The Electronic Frontier Foundation recently launched a way for you to protect yourself from spies eyeing your search queries with a new Firefox Extension .

This Firefox extension was inspired by the launch of Google’s encrypted search option. We wanted a way to ensure that every search our browsers sent was encrypted. At the same time, we were also able to encrypt most or all of the browser’s communications with some other sites:

Google Search
Wikipedia
Twitter and Identi.ca
Facebook
EFF and Tor
Ixquick, DuckDuckGo, Scroogle and other small search engines
and lots more!

    Firefox users can install HTTPS Everywhere by following this link.

    As always, even if you’re at an HTTPS page, remember that unless Firefox displays a colored address bar and an unbroken lock icon in the bottom-right corner, the page is not completely encrypted and you may still be vulnerable to various forms of eavesdropping or hacking (in many cases, HTTPS Everywhere can’t prevent this because sites incorporate insecure third-party content).

    none

    Google docs is a great place to post things anonymously so long as you’ve set up an anonymous account that doens’t refer to your real identity. A brilliant case in point is this Practical Advice for Supporters of #IranElection, which we include here as it has excellent advice for anoyone mixing blogs and social media for their political activism, specifically in countries where speaking out can get you in serious trouble. Read the rest of this entry…

    one

    According to a post on Wired’s Threat Level blog, by Kim Zetter, Dan Egerstad, of DEranged Security, who had previously “obtained log-in and password information for 1,000 e-mail accounts belonging to foreign embassies, corporations and human rights organizations, had his house raided on Monday by Swedish officials, who took him in for questioning.”

    Egerstad illustrated how the Tor onion-routing system (that sends an Internet content request through a series of servers to make pursuit difficult) is no outright guarantee of information safety by capturing and publishing this information.

    As Egerstad and I discussed the problem in August, we both came to the conclusion that the embassy employees were likely not using Tor nor even knew what Tor was. Instead, we suspected that the traffic he sniffed belonged to someone who had hacked the accounts and was eavesdropping on them via the Tor network. As the hacked data passed through Egerstad’s Tor exit nodes, he was able to read it as well.

    So who was responsible for hacking the accounts? The likely suspect — given that most of the accounts Egerstad uncovered belonged to embassies, foreign and defense ministry officials, legislators and human rights groups — was a government or intelligence agency. I attempted to contact several of the account holders in August to ask them whether they used Tor or knew that their accounts had been compromised but never received a response from any of them.

    none

    Tor

    On Sunday, July 29, German Tor onion router operator Alexander Janssen was arrested by the German police. A bomb threat against police on a German forum had run through Janssen’s Tor node and the police traced his IP address. he attempted to explain that Tor was a system distributed on computers around the world that allowed people in, say, repressive countries to both gain access to forbidden materials (like sex education or the Encyclopedia Britannica) and to send messages and post on websites without the Internet police in those countries finding you. The cops were not in a listening mood.

    He was released not long after, with an apology but waited to tell the world about it on his blog until the charges were officially dropped.

    Tor can be abused as well as used and police forces in theoretically non-repressive countries need to get some night-classes under their belts to avoid arresting people like Janssen, while really miscreants walk free.

    none

    Dan Egerstad of DEranged Security found supposedly secret government information by “sniffing” info from Tor nodes around the world. In a post entitled DEranged Security gives you 100 passwords to Governments & Embassies, Egerstand published the information he found as, according to him, a corrective to the complacency surrounding Internet security.

    Here is everything you need to read classified email and fuck up some serious International business. Hopefully this will put light on the security problems that are never talked about and get at least this fixed with a speed that you never seen your government work before. As a Swedish citizen I can’t give this information to anyone without getting into trouble, so instead I’m giving it to everyone.

    Egerstad subsequently claimed that the United States shut down his site. (Egerstad’s in Sweden.) Later, he explained what he did and how. If you’re capable of following it, you are far more technically adept than I.

    Five ToR exit nodes, at different locations in the world, equipped with our own packet-sniffer focused entirely on POP3 and IMAP traffic using a keyword-filter looking for words like “gov, government, embassy, military, war, terrorism, passport, visa” as well as domains belonging to governments. This was all set up after a small experiment looking into how many users encrypt their mail where one mail caught my eye and got me started thinking doing a large scale test. Each user is not only giving away his/her passwords but also every mail they read or download together with all other traffic such as web and instant messaging.

    Did you get it? These governments told their users to use ToR, a software that sends all your traffic through not one but three other servers that you know absolutely nothing about. Yes, two are getting encrypted traffic but that last exit node is not. There are hundreds of thousands ToR-users but finding these kinds of accounts was… hmm… chocking! The person who wrote the security policy on these accounts should reconsider changing profession, start cleaning toilets! These administrators are responsible for giving away their own countries secrets to foreigners. I can’t call it a mistake, this is pure stupidity and not forgivable!

    4 com

    Sections

    Prepare yourself

    eff

    Safer Blogging Guides

    Safer blogging tools

    Organizations & Projects

    Committee member blogs

    Sponsors & Partners

    keep libel laws out of science

    RSS Wired.com’s Online Rights feed

    Support this

    good luck finding that needle

    Committee Tweets

    tag cloud

    archives

    Find us

    Facebook

    friendfeed

    Flickr

    Twitter

    YouTube

    Contribute

    Who Am I

    We do not know who you are. Please supply your name and email address. Alternatively you can log in if you have a user account or register for a user account if you do not have one.







    Content



    Allowable Tags: <p><b><em><u><strong><a><img><table><tr><td><blockquote><ul><ol><li><br><sup>


    irrepressible.info

    Global Voices: The World is Talking, Are You Listening?

    RSS The Index on Censorship RSS

    RSS The Open Rights Group RSS

    Free Kareem


    ALERT!! A serious injustice was committed. Please take action now! Kareem Amer, an Egyptian blogger who was imprisoned for exercising his right to freedom of speech, is still in prison and needs YOUR help!
    Find out more information by visiting FreeKareem.org or by networking with us.



    Kareem has been in prison for:   1397 days.


    Flickr photos

    Tamer MabroukJames BuckFlag of GuatemalaBlogYoani SanchezLinkedIn

    Most commented