Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Al1000s Secure Puppy CD tutorial, extras ?


  • Please log in to reply
4 replies to this topic

#1 dino2014

dino2014

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 22 January 2017 - 12:11 PM

Hi,

 

I'm a Linux newbie and have been running though Al1000s  great Puppy CD tutorial and got everything loaded with v 6.0.5 including Palemoon, with the intention of using it just for safer banking.

https://www.bleepingcomputer.com/forums/t/561869/how-to-create-a-secure-multi-session-puppy-cd-with-updatable-firefox-browser/

 

I know there are other more specialised distros said to be more secure etc etc, but i'm not Edward Snowden, though was wondering if there are any further addons  or settings  I can use on the puppy CD to futher enhance the security factor for banking.

 

Thanks

 

 



BC AdBot (Login to Remove)

 


#2 Mike_Walsh

Mike_Walsh

    Bleepin' 'Puppy' nut..!!


  • Members
  • 1,250 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:King's Lynn, UK
  • Local time:10:58 PM

Posted 22 January 2017 - 07:44 PM

Hi, dino2014.

 

Well now; I run Puppy myself, as a day-to-day OS.

 

It matters not whether you run Pup from multi-session CD (which is perfect just for online banking), as a USB 'frugal' install, or as an HDD 'frugal' install. Pup's biggest advantage is that of running entirely in RAM. As we all know, the contents of RAM are 'flushed' when you power-off. Result? Any 'nasties' which you may have accrued during your 'session' disappear, like vanishing ink..!

 

And because you're loading Pup into RAM from compressed, 'read-only' files, you're getting a brand-new, squeaky-clean copy of Pup every time you boot.

 

I'm not a FireFox fan, I'll be honest; I much prefer Chrome, and the Chromium-based browsers, like SlimJet, Iron, Vivaldi, and the like. However, I know there's supposed to be a lot more extensions for FireFox which will help with security, and that sort of thing.

 

Essentially, though, Pup is pretty secure by the very nature of the way it runs. There's not much else in the way of additional steps you need to take.....especially if you do like some Puppians do with the multi-session disc, and d/l a fresh copy of FireFox every time they boot.

 

That will depend on your available bandwidth from your ISP.....and how often you need to visit your bank!

 

 

Mike.  :wink:


Distros:- Multiple 'Puppies'..... and Anti-X 16.1

My Puppy BLOG ~~~  My Puppy PACKAGES

Compaq Presario SR1916UK; Athlon64 X2 3800+, 3 GB RAM, WD 500GB Caviar 'Blue', 32GB Kingspec PATA SSD, Seagate 'Expansion' 3 TB  USB 3.0 external HDD, ATI Radeon Xpress 200 graphics, Dell 15.1" pNp monitor (1024 x 768), TP-Link PCI-e USB 3.0 card, Belkin PCI USB 2.0 4-port card, self-powered 7-port USB 2.0 hub

Dell Inspiron 1100; 2.6 GHz P4, 1.5 GB DDR1, 64GB KingSpec IDE SSD, Intel 'Extreme' graphics, 1 TB Seagate 'Expansion' external storage, HP HD2300 webcam.

 

KXhaWqy.gifFQ8nrJ3.gif

 

 


#3 Gary R

Gary R

    MRU Admin


  • Malware Response Team
  • 731 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:58 PM

Posted 23 January 2017 - 01:03 AM

If you're using Firefox as your browser, then there are a few add-ons you can install to it that will make it more secure.

 

All modifications of this type do of course come at a price, and often have some affect on a browser's functionality, in as much as it will usually take longer to load, may run slightly slower, and may require you to "allow" some actions before they are performed.

 

That being said, I personally use the following ...

 

NoScript ... https://addons.mozilla.org/en-gb/firefox/addon/noscript/ ... which only allows scripts embedded in web pages to run if you allow them (it can be disabled on a site by site basis for sites you trust).

 

https everywhere ... https://addons.mozilla.org/en-gb/firefox/addon/https-everywhere/?src=ss ... automatically uses the encrypted version of a web page if it is available, making it more difficult for people to "spy" on you.

 

uBlock Origin ... https://addons.mozilla.org/en-gb/firefox/addon/ublock-origin/?src=ss ... blocks ads and web beacons

 

trafficlight ... https://addons.mozilla.org/en-gb/firefox/addon/trafficlight/?src=ss ... gives you a simple colour coded indication of the "reputation" of any web page that you may be landing on. Also colour codes your web search results.

 

selfdestructingcookies ... https://addons.mozilla.org/en-gb/firefox/addon/self-destructing-cookies/?src=ss ... automatically deletes any cookies or other locally stored content when you leave a website.


Edited by Gary R, 23 January 2017 - 01:08 AM.


#4 Al1000

Al1000

  • Global Moderator
  • 7,163 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:10:58 PM

Posted 23 January 2017 - 09:42 AM

Generally, I also use NoScript (and AdBlockPlus) in Firefox, but it would be a hassle to use it on a Puppy CD. Main reason being that it uses a whitelist, which you build up over time, by "allowing" scripts to run on web pages that you visit, each time you browse the internet. Because you can only save a few sessions to CD before you run out of space, building up a useful whitelist on a Puppy CD isn't really an option.

Someone who already uses NoScript (on a different installation/computer) and has already built a whitelist however, can save their whitelist to CD in the first instance after installing NoScript. (In the same manner as you might manually transfer bookmarks from a browser in one installation, to a browser on another installation)

Nowadays instead of a Puppy CD with Firefox, I use a Puppy USB with Palemoon, but the same principles apply: The idea is that sessions are only saved after updates are applied, and updates are only applied at the start of a session. So I wouldn't use my Puppy USB to build a whitelist (if I didn't already have one) for NoScript, either.

Pleased to hear the tutorial is still useful. :)

#5 dino2014

dino2014
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 23 January 2017 - 09:48 AM

Thanks all, some useful pointers.

 

Will keep using the default Palemoon whic comes with the current 6.0.5 version .

 

 

Pleased to hear the tutorial is still useful. :)

 

Indeed, partic for a Linux newbie like myself.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users