Category Archives: Privacy

Few Tricks to protect your web searches from Search Engines logging

During the past weeks, we read many posts and articles about the new privacy rules that Google introduced for its web services. The goal of this specific post is not about discussing privacy agreements and the many interesting points of view about this kind of topics but we would like to focus your attention on a couple of “tricks” which can help you to increase the privacy level.

First of all, you can decide to use an alternative search engine which doesn’t log your activity and it is not possible to define your profile about your web activities.

Privatelee

Privatelee has been developed to offer better privacy to people who prefer not to have their web searches automatically analyzed by google.com.

This search engine can work on https mode and its search results are the mix between external search such as Google and Bing. You can also decide to use just one web engine or both. Comparing the results obtained we can affirm that Privatelee is really very effective and offers the same main features of Google and Bing.

Startpage

Startpage is based on Google and has many flexible features that can be selected using the “settings” page. This particular search engine deletes all the logs after 48 hours and you can anonymously visualize images and videos or define how to manage cookies. Moreover, Startpage allows you to save your settings without using cookies.

As for Privatelee, please be sure to type https and not a “simple” http when you insert Startpage address in the bar.

Secondly, if you use Firefox, you can use a specific add-on TrackMeNot. TrackMeNot is a simple but useful add-on you can install on Firefox to obfuscate user search data profiler on Google, Bing, Yahoo, Baidu and others. TrackMeNot automatically issues random queries on the main search engines using a list a generic list of words. In this way, search engines are not able to create a real profile about you as web user. Your real searches will be just few between the hundreds fictionally created by TrackMeNot. TrackMeNot is completely configurable: you can choose the query frequency or define the klog of your automatic queries. By default, TrackMeNot uses the words contained in the RSS of four primary websites: The New York Times, CNN, MSNBC and The Register.

Last but not least, if you are using your PC in any area with poor Internet connection, you can disable TrackMe Not with just a click. Easy and fast!

Video – Firefox Addon TrackMeNot by LinuxWindowsMacHilfe

2 Replies

Video – AnonimoX Firefox cuida tu privacidad en internet Ubuntu, Windows etc. by Pedrote2222

Use the anonymoX add-on for Firefox to visit website protected by IP selection

38 Replies

What about listening to Pandora or other USA IP-based online music services if you are not into the USA? There are many add-on for Firefox which can help you to use the right proxy for appearing in different places in the world but, in my experience, you can have some difficulties when you try to use them.

In fact the IPs of free proxies change frequently and sometimes you are obliged to spend a lot of time searching for the right IP of free proxies. Other times the free proxy addresses are so overcrowded that you have to wait many seconds before you can visualize webpages.

One exception is anonymoX, a simple add-on for Firefox which always works properly and assure a good connection speed. AnonymoX has two different service levels, the free basic service has fewer features but it really works properly and it’s fast.

With the free level you can choose your favourite IP exit country between USA, UK and NL. You can also decide if you prefer to stealth your web surfing using anonymoX features or the classic TOR servers. Moreover, you can change your fictional ID every times you want also while you are surfing the web.

During all our tests anonymoX was able to assure us a good surfing privacy, in particular we successfully tried to change browser id and we really appreciated the possibility of visiting .onion websites through the Tor option. Recommended!!!

How to permanently remove files in Ubuntu/linux and make them unrecoverable by NickMcDTV

5 Replies

How to shred (permanently delete) files from your Hard Disks on Ubuntu Linux

Leave a reply

In our last post we examined the possibility to recover deleted data from USB keys and disks. Today we want to focus your attention on the proper way to destroy sensitive data from your disks.

On Ubuntu you have the possibility to move any file to the Trash but, as we demonstrate in our last post, anyone has the possibility to recover them using a simple, basic GUI, program called PhotoRec.

If you want to be reasonably sure that none will be able to recover a file you decided to permanently delete you have to use the Shred command. Shred is native in Ubuntu Kernel and literally delete your files overwriting them repeatedly with arbitrary data. After you delete a file with Shred you can be sufficiently sure that recovering procedures will not succeed.

As usual we must warn you that technology is rapidly evolving and what could be considered sure today, tomorrow will be out of date! So, if you think you need to preserve your privacy in the best way, don’t forget to change the hard disks regularly and mechanically destroy your old ones. Sincerely we hope our readers haven’t this kind of need.

To start using Shred on Ubuntu you have to open a Terminal and type:

sudo shred –help

In this way you will visualize the grammar and all the possible options offered by this program.

The correct grammar to use Shred is:

shred [OPTIONS] FILE

or, if you want to shred a entire partition:

shred [OPTIONS] /dev/[HDA9]

The possible options are:

-f, –force    change permissions to allow writing if necessary
-n, –iterations=N overwrite N times instead of the default (3)
–random-source=FILE get random bytes from FILE
-s, –size=N   shred this many bytes (suffixes like K, M, G accepted)
-u, –remove   truncate and remove file after overwriting
-v, –verbose show progress
-x, –exact    do not round file sizes up to the next full block;
this is the default for non-regular files
-z, –zero     add a final overwrite with zeros to hide shredding
–help     display this help and exit
–version output version information and exit

In our experience, to operate in the fastest way, we decided to add Shred on the Nautilus Menu and have the command ready with a simple right click on the mouse.

For this reason you have to open a Terminal and type:

sudo apt-get install nautilus-actions

Then you launch the program following this path: System->Preference->Nautilus Actions Configuration.

Last, you have to configure Shred filling e.g. the following parameters:

Label: Shred
Tooltip: Shred utility to securely erase files
Icon: gtk-dialog-warning
Path: shred
Parameters: -f -u -v -z %M
Filenames: *
Mimetypes: */*
Appears if selection contains: Both
Be sure to check the box “Appears if selection has multiple files or folders“

To finish your configuration, do not forget to open again a Terminal and type:

nautilus -q

nautilus

Google Music con Aplicación también para Linux

2 Replies

Desde hace unos meses Google ya ofrece el servicio Musica por streaming y de poder tener hasta 20.000 canciones almacenada en ” las nubes “; todavía este servicio no está disponible en España y Europa pero es igualmente posible conseguir una invitación.

Ante de todo hay que tener una cuenta de Gmail o crearse una. Luego dirigirse a la pagina de proxy.org para elegir un proxy de USA. Después de elegir el proxy hay que pegar la dirección que permite pedir la invitación a nombre de vuestra cuenta de Gmail y ya esperar que llegue la invitación por parte de Google, yo ya recibí la invitación y ya tengo mi Google Music activado.

Es un servicio muy interesante y funciona muy muy bien, aparte de los Artistas y las Canciones que nos Ofrece Google de forma gratuitas también podemos administrar nuestra música, la que tengamos en nuestro PC y subirla a nuestro Google Music gracias a una Aplicación especifica para Linux ( .deb, rpm, 32/64 bit ), así que ya no hay que instalar la versión para Windows y lanzarla con Wine. También está disponible una Aplicación para Android para que podamos escuchar en Streaming y administrar nuestra música sin tener que llenar la memoria de nuestro Smartphone.

Me parece un excelente servicio por parte de Google, funciona muy bien y sin coste alguno. Os dejo unos enlaces para que podáis pedir la invitación (yo tengo 8 disponibles, si alguien quiere inviar su correo yo puedo enviarle una invitación) y también otros para poder bajar la Aplicación para Android.

Proxy.org: http://proxy.org/

URL Invitación: http://music.google.com/music/usernotinvited.

Aplicación para Android: https://market.android.com/details?id=com.google.android.music

Logwatch on Ubuntu Desktop/Server

1 Reply

Logwatch is an Ubuntu modular log analyzer that runs every night and mails you the results. It can also be run from command line. The output is by service and you can limit the output to one particular service. The subscripts which are responsible for the output, mostly convert the raw log lines in structured format.
Logwatch generally ignores the time component in the output, that means, you will know that the reported event was logged in the requested range of time, but you will have to go to the raw log files to get the exact details.
Install logwatch using the following command:

sudo apt-get install logwatch

This will install all the required packages

Configuring Logwatch:

first you need to make sure you server is able to send the mails outside you can do this using postfix with SMTP server configuration.

Now you need to edit logwatch.conf file:

sudo nano /usr/share/logwatch/default.conf/logwatch.conf

Change the following information:

Output = mail
Format = html
MailTo = test@gmail.com

Save and exit the file

If you want to know more available options check logcheck manpage using the following command from your terminal:

man logcheck

Now edit the 00logwatch file

sudo nano /etc/cron.daily/00logwatch

add the following line:

/usr/sbin/logwatch –mailto test@gmail.com

Save and exit the file

This tool is very useful, give it a try!

Some Linux security tips for Rootkit Hunter

1 Reply

If you run Rootkit Hunter and you haven’t modified your stock Red Hat configuration of the SSH service (sshd), chances are it will find that you allow root logins. Rootkit Hunter considers these as possible security risks. However, to fix this, you can simply login as root, fire up a text editor, and edit the file

/etc/ssh/sshd_config

Make the following changes:
You’ll find a commented line like this:
#Protocol 2,1
Uncomment it and change it to:
Protocol 2
This will disallow logins using the older versions of the protocol

Look for the commented line
#PermitRootLogin yes
Uncomment the line and change it so it reads:
PermitRootLogin no
This will configure sshd NOT to allow root logins.

After this, be sure to restart sshd (assuming you run the service in the first place so:
Service sshd restart

By the way Rootkit scanner is scanning tool to ensure you for about 99.9% you’re clean of nasty tools. This tool scans for rootkits, backdoors and local exploits.

Remote Control your Ubuntu

1 Reply

Managing the Remote Desktop on Ubuntu is quite easy. You can allow users to access your desktop with VNC Viewer utility that is included in Ubuntu pack and can be downloaded for free also in Windows PCs. The Remote Desktop feature is very useful but follow, at least, one important safety tip: when your desktop remote control is enabled, the only defense against attacks is your firewall and it must be properly installed and configured correctly. In any case, do not forget that Remote Desktop still represents a first level security risk.

To tune up the Remote Desktop just follow these simple steps:

– go to System > Preference > Remote Desktop on the Gnome top menu:

– check the first two check boxes for remote to be enabled.

– if you want to connect your PC through the web and a “Your desktop is only reachable over the local network” notice appears, please do not forget to forward Port 5900 to the IP you see a line below in the menu

– in the Security section, when selecting the “You must confirm each access to this machine” check box, you will be needed to be at the computer to allow the other person to access your desktop. If you are trying to remote access one of your own computer, you would want to uncheck this box

– do not forget that the password check box should always be checked and you should enter a real secure password You will be prompted for this password when you try to log on

– for a better safety be sure that an icon will be displayed on the Ubuntu upper bar when someone is connected

“Your Desktop is Only Reachable Over the Local Network”