public marks

PUBLIC MARKS from decembre with tag privacy

This year

PRIVACY - How To Install Pi-Hole in Windows via Hyper-V & Debian (network wide ad-blocking) - Ars Technica OpenForum

(via)
So I created a short video tutorial (9 minutes in runtime) covering the installation of Pi-hole in the Windows operating systems via Hyper-V -using Debian Linux. This provides network wide ad-blocking as well enhanced security via DNS redirection, completely for free. You gotta keep in mind this works across your entire network; so phones, tablets, gaming consoles, smart televisions, etc. all benefit from this. It also has a pretty sweet web based GUI that you can use for blacklisting domains, looking up queries, checking on your clients, etc. Can make network management much easier depending on what type of setup you might be using. I tried to be as straight forward as possible & also put study aids on the screen throughout the process so that you don't have to try to see the tiny text I'm typing in as it's happening. This is not a process you should fear & is extremely easy to do, it delights me to be able to show off the ease of install inside nine minutes.

PRIVACY - LINUX - Pi Hole on my Windows laptop ??? - reddit

(via)
Can I run Pi Hole on my Windows laptop, or do I need a separate computer? . I have a Windows 10 laptop. Is there a way (using virtualisation or whatever) to run Pi Hole on that laptop, or do I need a separate computer to run it? ANSWER: Just make a Virtual Machine on your Windows 10 laptop. Load the Hyper-V role or install Virtual Box, etc...Setup new Linux VM. Log in as root. Run install command: curl -sSL https://install.pi-hole.net | bash

PRIVACY - LINUX - pi-hole/pi-hole: A black hole for Internet advertisements

The Pi-hole is a DNS sinkhole that protects your devices from unwanted content, without installing any client-side software. Easy-to-install: our versatile installer walks you through the process, and takes less than ten minutes Resolute: content is blocked in non-browser locations, such as ad-laden mobile apps and smart TVs Responsive: seamlessly speeds up the feel of everyday browsing by caching DNS queries Lightweight: runs smoothly with minimal hardware and software requirements Robust: a command line interface that is quality assured for interoperability Insightful: a beautiful responsive Web Interface dashboard to view and control your Pi-hole Versatile: can optionally function as a DHCP server, ensuring all your devices are protected automatically Scalable: capable of handling hundreds of millions of queries when installed on server-grade hardware Modern: blocks ads over both IPv4 and IPv6 Free: open source software which helps ensure you are the sole person in control of your privacy

FIR - SECURITY + PRIVACY - Firefox Configuration Guide for Privacy Freaks and Performance Buffs | 12Bytes.org

(via)
There is a huge selection of Firefox add-ons for tweaking privacy and security, some of the most popular of which are Adblock Plus and it’s many derivatives, NoScript, Flashblock, Ghostery, Web of Trust, BetterPrivacy, Lightbeam, Disconnect, Self-Destructing Cookies, Cookies Manager+, Request Policy, Policeman, Bluhell Firewall, RefControl, Smart Referer, HTTPS Everywhere and many, many others. With some possible exceptions, we won’t be using any of these, yet will retain much of the most important functionality offered by most of them with just a few add-ons, along with a plethora of changes to our Firefox configuration.

HACK - (Well documented) Top 10 Free Sites to Receive SMS Online Without Real Phone Number - dr.fone

by 1 other (via)
Tested with success for 2Factors : https://receive-sms.com/ Imagine having to put your email addresses on websites every time you want to sign up for a service offered on the website or participate in a forum discussion. This has left a lot of people frustrated in accessing web services because not everyone is comfortable or wants to expose his or her email address to the public. Although in recent times, some websites now offer temporary disposable email addresses that can be generated automatically for use without hitches; these email addresses are vulnerable as there is less password protection feature to improve security. For this reason, the use of phone verification became an alternative to access some web services. The phone verification works in a way that a phone number is provided to a website to receive code generated randomly via SMS in which the code is put back on the website in order to ascertain that the user is no spam bot but real. In order to guide your privacy, you can receive sms online on your computer rather than using your real phone number. The following sites are the top 10 free sites where you can receive SMS online without your real phone number.

HACK - OTP (One Time Password) - Receive SMS Online

(via)
Found by: https://drfone.wondershare.com/message/receive-message-online.html This website can be useful if you want to protect your privacy by keeping your real phone number to yourself. How To Use?: Here you will find some numbers, just use one with your online registrations, and the inbound messages will show up on this site within seconds. I use it for GitHub with success!

DuckDuckGo - PRIVACY - Réponse à Franck Ridel concernant DuckDuckGo // /home/lord (2018)

(via)
Lecture intéressante mais qui fait la même omission que l’article initial. Qwant est hébergé chez Equinix en banlieue nord de paris Equinix est une entreprise californienne D’après la loi US, Le patriot act s’applique à toutes les entreprises étatsuniennes. Conclusion Qwant est soumis à exactement le même problème que duckduckgo au niveau de la capture de données par les agences gouvernementales US. La subtile différence est que les USA n’ont pas de loi obligeant à la collecte et rétention des données de connexions, tandis que la France en a. Du coup si duckduckgo fait ce qu’ils disent et ne collecte pas les données sur leurs usagers alors il n’y a tout simplement rien à venir prendre. C’est le modèle utilisé par certains fournisseurs de VPN basés aux USA.

TOR - Un guide pour apprendre à créer votre relai Tor – Korben

15 février 2018. Si cela vous intéresse, je tiens à vous informer que le Projet Tor a mis en ligne sur son site, une nouvelle version à jour de son guide expliquant comment créer son relai Tor. Ce guide est divisé en 3 parties. La première vous expliquera exactement ce qu'est un relai Tor et pourquoi cela est utile. La seconde partie est plus technique puisqu'elle vous permettra d'installer et configurer votre relai Tor sur votre distribution Linux ou BSD préférée. Enfin, la dernière partie de ce guide est consacrée aux aspects légaux et sociétaux qui entourent les relais Tor.

2017

FIR 57 - CSP - Mozilla a silencieusement déployé la fonctionnalité First Party Isolation empruntée à Tor, pour endiguer le profilage des régies publicitaires

by 1 other (via)
Le 21 novembre 2017, par Stéphane le calme, Chroniqueur Actualités Firefox a embarqué silencieusement une autre fonctionnalité empruntée au navigateur Tor dans sa version 55 qui a été déployée en août dernier : First Party Isolation (FPI). FPI fonctionne en séparant les cookies par domaine. Ceci est important, car la plupart des annonceurs en ligne déposent un cookie sur l'ordinateur de l'utilisateur pour chaque site visité par l'utilisateur puis ils chargent une annonce. Lorsque FPI est activé, l'outil de suivi des annonces ne peut pas voir tous les cookies qu'il a déposés sur le PC de cet utilisateur, mais seulement le cookie créé pour le domaine que l'utilisateur est en train de consulter. Cela forcera l'outil de suivi des annonces à créer un nouveau profil d'utilisateur pour chaque site visité par l'utilisateur et l'annonceur ne pourra pas agréger ces cookies et l'historique de navigation de l'internaute en un seul gros profil. Cette fonctionnalité était déjà déployée dans le navigateur Tor et avait le nom de Cross-Origin Identifier Unlinkability. Sur la page du projet Tor, il est expliqué que « L'exigence de conception du Cross-Origin Identifier Unlinkability est satisfaite par l'isolement de première instance de toutes les sources d'identificateur de navigateur. L'isolement de première instance signifie que toutes les sources d'identificateur et de l'état du navigateur sont limités (isolés) en utilisant le domaine de la barre d'URL. Cette portée est réalisée en combinaison avec toute portée tierce supplémentaire. Lorsque l'isolation de première instance est utilisée avec un stockage d'identificateur explicite qui a déjà une portée tierce contrainte (tels que les cookies et le stockage DOM), cette approche est appelée “double-keying”. « L'avantage de cette approche ne vient pas seulement sous la forme d'une liaison réduite, mais aussi en termes d'interface utilisateur simplifiée. Si tous les états et toutes les autorisations du navigateur sont associés à l'origine de la barre d'URL, les six ou sept différentes interfaces utilisateur de confidentialité qui régissent ces identifiants et autorisations peuvent devenir une seule interface utilisateur. Par exemple, une fenêtre qui répertorie l'origine de la barre d'URL pour quel état du navigateur existe, éventuellement avec une option de menu contextuel permettant d'accéder à des types d'état ou d'autorisations spécifiques. »

FIR - ABOUT:CONFIG - Overview of Firefox's about:config security and privacy preferences | gHacks Technology News

- dom.allow_scripts_to_close_windows Defines whether scripts can close windows in the browser. True: Scripts may close any window. False: Scripts may only close windows opened by scripts. (default) - dom.disable_image_src_set Determines whether JavaScript is allowed to manipulate images displayed in the browser. True: Scripts are allowed to change images. False: Scripts are not allowed (default) _ dom.event.clipboardevents.enabled Determines whether websites are allowed to access clipboard contents (check out: Block websites from reading or modifying Clipboard contents in Firefox for additional information). True: Websites may read or modify clipboard events. (default) False: Blocks access. - dom.event.contextmenu.enabled Determines whether websites are allowed to block access to the right-click context menu. True: Websites may manipulate the context menu. (default) False: Web pages won't be allowed to manipulate or block the context menu. - dom.popup_allowed_events Defines the JavaScript events that are allowed to create popup windows. change click dblclick mouseup reset submit touchend - Determines if location aware browsing is enabled. True: Location Aware browsing is enabled. (default) False: The feature is disabled which means that you won't get prompts on websites using it. - geo.wifi.uri The data provider used to power Firefox's geolocation feature. (Check out how to switch to a Mozilla operated service) https://www.googleapis.com/geolocation/v1/geolocate?key=%GOOGLE_API_KEY% - network.http.referer.XOriginPolicy Defines when to set the referrer (the page a visit originated from). 0: Never send it. 1: only send if the base domain matches. 2: only send if hosts match. - plugin.state.flash The default state of the Flash plugin. See How to make sure Firefox plugins never activate again for more information. 0: turns off the Flash plugin in Firefox. 1: sets the Flash plugin to ask to activate. 2: enables the Flash plugin.

FIR - ADDON USERSTYELS - Forum reply about Stylus Permissions Required and Privacy - Stylus :: add0n.com

(via)
Forum reply about Stylus Permissions Required and Privacy (by NarcolepticInsomniac): Responding to this almost seems silly, since OP is clearly delusional, but I might as well clarify so that no one else is confused by this FUD. Stylus needs to monitor, and have the ability to modify all pages in order to detect which URLs have applicable styles, and then inject those stylesheets. If you had any clue what you were talking about, you'd recognize that pretty broad permissions are required for such functionality. The real issue is that these same permissions which are required for basic functionality can also be abused by adding telemetry or other garbage. The majority of extensions include some low level basic analytics for development purposes, and many go much further than that, collecting your complete browsing history with personally identifying info to create profiles. These profiles can then be bought and sold for targeted advertising purposes. That's what happened to Stylish when it was sold to an analytics company, and one of the main reasons we created Stylus was to rectify this abuse of permissions granted by users who trusted the previous dev. Stylus collects nothing. Period. Not even low level analytics for install counts or to help in development regarding which features warrant more attention. This is a pain in the ass for development, but also very important for instilling trust within our user-base. The code is completely open source, so anyone can review it. With many users actively involved in maintaining and improving it, rest assured that nothing sketchy can make its way into the actual code. I think it might be worth adding an explanation for each permission in README. Not that it will convince the most suspicious users by itself, but then again they can simply use WireShark or Fiddler to see what Stylus network communications are (answer: only style update checks when the corresponding option is enabled).

FIR - ConfigFox - Utility to manage Firefox advanced, hidden setting

(via)
ConfigFox is an utility to manage Firefox advanced, hidden settings and tweaks, mostly concerning security and privacy. With ConfigFox you can manage multiple profiles independently. It is compatible with all Firefox builds: Waterfox, Palemoon, Tor, Portable, etc... If you don't have Firefox installed in your computer you will be prompted to select your custom Firefox path (executable). Features - Quickly create and customize Firefox profiles. - Easily enable/disable settings with one click. - Quickly search Config entries. - Get updates for Config collection. - Backup, Defrag and Vacuum profiles for a faster performance. - View profile information. - Search online for Config strings information.

2016

WIN10 - TOOL - SECURITYand PRIVACY - Blackbird - Un outil pour récupérer des performances, de la vie privée et de la sécurité sous Windows - Korben

Blackbird va désactiver pour vous des choses comme OneDrive, Cortana, Bing, le fameux Wifi Sense, et bien sûr tout ce qui envoie des données à Microsoft. Il va aussi désactiver le partage des mises à jour en P2P, les services Xbox Live, les pubs dans le menu Démarrer, les popups de mise à jour reloues, boucher quelques failles qui permettent la fuite de données via Edge et Defender et même supprimer les identifiants uniques qui permettent de différencier votre installation Windows d'un autre. Au-delà de la vie privée et de la sécurité, il va aussi appliquer quelques tweaks pour que votre connexion réseau soit encore plus rapide.

2015

Windows 7 et 8 – Le tracking vous concerne aussi. «

by 2 others
Il suffit de les désinstaller. __Pour cela, lancez une invite de commande en Administrateur, et entrez les commandes suivantes : wusa /uninstall /kb:3068708 /quiet /norestart wusa /uninstall /kb:3022345 /quiet /norestart wusa /uninstall /kb:3075249 /quiet /norestart wusa /uninstall /kb:3080149 /quiet /norestart ___ Ensuite, pour définitivement les bloquer, rendez-vous dans la liste détaillée des mises à jour Windows Update et faites un clic droit / masquer la mise à jour

FIR - PRIVACY - Tracking Protection on Firefox | Firefox Help

by 1 other (via)
About:config ___ privacy.trackingprotection.enabled to toggle its value to true. ___Tracking Protection allows you to take control of your privacy online. While Firefox has a Do Not Track feature that tells websites not to monitor your behavior, companies are not required to honor it. Firefox's Tracking Protection feature puts the control back in your hands by actively blocking domains and sites that are known to track users.

ANTi PUBS - µBlock, une alternative sérieuse à AdBlock ? | Kaio

extension uBlock dont le but est de bloquer les publicités sur le web un peu à la manière d’AdBlock mais j’entends dire lis que uBlock, c’est mieux qu’AdBlock parce que ça consomme moins de mémoire.

PRIVACY - EXTENSION NoScripts - What's ABE?

Q: I'm worried by the fact some sites require the akamai.net domain to be whitelisted. I'd prefer not to allow it everywhere, but only on some parent sites I trust. How can I do it? __ A: You can use ABE to this effect, by adding the following rule to your NoScript Options|Advanced|ABE USER ruleset: Site .akamai.net __ Accept INCLUSION from SELF++ ___ Accept INCLUSION from .trusted-site1.com .trusted-site2.com trusted-site3.com ____ Deny ___ Notice the leading dot "." before domains, which is syntactic sugar for site.com *.site.com, i.e. a domain and its subdomains. ____ It should also be noted that, independently from this rule, external scripts are never loaded from pages which don't belong to a whitelisted site, hence no malicious website you didn't explicitly whitelisted could execute scripts from akamai.net anyway. ___

FIR CONFIG - ANTI PUB - Le kit de base du surf tranquille 2 | Sans Pseudo Fix

06 - 02 - 201Presque trois ans après le premier kit de base du surf tranquille, il est temps de voir les nouveautés et les changements. Parce que oui, l’informatique est un domaine en constant mouvement, et qu’il faut s’adapter.

FIR - PRIVACY - How to block automatic connections that Firefox makes - gHacks Tech News

Mozilla has created a support page that lists all the connections that Firefox make without explicit permission of the user. As you can see, quite a few are listed there. While some are enabled after user activity, for instance adding live bookmarks to the browser, others are enabled by default. This guide looks at the latter kind, explains what their use is, and how you can disable them if you do not require them.

PRIVACY TOOL - BrowserLeaks.com — Web Browser Security Checklist for Identity Theft Protection

It's all about Web Browser Fingerprinting. Here you will find the gallery of web browser security testing tools, that tell you what exactly personal identity data may be leaked without any permissions when you surf the Internet.

WIN HOST - Dev version of popular blocker extension µBlock for Firefox released - gHacks Tech News

Maybe I'm overlooking something but I don't understand why people are using ad-blockers that run in their browsers ... In most operating systems there already exists an effective and resource-efficient way to filter network traffic by diverting specific IPs or URLs to the localhost. Using the hosts file, which exists in the BSDs, in Linux, in Windows etc., to filter out undesirable or dangerous stuff is in my opinion a much more universal and elegant method than browser based ad-blockers. I've been using this method since ages, first in Windows and now since almost 15 years in Linux, and I have never experienced any slow-downs or hang-ups. The hosts file I'm using is the 'classic' from ... http://winhelp2002.mvps.org/hosts.htm ... which currently contains over 15000 entries, is well maintained and updated each 4-6 weeks. I've written a short script which on boot-up looks if a new hosts file is available, and if it is, downloads and copies the file into the /etc directory. Cool! :-)

2014

2013

FIR - ABOUT CONFIG - « Nouvel onglet » – afficher, masquer et personnaliser vos sites préférés | Assistance de Firefox

(via)
Supprimer l'affichage des sites préférés. Si vous ne souhaitez pas voir vos sites favoris quand vous ouvrez un nouvel onglet vous pouvez facilement les masquer : Si vous vous souciez de la protection de votre vie privée, vous pouvez désactiver complètement cette fonctionnalité : Dans la barre d'adresse, saisissez about:config, puis appuyez sur Entrée. La page d'avertissement « Attention, danger ! » doit apparaître. Cliquez sur Je ferai attention, promis ! pour accéder à la page « about:config ». Saisissez browser.newtab.url dans la barre de recherche. Double-cliquez sur la préférence browser.newtab.url et changez l'URL de about:newtab à about:blank. De manière alternative, vous pouvez la définir à about:home pour avoir la page d'accueil par défaut de Firefox ou à google.fr, par exemple, pour avoir votre page d'accueil préférée . Cliquez sur OK et fermez l'onglet « about:config ».