Video: Crash course in full disk encryption

April 25th, 2009 Comments Off

This video is a talk held in December 2008 at the 25th Chaos Communication Congress, under the title Nothing to hide.

It is a crash course in full disk encryption concepts, products and implementation aspects. An overview of both commercial and open-source offerings for Windows, Linux, and MacOS X is given. A  programmer’s  look at the open-source solutions concludes the presentation.

If you are not encrypting your whole hard disk remember that opening and viewing files will leave recoverable traces in your operating system. If you care about privacy you should be using full disk encryption, Truecrypt is the way to go in Windows.

Click this link to download the crash course in full disk encryption papers.

I would say this is a video for intermediate/advanced computer users.

Share This Post
Read More »

Video: Man dead at G20 protest was assaulted by UK police

April 8th, 2009 Comments Off

The man you will see on the video is Ian Tomlinson, 47, he was found unconscious near to St Michael’s Alley off of Cornhill near the Bank of England and later pronounced dead.

He had been returning to his home near by from working at a newsagents and was not part of the demonstrations taking part against the G20 meeting in London.

While laws are being passed in the UK to give more and more powers to the police to protect us from terrorism and child porn, what laws are being passed to protect us from politicians, police and corporations from abusing their powers?

Update: A second post-mortem examination on behalf of Mr Tomlinson’s family has now revealed that Ian Tomlinson died from internal bleeding.

Share This Post
Read More »

Video: VoIP Encryption in a Surveillance Society

April 7th, 2009 Comments Off

This is one of the best videos I have ever seen about voice over IP security, directed towards people with an intermediate level of VoIP security.

Phillip Zimmermann, the creator of Pretty Good Privacy (PGP) and Zfone, gives a lecture at the Stanford University Computer Systems department explaining how a voice a over IP call can be intercepted.

Phillip Zimmermann takes some very good questions from Stanford University students an unveils some of the man in middle attacks that can be carried out by snoopers to listen in to VoIP calls.

You can expect the big voyeur agencies conspiring to know everything about you and your family to use some of these tricks.

If you are worried about someone keeping a record of the phone numbers you dial you shouldn’t be using the phone line to make calls, you should be using voice over IP instead, as calls made through VoIP are not included in the data retention laws.

To stop Mi5 buffoon Jonathan Evans and his team from wiretapping your personal calls you can read my past post on Voice over IP security.

Share This Post
Read More »

Registering a domain name with privacy protection

March 31st, 2009 8 Comments

You may want to set up a website that deals with controversial issues or post information regarding possible corruption cases inside the Mi5, the Internet Watch Foundation or Huntingdon Life Sciences. The first thing you should do for this is to get your own domain name.

You could host your site for free, but if your webhost ever goes down or is coerced by the Government to pull the plug on it, all your hard work will be gone at the flick of switch.

Having your own domain name protects you against this. By keeping a local/remote backup of your website and owning the domain name, in case of deletion you simply reupload your data to another webhost located offshore and redirect your domain name there. Owning your domain name allows you to be in control of your site, you should not give this right away to others.

World Wide Web

As per ICANN rules, the Internet Corporation for Assigned Names and Numbers, you must provide your real contact information when you register a domain name. This includes your full name, mailing address, telephone number and email address. Failure to do so will result in your domain being seized.

You can still register your domain with fake details, but if the ICANN finds out, your domain name will be taken away. If you decide to use fake details, make sure that your email address is valid because once a year your domain name registrar will send you an email notification asking you to confirm your personal details.

You should also use common sense and avoid using names like Micky Mouse or Pamela Anderson when registering a domain name. In addition if you use someone else real name and address to register it, that would probably be illegal as you will be impersonating someone identity without their consent. Making up a fictitious personality to register a domain name breaks ICANN rules but unless it is made for criminal purposes most countries do not prosecute people doing this.

Besides emailing you once a year, the ICANN does not go around checking if people has entered their correct registration details, it is when someone makes a complaint against you that they will investigate it.

There are some companies that can be used as a front end to protect yourself from spam, fraud, stalkers and keeping your name, address, email and phone number private. By using them you are not breaking any ICANN rules and your domain name can not be taken away from you, those companies act as a third party lodged in the middle in between the public whois register and you.

Not all domain names can be registered with whois privacy protection, for example the .EU and .US top level domains need to be registered using your real details.

The domain names I know of that accept private registration are:

.COM, .NET, .INFO, .ORG, .ME, .MOBI, .BIZ, .NAME, .WS, .CC and .TV.

Question mark

List of registrars offering whois privacy protection:

These three companies are all resellers and you can find a dozen like them around, easily recognized as their websites and services all look pretty close. All of them use DomainsByProxy for domain privacy registration. I think that DomainsByProxy is one of the best choices, although they are based in the US, they will only reveal your information when required by law.

The domain name registrars I named above tend to have special offers from time to time where you get a domain privacy registration at a very low price for each domain name you buy from them.

If my experience is anything to go by, this special price will then be jacked up by five the next year. The trick is that once you have registered a domain name with privacy protection transferring  it to another registrar means you will lose that privacy registration.

You are likely to be stuck with the registrar you choose and pay the higher fees or risk your identity be known during the domain transfer. If you see a special price and do not take up the offer for five or ten years, you most likely will have to pay a higher price when renewal time comes, special price offers do not apply on renewing the domain name.

This domain registrar HQ are located in the Bahamas and subjected to their privacy laws. I have found Internet.BS to be the cheapest domain registrar around, they even have this statement on their frontpage: Our Warranty: If you find a better offer, we match it!

When you register a domain name with privacy protection through Internet.BS, these are the details that anyone doing a whois on your domain name will see:

Domain Privacy Protection with Internet.BS
Domain Privacy Protection through Internet.BS

Notice that your real email addres will be replaced by a forwarding antispam email address .

Other registrars that offer domain name privacy protection:

If you want to save yourself time looking at prices, your best bets are Internet.BS and BlackBeltDomains. I also do not know how good it is the privacy protection provided by the registrars on the last list. I have only used Internet.BS, BlackBeltDomains and NameCheap, with NameCheap being a bit more expensive that the other two. But prices and offers do change all the time.

Personal disclosure: The link to BlackBeltDomains has an affiliate code included!

Bad Apple

The bad apples of the basket:

Dynadot: Dynadot so called domain privacy registration will not replace your name. Only your email, phone, and address. Pretty pathetic leaving your name out in the open to be targeted by Mi5 busybodies and spammers.

Nameguard: At Nameguard they use a company called Privacyprotect to safeguard your so called privacy.

Privacyprotect, according to their site, will disclose a domain name owner’s private data if they are engaged in spam or abuse, the complainant can be any member of the public and needs to attach evidence. Whether that evidence will be enough proof of abuse/spam will be solely decided by them.

It would be easy for anyone disgruntled with your site to formulate bogus charges against you and then request them to reveal your personal details.

In fairness, the only company that openly states it will refuse to disclosure any domain name personal details without a court order is DomainsByProxy, the others simply skip over the issue by not mentioning it.

Share This Post
Read More »

Video: How to, encryption with PGP 9 Desktop

March 23rd, 2009 Comments Off

This is an introduction video for begginers, if you have never seen or heard of PGP Desktop, this video explains briefly in 5 minutes what it can do for your privacy.

If you want to keep all your computer data encrypted, including the OS, after Truecrypt and Drivecrypt Plus Pack , PGP Desktop would be my third choice. As far as I know all three of them are uncrackable, even by the highest powers out there. But bear in mind that it is illegal in the United Kingdom not to reveal your password to your encrypted files when requested by the authorities.

PGP 9 will not protect you against a Government forcing you to give away the password for your personal secrets, you should be using Truecrypt or Drivecrypt Plus Pack if you think this may happen to you. Both of those encryption schemes provide for a hidden operating system which existence can not be proven, you can not be asked to provide what can not be proven to exist.

If you are comparing encryption software you can read my past  review of Drivecrypt Plus Pack v3.94

Share This Post
Read More »

Video: British police abuse of war veteran

March 16th, 2009 1 Comment

This is the kind of people that has the right to search and interrogate you. In a case of mistaken identity Lance Corporal Mark Aspinall is savagely beaten by British police. (This is a November 2008 video)

You are asked to let British police and Mi5 to have access to your private data under the disguise of protecting you. But who protects you from their abuse when they have all the power?

The most shocking of the ordeal that this war veteran had to go through is that he actually got charged and convicted of assaulting the police!

If you are ever arrested by the police do not let them bully you into talking, they can not force you to talk. You have the right to remain silent, you say nothing until you have talked to your solicitor first.

For more information about why it is bad talking to the police, see my past video post entitled Do not talk to the police.

Share This Post
Read More »

List of Opera browser security and privacy widgets

March 8th, 2009 Comments Off

I am a long time Opera browser user, when I first downloaded Opera, around ten years ago (there was no Firefox browser back then, its predecessor was called Netscape), it took me a few days to get used to it as I only knew Internet Explorer. I consider the three or four days it took me to learn Opera browser tricks and configuration one of the best investments I ever made.

As a long time user of I am probably biased towards the Opera browser, when you learn most tricks about a piece of software you will usually work quicker with it than something you do not know very well.

Opera is the internet browser I use and it is the best for my needs, it does not necessarily means it will also be good for you, maybe some Firefox addon that is really a must have for something you do will not be available in Opera, or something else that your browser has and Opera can not match.

I have used six other browsers, Internet Explorer, Firefox, Konqueror, Safari, OffByOne and K-Meleon. Besides Internet Explorer which usability goes beyond all common sense, I like all of the others.

Opera browser map

Opera browser9.6 layout above

For those who use the Opera browser, here goes a list of security and privacy widgets that may come in handy to add:

Text Encryption widgets:

UniCrypt: A widget to encrypt/decrypt given string. Supported algorithms are: MD5, SHA1, SHA256, URI, base64, xxTEA, AES, Blowfish algorithms are supported

Text Encoder: Encode and Decode Morse code and Base 64.

€ncryptør: €ncryptør lets you encode your text so that only other people using €ncryptør (or yourself) can view its contents. Note:This is not secure encryption against the Mi5!

EnKoder: This is a text encoder/decoder based on the TEAencoder . It supports paraphrase/password encryption.

Password Hasher: Password hasher creates secure passwords by performing an HMAC SHA1 hash of a general parameter (Gmail, Yahoo!, etc) and a “master password” provided by the user.

NOTE: Be aware that these encryption widgets will not stop professional snopers like Mi5  or CiA from reading your text! But they will slow them down.

Opera widgets running on MAC

Opera widgets running on MAC OS

Disposable Email Address widgets:

Yopmail: Have a disposable email address for Internet registrations. All inboxes are available without registration and password.

Temporary Inbox: This widget uses the service of Temporaryinbox to create and check throw-away email addresses.

Computer Internet Protocol research widgets:

IP Calculator: This widget calculates network information from a given IP address and netmask, address are shown both in dot and bit representation.

GWhois: Get the whois information for a domain name.

IP Address: This widget shows your current public IP address, for users with dynamic IP addresses.

Web Node Info: The widget shows the Response headers of various Web nodes/resources. It also highlights redirects  and response codes. It supports the HTTP and HTTPS URI schemes.

Binarization: Simple conversion text to Binary and Binary to text.

Internet Search Widget:

Google Hacks: Search the Internet using not well-known tricks to search for music, books, videos, lyrics, fonts, applications and torrents.

Download the Opera browser:
Download Opera internet browser

Share This Post
Read More »

Secure your browser to avoid British police hacking

February 28th, 2009 2 Comments

British police is now allowed to hack into personal computers without a warrant. Be very careful not to piss off your local police officer because he/she may go fishing into your computer to try and find out if you have paid your taxes this year or if your cat vaccines are up to date.

In order to carry out mass surveillance of  personal computers a huge amount of UK police officers will have to be given computing skills, this is highly unlikely to happen. It would not make any sense for the Government to spend millions of pounds training police officers in computers for the occassional use with the antiwar or animal rights protester.

Dangerous hacker

Malicious computer hacker

Suspects of terrorism and other serious offences will be likely to have a highly skilled and experienced computer forensics  officer on their case, the others will have Robbie the bobby.

In my oppinion your local copper will be trained in 15 minutes on how to use a  trojan horse like eBlaster or Win-Spy. The police will send it to you by email, or you can be made to  inadvertently download it through your internet browser visiting a campaign site or forum. Then Robbie the bobby can use his point and click mouse to spy on you like a cheap 007 James Bond agent, with no knowledge at all about networking, computer antiforensics tools, encryption, cracking or anything else that requires a brain.

You will need a good internet browser to protect your family privacy and stop Robbie the bobby from spying on you and your children. Besides the obvious advice of saving all your holiday snaps inside an encrypted container, you should also use a secure an updated internet browser that will not be exploited to plant a trojan horse in your computer.

Computer ignorant hacker at work

Innocent computer user

Multiplatform Internet Browsers (Unix,Windows and MAC):

Based on Presto rendering engine:

  1. Opera Internet Browser(Unix,Windows and MAC)

Based on Mozilla Gecko rendering engine:

  1. Seamonkey Internet Browser(Unix,Windows and MAC)
  2. Firefox Internet Browser(Unix,Windows and MAC)
  3. Flock Internet Browser(Windows only)
  4. K-Meleon Internet Browser(Windows only)

Based on Webkit/KHTML rendering engine:

  1. Google Chrome Internet Browser(Windows only)
  2. Safari Internet Browser(Windows and MAC)
  3. Konqueror Internet Browser(Unix,Windows and MAC)

MAC only Internet Browsers:

  1. Camino Internet Browser
  2. OmniWeb Internet Browser
  3. iCab Internet Browser

Unix Only Internet Browsers :

  1. Epiphany Internet Browser
  2. Elinks text only Internet Browser
  3. Dillo Internet Browser

IE Embedded Internet Browsers:

These are not really proper internet browsers but more like skins that embed in Internet Explorer. They are an improvement over Internet Explorer an add some extra features, but as they use the same base code and rendering engine as IE the security vulnerabilites will be corresponding and you get no major extra security gains.

Internet Explorer is probably the worst browser out there in functionality, security and privacy, but this is or should be a free World, if you want to risk unknow people knowing everything about you while you know nothing about them, then feel free to do so.

  1. Maxthor IE Embedded Internet Browser
  2. PhaseOut IE Embedded Internet Browser
  3. AvantBrowser IE Embedded Internet Browser

PhaseOut IE embedded browser skin
PhaseOut IE embedded browser skin

Internet browsers that run from a USB key or encrypted container:

This is the best way to avoid leaving any tracks on your computer, and a must have for those using the Library or an internet cafe for internet surfing.

If you do all your internet browsing from inside an encrypted hardrive or encrypted USB key then all the cache and history will be stored there too. But do not get too excited yet as huge amount of private data can still be recovered from the operating system.

The files you download and view may be stored on a temporaty folder by Windows Media Player, Microsoft Word, etc… The names of the files you view can also be stored in unsuspected places inside the OS, and all USB thumbdrives have a unique ID number that will be stored in the Windows registry as soon as you plug it in.

Thanks to this unique number it is possible to proof that the owner of that thumbdrive used it on that computer and it is also possible to find out the maker/brand of your thumbdrive without even having it.

  1. K-Meleon Portable Internet Browser
  2. OffByone Portable Internet Browser
  3. Arora Portable Internet Browser
  4. Firefox Portable Internet Browser
  5. Google Chrome Portable Internet Browser
  6. Opera Portable Internet Browser

Opera USB thumbdrive

Internet browsers highlights:

The Safari browser has a privacy mode that will do all your internet surfing in RAM and will not store anything on your hard disk provided you have enough amount of RAM available.

OffByone is the smallest internet browser in the World, it is only 850Kb in size and it runs completely in RAM, which means no traces of your internet surfing will be left on the computer. It supports SSL sites but OffByone will have problems navigating webpages that make heavy use of Javascript and cascade style sheets.

Konqueror internet browser support for Windows and MAC is in beta, which means it may work or may not. Konqueror origins are in Unix and KDE.

SeaMonkey, Flock and Opera internet browsers are an all in one internet application suite, they include embedded features like an IRC chat client, newsreader and notepad.

You should avoid embedded Internet Explorer internet browsers as they do not offer any major security advantadge over IE.

What internet browser is the best?

As individuals we all have different needs and wants, it is not possible to advise an absolute browser for everyone without knowing what they want from it and how they will use it.

With so many choices available I would simply avoid Internet Explorer like the plague due to its tracked record of security problems. On my next post I will tell you the internet browser I use myself and what features I like and do not like from it. :)

Computer owned
Computer owned

Share This Post
Read More »
« Older Entries
Newer Entries »
Subscribe to RSS Feed
TopOfBlogs