work in progress.
 

A:XIII's Security Config

Looks good. Thanks for sharing.
 

Read other 1 answers
RELEVANCY SCORE 45.2

This is pretty simple configuration.
 

A:Supra Security Config

Thanks for sharing your config!

I recommend Ublock Origin and HTTPS Everywhere for chrome.
 

Read other 0 answers
RELEVANCY SCORE 45.2

My personal preference is Linux .
But my work requires me to have both Linux and Windows systems .
On Linux I generally do not use any malware protection although some
of my Linux systems have grsec as kernel hardening.

I decided to give my answers for Windows as my main system .....
.... at least that way I can give answers to most of the config questions
 

A:Myriad's security config

I think you forgot to add AV
Tiny Wall is a Firewall not a AV.@Myriad
Add some AV,other than it looks ok.
 

Read other 2 answers
RELEVANCY SCORE 45.2

Anstrengend to and? Let me know

In you finden any typos you can buy them from me
 

A:Sonyphoneuser Security Config

Which version of AVAST? Kaspersky Rescue Disk is a useful tool, but consider one more on-demand scanner (Zemana, Emsisoft, Crystal Security). Thank you for sharing your config.

Edit: What's "malware yes", for some reason I read that as Malwarebytes.
 

Read other 10 answers
RELEVANCY SCORE 45.2

Last but not least, i update my windows and download programs from vendor's websites..
That's it i guess..
 

A:malis's Security Config

Simple but pretty safe with that config.

just wondering why you not use Chrome?
 

Read other 1 answers
RELEVANCY SCORE 45.2

NOTE: Keep in mind, ONLY security-related programs on my system are mentioned above.

This is my current desktop security config. What do you guys think? Please give your honest opinions.
Spoiler: Vulnerable Process's List
Vulnerable Processes on my system (Windows 7):
cmd.exe**

regsvr32.exe**
rundll32.exe**
shell32.exe**
mshta.exe**

wscript.exe***
cscript.exe***
powershell.exe***
powershell_ise.exe***

All process's both paths (system32 & syswow64) included.

** - Monitored
*** - Blocked
Spoiler: Vulnerable Programs List
Vulnerable Apps & Programs on my System (beside Windows 7):
Java JRE 8 32-bit (Used for Desktop Apps Only)
Adobe Flash Player ActiveX (Used For IE 64-bit Only)
Browsers (Firefox 32-bit, Chrome 64-bit & IE)
Microsoft Office***
Thunderbird
Foxit Reader***
Adobe Photoshop 64-bit***
Windows Media Player***
uTorrent (3.3.2 Build 30586)
VLC Media Player***
K-Lite Mega Codec Pack With MPC-HC 64-bit***
Microsoft .NET Framework 4.6.2

*** - Internet connections (Incoming & Outgoing) are disabled in Firewall
Spoiler: Additional Info
ADDITIONAL INFO'S:

I have 3 user accounts active - 1 admin (personal use only), 1 standard (friends & family use) & 1 guest (other stuff). The standard & guest accounts enjoy the strict settings of kaspersky total security parental control.
For financial/banking transaction, i use kaspersky safe money. For safe money, i use firefox only with addons kaspersky protection and https everywhere... Read more

Read other answers
RELEVANCY SCORE 45.2

what are any conflicts or holes in this security configuration?
 

A:shmu26 security config

Switch utorrent with qbittorrent because utorrent is not to be trusted. Just google utorrent bitcoin miner to see a portion of their fail.
 

Read other 13 answers
RELEVANCY SCORE 45.2

Hello guys,

At the moment, i am running, KIS 2017, Antilogger, and AdGuard. I am having a look at HitManPro.Alarm. Can i use that too? Or its too much?
 

A:gmaister22 Security Config

Hello!

Honestly I do not think it is necessary to use all of those security software at once (I am excluding Adguard from that opinion - I recommend you keep it regardless of which main security software you have).

I would stick to using Kaspersky Internet Security and Zemana Anti-Logger OR Kaspersky Internet Security and HitmanPro.Alert; if I had to choose between ZAL or HMP.A I would most likely choose HMP.A since it has a wider feature-set (e.g. exploit mitigation (it even supports BadUSB protection), ransomware mitigation, browser compromise protection (e.g. scans for unwanted hooks which may be from malware to steal passwords), etc).

Regarding compatibility issues, there may be on the keylogger protection side, but it is best for you to test it out yourself; make sure you have a backup say on case there is a problem which causes data corruption/loss.

That being said, regardless of which one you decide to use alongside Kaspersky Internet Security, you will be well-protected; please remember that no security can make you invincible and that it'll be down to you just as much as the protection installed and running on your system to keep yourself safe. That being said, as I said earlier, I do not think it is necessary to use both ZAL and HMP.A alongside KIS.

Stay safe and good luck.
 

Read other 22 answers
RELEVANCY SCORE 45.2

This is my config
 

A:Tramadol250mg Security Config

Consider adding an on demand scanner(s) such as Emsisoft Emergency Kit,Zemana Antimalware,Hitman Pro or Malwarebytes Antimalware.
Config looks good! Thanks for sharing it with us
 

Read other 1 answers
RELEVANCY SCORE 45.2

My security Config

another Programs: Sandboxie , Malwarebytes Anti-Exploit & Acronis True Image.
 

A:VayLa security config

I personally don't like adblockers but most people would say advised or ublock as a replacement for an adblocker. You should add Zemana Anti-Malware as another On Demand Scanner.
 

Read other 1 answers
RELEVANCY SCORE 45.2

Many are showing their settings, here's mine.
Brazil
 

A:Jrs30 Security Config

Few suggestions; enable UAC and consider creating a system image as an OS backup. Verify you trust all those browser add-ons.
 

Read other 5 answers
RELEVANCY SCORE 45.2

Hello everyone

Can someone has more suggestion to secure my PC at extreme level
 

A:Vishal's Security Config

@Vishal Kumar Singh

Welcome to MT.

You already have decent security configuration.

At the most extreme for Windows you can harden Windows OS, add Software Restriction Policy and Anti-Executable software, and finally, light virtualization software.

The most extreme would be to migrate to Linux - but I don't think that is what you wish from your post.

Hardening the OS involves researching tweaks and disabling features in W7 that are never used.

Software Restriction Policy software include Blue Ridge Network AppGuard, Excubits Bouncer and NoVirusThanks Smart Object Blocker.

Anti-Executable software includes NoVirusThanks Exe Radar Pro, VooDooShield and Faronics Anti-Executable.

Light virtualization software includes Sandboxie and Shadow Defender.

My signature shows a popular configuration amongst some security soft geeks.

Notice I have no AV suite installed - don't need it.

I don't bother hardening the OS except for a few tweaks - such as disable remote assistance.
 

Read other 3 answers
RELEVANCY SCORE 45.2

Hello guys! I am building my configuration, please rate everything and don't hesitate to recommend or ask anything! My main focus is on secure internet banking. Maybe I should use Avira AV instead of avast!, but I just love avast! for no apparent reason I use internet banking - that's why the SpyShelter. Anti-Exploit against 0-days.

I am looking for firewall, other than Comodo because it's not fully compatible with my setup and I had some issues with it in the past. I am also not comfortable with Windows bult-in as it can't block outgoing traffic. Thanks in advance for your answers! Please also list some comparatives as I wasn't able to find any and rate my current setup ZonerAlarm Free Firewall (or paid?) looks good, what about that?
 

A:RXZ6Q Security Config

Looking good! Everything is covered nice and you have lot's of on demand scanner, which is good
For firewall ZoneAlarm is a good choice. It has been a very decent firewall for years now. The only thing that is maybe a bit annoying to it is that it is not that light (or at least it wasn't in the past when I tried it) and it has some advertising screens from time to time in the free version. But apart from that it is worth considering.
Another good free one, but maybe a bit harder to configure right and with lots of options is Privatefirewall.
 

Read other 11 answers
RELEVANCY SCORE 45.2

Addons, Extensions and Plugins :-

Zenmate, Session Manager, AnonymoX, FlashGot, Internet Download Manager extension for Firefox

Zenmate, Internet Download Manager extension for Chrome

No Addon, Extension for Internet Explorer

Other Software :-
Adobe Acrobat DC
VLC Media Player
FilmOn TV Player
Cyberghost VPN 6
 

A:silverhawk2 security config

thanks for sharing your config!

- Enable UAC at least to default settings
- Download 1 or 2 on demand scanners like (Zemana Anti-Malware, Malwarebytes, Emsisoft Emergency Kit, ...)
- Replace Ad Blocker with Ublock Origin
- Install HTTPS Everywhere (chrome extension)
* Think about getting a password manager
 

Read other 1 answers
RELEVANCY SCORE 45.2

Hi everyone,

I think that this Config Wizard is clearly favoring Windows over Linux...

I'm using Arch Linux, imo the safest distro, because u can tweak it as you like.

My security configuration consists of:

ufw - great iptables frontend, tweaked settings in order to reduce attack surface
grsecurity - kernel patch for exploit and 0day protection
AppArmor - MAC, very simple rules configuration (I actually had to recompile my own kernel to allow it, default Arch kernel with grsecurity comes only with Tomoyo enabled - I've no idea how to use it and I'd also have to write my own profiles, so no thank you)
firejail - great sandboxing tool, essential for Firefox and vulnerable apps, comes with several predefined profiles
edithosts - interesting tool, blocks ads on HOSTS level, I tweaked it to block malware domains as well, doesn't slow down my browsing experience so far
rkhunter - decent tool, scans for generic rootkit files, reports suspicious files and most importantly stores hashes of essential OS files and then reports any tampering with them
It's a bit overkill for a desktop, but well... at least I feel safe.
 

A:eth4n's security config

Arch Linux is a good one, using Apparmor is a good move; you linux security setup is quite tight.
 

Read other 1 answers