[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Safety Check

To: list@xxxxxxxxxxxxx
Subject: Re: [LUG] Safety Check
From: Martijn Grooten <martijn@xxxxxxxxxxxxxxxxxx>
Date: Sat, 14 Nov 2015 10:41:26 +0000
Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dcglug.org.uk; s=1444208763; h=Sender:Content-Type:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Reply-To:Subject:In-Reply-To:MIME-Version:References:Message-ID:To:From:Date; bh=GiVvcqV+lAbCb1cT4E0JpdonfVpavyiimDg/HXhwuFY=; b=Nm42WXkkd4yjnNlud16zWpTYeoFuPdlXxtmq07PB273997GHB2J6HV4o0G8LRuN92bC6iMbnqVwzpVhIUxDxm6wyfuQ83cyPy4oGevgI7pywUyqnSNIM7nEEVvfNW8nuxdQrLNEhJqjDq7dBNm6zbrPV/3QQOY7/bTSxwiJFGZM=;
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=lapsedordinary.net; s=mail; t=1447497686; bh=7lkA8jodRvfES+JFijobQgeatuCWBvLPvaPLUrv0aQY=; h=Date:From:To:Subject:Message-ID:References:MIME-Version: Content-Type:In-Reply-To; b=XDBK7PKMY396m1n1TrPGyEUQ/irBXG+Y1KJGDcdoDlSKsAkHn5pnqHmwF35ofG/XW 8bpIx0o8bX1TKB2WrZTwPX3FN7PYh6bztClmaFCRAzWLB8ZOICfcAH1N4uIQkW7+My Jhq494M/mHATZziir/PmaX4+IcYJj8No4iJeFNVw=

As always, if you're worried about your online security, it is wise to
think of your threat model. I assume, for example, you're not worried
about the NSA spending hundreds of thousands of dollars to install
microphones all around your house. You're probably not worried about
cybercriminals spending thousands of pounds to steal millions from your
bank account.

> Computer.
> I use Linux only, not MS or Apple.

This reduces the likeliness of falling victim, as Linux (as a Desktop
OS) is a far less common target.

> It is linked to the router by cable, no wifi.

WiFi isn't particularly insecure if used well.

> The UFW firewall is on.

Depending on your network setup, this can help.

> I always run any updates.

This is very important.

> However, no anti-virus.

Right now, given the number of threats against Linux, this shouldn't be
a real issue.

> Email
> I do use the spam filter.

This reduces the likeliness of you clicking on an email.

> I am very careful about what links I click on.

Good. This is very important.

> Browser
> I use noscript, ghostery, AdBlock plus, Privacy Badger

NoScript removes JavaScript which is used in just about every web-based
threat.
AdBlock plus removes ads, which are sometimes used to serve malware.
Ghostery and Privacy Badger matter only if you're worried about websites
(and, by implication, governments) tracking you.

I would also disable Java and make Flash click-to-play. With that, you
wouldn't even need an ad-blocker.

> However at the moment I do not use any VPN.

This only matters if you're worried about your government and/or your
ISP spying on you, or if you use your device on (someone else's)
unsecured WiFi.

> Mostly when browsing I use Duckduckgo or Startpage.

This matters is you're worried about Google tracking you.

> Phone
> I do have a mobile phone, but it is not a smart phone.

I don't think there are any serious threats against "feature phones", as
they're called.
 
> So am I OTT? Or do I not do enough?

Use strong and, especially different passwords. Keep backups of
important stuff.

Some things may seem a bit OTT. You can use a smartphone just fine and
the same with WiFi or Google. But if you don't need them, I don't see
why you should.

Martijn.


Martijn.

Attachment: signature.asc
Description: Digital signature

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq

Follow-up: Re: [LUG] Safety Check
- From: Martijn Grooten

References:
- [LUG] Safety Check
  - From: Neil Winchurst

Prev by Date: Re: [LUG] Safety Check
Next by Date: Re: [LUG] Safety Check
Previous by thread: Re: [LUG] Safety Check
Next by thread: Re: [LUG] Safety Check
Index(es):
- Date
- Thread