Author Topic: Tests and other Media topics  (Read 232845 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31659
  • malware fighter
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31659
  • malware fighter
Re: Tests and other Media topics
« Reply #691 on: August 27, 2019, 07:18:20 PM »
Logging in with your facebook account, what privacy implications do you have to fear not blocking facebook?

The impact of a non-blocked visit:
https://privacyscore.org/site/143919/
& https://urlscan.io/result/5ea7f793-0c20-4fd9-8f1a-bb810babfab3

Or the consequenties for your digital privacy seen here:
https://urlscan.io/result/5ea7f793-0c20-4fd9-8f1a-bb810babfab3#links

Just interesting to skim through - JavaScript behaviour on that site:
https://urlscan.io/result/5ea7f793-0c20-4fd9-8f1a-bb810babfab3#behaviour
Did not know they used babel helper (generated per session).

Better than to speculate is to let the facts speak out for themselves. info credits: luntrus

polonus (volunteer 3rd part cold recon website security analyst and website error-helper)
« Last Edit: August 27, 2019, 07:23:33 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 41479
  • 59 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Tests and other Media topics
« Reply #692 on: August 27, 2019, 10:00:58 PM »
The best way to avoid the privacy implications that are part of Facebook,
is to never open a Facebook account. Once opened, expect to kiss your privacy bye bye.
Free avast! Security Seminar: https://goo.gl/kh3cqR  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1903 64bit, 8 Gig Ram, AvastFree 19.6.xxxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 81900
  • No support PMs thanks
Re: Tests and other Media topics
« Reply #693 on: August 27, 2019, 10:22:55 PM »
The best way to avoid the privacy implications that are part of Facebook,
is to never open a Facebook account. Once opened, expect to kiss your privacy bye bye.

Guess why I have given social networking and the like a wide berth since they first appeared ;)
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 19.7.2388 (build: 19.7.4674.526)/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ WinPatrol+/

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31659
  • malware fighter
Re: Tests and other Media topics
« Reply #694 on: September 04, 2019, 04:13:25 PM »
Super Logout online: http://kapat.org/

Intel search engine, made by Peter Kleissner, the sinkhole expert.

Polonus was trained in automatic sinkholing expertise online by Peter Kleissner, n
ow head of Intelligence X
Re: https://intelx.io/?did=d4a06454-081c-45be-9ed2-9329499c5e89
and see how we reached that super logout tool...

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31659
  • malware fighter
Re: Tests and other Media topics
« Reply #695 on: September 07, 2019, 08:30:22 PM »
Coming to USA Firefox now:
DoH: https://blog.mozilla.org/futurereleases/2019/09/06/whats-next-in-making-dns-over-https-the-default/
Advantages and disadvantages.
See Client Support: https://en.wikipedia.org/wiki/DNS_over_HTTPS

This all to battle against abuse of unencrypted DNS request connections.

Why this is not such a good idea for end-users:
1) Concentrating all DoH requests with a small group of external players (like CloudFlare, Google) will mean an enhanced privacy risk for a large number of Internet-users, because mentioned players will exactly know for a great numer of Internet-users when and what websites they visit. Censorship and downgrading of certain websites is not unthinkable. From a privacy viewpoint it would be a goiod thing one could have many more DoH providers to choose from, but then blacklisting will be more of a problem, because;

2) Local DNS-logging does no longer take place at firm-level. Of-course such logging means an enhanced risk, but it will enable you to detect compromitted devices within your network;

3) DoH will raise demand for TLS-interception considerably and the risks therof outbalance overall profit.

(info credits: Erik van Straaten).

Using Pi-hole in such a setting makes you dependant on just one single DOH-provider. What about virtual hosts on one IP address.

But "DNS queries for the A and AAAA records for the domain “use-application-dns.net” must respond with NXDOMAIN rather than the IP address retrieved from the authoritative nameserver".

Mozilla just thinks to comply with the following contract: In the US, Firefox by default directs DoH queries to DNS servers that are operated by CloudFlare, meaning that CloudFlare has the ability to see users' queries. Mozilla has a strong Trusted Recursive Resolver (TRR) policy in place that forbids CloudFlare or any other DoH partner from collecting personal identifying information.
To mitigate this risk, our partners are contractually bound to adhere to this policy. (does not just only apply to Cloudflare's)
Source: https://support.mozilla.org/en-US/kb/firefox-dns-over-https

Whenever you are used to non-existing Interwebz-privacy this is not a big thing, remember only that it only furthers the monopoly status of the big players, like we have Google, CloudFlare,

So again less to choose from, or use: Intra — an Android application by Jigsaw to route your DNS queries to a DNS-over-HTTPS server of your choice, re: https://play.google.com/store/apps/details?id=app.intra

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
« Last Edit: September 07, 2019, 09:28:52 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31659
  • malware fighter
Re: Tests and other Media topics
« Reply #696 on: September 09, 2019, 12:41:44 PM »
Several Public DOH servers tested against Mozilla Observatory Scan.

1. https://observatory.mozilla.org/analyze/dns.adguard.com   F-grade status
2. https://observatory.mozilla.org/analyze/dns.google   B- grade status
3. https://observatory.mozilla.org/analyze/cloudflare-dns.com  C- grade status
4. https://observatory.mozilla.org/analyze/dns9.quad9.net  no 200 OK returned, F-grade status
5. https://observatory.mozilla.org/analyze/doh.cleanbrowsing.org  B-grade status
6. https://observatory.mozilla.org/analyze/doh.crypto.sx  D- grade status
7. https://doh-ch.blahdns.com/dns-query  no 200 OK returned, F-grade status
8. https://observatory.mozilla.org/analyze/dns.rubyfish.cn  D+ grade status
9. https://observatory.mozilla.org/analyze/doh.dnswarden.com  no 200 OK returned D+ grade status
10.. EU server: https://observatory.mozilla.org/analyze/dns.aaflalo.me  D+ grade status
11.  https://observatory.mozilla.org/analyze/doh.captnemo.in  D- grade status
12. https://observatory.mozilla.org/analyze/rdns.faelix.net  no 200 OK returned, D- status
13. https://observatory.mozilla.org/analyze/doh.armadillodns.net  F-grade status
14. https://observatory.mozilla.org/analyze/doh.netweaver.uk   no 200 OK returned  C- grade status
15: https://observatory.mozilla.org/analyze/jp.tiar.app  has an A+ status 

Found at: https://github.com/curl/curl/wiki/DNS-over-HTTPS

From thiese results it seems that DNSSec Japan, is best, A+ status grade,
No Censorship, No Logging, No ECS, support DNSSEC in Japan,
Nihon iti!  (source credits go to: luntrus)

polonus (volunteer 3rd party cold reconnaissance website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31659
  • malware fighter
Re: Tests and other Media topics
« Reply #697 on: September 09, 2019, 05:08:44 PM »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!