Your privacy - VPN & Firefox (+ other Gecko browsers)* rev. 0.3.11

[chan] Crypto-Anarchist Federation
Nov 12 19:39

+----------------------------------------------------------------------------------+ | VPN, privacy & Firefox (+ other Gecko browsers)* rev. 0.3.11 | +----------------------------------------------------------------------------------+ ========== VPN section ========== + You can try free OpenVPN configs or Softether: + OpenVPN: - OpenVPN - you can edit configs (.ovpn) with notepad to change encryption (line 88 - standard is not so good: AES-128-CBC - try AES-256-CBC instead) - OpenVPN - you can edit configs (.ovpn) with notepad to add option "block-outside-dns" (for example in line 104) to avoid DNS leaks - OpenVPN - if you add option "block-outside-dns" you don't need (Simple) DNSCrypt (my testing suggest that when you using OpenVPN without "block-outside-dns" option together with Simple DNSCrypt you are affected by DNS leaks) (Simple DNSCrypt not working for me, anyway this needs further testing...) - OpenVPN - you can edit configs (.ovpn) with notepad to add option "--remote-cert-tls server" (for example in line 21) to avoid "Man-in-the-Middle" attack https://openvpn.net/index.php/open-source/documentation/howto.html#secnotes [OpenVPN 2.1 and above] - https://www.vpnbook.com/ (few free OpenVPN configs) - http://www.vpngate.net/en/ (a lot of free OpenVPN configs) + OpenVPN manuals: - https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage - https://community.openvpn.net/openvpn/wiki/Openvpn23ManPage - https://openvpn.net/index.php/open-source/documentation/howto.html - https://openvpn.net/index.php/open-source/documentation/security-overview.html + Softether: - http://www.vpngate.net/en/ - you need good server with strong encryption (standard is really bad: RC4 MD5) https://en.wikipedia.org/wiki/RC4#Security https://en.wikipedia.org/wiki/MD5#Security - I recommend to use DNSCrypt to avoid DNS leaks (check your DNS leaks - links are below) - http://www.softether.org/1-features/3._Security_and_Reliability + Softether disadvantages: - logging policy: 2 weeks [default] - when you will be disconnected then your IP will be exposed (there is no 'kill switch' feature) - DNS leaks... ========== Browser section ========== + Secure your privacy in Firefox: - by using addons like in IceCat [https://directory.fsf.org/wiki/IceCat] I mean: Adblock Plus (ABP), Disable WebRTC, Fat-Free Fox, No Resource URI Leak, NoScript, Privacy Badger, uBlock Origin (uBO), uMatrix etc. Additionally you can add: CanvasBlocker, Disconnect, FoxyProxy, Https Everywhere, Privacy Settings, Random Agent Spoofer. Take a look @ these sites: - https://web.archive.org/web/20170404173124/http://b.agilob.net/better-security-privacy-and-anonymity-in-firefox - http://configfox.sourceforge.net/ - https://www.bestvpn.com/make-firefox-secure-using-aboutconfig/ - https://www.bestvpn.com/privacy-news/control-firefox-privacy-settings-with-an-add-on/ - https://vikingvpn.com/cybersecurity-wiki/browser-security/guide-hardening-mozilla-firefox-for-privacy-and-security - https://www.howtogeek.com/102032/how-to-optimize-mozilla-firefox-for-maximum-privacy/ - http://www.ghacks.net/2015/07/01/control-privacy-settings-in-firefox-easily/ + If you would like to use Google Chrome anyway you can replace it with Chromium or Iron: - https://en.wikipedia.org/wiki/Chromium_(web_browser) - https://en.wikipedia.org/wiki/SRWare_Iron + Use Tor or Tor Browser (based on Firefox): - "We will never be able to de-anonymize all Tor users all the time. • With manual analysis we can de-anonymize a very small fraction of Tor users" - https://edwardsnowden.com/docs/doc/tor-stinks-presentation.pdf‎ - https://commons.wikimedia.org/wiki/File:Tor_Stinks.pdf - https://en.wikipedia.org/wiki/Tor_(anonymity_network)#Tor_Browser - https://www.torproject.org/docs/tor-manual.html.en - https://www.torproject.org/docs/faq.html.en - https://blog.torproject.org/improving-tors-anonymity-changing-guard-parameters + SSH/SOCKS/proxy: - Privoxy - https://en.wikipedia.org/wiki/Privoxy - https://lifehacker.com/5763170/how-to-secure-and-encrypt-your-web-browsing-on-public-networks-with-hamachi-and-privoxy - https://lifehacker.com/237227/geek-to-live--encrypt-your-web-browsing-session-with-an-ssh-socks-proxy - https://outflux.net/blog/archives/2006/12/07/paranoid-browsing-with-squid/ - https://embraceubuntu.com/2006/12/08/ssh-tunnel-socks-proxy-forwarding-secure-browsing/ - https://pl.terminal28.com/instalacja-i-konfiguracja-squid3-tor-privoxy-anonimowosc-w-sieci [translate with your favourite translator] - https://www.reaper-x.com/2011/10/17/how-to-install-squid-proxy-on-windows/ - https://www.unixmen.com/install-configure-squid-proxy-ubuntu-debian/ - https://www.cyberciti.biz/faq/debian-ubuntu-linux-install-onionrouter-software/ - Pirate Tor Browser - http://www.softpedia.com/get/Internet/Browsers/PirateBrowser.shtml or http://www.majorgeeks.com/files/details/piratebrowser.html + Change your UserAgent frequently (get UA addon for your browser). Example of UA sites: - Random Agent Spoofer addon for firefox: https://addons.mozilla.org/en-US/firefox/addon/random-agent-spoofer/ List of UA sites: - http://www.browser-info.net/useragents - http://mybrowseraddon.com/custom-useragent-string.html - https://developers.whatismybrowser.com/useragents/explore/ - https://udger.com/resources/ua-list - https://techblog.willshouse.com/2012/01/03/most-common-user-agents/ - http://www.useragentstring.com/pages/useragentstring.php + Fingerprint (fingerprinting algorithms): - https://en.wikipedia.org/wiki/Fingerprint_(computing) - https://en.wikipedia.org/wiki/Canvas_fingerprinting - https://en.wikipedia.org/wiki/Device_fingerprint - https://browserleaks.com/canvas + Check your browser privacy: - https://browserleaks.com/ - http://browserspy.dk/ - https://panopticlick.eff.org/ + Other sites worth mentioning: - riseup.net/en/better-web-browsing - privacytools.io - https://en.wikipedia.org/wiki/Category:Internet_privacy - https://en.wikipedia.org/wiki/Category:Crypto-anarchism ========== OS section ========== + Check Tails Linux: - https://en.wikipedia.org/wiki/Tails_(operating_system) - https://www.wired.com/2014/04/tails/ + Check Whonix Linux: - https://en.wikipedia.org/wiki/Whonix - https://www.whonix.org/ + Secure you DNS with DNSCrypt: - For Linux follow this: http://www.webupd8.org/2014/08/encrypt-dns-traffic-in-ubuntu-with.html - For Windows - you need: "dnscrypt-winclient" or "Simple DNSCrypt". URLs: - https://simplednscrypt.org/ - https://github.com/jedisct1/dnscrypt-proxy/wiki - https://github.com/Noxwizard/dnscrypt-winclient (Simple DNSCrypt not working for me (I'm still using "block-outside-dns" option in OpenVPN config file). (Anyway this needs further testing...) + Check your DNS leaks: - https://ipleak.net/ - https://www.dnsleaktest.com/ - https://whoer.net/ __________________________________________________________ * Other Gecko browsers - this means it may also work with: Airfox, Beonex Communicator, Camino, Comodo IceDragon, Conkeror, Classilla, Firefox for Android, Flock, Galeon, Ghostzilla, HP Secure Web Browser, IceCat (GNU IceWeasel), K-Meleon, Kazehakase, Kirix Strata, Lotus Symphony, Lunascape, MicroB, Minimo, Netscape 6, Nightingale, Oxygen, Pale Moon, Portable FireFox, SeaMonkey, Swiftfox, Swiftweasel, Sylera (for mobile), TenFourFox, Timberwolf (AmigaOS 4), Tor Browser, Waterfox, xB Browser https://en.wikipedia.org/wiki/Gecko_(software) Any suggestions are welcomed. Source: https://beamstat.com/chan/privacy https://beamstat.com/chan/Crypto-Anarchist%20Federation (Bitmessage channel)

[chan] privacy
BM-2cUJvFYHhXpBHyd96KHfjxsgTYi44BajdE

Subject Last Count
Australia law - 5 years in the cage for forgetting a password Nov 17 23:39 10
Tor replacement Nov 17 22:29 1
VPN, privacy & Firefox (+ other Gecko browsers)* rev. 0.3.13 Nov 13 10:49 1
VPN, privacy & Firefox (+ other Gecko browsers)* rev. 0.3.12 Nov 13 10:15 1
Your privacy - VPN & Firefox (+ other Gecko browsers)* rev. 0.3.11 Nov 12 19:39 1
WARNING! OVER 300 TOR NODES COMPROMISED AFTER JOINT NSA-DGSE Nov 11 15:58 4
WARNING! OVER 300 TOR NODES COMPROMISED AFTER JOINT NSA-DGSE ACTION! Nov 10 13:15 11
FUCK YOU Blackberry Nov 10 10:50 2
Test Message Nov 8 21:20 6
OpenBazaar vs darknet markets Nov 5 08:59 8
Lets talk about Rasperry Pi as a tool for added privacy Nov 2 11:15 12
HOW TO HIDE FOLDERS ON A SERVER Nov 2 05:12 21
HASH QUESTION Nov 2 04:35 2
GitHub Supports Islamic Clitoris Removal Nov 2 04:35 7
can someone encrypt this file? Oct 30 19:40 11
New user Oct 28 21:35 3
INBOX IS FLOODED WITH FLAT EARTH SPAM Oct 26 08:14 43
Flat earth We did'nt land on the Moon Former NASA Scientist admits Game over for NASA Oct 24 18:11 4
Proof that NASA faked the Mars rover landing Oct 23 21:44 54
Crypto keygen circumnavigating potential backdoors Oct 23 21:39 3
British Subversion of the United States: The militias and Pentecostalism Oct 23 19:53 19
Uranus Photo Oct 23 19:45 9
Good books on darknet? Oct 23 18:14 4
Interview w/ Former NASA Employee Turned Flat Earther Oct 23 14:12 4
Simulated Mars Environment on Devon Island Oct 23 14:05 2
Flat earth We didn't land on the Moon Former NASA Scientist admits Game over for NASA Oct 23 13:58 3
Flat Earth - Bible Truth in an Unstable World Oct 23 12:28 1
NASA comes clean declaring 'We Lied About Everything'. A MUST SEE'er Oct 23 12:28 1
This is EXACTLY how NASA fakes everything Oct 23 12:28 1
Do You Believe In Magic? Apollo - Soyuz Oct 23 12:28 2
Satellites Are Fake - Just Another NASA Hoax Oct 23 12:27 1
Tesla on the Flat Earth Oct 23 12:27 1
This man is Johnny Cash reincarnated.. and he's a flat earther this time. Oct 23 12:27 2
FLAT EARTH!! Outside The Dome!! Waters Above!! The Firmament Above!! Oct 23 12:27 1
The earth is a flat plane, not a globe. Oct 23 12:27 1
Flat Earth Man sings a song to you - Photoshop Cartoon Earth Photos Oct 23 12:27 2
A Flat Earth Song: "Puppet Show" YOU HAVE TO HEAR THIS!! Oct 23 12:27 2
Former NASA Scientist Confirms the Flat Earth What he said will Amaze You Oct 23 12:27 2
Ships and the Horizon - Proof of a Flat Earth. Oct 23 12:27 1
Globe Earthers Spend More Effort Opposing the Flat Earth Than They Spend Opposing Child Molestors. Oct 23 12:27 1
Google Project Loon Proves Flat Earth Oct 23 12:27 2
NASA Insider Exposes the Flat Earth! Oct 23 12:27 3
OpenBSD on ARM Oct 23 06:50 1
His Holiness the Man of Peace Oct 22 23:16 1
Jesuit Extreme Oath of Induction Oct 22 22:21 1
What's grosser than gross? Oct 22 22:15 1
Challenger Shuttle Oct 22 20:25 4
Mars Photo Oct 22 20:03 1
python code golf Oct 22 13:19 1
NFC QUESTIOn Oct 22 09:38 1
The Real Ed Snowden Is a Patsy, a Fraud and a Kremlin-Controlled Pawn Oct 21 22:04 1
Scientist Shows Proof That Rockets Do Not Work In The Vacuum of Space Oct 21 21:48 1
Active measures (Russian: активные мероприятия) is a Soviet term for the actions of political warfare conducted by the Soviet security services (Cheka, OGPU, NKVD, KGB) to influence Oct 21 21:38 1
Neil deGrasse Tyson Exposed - Hollywood Actor Oct 21 21:32 1
Richard Spencer and His Kook-Right Ilk Are Agents of Russian Influence Oct 21 21:29 1
Neil Disgrace Tyson is Falling Faster Than The Globe Oct 21 19:57 1
Snowden's clearly an anarchist and traitor. Those who endorse him are just as dangerous. Oct 21 00:52 1