Astounding Guide! Really great compilation. I did reconfigure my Windows Firefox with the same setting/addons, will see how much the usability is decreased by all this.
Thanks a lot for all this.
Ah yeah, definitely a good guide to have!
Been feeling pretty odd, especially with all the recent news about internet security floating about!
What are peoples recommendations on VPNs?
I currently use ExpressVPN, it's fast and hasn't let me down as of yet...but would like some back up ideas...
Thank you so much for the The paranoid #! Security Guide post!
I'm a newbie to Linux Security and this really helps!
Thank you oblivion for this excellent paranoid #! Security Guide. Are there any additional settings you would change if you have to logon to a public wifi, whilst using a VPN of course!
@Wreckurtion This is why OPSEC (OPerational SECurity) is important to think about. "Only problem with Tox is that it's not anonymous, people you chat with can still discover your IP address, however, it is fully encrypted".
For some people this may not be important, for others it will.
Let's say you want to get involved with a group of political activists for example. You are not known as being an activist but one or more of the others are. You are in a country where that could cause you some problems. In such a case you need to use a separate identity from anything you use with your other non-activist contacts and run your encrypted communications through an anonymity network such as Tor, to obscure your metadata.
The point is, it's not just the tools that are important. It's how they are being used.
Edit: some sloppy spelling fixed. Thanks Mpok.
Last edited by Anaconda (2015-01-08 05:24:54)
Awesome topic, I linked it to friends and couple of communities!
I have a question for you, is there a easy way to hide files from someone? With this I mean someone who:
- knows his way in a computer
- has all the passwords that you have got
- has some time to waste
I used steghide for few files (brilliant program) but when it comes to folders with much content of different kind is not the best solution.
Of course hidden files would be too easy to spot, with a simple ls -a or ctrl+H...
maybe some way to set a hot key to show some folders?
I used truecrypt in the past but was very heavy program and I'd rather use what I already got, in a more light and "crunchy" way
I'm sorry if the question has been answered before, could not find it
Hello, me again, couple of things about the guide.
Just to make sure, I'm not in any way affiliated or part of this groups, but if you want a feedback:
Autistici/Inventati was born as an Italian collective and you can find those guys going to political centers, parties and such with informative material about privacy, NSA, surveillance. I generally trust them (I use their services).
The service is good quality so far, no particular down of the servers and I am pretty sure they do their best to achieve the highest security level they can (they host many collective and activist group I personally know and everybody is satisfied).
I know their servers are located on some foreign country but don't know where (and don't want to know).
Their main services are email, webhost, blog hosting, chat. No sympathy at all for capitalism and they do not accept any virtual coin for donations.
About uprise. net (in the guide is written as .org), I used their services too but is difficoult to say if they are trustworthy when you don't know them live. The email service works good anyway, gives the possibility of having few aliases (as also Autistici) and to change your main email address, which I found kinda nice.
They ask you the courtesy of get to their website through their .onion domains instead of the clearnet ones.
That said, I think that a little information about how to set up icedove with enigmail and torbird would fit perfectly in the guide!
Again, great document, thanks guys.
EDIT: I totally agree and offer my help if needed for the whole wikia idea (found on page 1)
Last edited by arimane (2015-03-04 09:34:46)
Last edited by Anaconda (2015-03-05 09:47:07)
General babble @arimane n whoever may care eh.
You asked and answered your own question in a sense. O course hidden file/folders can work very well. You know it's there whoever else doesn't or at least shouldn't. Xyz person can stash a directory a gazillion places, PW protected or not, on top of it ... is xyz persons personal preferences.
Doing ls -a / or whatever, there's a fragizillion things that would scroll across the screen and someone is reasonably unlikely to spot a particular thing amongst all the madness if xyz person demonstrates any common sense. Size might stand out ... though again common sense applied means xyz person likely good to go.
Fun stuff like hidden partitions, this, that .... <add endless common sense type things here>. Just pointless 2 cents though, whatcha spec said. This per usual in relation to Itsec/privacy deal, is very much tinfoil hattage in ways. If someone has all of whatcha listed and is any friggin good or possessing of enough sense, you're fried. As again several common sense obs jump to mind. ie: Don't challenge michael jordan to a basketball game ... Unless your A game is at least as good as hiz C game and expect/hope to emerge victorious right ?
When talking about evading actual experts, such as top hacherish folks, govt spies etc so forth. Over whelming majority of comp users are simply toast. They'll take what they want from any techie things you may have, utilizing a trazillion methods and if so desired be gone in a puff of smoke w/o xyz person ever even having a clue they've been pawned. If they actually want you to know and make you aware, that'd be a real cause for concern. Aka: You're in serioussssss troubleeeeeeee. ( possibly-depending anyway.)
Shrugs ... just keeping it real eh. If you're talking about a controlling jealous bf/gf kinda deal, then yes, stashing stuff somewhere within the gnu/nix filesystem, they's unlikely to find the sucker. Blah and babble ... end babble.
Last edited by CBizgreat! (2015-03-09 07:06:40)
On the other hand, if you want to hide certain files/data, you can go "low-tech" and back up those files on a thumb drive, which you can then hide in a secret compartment in your hidden bomb shelter.
^LMAO ... EPIC fellow nixer. Same time can't help but wonder how many people are jotting that down in for future use and/or adding it to their "Why dinna I think of that Sec references." So as one never knows, biz would like to suggest an enhancement. Can never hurt to throw a pitbull w rabies into your security structure folks. If that doesn't keep folks noses out of your business, NOTHING WILL.
PC disclaimer: This is clearly an attempt @ humor. Well except for the G33zr's comment being epic. Totally meant that part. Lol ...
Last edited by CBizgreat! (2015-03-05 14:58:33)
Thanks for your answer CBizgreat, now I got a clearer idea. But since I'm a very curious guy, I got another question for you all!
I did a couple of tests using rm -rf and extundelete, a program to retrieve files, and as expected I often found my files back. On the other hand, when deleting using wipe or srm I didn't (yes, those program actually work).
So my question is: to avoid always opening the terminal, would it be possible to set a hotkey to delete a file with wipe or srm? It's really confortable having a del or shift+del on the keyboard, so if maybe a ctrl+del could be set to wipe the file that would be awesome.
I looked around but could not find much.
with enough research youll figure out how to accomplish it. But allow me to add, from my sysadmin pulpit, if there is one function that should remain under a few layers of added extra steps to invoke, it is the delete function. I almost recommended a couple of routes for you to try - then realized - it could be considered pre-crime. I can just see the tickets piling up already. "I accidently keep deleting .... and need.... immediately for a meeting in ten mins." or "funny thing happend last night while reviewing .... my cat walked across my keyboard and ..."
Last edited by k0s (2015-04-04 06:42:58)
I have been using HideMyAss for 1 month now and would highly recommend their service. I use HMA to bypass censorship when in China (I have family there) and surprisingly enough streaming sites play videos with little noticable speed differences. Netflix works fine etc.
Packages and plans, (link removed)
== Mod Edit ==
Hide My Ass is a free plugin for Firefox/Iceweasel
Last edited by Sector11 (2015-04-07 13:03:22)