- Journal of Internet Insecurity -
Scroogle is a front end to google that encrypts the connection to google and prevents google from recording personally identifiable information.
Check it out: https://ssl.scroogle.org/
Goggle has developed a new web browser called Chrome. We advise anyone who values their privacy to stay away from this browser. A look at the licensing agreement tells it all:
“[Y]ou give Google a perpetual, irrevocable, worldwide, royalty-free, and non-exclusive license to reproduce, adapt, modify, translate, publish, publicly perform, publicly display and distribute any Content which you submit, post or display,”
Unfortunately, someday, somehow, someway, somebody may get a hold of your browsing history and your search history, possibly including “unique identifier” and IP address and exact time of the search. Not good.
And Google is not alone in this, as most search engines do the same.
(awarded the European Privacy Seal)
And hey, it also works very well. Quality seach results.
Password Meter provides a good way to test your passwords for security. Password Meter can be found at the following web site: http://www.passwordmeter.com/
Your password can be tested online, or the application may be downloaded for use on your computer.
Go to https://privnote.com/
Maxwell Smart couldn’t do any better.
The bad news is that, Yes, AVG Anti-Virus Free Edition must be upgraded to version 8 by May 29, 2008.
The good news is that AVG Free is still free. Now that may seem redundant, but lots of folks thought AVG Free was going away when they had to upgrade to version 7.0. In fact, ever one of my customers who were using AVG free at that time, thought they had to pay for the new version. Not true then, and not true now.
AVG Free Version is still alive and well. Just download AVG Free, version 8 before May 29 and install it. There is no need to uninstall version 7.5 before installing version 8. The installation routine will find your old version and uninstall it automatically.
The following link will take you to the download page: http://free.grisoft.com/ww.download?prd=afe
To see why it is so very important to secure your wireless network with WPA security, as well as taking some other simple precautions, such as naming your network in a way that is not personally identifiable, check out this YouTube video:
Everybody who uses the Internet uses DNS servers. DNS servers translate the familiar web site names to the numerical code of IP addresses.
Think of DNS as the phone book of the Internet. With a phone book, you look up a name and it gives yo a number. Well, this is what the DNS system does for the Internet. Only, it automatically looks up the numerical address for you, and tells your browser where to find that web site that you are after.
The DNS server address is actually entered in Network (TCP/IP Protocol) properties. Most people use the address provided by their Internet Service Provider. And most of the time these properties are set to ‘Obtain DNS server address automatically’.
Moat uses don’t realize that you are not required to use the DNS servers that your ISP provides. You can enter any DNS server you choose. But finding alternate servers is a problem. We recommend that you consider using Open DNS. This company is independent of any specific ISP and provided enhanced DNS services, some of which you may find valuable, such as correcting common misspellings.
For more information and specific instructions, visit http://opendns.com
A nifty little program, Spy-The-Spy, monitors your C:\windows folder (or any folder you designate) for new or changed .dll or .exe files.
It will tell you instantly if files are added or modified. Use it careful, and understand what is does and does not do.
From the author:
“But I want to know the very moment something is being installed on my computer. It is sad that Windows while trying to be friendly is quiet about things that are being added. I don’t care if it is legit application or not. Obviously if I am installing application, I expect it to add some files to Windows or Program Files. No surprise. But I am just browsing web and application is secretly added and run while Windows is fine with it?
Monitor my Windows
So I build an application that when it is running it simply monitors system folders for any new exe’s or dll’s being added or renamed: For example Windows and System32 folder is the main harbour for these bugs, but also Program Files or Documents and Settings.”
For more info and to download this program, please visit the authors site:
Carnegie Mellon University has produced a little phishing game to test you skills at spotting fake Internet addresses (URL’s).
The game can be accessed at the following address:
TOR, AKA “The Onion Router”, is described on their web site as follows:
Using Tor can help you anonymize web browsing and publishing, instant messaging, IRC, SSH, and other applications that use the TCP protocol. Tor also provides a platform on which software developers can build new applications with built-in anonymity, safety, and privacy features.
But several security issues have been raised recently with the TOR, and a number of security professionals believe TOR should not be relied upon to provide secure communications or anonymous web browsing.
In fact, TOR provides this warning on their download page:
Warning: Want Tor to really work?
…then please don’t just install it and go on. You need to change some of your habits, and reconfigure your software! Tor by itself is NOT all you need to maintain your anonymity. There are several major pitfalls to watch out for.Tor only protects Internet applications that are configured to send their traffic through Tor — it doesn’t magically anonymize all your traffic just because you install it. We recommend you use Firefox with the Torbutton extension.
Browser plugins such as Java, Flash, ActiveX, RealPlayer, Quicktime, Adobe’s PDF plugin, and others can be manipulated into revealing your IP address. You should probably uninstall your plugins (go to “about:plugins” to see what is installed), or investigate QuickJava, FlashBlock, and NoScript if you really need them. Consider removing extensions that look up more information about the websites you type in (like Google toolbar), as they may bypass Tor and/or broadcast sensitive information. Some people prefer using two browsers (one for Tor, one for unsafe browsing).
Beware of cookies: if you ever browse without Tor and Privoxy and a site gives you a cookie, that cookie could identify you even when you start using Tor again. You should clear your cookies frequently. CookieCuller can help protect any cookies you do not want to lose.
Tor anonymizes the origin of your traffic, and it encrypts everything inside the Tor network, but it can’t encrypt your traffic between the Tor network and its final destination. If you are communicating sensitive information, you should use as much care as you would on the normal scary Internet — use SSL or other end-to-end encryption and authentication.
While Tor blocks attackers on your local network from discovering or influencing your destination, it opens new risks: malicious or mis-configured Tor exit nodes can send you the wrong page, or even send you embedded Java applets disguised as domains you trust.
Also, the ‘exit servers’ on the TOR network can easily be compromised, and all traffic through an exit router can be misused, as evidenced in the following article:
http://www.securityfocus.com/news/11486?ref=rss
In other words, even if you use TOR, secure communications requires careful configuration and the use of encryption and a secure pipe, such as SSL or VPN. And, as evident in the above article, you may indeed be less secure using the TOR network than when using other means of secure communications because TOR may give users a false sense of anonymity or security.
For secure email, we recommend using an email service that allows full SSL encryption for the entire session, not just the login page. And if you use email through a hosted web site, we recommend that you contact the host and ask if their email is secure or can be made secure. Many cannot.
We recommend any of the following options:
You are currently browsing the archives for the Security Tools category.
__________________________| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Nov | ||||||
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 | ||||
Navigation >>
Home ...
Pages (999999) : 1 2 » ... Last »
Posts (RSS)
and Comments (RSS)
