Author Topic: How To Stay Safe While Online  (Read 12551 times)

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #15 on: April 10, 2014, 04:23:41 AM »
Hello,
are Ghostery and RequestPolicy working the same way to protect our privacy ?
if not, what is the difference ?
Ghostery blocks trackers and what i read on the RequestPolicy website looks like it does the same thing.

I use most of the time Comodo Dragon but I really miss the NoScript add-on on this chromium browser. NoScript is the best add-on for me to secure browsing on Firefox. there are some extensions for chromium looking like NoScript on FF but they just look like, There's nothing as good as Firefox NoScript for chromium.

thanks for your work to help people security over the internet.
« Last Edit: April 10, 2014, 04:43:49 AM by ailef »
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline Chiron

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11951
Re: How To Stay Safe While Online
« Reply #16 on: April 10, 2014, 01:46:48 PM »
Both do work in very similar ways. In fact, there are many extensions which perform similar contributions. For my advice on which to use please see my article here.

Let me know what you think.

Thanks.

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #17 on: May 01, 2014, 12:55:38 AM »
hello,
I read about all your advices to stay safe using the different browsers you mentioned.
All those add-ons are needed to keep your browsing safe from most kind of attacks to break into the system,
and to protect the browsers from getting annoying add-ons that would take control over your settings and open pages you don't want.

I didn't noticed important differences between ghostery and requestPolicy, except some security options into requestpolicy that seems not usefull at all from my personal view, as NoScript is so good to secure Firefox. and there's no other add-on on any of the other browsers to compare to NoScript for FireFox.
But chromium security is so good that it's hard to bypass. I tried a lot of websites with various kind of attacks from some website listing them using dragon, and I loaded those bad websites after dragon page alert, and no exploit was able to compromize dragon security.
So nothing was able to break into the system to compromize it.
What I noticed recently for Dragon is that the add-on "AdBlock" is better than "adblock plus" to filter ads and it has options to secure browsing that Adblock Plus doesnt include. and AdBlock is able to stop absolutly any kind of ads that Adblock plus doesnt filter (like new ads on Facebook for exemple).
But at the end, the way to set the browsers are the first thing to do. on Dragon you have lot of settings that keep you safe.
But there's a thing I disagree, it's about using LastPass to save login/pass.
I tried it and I need a lastpass account to use it, what I'll never do.
I don't like to have to create an account to manage my passwords.
and I never save any log/pass on my browser.
I have a lot of accounts but I printed all on 2 pages and I use this way to protect my accounts.
And it's a good thing to train your memory ;-)
Sometimes I need to look at my papers as passwords are longs and suite of characters without any meaning like for exemple : PP0_#98[at]szFF&aZ1,
But after sometime you typed it, you remember most of all.
I clean all data on exit each time i close the browser, can be annoying, but I prefere this solution.
I got only Flashplayer loaded but I block it from storing anything on the machine.
But there's still the temp folder C:\Users\******\AppData\Local\Temp to look at, sometimes you find bad things in it.

I don't use no AV, as they run on database and their scanners are easy to dupe. people use a way to package the files so the scanner cant open it as people using multiple packagers with commands for the scanner to access that send it from erroneous to erroneous way to unpack, so it's unable to be scanned, some AV try several minutes then say the file is correct, some others AV try some seconds then say the file is safe,
maybe some others as they cant scan it alert the user of the potential danger and block it, but I don't know which ones really do that.
I even bypassed very well-known AV just by changing the size of the file using another icon...
So scanners are useless, only signed files from trusted vendors should be allowed to download and stored on the SSD or HDD.
That's why I only use comodo FW and D+ with highest security settings.
I do not use a lot D+ paranoid mode except to find unknown malwares.
For files i don't know, I use the virustotal uploader to have an idea, but with all those false positives, it's not easy,
Because I use tools to modify Bioses that are detected by almost all AV at virustotal as malwares, as I know it's wrong, because the files are coded by a serious group of people.
So how to trust AV when they fail to detect malwares and detect files that are not malwares...

update : I forgot an important thing, I use a VPN with openVPN-256.
and to encrypt you SSD where you installed your system is also a good thing.
If someone can access you machine, he will not be able to steal and use your files as he'll get only encrypted files.

« Last Edit: May 01, 2014, 07:28:16 AM by ailef »
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline Chiron

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11951
Re: How To Stay Safe While Online
« Reply #18 on: May 01, 2014, 07:00:29 PM »
It sounds like you have a very good security configuration. However, I do believe that LastPass is a good fit for most users. It encourages them to easily create different, strong, passwords for each website, and it does so in such a way that it is safe for the user to keep it on their computer (as it is heavily encrypted).

Thanks.
« Last Edit: May 01, 2014, 07:07:03 PM by Chiron »

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #19 on: May 02, 2014, 10:28:11 AM »
Hello,


i just installed some extension on Dragon named "ScriptBlock" that is based on NoScript,
did you test it ?
It seems a good start even if it's not exactly the NoScript firefox add-on.
give it a try and tell me what you think about it.

best regards.
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline Chiron

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11951
Re: How To Stay Safe While Online
« Reply #20 on: May 02, 2014, 01:24:13 PM »
I advise an alternative called ScriptSafe in my article here:
http://www.techsupportalert.com/content/how-harden-your-browser-against-malware-and-privacy-concerns.htm

Do you believe that ScriptBlock is better than ScriptSafe, or have you not yet tried both?

Thanks.

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #21 on: May 05, 2014, 04:44:21 PM »
Yes i saw that but Scriptblock seems really easier to set than scriptsafe,
But i see both extensions are no more updated for almost one year.
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #22 on: May 05, 2014, 05:17:03 PM »
I have some question about websites displaying which browser and version we use, which OS we use, and more infos about our system.
Is there anyway to block websites from accessing those data from our computer ?
they can get our IP, no prob, but for the rest, how to disable websites to get our personal infos about which softwares we use and OS and a lot more things ?
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline Chiron

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11951
Re: How To Stay Safe While Online
« Reply #23 on: May 06, 2014, 11:49:19 AM »
I have some question about websites displaying which browser and version we use, which OS we use, and more infos about our system.
Is there anyway to block websites from accessing those data from our computer ?
they can get our IP, no prob, but for the rest, how to disable websites to get our personal infos about which softwares we use and OS and a lot more things ?
I believe the application Secret Agent, for Firefox, should do that well. It is discussed in the article. However, I do not know of one for Chrome. If you find one please let me know.

Thanks.

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #24 on: May 08, 2014, 03:53:12 PM »
thanks a lot Chiron,

I checked firefox extensions, there are a lot of them to disable infos about the system or browser version used.
that's a good idea to add that for prevention.
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #25 on: May 17, 2014, 09:53:05 PM »
Hello Chiron,

I found some extension to spoof my agent version for the browser and the OS on chrome,
But i found in browser objetcs a command to know your real infos, thats the navigator object.
with navigator.appVersion you see your real infos.
and even with navigator.userAgent, it shows real infos 50% of the time.

I'm looking for some extension to spoof the navigator object but for now I didnt find usefull infos.

Do you have any idea on how to defeat this navigator object ?
If i dont allow javascript it doesnt show any infos, but the extension i use is able to spoof agent version with javascript no using this object.

greetings,

ailef.
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline Chiron

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11951
Re: How To Stay Safe While Online
« Reply #26 on: May 18, 2014, 12:57:44 PM »
I'm sorry, but I don't know of any. Would you mind sharing the links for what you have found, even though they are imperfect?

Thanks.

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #27 on: May 19, 2014, 05:35:37 AM »
yes i tried my spoof user agent there : http://www.quirksmode.org/js/detect.html

and i understand  that there's no solution as it's a function integrated in all browsers, you send the navigator.appVersion and the browser will send all the infos.

So we can block scripts, that's all, and even with blocked scripts, we can get your user agent with the old method that doesnt need javascipt, but we can spoof it.
I think i'm going to let it down with that, there's nothing serious to reply to our privacy and security.
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

Offline ailef

  • Computer Security Testing Group
  • Comodo's Hero
  • *****
  • Posts: 926
Re: How To Stay Safe While Online
« Reply #28 on: May 19, 2014, 06:17:38 AM »
oh and I installed RequestPolicy on IceDragon, Yes that's a very nice extension, I like it, i'm going to keep it for sure, and it's clear and simple to use, nice extension, yes it's one we need for Firefox.
So with IceDragon I have Noscript, Adblock plus but i'll check for some exentions equivalent to see if there are good ones in the same style.
and i have also ghostery. it's okay for security online i think.
Win 7 ultimate 64-bit SP1
Comodo FW 8.1.0.4426
- Comodo FW 8.2.0.4591 : Starting Test on 28/07/2015

antivirus ? what for ?

 

Seo4Smf 2.0 © SmfMod.Com Smf Destek