It looks like you're having connection troubles. Reconnect now.
12/29/2014 22:36:00
Public Pad Latest text of pad 1xOh6z8Uus Saved Dec 29, 2014 |
DO! NO! TRACK!
31C3, 2014-12-29, 2 pm
Hello everbody!
in linux:
firefox -no-remote -P
Hints:
(1)
Firefox has a great built-in tool – the Network Monitor – for watching what happens on the network.
To see that, simply press Ctrl+Shift+Q – or click on the Menu --> Developer --> Network
There you can see all requests the browser sends to servers. If you click on a row, you can see the details to the right.
For details see https://developer.mozilla.org/en-US/docs/Tools/Network_Monitor
To clarify:
In general, a website or company can collect data passively or actively. Collecting data passively means remembering the data that the server receives by the HTTP(S) request itself. Actively means the company or server adds things/objects to the website – which in fact might be invisible – or via cookies etc.
A company or server does not necessarily have to remember the data that the server receives – whether actively or passively –, but it's very easy to collect the data and save it on a disk
((
http://www.heise.de/newsticker/meldung/Adblock-Plus-Weitere-Vorwuerfe-und-Widersprueche-1909535.html
))
Tools
---------
FF Add On: CacheViewer
for flash cookies: http://samy.pl/evercookie/
Addon against flash cookies: https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/ (remember to check the settings)
http://samy.pl/evercookie/ compared to https://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager06.html ?? also compare to Chrome's/Firefox's delete browser data (including Flash)
which websites can track the mouse pointer location and how?
To prevent tracking the mouse you have to disable JavaScript. Thanks! I guess the sites can see the EXACT position? Every milisecond? Also scrolling position?
yes, see Web API reference: https://developer.mozilla.org/en-US/docs/Web/Reference/API
List of all Events: https://developer.mozilla.org/en-US/docs/Web/Events
private session = temporary storage of data on computer, deleted afterwards automatically ?
portable browsers vs installed browsers are equally secure/private?
AFAICT there is no difference. You could create a completely new profile every time you start firefox. You could also have different profiles. Nevertheless, data outside of the profile directory stays on the PC, e.g. Flash Cookies.
"Block reported attack sites" --> are my URLs sent to Firefox servers or compared to a locally downloaded blacklist? (also in Chrome safe browsing)
https://www.google.com/safebrowsing/diagnostic?site=Google.com integrated into chrome (and Firefox, Safari, etc?)
Go through Chrome's privacy settings at the end of the talk.
How much data can a DNS server like 8.8.8.8 or OpenDNS, etc get from me? They can see every url I am visiting (and with DNS prefetching enabled also links that I did not click but are on the website I visit?)
Unfortunately the TOR browser bundle or TAILS are not hardened as much as possible (Javascript, referrer,...) by default
IXquick vs duckduckgo vs metager.de (vs qwant.com) ??? (just ixquick uses google?)
Disconnect:
Anti Tracking: https://addons.mozilla.org/ru/firefox/addon/disconnect/
WOT and ghostly addons are useful but the companies are working with advertising networks (I think)
Ghostly vs https://www.requestpolicy.com vs NoScript (vs Adblock EasyPrivacy/AntiSocial lists ... less controll) ???
If I have NoScript installed, installing Ghostly doesn't make any sense, right?
some addons/extensions hide their code through base64??
Sites can track through pictures. I can disable pictures in the browser settings, but can sites still track me if I have JS disabled?
(HTTP nowhere)
Can my mobile network provider like T-Mobile see my MAC adress?
