New
#141
three routers in Y config (happy i got it setup without any headaches...:))
one router with WEP (call it insecure network) has only limited access to the internet a no access to my other machines on my network (temporarily on for those machines that im servicing that cant use WPA, or dont want to give my security key to) usually upon boot i change the key
last boot (before the key change) this was my key
31cb99a6c7afd9ae8462500f418e07b8fbeaaedc95c0d90831c44a2fd15fce07....
another with WPA-2 CCMP and TKIP (key rotation interval is set to 5 minutes) which has all my network configured around it...
all have nat (it is a pain to forward a port but hey this is as secure apart from shelling big bucks for a cisco (or something with that kind of quality) product) enabled...
currently have two working machines (one not so working...)
my personal laptop does not having any security software other than UAC and WinFirewall, as no one has the chance to muck around with this machine exepct me (although i usually do that in a VM though...)
my personal server (which is actually used more than me ) has Microsoft Forefront for proactive/on-line scanning and have both Avast and ClamWin for sheduled on demand scanning (usually if not every two days, avast one day ClamWin another....:))
this one also has UAC and Winfirewall (i might actually look into some third party firewall software [i really hope comodo gets its Firewall officially supported soon, as i do really like it] for both my serv and laptop...
so dinesh thats my setup
ooh forgot to mention...
since i don't usually use any older apps or apps coming from unknow places(and if i do its usually in a VM), have DEP on always on which is a big plus (for both server and laptop)....
P.S usually my default setup is with scripting off (which solves a lot of the problems which are caused online) and enabling scripts as i go (both in IE and Fx [both noscript and adblock plus enabled and with added security of flashblock), people using my machines hate it because one thing on certain social networking sites does not work for some reason or another (which is caused by a script being blocked...)
while i might not being see websites as they are supposed to be, its better security wise...
@TheIgster
so you can say that threatfire is a kind of hybrid HIPS?
(this is what i get from your explanation...)
Last edited by darkassain; 29 Aug 2009 at 03:49.