Often, the web browser that comes with an operating system is not set up in a secure default configuration. Not securing your web browser can lead quickly to a variety of computer problems caused by anything from spyware being installed without your knowledge to intruders taking control of your computer.
A drive-by download is a program that is automatically downloaded to your computer without your consent or even your knowledge. Unlike a pop-up download, which asks for assent, a drive-by download can be initiated by simply visiting a Web site or viewing an HTML e-mail message. Very often script languages like Java and Java Script are involved. In the past, badly configured PHP bulletin board applications are being used to plant malicious JavaScript on web forums. The JavaScript was used to infect the local machine with Trojan and viruses. People are trying to infect machines into zombie clients and bring them under the control of hackers.
Here are some risk that can direct you to malicious websites while browsing the Internet:
- A lot of users have a tendency to click on links without considering the risks of their actions.
- Many browsers are configured to provide increased functionality at the cost of decreased security.
- Web page addresses could take you to an unexpected sites and links.
- E-mail links and websites could link you to Phishing sites and services.
- Third-party software may not have a mechanism for receiving security updates.
- Hackers brake into server that delivers banner ads and infect them with viruses and Trojans.
As a result, exploiting vulnerabilities in web browsers has become a popular way for attackers to compromise computer systems. For that reason, it is very important to take control and to decide what kind of browser and plug-in to use. But here is the good news; Linux is already using Mozilla Firefox as a default browser. This workshop will describe how to use additional plug-ins to browse the Internet more secure but also anonymously on a Mandriva 2008 Spring client.
Step 1: NoScipts - Just run the scripts you trust
The NoScript plug-in will allow scripts and other executable content to run only from websites you trust. After installation, JavaScript, Java, Flash, Silverlight and others are blocked by default in Firefox. This content can later be allowed to execute when given explicit permission by the user, rather than doing so by default. Sites can also be blacklisted with NoScript. Blacklisting a site not only blocks it from executing scripted content, but also removes the option of allowing it to execute said content, unless it is removed form the blacklist. This plug-in runs a XSS notification feature and is one of the most popular Mozilla extensions available.
Just search for the plug-in on the following website and click on the “Add to Firefox” button.
After a Firefox restart you will see the plug-in available.
https://addons.mozilla.org/en-US/firefox/
You are now able to (temporarily) enable JavaScript, Java and plugin execution for sites you trust with a simple left-click on the NoScript status bar icon , or using the contextual menu, for easier operation in popup status bar-less windows.
Step 2: Save time and traffic with Adblock
Banner and ads are often annoying while browsing the Internet. In some cases they also could be dangerous.
Adblock Plus is able to get rid of them. After installation, you just need to Right-click on a banner and choose “Adblock” from the context menu — the banner won’t be downloaded again. The tool is also capable to replace parts of the banner address with star symbols to block similar banners as well. Please choose a filter subscription, then even this simple task will usually be unnecessary: the filter subscription will block most advertisements fully automatically.
Just search for the plug-in on the following website and click on the “Add to Firefox” button.
After a Firefox restart you will see the plug-in available.
Please choose one subscription from the list of recommended subscriptions after the next start and run the “AdBlocker”. You also have the possibility to enable and disable blocked items and to adjust preferences and options by clicking on the red icon in the top right corner.
Step 3: Keep yourself safe from Internet scams, spam, spyware and viruses with WOT
WOT is a community dedicated to furthering safe use of the Internet. The name stands for "Web of Trust." The mission is to make the Internet safer by sharing user experiences and knowledge about websites they trust. WOT members are submitting ratings for websites. The community also take advantage of nearly a hundred carefully chosen trusted sources, such as listings of phishing sites. This provides WOT with a fast, automated, and reliable means of protecting against online threats.
Just search for the plug-in on the following website and click on the “Add to Firefox” button.
After a Firefox restart you will see the plug-in available.
Please notice and accept the WOT End-User Software License Agreement.
Please inform about Website (trustworthiness, vendor reliability, privacy, child safety) ratings here:
http://www.mywot.com/en/support/ratings
You will already find ratings in Google search results and get a warning if a site is rated as dangerous.
Step 4: TorK - Anonymity Online
TorK is a powerful anonymity manager for the KDE Desktop on Linux and Unix systems. It first helps you to install, configure and use Tor. It then reduces the task of anonymizing most applications to a single-click.For advanced users TorK provides detailed network information, and more, in an accessible manner.
Download TorK as a rpm package from here:
Before you are able to install TorK, you should install the following packages on your system first. Just use the following commands:
urpmi privoxy
urpmi libgeoip-devel
urpmi tor
Install TorK from the rpm package you have downloaded using the konsole like this:
rpm –i tork-0.28-lmdv2009.0.i586.rpm
It is now time to install the “Torbutton plug-in”. It provides a button to easily enable or disable the browser’s use of Tor. You will later find it in the bottom right corner in the browser window. Just search for the plug-in on the following website and click on the “Add to Firefox” button. After a Firefox restart you will see the plug-in available.
There are different possibilities to configure Tor, but TorK comes with an easy understandable first-run-wizard. We will configure TorK to run as a client and to start Tor and Privoxy automatically. Make sure to add the correct configuration file out of the “Candidate Config Files” list. Just follow this step by step guide:
After the configuration process, TorK is ready to run. Just choose “Client” under the “green” onion and click the play button. If everything works fine and you have network connection, the Tor Network will become visible by using the “Tor Network” tab. Please check the Tor log and traffic log accordingly.
You can also use the wizards to configure Firefox, E-Mail clients, Konqueror and others to prepare them for the anonymous usage. Privoxy will normally run on the following host and port:
localhost:8118
Remark: For some reason Privoxy was not starting automatically from time to time. If you have problems to connect to the Proxy, just check (start, stop) it using the following commands as root:
/etc/init.d/privoxy status
/etc/init.d/privoxy start
/etc/init.d/privoxy stop
Please perform a final check and query from where your IP address now comes from. Use the following websites:
http://www.heise-online.co.uk/networks/tools/ip/
http://cmyip.com/
|
