PDA

View Full Version : Secure Search Engine



David Merrill
05-02-12, 11:06 PM
I rebuilt my disk and have forgotten the instructions about how to secure Google so as not to leave tracks about my interests. Does anybody have that instruction set?

Freed Gerdes
05-03-12, 01:59 AM
Google Chrome has a private search engine called Ixquick begin your search for it here: https://www.ixquick.com/

Frederick Walter

EZrhythm
05-03-12, 08:02 AM
The Firefox add-on, Do Not Track Plus, http://donottrackplus.com/howitworks.php is proficient at blocking tracking companies.

BUT!

Unfortunately, inevitably and undoubtedly covering one's tracks has become futile without taking an even more proactive approach. It turns out that pc user's flash player is being used to store information (LSO's) to which it is necessary, if having installed flash player, to run Firefox for a browser and utilize the add-on BetterPrivacy. https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/ This involves bringing up the BP task screen and manually clicking to clear the undesirable stored information periodically through out one's use of the internet as desired. There is an automated feature but it isn't complete.

shikamaru
05-03-12, 10:30 PM
DuckDuckGo

https://duckduckgo.com

Treefarmer
05-04-12, 01:29 AM
DuckDuckGo

https://duckduckgo.com

Very cute!
I had not seen that one before.

shikamaru
05-04-12, 09:25 AM
Very cute!
I had not seen that one before.

:)

Also, I would consider sandboxing your browser.
This, in effect, walls off your browser from the OS and other areas of RAM.

http://www.sandboxie.com/

Another option is RAMdisk. Load the browser into RAMdisk and run it from that space.

Another option is portable browsers. All these recommended items have the purpose of reducing the footprint of a browser on your OS for purposes of security.

Let's not forget TOR :).

https://www.torproject.org/

There are all sorts of things we could do to increase our browser security and anonymity ....

Taxd2death
05-04-12, 09:33 PM
I would like to suggest ixquick.com as your search engine (no tracking of your I P Address) and use a program like Eraser or C Cleaner to keep private. There are also programs that allow you to surf anonymously if activated. I might also say that what you do on the front end of PC use is very important to privacy matters. IMHO Google is not good for privacy no matter what they tell you. There is another program called OSForensics that is free. It might behoove some of us to download it and run it to see just what your computer keeps even after you have cleaned it. You might be surprised. But, most of these programs are only good if you use them often. As in, every time you get on and off of the internet. Sorry for the long post. I use some of these things on our network at my office and have had some pretty good success.

allodial
05-05-12, 08:25 AM
This is probably something hardly known except in very view circles. One way of profiling or fingerprinting a computer is through a browser providing a list of available fonts (http://www.pcworld.com/article/188161/browser_fingerprinting_can_id_you_without_cookies. html). A way around this is to use a font manager (http://www.ampsoft.net/files/FontViewerSetup.exe) and disable or enable fonts only when you need them such as when you load your favorite word process, design program or the like or by adding and removing fonts "randomly" (ones you dont use so who cares just change them often) is another way around that kind of fingerprinting (http://www.us-cert.gov/reading_room/forensics.pdf). As mentioned in another post, sandboxing a browser might be helpful as well.

Other things one can do for privacy: Reinstalling your OS on a regular basis (at least once every 4 months maybe? using 'borrowed serial numbers' perhaps?), using different search engines, deleting cookies, using programs like Eraser (http://portableapps.com/apps/utilities/eraser_portable) (Portable) to clean up drives, using programs like TMAC MAC address changer (http://www.technitium.com/tmac/index.html), changing your hard drive serial number (http://www.raymond.cc/blog/changing-or-spoofing-hard-disk-hardware-serial-number-and-volume-id/) (PBDownForce (http://www.mediafire.com/?jyeya28pactye0z) can you say "Run As Administrator"?), etc.

Using encrypted drives/volumes and such might also be a good idea in case your computer might be compromised (TrueCrypt (http://www.truecrypt.org/), SafeHouse (http://www.pendriveapps.com/portable-encryption-tool-safehouse-explorer/))...stolen..borrowed..who knows.

Turning off browser "geolocation" feature might be a good idea too.

EZrhythm
05-05-12, 10:16 AM
So many resourceful ideas but unfortunately they don't accomplish much if one has Flash installed and doesn't deal with the "LSO" issue as a previously mentioned.

shikamaru
05-05-12, 12:30 PM
The NoScript plugin for Firefox is a must.

You can block scripts and only whitelist those you want.

Good looking on the osforensics. I'll check that out.

shikamaru
05-05-12, 12:32 PM
This is probably something hardly known except in very view circles. One way of profiling or fingerprinting a computer is through a browser providing a list of available fonts (http://www.pcworld.com/article/188161/browser_fingerprinting_can_id_you_without_cookies. html). A way around this is to use a font manager (http://www.ampsoft.net/files/FontViewerSetup.exe) and disable or enable fonts only when you need them such as when you load your favorite word process, design program or the like or by adding and removing fonts "randomly" (ones you dont use so who cares just change them often) is another way around that kind of fingerprinting (http://www.us-cert.gov/reading_room/forensics.pdf). As mentioned in another post, sandboxing a browser might be helpful as well.

Other things one can do for privacy: Reinstalling your OS on a regular basis (at least once every 4 months maybe? using 'borrowed serial numbers' perhaps?), using different search engines, deleting cookies, using programs like Eraser (http://portableapps.com/apps/utilities/eraser_portable) (Portable) to clean up drives, using programs like TMAC MAC address changer (http://www.technitium.com/tmac/index.html), changing your hard drive serial number (http://www.raymond.cc/blog/changing-or-spoofing-hard-disk-hardware-serial-number-and-volume-id/) (PBDownForce (http://www.mediafire.com/?jyeya28pactye0z) can you say "Run As Administrator"?), etc.

Using encrypted drives/volumes and such might also be a good idea in case your computer might be compromised (TrueCrypt (http://www.truecrypt.org/), SafeHouse (http://www.pendriveapps.com/portable-encryption-tool-safehouse-explorer/))...stolen..borrowed..who knows.

Turning off browser "geolocation" feature might be a good idea too.

Concerning the rebuilding of the OS every so often, this is where VDI or virtualization can be most helpful :).

Create a clean image. Clone it. Spin it up.

David Merrill
05-05-12, 01:33 PM
Concerning the rebuilding of the OS every so often, this is where VDI or virtualization can be most helpful :).

Create a clean image. Clone it. Spin it up.

I am amazed at the helpful comments this brought up.

All in all I forgot the name of the search engine I prefer because it is the world's most secure. It is called Start Page (https://us2.startpage.com/eng/).

shikamaru
05-05-12, 04:33 PM
I am amazed at the helpful comments this brought up.

All in all I forgot the name of the search engine I prefer because it is the world's most secure. It is called Start Page (https://us2.startpage.com/eng/).

You could do all your web surfing withing a virtual machine.
The virtual machine can be configured as a bastion host.

After 3-4 months of surfing, delete the VM. Clone a template. Keep on riding.
You will want to save links, profiles, and other permanents to a shared drive.

I recommend Oracle VirtualBox for desktop virtualization.
For hypervised virtualization, I'm partial to either XenServer, VMware, Xen, or Hyper-V ... in that order.