Archive for security

Posted in Announcement, Security with tags , , , , on May 13, 2016 by Sirusdark

Hello readers!

logo_7-zip_001

Quick security announcement: those of you who uses 7-Zip, one of the best free file archiver/compressing tool out there, should make sure it’s up-to-date (just like every single software installed on your system) as some security flaws were discovered. At the time of writing, the latest version is v16.00 (2016-05-10) and that’s the version you should be using.

If you love to see brain splatter on your wall, I invite you to read the security article explaining the details. For others, just install the latest version from 7-Zip’s website. :D

Stay safe!

Sirus

References
-http://blog.talosintel.com/2016/05/multiple-7-zip-vulnerabilities.html

AD – Message to all IT Professionals

Posted in Ads with tags , , , , , , on January 27, 2016 by Sirusdark

A great funny ad that is, Oh! So true!

Ad by Sophos on what users will do and how IT pro can have hope with their advertised security solutions.

Enjoy!

Sirus

How to filter Internet content easily under 30 seconds

Posted in Browser, Free, Internet, Knowledge, Security with tags , , , , , , , , , , on January 7, 2016 by Sirusdark

[ This post will self-destruct… ]

Hello dear readers & visitors!

A friend of mine recently asked me if there was a way to easily filter web content so his kids and family wouldn’t stumble on adult content or other unwanted content.

Among the most simple solutions, one really stood out. It’s FREE, takes 30 seconds to implement, can be customized and in some case,¬†can even increase your browsing speed!

logo-opendns

OpenDNS offer such a service and it’s free! In case you don’t know what OpenDNS is, it’s one of the biggest DNS service provider out there. Also, it’s now part of Cisco. So it’s not some obscure service I’m writing about.

How can you use it? Simply edit your DNS settings in your device or router! There are 2 ways to do it: with or without an account.

Keep-it-simple method

No account, configure and forget. Add these 2 FamilyShield nameservers (DNS resolvers) in your network settings and you’re good to go! It uses a set of presets and does the job well.

208.67.222.123
208.67.220.123

Power users & granular control

Want more POWAH? Create a free OpenDNS account, add your network, customize your categories, create whitelists, etc. and even help tag websites to improve the service!

If you don’t wanna do it for your whole network (via the router), make sure you install the little IP Updater app to update your IP address to your OpenDNS account. It’s available for Linux, Mac and Windows.

208.67.222.222
208.67.220.220

Here you can find the screenshots showing you how to edit your DNS settings in every Windows versions. It’s very straightforward. If you have any questions, ask!

https://support.opendns.com/entries/36904770-Configuration-for-Windows

Now remember, no amount of security and control mechanisms will replace good teaching and being a role model to others.

Be the example to follow.

Enjoy!

Sirus

References
-https://www.opendns.com/home-internet-security/
-https://store.opendns.com/setup/#/familyshield
-https://store.opendns.com/get/home-free
-https://support.opendns.com/entries/23282614
-https://support.opendns.com/entries/36904770-Configuration-for-Windows-computers
-https://www.cisco.com/web/about/ac49/ac0/ac1/ac259/opendns.html
-https://blog.opendns.com/2010/06/23/introducing-familyshield-parental-controls/

Impossibility – Great and fun cyber-security presentation!

Posted in Knowledge, Learning, Security with tags , , , , , , , , on November 21, 2015 by Sirusdark

[ This post has a free bonus! ]

Hello!

I love learning! I really do. What I hate about learning though are bad teachers/communicators. Today I’d like to share with you a nice example of what good knowledge transmission looks like!

I invite you to watch this valuable entertaining and eye opening presentation on cyber-security:

James Lyne, Sophos: Anatomy of an Attack

Presentation by James Lyne of Sophos at the 2011 e-Crime Wales Summit.

Do NOT let the date fool you: everything that’s talked about in this presentation is valid, STILL (unfortunately) current and happening everyday.

Do yourself and your friends a favor, watch it, share it and have a laugh too!

BONUS
logo_handbrake
Handbrake
– Your video editing companion. Resize, compress convert and much more!

Enjoy!

Sirus

Tweak Windows 8 security – Configure auto-play settings

Posted in Security, Tweaking, Windows with tags , , on March 6, 2014 by Sirusdark

Here’s how to secure your Windows 8 system with an easy tweak: disable auto-play for all devices. That way, whatever you insert in your optical drive or USB ports, nothing will run automatically.

We used to rely on a third party software to do that in Windows XP (via Tweak UI). Not anymore: it’s now a native feature integrated into Windows 8!

Disabling Windows Auto-Play

Here’s how to secure your system by disabling auto-play on all devices.

Control Panel > Hardware and Sound > AutoPlay

Then simply UNCHECK: “Use AutoPlay for all media and devices” and choose the action you wish for each type of devices. In this case, choose “Take no action“.

That’s it!

Enjoy!

Sirus
sirusdark.ca

Secure your personnal data – Part 2: FileZilla (FTP client)

Posted in Privacy, Security, Software, Tweaking with tags , , , , on April 16, 2013 by Sirusdark

Welcome to another ultra fast and simple how-to!

ABOUT

Why encrypt FileZilla’s config files? Well, by default FileZilla stores the information in plain text and if your computer gets compromised, you’ll regret it, a LOT. If you value your data, secure that information. Here’s how:

STEPS

1. Create a TrueCrypt encrypted container (50Mb or less) then mount it on the Drive letter of your choice. Let’s pick “Q:“.
2. Create a folder in that container (unless you want a whole container just for FileZilla) and let’s name it filezilla_config.
3. Now simply redirect FileZilla’s config in that folder by editing fzdefaults.xml (located in FileZilla’s ProgramFiles folder) like this:

<Setting name=”Config Location”>Q:\filezilla_config
</Setting>

4. Now, FileZilla’s data is secure and won’t even start until you mount again that encrypted container!
5. Since you’re using an encrypted container, keep multiple copies, stored in different places. Simple¬† precaution.

Enjoy!

Sirus
sirusdark.ca

References:
-http://www.truecrypt.org/
-https://sirusdark.wordpress.com/2011/02/18/secure-your-personal-data-in-5-min/

Secure your personal data in 5 min

Posted in Privacy, Security, Software with tags , , on February 18, 2011 by Sirusdark

Welcome to an ultra fast and simple how-to.

 

ABOUT

You are now going to learn how to secure important data in less than 5 minutes. There are other ways to secure data, but the following method is meant to be fast, easy, reliable and free. TrueCrypt is an Open Source encryption program that simple, fast, secure (as in military-grade), used by millions of people (don’t believe it? -> TrueCrypt Stats) and is free!

 

GOAL

-Protect sensitive and/or private data. For real.

-Do so with a reliable, flexible and free solution.

 

NOTES

-This tutorial is aimed at a Windows environment. Instructions for other OS may differ.

-Few details and explanation are given. Get going and secure your stuff today.

-I do not provide ANY kind of help. Read & enjoy!

 

STEPS (read first, then go for it!)

1. Download TrueCrypt. (http://www.truecrypt.org/downloads) ONLY download form TrueCrypt.org.

2. Install TrueCrypt in portable mode, which is simple to do: select “extract” instead of install. This means you could choose to extract the files on a USB key and get yourself a portable military-grade encryption software anywhere you go.

3. Start TrueCrypt. (TrueCrypt.exe) You may create a shortcut if you want.

4. Press “Create volume” -> Next (Create an encrypted file container) -> Next (Standard TruCrypt volume). Click “Select file” (I know, it’s weird, because we are creating a new file… anyway). Pick a name, save and click Next -> Next (Encryptions Options).

5. Volume Size – Now choose how big you want your container/volume to be. Pick a small size, but not too small. 50Mb is what I recommend (which is enough for personal information). Why small? To make this encrypted container portable and easy to upload/download/backup, etc. If you want or need bigger, go for it.

6. After you’ve define the size, create a password. You cannot recover a lost password with TrueCrypt. Consider yourself warned.

7. Volume Format – Choose NTFS (unless you have specific needs). Leave the rest as is (cluster: default, dynamic: unchecked) Move your mouse around to generate a random encryption algorithm.

8. Click “Format” to create your encrypted volume with the parameters you just configured. Exit.

9. To use the volume, select any drive letter you want to use. Then, “Select file“, choose your volume (yes you can have many volumes) and click “mount“. Tadam!

10. You can now create, move files/folders in your mounted volume just like any files in Windows. Exit TrueCrypt and you will notice it minimized into an icon in the tray bar. TrueCrypt won’t shutdown if you have a volume mounted.

11. Unmount the volume and you have a secure vault impossible to crack without the password. Keep copies & backups of it anywhere you want, no one can access the content anyway. Now you can close TrueCrypt.

 

There. No more excuses for lost or stolen data.

 

You could store your volume(s)/files for free on Dropbox (2Gb), SkyDrive (25Gb/5Gb Synced), Google Docs (undefined limit), etc. Or keep copies on external hard drives, USB keys, cell phone, etc. Go crazy.

 

I hope you enjoyed this tutorial as much I did making it! Feel free to comment and report any mistakes.

 

Sirus
sirusdark.ca

References
-http://www.truecrypt.org/
-http://www.truecrypt.org/statistics