CrunchBang Linux Forums » Tips, Tricks & Scripts » Tips for privacy and security
Under anonymity online, you should also add http://i2p2.de ... the i2p Network.
Ich könnte, aber...
(I've been listening to Haus der Lüge last week)
I did 
The hard thing about internet security is not setting up all that stuff on your home machine, the 20 servers in your basement and on the netbooks of the 100 followers that pray to you because you know how to h4x0r a kernel. The worst security bug on earth is that little 18 years old asian girl 200km away that wants to webcam chat with you. Ever convinced such a specimen of switching to a secure but less colorfull platform? Ever lured such a creature away from MSN?
No iptables will ever protect you from a bug in a chromosome...
No iptables will ever protect you from a bug in a chromosome...
hahahaha well said ... I had a web cam about 9 years ago ... didn't like 90% of what I saw and have not had one since.
Webcams back then were really not that good, now you could actually recognise yourself 
Ignoring internet security because it's Linux:
A big part of me still wants to boast and say: "In the 2 years I have used Linux, I have never once had a virus or worm or been hacked".
Although that claim is true, it doesn't mean I should ignore security.
I have witnessed the effects of a rootkit on a Linux machine.
You cannot ignore internet security just because they're using Linux.
Security is crucial, regardless of the OS.
I've been using most of these for a while, Ixquick I actually learned about through Tor. I2P I've heard about but never installed, should probably get to that. Is it in the repositories or am I dealing with a tarball?
It's even better than a tarball...its a java program!
I found a great way to test the security of your computer/network:
1. Join an IRC chat room with 250+ Linux gurus.
2. Call them all fags and proclaim that Bill Gates kicks Linus Torvald's ass.
3. Give them your IP address (Optional, since it's amazingly easy to get it on IRC).If your machine is still running the next day, you're good.
found on http://digg.com/linux_unix/How_To_Test_ … x_Firewall
Brilliant! Made me lol, thanks Tunafish. Obviously connect as root too, just to show them you mean business
There are some great links here which I'm going to have fun learning about. Normally I just use Tor with the Tor-Button add on. Having recently switched from Xubuntu I was relieved to find that the installation works the same in Statler. I expect it might be covered, but I'm happy to post the steps I used if anyone is interested.
Last edited by netslice (2010-08-28 13:35:37)
If you post the installation guide for Tor in this thread, i'll make a link to it from the first post.
Thanks,
Tuna
Edit: See next post.... and i'll make the link from the first post anyway
Last edited by Tunafish (2010-08-29 13:54:01)
You should make a separate thread for the Tor guide.
If you post the installation guide for Tor in this thread, i'll make a link to it from the first post.
Thanks,
TunaEdit: See next post.... and i'll make the link from the first post anyway
Thanks Tunafish, that would great
You should make a separate thread for the Tor guide.
Hi. OK I've created as a new thread, as you advised. I put it in Tips and Tricks which I hope is OK: http://crunchbanglinux.org/forums/topic … -with-tor/
It's the first guide type thing I've written so I hope it's up to the mighty #! standard 
It's even better than a tarball...its a java program!
Oh god, that means it's gonna be heavy like Frostwire >.< It seems complicated too, someone would make a walk-thru for it. Tor is simple enough.
Greater privacy! yes. A faster browser? Possibly.
Remove default geolocation in Iceweasel/Firefox
Type about:config in the URL bar and hit Enter. If you see the warning, you can confirm that you want to access that page.
Pref name = geo.enabled - double-click that preference to toggle it to false.
Then restart Firefox.
Source:http://support.mozilla.com/en-US/questions/695341
Geolocation with noise:https://nodpi.org/forum/index.php?topic=1910.0
Great news for Duckduckgo users:
http://www.gabrielweinberg.com/blog/201 … where.html
http://www.gabrielweinberg.com/blog/201 … clave.html
Tuna
In the repos: rkhunter
rootkit, backdoor, sniffer and exploit scanner
Rootkit Hunter scans systems for known and unknown rootkits,
backdoors, sniffers and exploits.
It checks for:
- MD5 hash changes;
- files commonly created by rootkits;
- executables with anomalous file permissions;
- suspicious strings in kernel modules;
- hidden files in system directories;
and can optionally scan within files.
Using rkhunter alone does not guarantee that a system is not
compromised. Running additional tests, such as chkrootkit, is
recommended.
-------
It just gave me a couple of warnings ...
good topic, totally bookmarked.
Here's my little noob script that backs up my essentials. It's pretty simple stuff, all it does is ask for your passphrase then it tars your documents, bin and mail folders and encrypts them and in my case uploads them to my offsite storage and ye olde external. It's not perfect but you can hack it to your own needs....
#!/bin/bash
echo "Password to encrypt?"
read gpg_passphrase
##START
tar czkf mail.tar.gz ~/Mail/*
tar czkf bin.tar.gz ~/bin/*
tar czkf documents.tar.gz ~/documents/*
for f in *.tar.gz; do
echo $gpg_passphrase | gpg --batch --passphrase-fd 0 --symmetric --armor "$f"
done
rm *.tar.gz
s3cmd -e put *.*asc s3://mybucket/backups/
mv *.*asc /media/BACKUPS/backupsDoes anyone know how http://time.is/ finds my exact hometown? When i lookup my ip on different services, the result is never my city. So.. why is time.is so exact? Does anyone know?
Firewall:
- Turn off unused listening servers on your machine
- Configure your daemons to be restricted to your local network or - even better - your machine, don't expose ports (by having listening servers on them). More important: refuse to use network related software unable to be configured that way. The less packages you need to filter, the less mistakes you make.
- Don't expose SSH to the WWW. Instead you should tunnel everything through - say - VPN.Hostfile:
- Don't just put every ad-server into your host file. The bigger this file is, the slower your system might response (in a worst case scenario). Restrict your host file interaction to the targets you have identified as malicious.Facebook:
- Don't use it. EOLLinux in general:
- Don't trust every maintainer of a small spinn off distro with it's own repos to place malicious code in an update, so you won't... Hey, wait... what?
Lol EOL, could not have said it better as I literally call it the samething verbatim, that's friggin' funny.
Anywho thanks tuna, /bookmarked.
Does anyone know how http://time.is/ finds my exact hometown? When i lookup my ip on different services, the result is never my city. So.. why is time.is so exact? Does anyone know?
Yes, I'm curious too...
Tunafish wrote:Does anyone know how http://time.is/ finds my exact hometown? When i lookup my ip on different services, the result is never my city. So.. why is time.is so exact? Does anyone know?
Yes, I'm curious too...
It was not very accurate for me:
Jamaica has to be at least 4000 miles away and about 5 hours behind! time.is, more like time.is.not!
time.is isn't accurate for me either. It gets my country right but gives no hometown and the time is for the east coast.
@corenominal & anonymous: Thanks for looking. So probably just a coincidence here...
What a relief... i can start unpacking my stuff again.... don't have to move house...
( Well, they had me pinned right down too... 
)
New extension for Chrome: Disconnect
"Stop major third parties and search engines from tracking the webpages you go to and searches you do."
Posts [ 26 to 50 of 135 ]
CrunchBang Linux Forums » Tips, Tricks & Scripts » Tips for privacy and security
Forums powered by PunBB. Hosted by Linode.
Copyright © CrunchBang Linux.
Proudly powered by Debian GNU/Linux.
Debian is a registered trademark of Software in the Public Interest, Inc.
