Re: Secure browsers in Security

Re: Secure browsers in Security http://www.dslreports.com/forum/r20183503 en Thu, 21 Aug 2008 04:57:58 EDT Thu, 21 Aug 2008 04:57:58 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20194507 Psicop : Hey dude,

You are a bit demanding with your requirements.

Let me ask you something, have you hardened your box before jumping into the browser wagon?

Just read the info given in here just in case you haven't (and slowly because there is a lot to digest):

»kareldjag.over-blog.com/ ]]> http://www.dslreports.com/forum/remark,20194507 Thu, 20 Mar 2008 07:35:52 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20194385 Dunkan : Cudni
If it works ok and has all the features that included to surf
securely etc.. i m ready to pay instead of using free stuff
and fell unsecured so to say
Anyway this is your opinion and i respect it
I dont wanna try all free stuff i want one (even if i have to pay) that contains all features in free ones]]> http://www.dslreports.com/forum/remark,20194385 Thu, 20 Mar 2008 05:58:04 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20194370 Cudni : did you try what we all suggested or are you that keen to pay for something?

Cudni]]> http://www.dslreports.com/forum/remark,20194370 Thu, 20 Mar 2008 05:46:30 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20194367 Dunkan :

said by Cudni

:

You must be kidding, pay good money for something that you can have for free. Try running any true browsers using Sandboxie instead

Cudni

Have u tried it generally
or u just saw price and thats it]]> http://www.dslreports.com/forum/remark,20194367 Thu, 20 Mar 2008 05:41:20 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20194359 Cudni : You must be kidding, pay good money for something that you can have for free. Try running any true browsers using Sandboxie instead

Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006-2007]]> http://www.dslreports.com/forum/remark,20194359 Thu, 20 Mar 2008 05:30:06 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20194325 Dunkan : Hi there,
anyone tried Private Browser
How is it
I think its more or less secure
It has quite good collection of features that
i need to surf anonymously
Finally it has pretty nice GUI ]]> http://www.dslreports.com/forum/remark,20194325 Thu, 20 Mar 2008 04:37:07 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20191184 anon : there are many reasons why a portable is more secure :D]]> http://www.dslreports.com/forum/remark,20191184 Wed, 19 Mar 2008 15:50:14 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20189641 anon : I found one too. It is called "TurnOffComputerAndPutItInTheAttic". It is 100 percent secure.]]> http://www.dslreports.com/forum/remark,20189641 Wed, 19 Mar 2008 10:55:59 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20188937 Dunkan :

said by anonanon :

xb_browser »xerobank.com/xB_browser.html A.K.A torpark

I have already tried xbbrowser
Yesterday i have found a forum where people posted
about secure browsers
XbBrowser was also mentioned
There was another browser called Private Browser
Here is the link »eisst.com/products/private_browser/hd/
Now i am testing it

]]> http://www.dslreports.com/forum/remark,20188937 Wed, 19 Mar 2008 02:48:55 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20188784 Dunkan :

said by TSI Gabe

:

telnet is the most secure "browser". :D

I don't think so
May be telnet is the most secure comparing all the listed browsers :)]]> http://www.dslreports.com/forum/remark,20188784 Wed, 19 Mar 2008 01:31:10 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20188761 La Luna : And they are more secure why?

The OP didn't mention wanting a "portable" browser.]]> http://www.dslreports.com/forum/remark,20188761 Wed, 19 Mar 2008 01:24:59 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20188479 EGeezer : Since the OP has ruled out firefox
opera,safari etc... (I'm assuming "etc ... means the rest of the generally available browsers) I suggest using Lynx on a Linux boot.

If the OP feels it's important enough to get more suggestions I'm sure he will post a complete list of unacceptable browsers and his specific security requirements.

Oh wait - Use IE7, You didn't rule that out. As for anonymous proxies, they are only as secure as their operators, who have complete access to your routing. If you trust some operator in Eastern Europe with your traffic, go for it.
--
Mayors of New York come from nowhere and go nowhere.
Wallace Sayre (apparently, so do governors... )]]> http://www.dslreports.com/forum/remark,20188479 Tue, 18 Mar 2008 23:50:35 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20188111 TSI Gabe : telnet is the most secure "browser". :D
--
TSI Gabe - TekSavvy Solutions Inc.]]> http://www.dslreports.com/forum/remark,20188111 Tue, 18 Mar 2008 22:35:19 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20186043 anon : portable k-meleon with adblock plus installed in the portable KM folder.

portable KM download link
»pagesperso-orange.fr/jujuland/km···l#Pocket

KM projects page
»appstogo.mcfadzean.org.uk/kmeleon.html#pkm

KM adblock plus
»adblockplus.org/en/kmeleon

]]> http://www.dslreports.com/forum/remark,20186043 Tue, 18 Mar 2008 16:13:18 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20185798 anon : xb_browser »xerobank.com/xB_browser.html A.K.A torpark

]]> http://www.dslreports.com/forum/remark,20185798 Tue, 18 Mar 2008 15:31:09 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20185632 AB :

said by Dunkan

:

Hi there,
Can anyone suggest really secure browser(s) except for firefox
opera,safari etc...
I tried to find any secure browser but all in vain . . . .

. . Please post

Ah! You want a secure browser other than the secure ones.
Yes, perfectly understandable.

Let me research that one for you. I'll get back to you ASAP.]]> http://www.dslreports.com/forum/remark,20185632 Tue, 18 Mar 2008 14:57:54 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184643 OMEGA_RAZER : I'm a little surprised no one has suggested portable Firefox...]]> http://www.dslreports.com/forum/remark,20184643 Tue, 18 Mar 2008 11:56:51 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184552 chrisretusn :

said by javaMan

:

Please don't obscure the issue with facts.

Or old information. :)]]> http://www.dslreports.com/forum/remark,20184552 Tue, 18 Mar 2008 11:41:14 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184350 La Luna :

said by Dunkan

said by Davebo_

:

Proof - right now....

»www.pcmag.com/article2/0,2704,2138984,00.asp,
»paranoia.dubfire.net/2007/05/rem···fox.html
and many many hacker web sites will prove to u

First of all, both articles are almost a year old.

Secondly, don't believe ALL the FUD you read on the "internet".

Thirdly, use the correct extensions and DON'T use the incorrect ones (those not downloaded directly from Mozilla, as also mentioned) with Fx.

I don't know if that vulnerability even still exists, it may have been patched by now. Not to mention one of the following situations ALSO needs to be true for this vulnerability to work: "this possibility exists whenever the user cannot trust their domain name server (DNS) or network connection. Examples of this include public wireless networks, and users connected to compromised home routers".

There is NO browser that is 100% "secure", there is only MORE secure. And that would be Fx, especially with the right extensions.
--
10,741 DEADLY TERROR ATTACKS SINCE 9/11~~TEAM DISCOVERY
Can't feel you anymore, don't need you anymore, don't believe you anymore, I don't need you anymore
]]> http://www.dslreports.com/forum/remark,20184350 Tue, 18 Mar 2008 11:12:11 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184248 javaMan :

said by tempnexus

:

Well it's called LSP entry under SOFTWARE RESTRICTION POLICY -> ADDITIONAL RULES -> New Path Rule (point to the browser and choose security level).

The whole system will still run as Admin but the browser will run as Whatever security you specify (and so will it's child process...or at least in most cases)

Or they could use limited/standard accounts--the recommended method--and not have to do it at all. Anyway, I didn't mean to sidetrack the thread.
--
Woe unto them that call evil good, and good evil; that put darkness for light, and light for darkness. . . Isa. 5:20]]> http://www.dslreports.com/forum/remark,20184248 Tue, 18 Mar 2008 10:55:19 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184219 tempnexus :
Well it's called LSP entry under SOFTWARE RESTRICTION POLICY -> ADDITIONAL RULES -> New Path Rule (point to the browser and choose security level).

The whole system will still run as Admin but the browser will run as Whatever security you specify (and so will it's child process...or at least in most cases)]]> http://www.dslreports.com/forum/remark,20184219 Tue, 18 Mar 2008 10:50:09 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184182 javaMan :

said by tempnexus

:

. . .

Of course running in LIMITED or GUEST rights via LSP will help a lot since the child spawned by the parent will inherit the parents rights...but just to be sure, you can always add JAVA and Flash into Limited/Guest LSP entry.

Running as limited or guest? You must be kidding. That's asking the impossible of Windows users. :)
--
Woe unto them that call evil good, and good evil; that put darkness for light, and light for darkness. . . Isa. 5:20]]> http://www.dslreports.com/forum/remark,20184182 Tue, 18 Mar 2008 10:41:36 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184107 tempnexus : Find me a "Secure" browser that allows full Java and Macromedia compatibility???
We are no longer looking at BROWSER EXPLOITS, we are looking at JAVA exploits and Macromedia (aka flash) exploits. You can't have a secure browser if you allow it to execute unsecure code like JAVA and/or Flash.
Your attack vector is no longer against the browser engine it's against the JAVA and FLASH.
Of course running in LIMITED or GUEST rights via LSP will help a lot since the child spawned by the parent will inherit the parents rights...but just to be sure, you can always add JAVA and Flash into Limited/Guest LSP entry.

And in all fariness his Definition of "secure" is actually "Obfuscated" aka "annonymous" browsing and not "security/antiexploit" browsing.]]> http://www.dslreports.com/forum/remark,20184107 Tue, 18 Mar 2008 10:29:05 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184104 Davebo_ :

said by Dunkan

said by Davebo_

:

Proof - right now....

»www.pcmag.com/article2/0,2704,2138984,00.asp,
»paranoia.dubfire.net/2007/05/rem···fox.html
and many many hacker web sites will prove to u

PCmag (lol) and a blog entry, eh?

NEXT!

In fairness, all browsers are insecure. Firefox, configured properly, is the most secure browser out there IMO. Opera is pretty decent as well, if you can get used to it.]]> http://www.dslreports.com/forum/remark,20184104 Tue, 18 Mar 2008 10:28:48 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20184064 quatrix :

said by tempnexus

:

Well:
FireFox with NoScript, AdBlock and Lowered Rights via Local Security Policy for that browser.

Opera with Java unticked and Macromedia unticked also with lowered rights via LSP for that browser.

He said "secure", not "crippled". You don't cut off your arm to avoid getting a papercut.]]> http://www.dslreports.com/forum/remark,20184064 Tue, 18 Mar 2008 10:23:51 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183943 Cudni :

said by javaMan

:

Please don't obscure the issue with facts.

I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.
I will not obscure the issue with facts.

Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006-2007]]> http://www.dslreports.com/forum/remark,20183943 Tue, 18 Mar 2008 09:56:18 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183918 Psicop : If you want to feel better: Ablock Plus and especially NoScript update almost daily in this box.

Edit: The extensions mentioned in the link you provided are basically virus magnets. I wouldn't touch any of those even with a 10 foot pole.

A different story is clicking on a "MySpace fake invite" as I did not many months ago. In that instance you are basically "pollo frito."]]> http://www.dslreports.com/forum/remark,20183918 Tue, 18 Mar 2008 09:49:47 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183910 javaMan :

said by Cudni

said by Dunkan

:
»www.pcmag.com/article2/0,2704,2138984,00.asp,
»paranoia.dubfire.net/2007/05/rem···fox.html
and many many hacker web sites will prove to u

Please don't obscure the issue with facts.
--
Woe unto them that call evil good, and good evil; that put darkness for light, and light for darkness. . . Isa. 5:20]]> http://www.dslreports.com/forum/remark,20183910 Tue, 18 Mar 2008 09:47:45 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183870 Cudni :

said by Dunkan

said by Davebo_

:

Proof - right now....

»www.pcmag.com/article2/0,2704,2138984,00.asp,
»paranoia.dubfire.net/2007/05/rem···fox.html
and many many hacker web sites will prove to u

If you look in your second link you will see
"...
Users of popular Firefox extensions such as NoScript, Greasemonkey, and AdBlock Plus have nothing to worry about.
..."
and from the 1st link
"...
The attack requires that other significant compromises exist on the network—specifically that the user's DNS server be compromised
.."

Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006-2007]]> http://www.dslreports.com/forum/remark,20183870 Tue, 18 Mar 2008 09:37:24 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183857 Dunkan :

said by Davebo_

:

Proof - right now....

»www.pcmag.com/article2/0,2704,2138984,00.asp,
»paranoia.dubfire.net/2007/05/rem···fox.html
and many many hacker web sites will prove to u]]> http://www.dslreports.com/forum/remark,20183857 Tue, 18 Mar 2008 09:33:48 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183802 Cudni :

said by Dunkan

:

Firefox addons has dozen of vulnerabilities and
also firefox launches very slowly with many addons installed

None of the ones listed in this thread here have known vulnerabilities and with them installed FF will load as it usually does

Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006-2007]]> http://www.dslreports.com/forum/remark,20183802 Tue, 18 Mar 2008 09:19:36 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183788 Davebo_ : Proof - right now....]]> http://www.dslreports.com/forum/remark,20183788 Tue, 18 Mar 2008 09:17:20 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183771 Dunkan :

said by Cudni

:

once you installed Tor then you can use Torbutton extension in Firefox to quickly enable/disable browsing via Tor
»https://addons.mozilla.org/en-US/firefox/addon/2275

You are aware, i assume, that there could be some issues
»Rogue Nodes Turn Tor Anonymizer Into Eavesdropper's Paradise

Cudni

Firefox addons has dozen of vulnerabilities and
also firefox launches very slowly with many addons installed]]> http://www.dslreports.com/forum/remark,20183771 Tue, 18 Mar 2008 09:12:46 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183732 Cudni : once you installed Tor then you can use Torbutton extension in Firefox to quickly enable/disable browsing via Tor
»https://addons.mozilla.org/en-US/firefox/addon/2275

You are aware, i assume, that there could be some issues
»Rogue Nodes Turn Tor Anonymizer Into Eavesdropper's Paradise

Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006-2007]]> http://www.dslreports.com/forum/remark,20183732 Tue, 18 Mar 2008 09:02:59 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183677 Dunkan :

said by tempnexus

Actually I mean the browser that could provide anonymous web
surfing opportunity using TOR and encrypted private data that stored in my pc, all included so to say]]> http://www.dslreports.com/forum/remark,20183677 Tue, 18 Mar 2008 08:49:57 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183633 Psicop : Try these:

»offbyone.com/offbyone/
»www.delorie.com/web/lynxview.html

See the screenie for how does Lynx view this thread.

Not pretty but effective as.

]]> http://www.dslreports.com/forum/remark,20183633 Tue, 18 Mar 2008 08:36:12 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183503 anon :

Dunkan

Let the fun begin !

Make your own broswer...take your time..you can..if you really want to.

See:

»www.beansoftware.com/Windows-For···ser.aspx
]]> http://www.dslreports.com/forum/remark,20183503 Tue, 18 Mar 2008 07:46:00 EDT Re: Secure browsers http://www.dslreports.com/forum/remark,20183481 tempnexus : Well:
FireFox with NoScript, AdBlock and Lowered Rights via Local Security Policy for that browser.

Opera with Java unticked and Macromedia unticked also with lowered rights via LSP for that browser.

The rest of the browsers are actually based on either OPERA, IE or Mozilla code.]]> http://www.dslreports.com/forum/remark,20183481 Tue, 18 Mar 2008 07:31:39 EDT Secure browsers http://www.dslreports.com/forum/remark,20183455 Dunkan : Hi there,
Can anyone suggest really secure browser(s) except for firefox
opera,safari etc...
I tried to find any secure browser but all in vain
None of the browsers that i have found don't fit me
If U know browsers that can produce good security facilities
Please post ]]> http://www.dslreports.com/forum/remark,20183455 Tue, 18 Mar 2008 07:20:52 EDT