Free wireless lan privacy trap

Posted on June 17, 2012 by Hidden.me

Wireless inage
With todays communication and the expectation to be reachable during the day, there is a huge privacy risk related to Wireless LAN.

Most cafe’s in a city offer a WLan hotspot with free internet access, which is unencrypted. This means anyone nearby can intercept all the data packages you sent, including all passwords unless they’re encrypted.

This means that any data sent through the WLan from the laptop or smartphone is totally unenecrypted, unless
the communication itself is encrypted, like HTTPS or SSL/TLS for e-mails.

But even that is not always bulletproof.

Facebook for example:
They use HTTPS encryption for the username/password authentication, however right afterwards they will forward the users to normal HTTP once authenticated. An eaves dropper would then immediately have all necessary details required to misuse your account. One has to wonder why facebook even bothers using HTTPS for username/pasword authentication, when in the next step they ask the browser to send all relevant details (cookies) in plaintext.

How to protect against WLAN eavedroppers?

  1. Configure all mail communications to be TLS/SSL encrypted. outgoing and incoming mail
  2. For browsing use an encrypted socks proxy (setup guide).
  3. Use a VPN to encrypt all your incoming and outgoing traffic (best recommended solution)

References:
FBI warns about WLAN sniffing.
‘Free wifi’ trap on airports

Posted in Anonymity, Browsing privacy, Internet Privacy, VPN, Wireless Lan | Tagged | Comments Off

British Government Censors YouTube Protest Video about corrupt Judge

Posted on May 26, 2011 by Hidden.me

The British Government have made a request for a youtube video to be removed. British citizens are upset at the British attempt of censorship as showcased by this comment on YouTube from “anunnaki2006″:

Everybody who can view this video please upload it under different titles to youtube and thus keep it alive for everyone Worldwide. [...]

The video is not watchable from the UK, but remains watchable from the rest of the World. For UK visitors, you can watch the blocked video right here:

 

As you watch the video, you may wonder why the British government asked for this video to be censored. Here is another video that got blocked for UK viewers, upon request by British Government, which also explains why the ‘public’ ‘arrested’ the judge Michael Peake for treason.


The judge was asked 3 times if we has acting under his oath of office, and the judge refused to answer that.

Next we quote Roger Hayes Chairman (British Constitution Group) from the above video.

Charges against the Judge

  1. contempt of court
  2. the chancellor using fraudulent documents to [...] get people comitted to bankrupcy [...]
  3. I [presumably Roger Hayes] was not allowed to cross examine witnesses
  4. They wouldn’t take notes of my evidence

The bottom line is we have Judges breaking the law in our own courts.

British censoring

About this particular incident you may form your own opinion. At the same time is very concerning that the British Government is sending requests to Google asking for the removal of a protest video. Additionally the allegations are severe, almost suggesting the British Government is trying to directly interfere in the justice system.

The separation of the 3 powers is crucial for a country:

Citizens should not tolerate that politicians create ridiculous laws, which basically allow the police to arrest you whenever they want. Censoring should ring all alarm bells, for any citizen anywhere in the world. The development of a police state in which there is only 1 absolute authority, from a citizen point of view, has to be stopped at all costs.

What can we do?

Before I explain what each and everyone of us can do, I want to give an example of the ‘typical’ attitude.
This video got uploaded on youtube showing the a blocked video. The uploader posted this description:

“This is what I have been getting quite a lot of times recently. I believe that in the UK now it seems more and more that we are living in a nanny/police state”

Now please watch the above youtube video and listen to the voice of the lady while she explains this will be common in the future. This implies that she has created the belief for herself, that we have no power to change this. I say that’s not true!

We can

  • Contact your local political parties and voice your opinion
  • Raise awareness for this problem among your friends, especially if you feel your country needs a change in this aspect
  • Vote for political parties that will preserve the balance between the Executive, Legislative and the Judicative

Sarkozy want’s to regulate the Internet

At the G8 Sarkozy suggested to regulate the EU internet. Regardless of whatever he really has in mind, it will definitely involve one of the following:

  • Attempting to take control of the internet
  • Effectively building the infrastructure to do this
  • This infrastructure will leave all doors open for abuse

In terms of abuse, here you have to think of censoring and propaganda. In a police state it can also be used to identify and arrest those opposing the government, like we see by the regimes in Northern Africa. It is crucial for the future that the internet is accessible and uncensored for everyone, because if not censoring and a total police state (or world possibly) is just around the corner waiting for all of us.

Conclusion

Internet censoring and regulation has to raise each and everyones alarm bells. The argument about the copyright issues is valid, but essentially companies will have to adjust their business models to survive in the 21st century, because fighting copyright issues on the internet is a lost battle.

The major Internet players have told the G8 to “ensure worlds access to internet“.

The last sentence from the article says:

Some G8 countries such as the United States are wary of international regulation of such a vibrant sector, and many web-users attacked Sarkozy’s initiative, suspecting a covert bid to censor or control the freewheeling web.

I couldn’t agree more!

Sources

Metro
Wirralglobe
video #1 from youtube
video #2 from youtube
video #1 re-uploaded for UK viewers from youtube
Yahoo Australia
BBC website Comment: I find the BBC article really missed the core of the issue. If anyone finds a better BBC article, let us know. Bu we think there is none.

Posted in Free Speech, News | Tagged , , , , | 3 Comments

EU – cookie law. What’s the use?

Posted on March 13, 2011 by Hidden.me

The “European e-Privacy directive” states that websites in Europe will not be allowed from using cookies unless permission is given by the user.

In my opinion this regulation will not increase privacy for EU citizens.
Maybe they had noble intentions, but it’s behind current technology. Additionally it’s questionable how to uphold such laws inside the cyberspace.

Flash cookies and why banning cookies doesn’t necessarily improve privacy for the normal user

Most ‘normal’ PC users will likely allow flash to store data on behalf of a webserver/website. It can be disabled though, see here.
Also most websites outside of the EU will still try and set cookies. Be it via embedded code or via adverts.

The best privacy you can get is be diligent with your data when it comes to the internet.
A good defence against normal cookies is using the CookieMonster plugin.

Source EU law: BBC

Posted in Anonymity, Browsing privacy, Internet Privacy, News | Comments Off

How to configure a socks proxy using every day tools – part 1

Posted on December 2, 2010 by Hidden.me

Introduction

It is very easy to bypass the firewall at work to allow private browsing.
I will explain how to setup a socks proxy and how to use it, it’s not difficult at all.

Basically this socks proxy will create a tunnel which you can choose to use for certain applications (like a browser).
This way you can funnel your web traffic and bypass certain proxy based monitoring from employers.

In this example you will need Firefox.
Also for this method you will need SSH access to a server and that server in turn needs the unlimited and unmonitored access to the internet, since is that the goal.

First of all you might need some software.

  • Windows Download putty
  • Linux No additional software needed. This method uses on-board tools.
  • Mac Unkown

Configuring putty (Windows)

  1. Configure a server connection or “Session”. In the putty main window put a hostname or ip address and give this “session” or connection a name.
  2. On the left side open the “connections” tab, then open the “SSH” tab and lastly click and highlight the “Tunnels” category.
    Putty proxy setup - image 1
  3. Now enter a port that needs to be forwarded. For this example I picked port 50500, you may choose another port. But we will need it again later.
  4. Leave the “destination” field blank, but you must select dynamic and auto underneath.
  5. Click on “add” to add the port. Your screen should look like this now
  6. Putty proxy setup - image 2Next we need to change the keep alive setting so the connection will be more stable. It should work without though, so if you are in a hurry you can skip this step.Click on the “connections” category on the left and enter “5″ into the keep alive field.Putty proxy setup - image 3
  7. Now we are almost finished configuring putty. All you need to do now is to save the settings.
    Click on the “Session” tab at the top left and make sure the session has a name and a server address.
    Finally click on “save” to save all the settings.

    Putty proxy setup - image 4
    Putty is now ready to go. Please note that this configuration is not needed under linux.

Next week

Next week we will look at FoxyProxy. It allows us to freely switch between using a proxy, or not using a proxy or maybe even using a 2nd proxy. It is very versatile and flexible.

Posted in Browsing privacy, Free Speech, Internet Privacy, VPN | Tagged , , , , , | Comments Off

How to remove flash cookies

Posted on November 2, 2010 by Hidden.me

Flash Cookies Are a tricky way which can be used to track you even if you have your cookies disabled!

Flash cookies were originally intended to be used to remember flash application relevant settings. However like much other technology it is getting abused.

Fortunately you can disable the flash cookie settings, click here to open the flash settings panel.

I would recommend to delete all cached files and configure the settings as follows:

Audio and Camera flash privacy settings
For me I disabled the camera and microphone options, since I use neither with flash. Set to always deny.

Flash global storage settings
Set global storage setting to none and enable never ask again.

Another important section are the flash player settings themselves.
Flash player settings. Disable storage for cookies.

Set storage to none.
Delete all cached content.
Enable never ask again.

It should look like this now:

Lastly you might want to disable the flash p2p upload capacity. I personally don’t like it because it is very intransparent.

Congratulations. You now secured your computer against flash cookies!

Posted in Browsing privacy, Internet Privacy | Tagged , , , , | Comments Off

Managing cookies to improve privacy

Posted on October 7, 2010 by Hidden.me

Cookies represent information which is stored on your computer which the web server can use to identify yourself (in case you return).

Cookies can

  • uniquely identify you (or your browser to be specific)
  • stay in your computer for a very long time
  • be very handy :)

My recommendation for cookies is to only allow them on a per session base.

A great addon for Firefox is called “Cookie Monster“. It allows you to configure site’s from which you want to accept cookies.
It is very versatile, I can highly recommend it.

Next time we will have a look at Flash Cookies. Another tricky way to track you which you may not like.

Posted in Browsing privacy | Tagged , | 1 Comment

5 good reasons to use a VPN connection

Posted on October 4, 2010 by Hidden.me

I will start out with 7 simple reasons why a VPN can be useful.

  1. All data traffic through the VPN is encrypted. This can be especially useful if you use a laptop and travel a lot.
  2. A good VPN provides a solid firewall for your protection.
  3. Unlimited and uncensored access to the internet. If you live in China you definitely want a VPN.
  4. The VPN masks your true location online. If you get a US based VPN for example you can view the local television streaming.
  5. Your government and your ISP cannot spy on your traffic.
  6. If your ISP throttles you often it is possible to bypass the throttling using a VPN.
  7. Most VPN providers will go far to try and keep your data private. Some don’t even ask for any kind of private data.


There are possibly other reasons why you would choose to use a VPN.

/smerz

Posted in VPN | Tagged , | 1 Comment