My approach to PC security first and foremost is to exercise good judgment and safe practices when online or checking my e-mail. My second line of defense is that I do not browse the Internet or check e-mail logged on as a Computer Administrator, both of those activities I only perform while logged on as a Limited User.
I believe these two approaches alone will keep my PC and myself protected to the most possible extent, however, I also strongly endorse the concept of layered defenses, that way the security is not resting in only one basket.
Here is my breakdown.
Operating System:
Windows XP Home Edition SP3 - Includes up-to-date patches from Microsoft.
Some capabilities of Windows XP Professional made possible through the use of a couple of scripts.
Limited User Account plus Software Restriction Policies:
Software Restriction Policy set to Disallowed. My limited user account only has write privileges to it's own user folders which means system folders are off-limits, key registry items are also off-limits. Software Restriction Policies prevent any executables from starting from within my user folders and only allow from the Program Files and Windows folders.
Firewall:
A hardware firewall built in with the Linksys Router.
A software firewall designed by Comodo (Comodo Firewall Pro) which provides both an inbound and outbound firewall protection as well as a host-based intrusion prevention system (HIPS).
Anti-Virus:
avast! 4.8 antivirus protection
Anti-spyware/malware:
SUPERAntiSpyware Free Edition
Malwarebytes' Anti-Malware
Web Browser:
Firefox 3.0.4 - Most recent version. With security add-on: No Script
Internet Explorer 7 - With most recent patches.
