Topic: Tips for privacy and security
Below is a collection of tips & tricks to improve privacy and security on your system. I'm hoping to add more stuff. So please, post your tips for extra privacy and security.
Some more reading here: Howto Securing Debian
Privacy search engines
https://www.duckduckgo.com/ - view privacy policy: http://donttrack.us/
https://www.ixquick.com/ Metasearch engine (alltheweb, bing, digg, etc). Has an option to open search results via anonymous proxy
https://www.startpage.com/ (a mirror of ixquick)
http://www.logless.com/
http://www.scroogle.org/cgi-bin/scraper.htm Google search results via proxy
http://www.yauba.com/ Option to open search results via anonymous proxy
To add search engines to the firefox search bar have a look here: http://mycroft.mozdev.org/
I created a 'DDG crunchbang forum search plugin': http://mycroft.mozdev.org/search-engine … crunchbang
Addons for Firefox/Iceweasel
AdBlock Plus - Adblock Plus allows you to regain control of the internet and view the web the way you want to.
BCExplorer for Firefox - BrightCloud category and reputation info as you browse!
Beef Taco - Sets permanent opt-out cookies to stop behavioral advertising by 102 different advertising networks
BetterPrivacy - BetterPrivacy is a safeguard which protects from usually not deletable LSO's on Google, YouTube, Ebay...
BitDefender TrafficLight for Firefox - Adds a strong and non-intrusive layer of security to your browsing experience
BrowserProtect - Protect your browser configuration against homepage and search hijacks
CipherFox - Displays the current SSL/TLS cipher and certificate chain in the status bar.
CookieSafe - This extension will allow you to easily control cookie permissions.
Ghostery - Protect your privacy. See who's tracking your web browsing and block them with Ghostery.
GoogleSharing - GoogleSharing ultimately aims to provide a level of anonymity that will prevent google from tracking your searches, movements, and what websites you visit.
HTTPS Everywhere - It encrypts your communications with a number of major websites.
HTTPS Finder - HTTPS Finder automatically detects and alerts when SSL is available on a web page. It also provides one-click rule creation for HTTPS Everywhere. Other features include an ignore-domain list, and "auto-forward" to HTTPS.
Keylogger Beater - Use it to keep your username or password from being stolen by a keylogger.
LinkExtend - Provides meta-site-ratings for computer safety, child safety, company ethics, and popularity.
Master Password+ - Various enhancements for "master password"
Netcraft Toolbar - Blocks phishing sites, helping to protect users from online fraud...
NoScript - Allow active content to run only from sites you trust, and protect yourself against XSS and Clickjacking attacks.
OptimizeGoole - Enhance Google search results and remove ads and spam
PhZilla - Firefox add-on to achieve anonymity in surfing, using web-based proxy
PrivacySuite - One place to protect your privacy when you go online.
RefControl - Control what gets sent as the HTTP Referer on a per-site basis.
RequestPolicy - Be in control of which cross-site requests are allowed.
ShowIP - Show the IP address(es) of the current page in the status bar. It also allows querying custom information services by IP (right click) and hostname (left click), like whois, netcraft, etc. Additionally you can copy the IP address to the clipboard.
SSL Blacklist - Verifies SSL certificates
TrackMeNot - Protects users against search data profiling...
WOT - The WOT add-on is a safe surfing tool for your browser.
Addons for Chrome/Chromiun
A Little Privacy - Prevents passing referrer to third parties, removes redirect trackers, resolves short URLs, and more.
Abine TACO - Opt-out of advertising networks
AdBlock - Blocks ads all over the web.
Adblock Plus for Google Chrome™ - Blocks ads using the Firefox AdBlock Plus filter engine. Kiss ads goodbye and browse in peace!
Block Mixed Content - This extension blocks loading of insecure active content in secure (HTTPS) pages.
Chrome BCExplorer BETA - BrightCloud category and reputation info as you browse!
Chromeblock - Stop secret tracking of your web browsing
Disconnect - Stop major third parties and search engines from tracking the webpages you go to and searches you do.
Ghostery - Protect your privacy. See who's tracking your web browsing with Ghostery.
KB SSL Enforcer - Automatic security, browse encrypted.
Keep My Opt-Outs - Permanently opts your browser out of online ad personalization via cookies.
NOREF - Suppress Referrer (referer) for Hyperlinks
NotScripts - A clever extension that provides a high degree of 'NoScript' like control of javascript, iframes, and plugins on Google Chrome.
SafeBrowser - Sends the url of the currently selected tab to Google Safe Browsing to retrieve some malware results of that domain
SaferChrome - SaferChrome makes browsing safer by identifying and preventing security and privacy breaches.
Signature Check - Allows users to check a certificate thumbprint against the SignatureCheck.org thumbprint to detect man-in-the-middle attacks that use valid signing certificates.
SiteAdvisor for Chrome - SiteAdvisor will give safety ratings for websites, this extension will warn you before you open threat sites.
TrafficLight (BETA) - Adds a strong and non-intrusive layer of security to your browsing experience
Unencrypted Password Warning - Helps to prevent you from sending unencrypted passwords or credit card numbers.
Vanilla Cookie Manager - A Cookie Whitelist Manager that helps protect your privacy. Automatically removes unwanted cookies.
WOT - The WOT add-on is a safe surfing tool for your browser.
Sandbox & AppArmor
Sandfox - run Firefox / Skype & other apps in a sandbox
AppArmor - Install AppArmor
Anonymity online
I2P Anonymous Network
JonDonym software
Tor Project Tor is also in the Debian repository. Installation guide is here.
DNS providers
ClearCloud DNS
Comodo Secure DNS
Norton DNS
OpenDNS More info: here.
Anti-virus
avast! Linux Home Edition
AVG Anti-Virus Free Edition for Linux
Avira AntiVir Command Line Scanner ScanCL (Linux)
Chrootkit checks for signs of a rootkit on your linux machine. It's in the repos.
rkhunter - rootkit, backdoor, sniffer and exploit scanner is in the repos.
Clam AntiVirus is in the repos.
F-PROT Antivirus for Linux Workstations
There is no real need for anti-virus software on Linux, although there are some exceptions (e.g. mail forwarding to windows-users, wine-apps, running linux from usb on a windows machine to delete viruses).
Facebook
Facebook Beakon Blocker - addon for Firefox
No FB Tracking - addon for Firefox
http://www.reclaimprivacy.org/facebook - test your Facebook privacy settings
Facebook Connect® opt-out - Facebook filters for Adblock Plus
Firewall
There's a lot of discussions about firewalls for Linux. It seems that you don't need one if you're a home user and not running a server.
Arno-iptables-firewall - A secure stateful firewall for both single and multi-homed machine
gufw - An easy, intuitive way to manage your Linux firewall; its in the repos.
Shorewall - in the repo's.
You can test your internet vulnerability with Shields Up
Host file
http://www.mvps.org/winhelp2002/hosts.htm
Just add the entries to your /etc/hosts file to block these sites.
Take care: the bigger this file is, the slower your system might response. Best option is to restrict your host file interaction to the targets you have identified as malicious.
IP blocker (similar to PeerGuardian)
MoBlock
Passwords
To find out what kind of passwords are weak or strong. Don't use the exact passwords you enter in these tests!
http://howsecureismypassword.net/
http://passwordadvisor.com/
http://www.passwordmeter.com/
http://www.unwrongest.com/projects/password-strength/
To generate secure passwords:
https://www.grc.com/passwords.htm
http://angel.net/~nic/passwd.html
http://strongpasswordgenerator.com/
http://www.passwordchart.com/
File, disk and mail encryption
Bcrypt (file encryption, is in the debian repository)
Ccrypt (file encryption, is in the debian repository)
Cryptsetup (encrypt your swap and home partition)
Enigmail is an addon for Thunderbird/Icedove to use pgp/gpg for sending/receiving emails. It's also in the Debian repository.
Gnupg official site (free pgp) - Gnupg is in the Debian repository
GPA (front-end for Gnupg, includes file decrytion: gpa --files)
Seahorse (front-end for gnupg keys)
Truecrypt - creates encrypted volumes
Secure file deletion (all in debian repository)
BleachBit - deletes unnecessary files and wipe free space
Secure-delete
Wipe
Temporarily and anonymous email addresses
http://10minutemail.com/
http://anonymouse.org/anonemail.html
http://www.dispostable.com/
http://www.sendanonymousemail.net/
Some interesting websites
Electronic Frontier Foundation
Eric Howes' Privacy & Security Page
Privacy International
Last edited by Tunafish (2011-08-06 13:19:31)
