Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
kingston:notes [2015/07/07 21:52] – add chrome vs chromium anonymouskingston:notes [2015/07/07 22:58] – safe hub collective 127.0.0.1
Line 1: Line 1:
 +Below are some quick notes that we hope are useful for getting started. For more depth on these topics, the [[https://tech.safehubcollective.org/cybersecurity/|Safe Hub Collective]] has very well-written guides.
 +
 +===Password Managers===
 +
 +[[https://www.keepassx.org/|KeePassX]] is a cross-platform password manager, with third-party apps available for android and ios. It stores all your account credentials in a file that you encrypt with one master passphrase. This way, you can have strong, unique passwords for each online account, avoiding the dangers of [[https://xkcd.com/792/|password reuse]].
 +
 +Some alternatives are [[https://lastpass.com/|LastPass]] and [[https://agilebits.com/onepassword|1password]]. They offer a convenience trade-off, where you store your (encrypted) passwords on their service, and they synchronize them across your devices.
 +
 +Also, enable 2-factor authentication whenever possible!
 +
 +=== Mobile Devices ===
 +
 +==Full-disk Encryption==
 +     - iOS https://support.apple.com/en-us/HT202064
 +     - Android
 +       http://www.greenbot.com/article/2145380/why-and-how-to-encrypt-your-android-device.html
 +       
 +==RedPhone / TextSecure / Signal==
 +
 +     Apps by Open Whisper Systems for encrypted communication
 +     
 +     - Android: RedPhone does calls, TextSecure does messaging
 +     - iOS: Signal does both calls and messaging
 +
 +==Location Tracking==
 +
 +     Be aware that your phone can and is used to track you. Your cell
 +     provider has records of your phone's location, and advertisers
 +     track your phone's wifi signal to try to determine where you buy
 +     things.
 +
 +==Tor for Android==
 +
 +     The Guardian Project has written a Tor client for Android, as
 +     well as a Tor browser.
 +
 === Web Browsers (other than Tor Browser) === === Web Browsers (other than Tor Browser) ===
  
Line 7: Line 43:
 ==Privacy Badger== ==Privacy Badger==
  
-[https://www.eff.org/privacybadgerAttempts to do *behaviour-based+https://www.eff.org/privacybadger Attempts to do *behaviour-based
 blocking* of web trackers. blocking* of web trackers.
  
Line 19: Line 55:
   - may take time to 'warm up' the filter   - may take time to 'warm up' the filter
   - may not catch everything that a blacklist would   - may not catch everything that a blacklist would
-  - EFF allows advertisers to opt out of blocking if they promise to behave well +  - EFF allows advertisers to opt out of blocking if they promise to behave well / look like they're not tracking you
  
 ==Disconnect.me== ==Disconnect.me==
  
-[https://disconnect.me/Blacklist-based filtering of web trackers+https://disconnect.me/ Blacklist-based filtering of web trackers
  
 Disconnect.me has a blacklist of blocked content and prevents your Disconnect.me has a blacklist of blocked content and prevents your
Line 39: Line 74:
 ==HTTPS Everywhere== ==HTTPS Everywhere==
  
-[https://www.eff.org/https-everywhereForces the browser to use TLS+https://www.eff.org/https-everywhere Forces the browser to use TLS
 (encrypted) connections when possible (encrypted) connections when possible
  
Line 45: Line 80:
  
 Scenario: You're browsing a webpage and see a link like Scenario: You're browsing a webpage and see a link like
-[http://en.wikipedia.org/wiki/Daniel_EllsbergHTTPS Everywhere +http://en.wikipedia.org/wiki/Daniel_Ellsberg HTTPS Everywhere 
-rewrites this link to [https://en.wikipedia.org/wiki/Daniel_Ellsberg]+rewrites this link to https://en.wikipedia.org/wiki/Daniel_Ellsberg
 automatically. automatically.
  
Line 70: Line 105:
  
 Chrome/ium: Chrome/ium:
-[https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm]+https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm
  
 Firefox: Firefox:
-[https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/?src=search]+https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/?src=search
  
 You can choose to add extra blocklists; the more restrictive you You can choose to add extra blocklists; the more restrictive you
Line 120: Line 155:
 The Tor Browser has a slider that allows you to adjust your security level, including blocking insecure Javascript The Tor Browser has a slider that allows you to adjust your security level, including blocking insecure Javascript
  
 +
 +===OTR===
 +
 +Use OTR over Jabber/XMPP -- see the Safe Hub Collective guide https://tech.safehubcollective.org/cybersecurity/
 +
 +===Tor===
 +
 +Anonymity network; anonymity vs. privacy
 +
 +https://www.eff.org/pages/tor-and-https
 +
 +How Tor works:
 +https://www.torproject.org/about/overview.html.en
 +
 +===TAILS===
 +
 +Anonymous Live-USB operating system with Tor