I don't know about anyone else but my Internet privacy keeps coming up. And no I'm not referring to stop putting your personal details on facebook and other social networking sites (not that I'd advise it). If you've ever wondered why facebook is free see below.
Truth About FacebookMoving on we have had sopa pipa and acta as well as many other legislations which have attempted to be put into force of a similar nature. If you don't know about these firstly where have you been and secondly its well detailed in Lawcere's post
hereAt this point your probably wondering what other threats are pending. Well none that could directly put you in jail but lets look at search giant Google as of March the first, Google will be gathering every snippet of info they can find on you. Which isnt just what websites you visit but details down to where you go on those websites. Even here Google watch your session and monitor every page you click. Details on anonymizing your Google activity
hereA further step to keep your activity's private is to "opt-out" of company's (Google included) data gathering cookies. The easiest way to do this on Firefox is with the beef taco extension found
here That should keep over 100 company's from profiling what you do.
So that fairly well covers the "legal" monitoring of your information. But hacking is becoming far more prominent too even for my phone if I wanted to I could take it break into a WIFI network and steal peoples logins for all kinds of things. Which is really quite scary considering its based only on the software available for my phone now quite old phone. (Just on an off note if your home wifi says its secured with WEP or doesn't mention what its secured with make sure you change it to at least WPA preferably "WPA2 AES only")
Unfortunately being on your network isn't the only way a hacker can steal you info so long as they are between you and the place you want to get to they can quite happily steal your data. There are some widely available but not well used technology's out there. The first one you should look at is HTTPS, HTTP is the usual computer protocol for bringing websites you your pc and you also pass information back to them such as passwords using it. HTTPS is the Secure version of HTTP and as such anyone monitoring your connection will just seen an encrypted stream of data. Passwords are the obvious info you would like to hide but it also hides all the url's you visit so instead of your provider seeing that you visited
http://www.feral-heart.com/index.php?option=com_jfusion&Itemid=2&jfile=index.phpthe provider will simply see that you accessed
https://www.feral-heart.com/no matter what page on the site you visit. So why don't browsers just take you to the HTTPS sites by default? Well that's because not every website supports it so if you were to go round typing
https://www.whereever.com you would probably become annoyed at the number of times you visited a page and it chose to give you a page is unreachable error or start warning you about invalid website certificates. Again for Firefox users I have a couple of add-ons to help you. The first is HTTPS Finder found
here HTTPS Finder checks every site you visit to see if HTTPS is available if it is you'll quickly be swapped over to the HTTPS version of the site. Another add-on HTTPS Everywhere lets you take rules from HTTPS Finder and forces the browser to go directly to the HTTPS site in future browsing sessions. HTTPS everywhere is found
here. Chrome has a similar Extention called Prefer HTTPS found
hereSome hackers are a little more advanced than this though so a further security protocol called DNSSEC has been introduced the purpose of DNSSEC is to make sure the website you reach is actually the one you intended to visit. Quite simply its there to stop hackers putting up rogue sites that look like real ones in order to steal your credentials. On Firefox a DNSSEC validator add-on is available from
here It adds a key to your address bar showing grey green or red dependent on whether DNSSEC is supported valid or showing if a sites been hijacked.
An extra note for email users if you pick-up your mail from an app on your phone or a program on your PC check your account settings. Its not unusual for these to be set-up on unencrypted protocols just waiting to be snooped. Make sure your SMTP and your POP or IMAP settings show that they use SSL or TLS if your unsure about this check your email providers website for instructions.
Think that should cover most of your browsing habits and sorry about the lack of Chrome and Internet Explorer support but I just hate both browsers xD. Any additions questions or suggestions let me know.
Raz
