Re: Which Home Guardsman ?
Realist has a point about JavaScript. Disabling it will prevent all that is mentioned. I took this approach for a number of years. Not entirely but selectively using Firefox's NoScript extension. The trouble is that blocking or disabling JavaScript also affects page functionality (as said) and so I gave up on it. Since reading Realist's post, I tried disabling JavaScript in '
about:config'. It will block all manner of undesirable things but I don't think I could live with the missing page content again.
I visit the Met. Office site frequently. This doesn't work properly with JavaScript disabled. Much of the 'easy to use' content is missing. I could just re-enable JavaScript for this and any other site that relies on it but a choice or balance has to be made between functionality and security regarding this.
I believe most scripts are not malicious and I would rather use
uBlock Origin to stop annoyances than block/disable JavaScript. That's just a personal choice. An informed decision if you like.
Sandboxie will not block scripts or anything else, so all page content shows as was intended by the page designer. If anything nasty relying on JavaScript is come across, Sandboxie would contain it inside the sandbox. It also becomes possible to follow links with more confidence knowing that nothing will get out of the sandbox. If Sandboxie does the job as it should, it will contain
any drive-by threat. If it did fail, an AV program is in place as another security layer. It really doesn't matter which one because everyone will put forward a different preference. Suggesting one more only gives more of a dilemma. I can't find any evidence that AV companies write viruses in order to keep the business of selling AV programs going.
Although I have an AV program in place, it isn't relied on solely. They can all have a failure and false positive rate.
As well as Sandboxie,
HitmanPro.Alert is installed. Over the top? Possibly but these programs run well with each other and don't take a toll on computer performance. Once installed, they can more or less be forgotten about. Just empty the sandbox occasionally, or before financial dealings.
LastPass handles my passwords. Although I know some wouldn't trust this, I've never had a let down with it. I have assessed the way it works (search for: '
how does lastpass work'), the convenience it gives and would only have myself to blame if there was a security breach. However, nothing is trusted when it comes to logging into sites to do with financial dealings. Login details are typed or copy/pasted for these.
The practices above have stood the test of time, apart from HitmanPro.Alert. This is a fairly new product.