Chrome – Page 2 – Paul's Tech Talk

How to Secure your Chromebook from threats!

PaulNovember 18, 2013

The Journey So far!

When I first started this journey to find a way to use my chrome book to blog and keep it safe, I just didn’t know how hard it was to switch from Windows or even the Linux system to this! It wasn’t as if I had any choice in the matter. It was in my price range, under 300$ and thus I decided I was going to overcome some of the obstacles of the OS. I’m not saying you shouldn’t buy it but I am saying you need to know what your getting into before you try some of these things.

What you need to do!

If it isn’t obvious yet it soon will be is to make sure you have HTTPS Everywhere installed and running. You don’t have much options when it comes to a VPN service but that will be changing soon because I have a great tutorial coming down the pipe from VPN4ALL. I’ve have been talking to them and urging them to come up with a way to use their service with Chromebook. I have found a temporary service for the time but I feel I should keep with my sponsors as long as possible. I will also be publishing the tutorial about the other VPN services that work with Chrome OS in a few days. As you can see I have been really busy and researching all this!

Password Management!

I have told you in the past, I just love Lastpass and you should be installing a password manager that suites you and here are a few that you can install:

Lastpass (Recommend by me)
1password
Chromelpass (Keepass)
One Last Pass

Some of you probably are wondering why I think this is important. If a hacker got a hold of yoru account because your password was rather weak then you will have lost your chance to keep that account from being compromised. So when your creating passwords it should not be memorable, and should have letters, numbers, and symbols and that is where these guys come in. They all create unique passwords that will keep your account safe and they will also encrypt those passwords in a database.

These are just a few good apps to secure your Chrome OS and keep the bad guys from getting into your online identies and also snooping on your privacy. Each person should worry about stuff like this but I am sure they have no clue. At least this will help you start protecting your stuff and who you are online!

Google doesn’t care about the small blogs!

PaulJanuary 13, 20122 Replies

Google Does it again!

I don’t know why Google is so hard to understand. I don’t know if they are good but Gail over at Growmap thinks they may be evil. I don’t know if they are but I am quite concerned what happened to my blog over the last weekend! It all started with a dramatic drop in people coming to my site. I had a dramatic drop of people who were coming to my site. This is always how it is, when a blog starts to get popular, Google drops them in popularity.

Google Plus World without me!

I don’t know what happened but after all this has happened, people around the blogosphere are recommending an FTC Probe over this. I know I am not the only one but this was a real drastic drop of people coming to my blog through Google. I have decide that I will switch to Bing and still use Google’s Chrome. This is after all a means to tell Google that I am not happy with there search results.

Google No more!

I encourage everyone else that reads this to change to another default search engine in your Web Browser and show Google that we are unhappy with there choice. The Bloggers are what made themnd we can who they are today a we can make some other search engine better or bigger than them. Until they change their tune and goes back to “DO NO EVIL” then maybe I will encourage people to go back to them. I’ve worked hard for this blog and I support Gail’s Attempt over at Growmap’s site and I encourage others to go visit them and tell them I sent you!

Paul Sylvester

Save 70% on Eyeglasses

Google Launch “Search plus Your World” (carocomarketing.com)

Epic to FTC: Google Search+ is violating users’ privacy (guardian.co.uk)

The Weak Antitrust Case against Google – Forbes (forbes.com)

Does “Search Plus Your World” Actually Improve Your Search Results? Not Really (siliconfilter.com)

Google faces antitrust calls over search shake-up – ZDNet UK (zdnet.co.uk)

Trojan.PWS.ChromeInject.A is not a Firefox plugin.

PaulDecember 5, 2008

A new type of malware designed to harvest web passwords has been detected in-the-wild by BitDefender’s antivirus research labs. This latest e-threat – called Trojan.PWS.ChromeInject.A – is intended to be delivered onto a compromised computer system by other malware for subsequent download into Mozilla Firefox’s Plugin folder. Once installed it gets to work every time Firefox is started.

[Via Bitdefender]

[ad#ad2-right]So having seen this I thought I’d come up with ways around this to better protect yourself. One way to prevent this from getting your sensitive data is to get a program like Sandboxie. You could stop using Firefox that would be silly, because right now Firefox is more secure than Chrome and Internet Explorer. I’d also suggest checking out my Anti-spyware page and Anti-Virus page and get some more protection.

The key to this virus protection is just be cautious of where you go and keep all you system update to date to prevent all this from happening. It is also advisable to not have your passwords saved on Firefox, you should use something like Roboform, it is free to download and try. It will encrypt your passwords so if they don’t know the master password then they are out of luck. Roboform is also good for coming up with some strong passwords. Just some suggestions to prevent from people seeing your sensitive data, you don’t want anyone to get that data.

Some program Vulnebilities Detected!!

PaulNovember 25, 2008

Just got done looking at some of my security sites and according to SecuriTeam there are are several programs that have vulnerabilities. here are the Ones that I’ve found:

Google chrome is vulnerable to URI Obfuscation vulnerability.
An attacker can easily perform malicious redirection by manipulating the browser functionality. The link can not be traversed properly in status address bar.This could facilitate the impersonation of legitimate web sites in order to steal sensitive information from unsuspecting users. The URI specified with @ character with or without NULL character causes the vulnerability.

[ad#ad2-right]iPhone Configuration Web Utility for Windows Directory Traversal
iPhone Configuration Web Utility lets “you easily create, sign and distribute configuration profiles using a web browser”. A vulnerability in iPhone Configuration Web Utility allows remote attackers to access files that reside outside the bounding root directory of the program’s files folder.

Streamripper Multiple Buffer Overflows
Streamripper “records Shoutcast and Live365 MP3 streams to a hard disk, creating separate files for each track. Runs under Unix and Windows.” Secunia Research has discovered some vulnerabilities in Streamripper, which can be exploited by malicious people to compromise a user’s system.

Amaya URL Bar Stack Overflow Vulnerability
A vulnerability in Amaya browser allows remote attackers to cause it to overflow an internal buffer which in turn can be leveraged to execute arbitrary code.

These are the ones that I found and wanted to let you know about these so you can make your system even more secure. if I find any others I’ll let you know!!!