Get our latest top picks
Subscribe to our Top Picks RSS Feed or enter your email address below to get the feed delivered to you by email:
|
Follow Gizmo |
 |
 |
 |
Register/Login
Top Rated
Gizmo's Freeware is Recruiting
We are looking for people with skills or interest in the following:
- Mobile Platform Reviews
- Rootkit Scanner and Remover
- Streaming Media Recorder
- Email Client
- Archive Manager Interested? Click here
How to Harden Your Browser Against Malware and Privacy Concerns
One of the first lines of defense we have against the plague of security and privacy problems that stalk the internet resides within our browsers. This article is meant to help you to harden your browser against all types of problems. However, do note that I would strongly suggest that even if your main concern is only about privacy you should still read through the security sections as well. Preventing your computer from communicating with potentially dangerous sites, and helping to avoid malware, plays a very important role in increasing your online privacy. Thus, protecting your privacy really does require that you also increase your security.
Also, note that for true protection you should also read my article about How to Stay Safe While Online. To achieve true privacy you should also read my article about How to Protect Your Online Privacy. The article you are currently reading is meant to be used in conjunction with both of these other articles. It is not really meant to be viewed in isolation, although it is certainly useful in that respect as well.
Notice that this article is not really as long as it seems. By this I mean that you really only need to navigate to the section applicable to the browser you are using. You really don't even need to worry about the other sections. Also, note that all instructions are provided assuming that no other changes to the configuration have been made. When configuring these browsers I installed them with default configurations and modified them from there. Also, unless otherwise noted, any instructions provided are applicable to all browsers within the below categories. Whenever specific browsers required different changes I noted that in my instructions.
Index
2. Use A Privacy Focused Search Engine
3. Modify Your Current Browser To Achieve Improved Security And Privacy
A) Instructions For Chromium Browsers
B) Instructions For Firefox (And Firefox Variants)
D) Instructions For Internet Explorer
4. Alternatively Use JonDoFox To Greatly Improve Your Privacy
5. Periodically Clear Browsing Data
1. General Changes To Browser
If you are running Adobe Flash, as most people are, then there are a few changes to the settings you should make. Regardless of which browser you use you should modify your flash player settings to make sure that third-party flash cookies are disabled. If you are running Windows Vista or Windows 7 do this by going to the control panel on your computer. Then go to the subsection for "System and Security". If you are running Windows XP you should go to the control panel and make sure that it is set to "Classic View". At this point you should see the icon for "Flash Player". Open it. Under the Storage tab make sure the option to "Block all sites from storing information on this computer" is selected. Also, under the Advanced tab make sure that the option to "Allow Adobe to install updates" is selected.
In addition, it's important to know that Java is constantly being exploited in order to install malware on users computers. Also, the java plugin is not even needed for most sites to work properly. Thus, if the java plugin is in fact installed in your browser, my advice would be to remove it unless you find it necessary. In addition, assuming you uninstalled Java entirely from your computer, which I would recommend unless you are actively using it, you should also use the built-in Windows search to find the file "npDeployJava1.dll" on your C-drive and, if it exists, delete it. For some reason this file is not removed with the Java uninstaller. In addition, if there are any plugins you don't use I would recommend that you remove them as well. These may pose a threat to your security.
2. Use A Privacy Focused Search Engine
Google’s search engine records your searches and aggressively tracks you. So do many of the other top search engines. For this reason I would suggest that you use an alternative search engine. One of the best anonymous search engines I've found is called StartPage. This search engine allows you to search using Google's search engine, but it blocks Google's ability to track you. Its not quite as powerful as using Google alone, but it's definitely a very good search engine. More information can be found on this page, and an explanation of how to make it the default search engine of your browser can be found on this page. The same company that makes StartPage also makes a search engine called Ixquick. This gathers its results from many different sources and thus may be even more useful than StartPage. More information about it can be found on this page, and an explanation of how to make it the default search engine of your browser can be found on this page. Both search engines have been certified by an independent third-party to not record your IP address or use tracking cookies.
Another very good option is called DuckDuckGo. This search engine will also not record any information about your searches. DuckDuckGo gathers its search results from a compilation of many sources. It also displays possible answers to the question you asked right at the top of the results page. It can be a very useful search engine. More information about DuckDuckGo can be found on this page, and an explanation of how to make it the default search engine of your browser can be found on this page. Just navigate to the browser you are using and follow the directions provided.
3. Modify Your Current Browser To Achieve Improved Security And Privacy
A) Instructions For Chromium Browsers
All Chromium browsers use the Google Safe Browsing blacklist to protect users from known dangerous sites. The browsers I have reviewed are Google Chrome, Comodo Dragon, and SRWare Iron. All have built-in secure sandboxing, which make them especially difficult for outsiders to exploit, and are quickly patched against any known vulnerabilities. However, I have certain problems with Google Chrome. Although it does have minor privacy concerns, which are discussed on this page and on this one, the major problem I have with it is that it is made by Google. Google is well known for having problems respecting the privacy of others. A good listing of relevant incidents can be found on this page. Because of this I find it very difficult to trust Google Chrome and thus will not recommend that anyone use their products.
Luckily, Comodo Dragon and SRWare Iron do not have these privacy concerns. All of the code has been screened by the developers of these products to make sure that these privacy concerns have been removed. Also, Comodo Dragon comes with the option to enable Comodo Secure DNS, which will automatically stop you from connecting with most malicious sites. I would recommend enabling that, unless you are currently using another secure DNS server and do not want to switch. This will increase the security even higher than what you get by just using the Google Safe Browsing blacklist.
How to Increase Security
If you are using Google Chrome you will want to go to the settings and, at the bottom of the page, select the option to "Show advanced settings". Then select the option to "Check for server certificate revocation". For SRWare Iron you should navigate to the same area and do the same. Then also select the option to "Enable phishing and malware protection". No changes are required for Comodo Dragon.
Use These Extensions
Recommended For Both Beginner and Advanced Users
- Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
- BitDefender TrafficLight: With this installed if you happen upon a dangerous site, which is blacklisted by BitDefender, it will block the page from loading. These include malicious pages, phishing sites, and fraudulent sites. The only advice I have for this extension is that after installing it you should go to the settings for it and disable the option for "Search Result Analyzer". This is to address a potential privacy concern in which your search results would be sent to BitDefender's servers.
-
Adblock Plus for Google Chrome (Beta): This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. These can be found on this page. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to the EasyPrivacy+EasyList combination and Malware Domains. Note that after doing this you can go into your subscriptions and delete the Faboy's List one, as it will now be largely redundant.
Recommended Only For More Advanced Users
- ScriptSafe: This add-on will block nearly all scripts, and other possibly dangerous content, from executing. This means that even if you stumble onto a dangerous site you cannot be attacked unless you manually add the scripts on that site to your whitelist. Thus you are protected from harmful scripts and many privacy threats. However, many sites use these scripts, and plugins, for legitimate purposes. Thus these sites will not work correctly unless you manually add the scripts on that site to your whitelist. This extension makes this relatively easy to do. Also, under the options you should select ‘Antisocial Mode’. Using ScriptSafe takes some getting used to, but if you are serious about staying safe online then this add-on is a must have.
How to Increase Privacy
All chromium browsers provide users with the option to start the browser in incognito mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. In addition I would also advise that you change your default search engine to one which is discussed in section 2.
How to change configuration for improved privacy
Recommended For Both Beginner and Advanced Users
Go to Settings and click on the box at the bottom of the page that says "Show advanced settings".
Under the privacy section uncheck the box to "Use a prediction service to help complete searches...". Note that this change is not required for Comodo Dragon or SRWare Iron. Also make sure the option to "Predict network actions to improve page load performance" is unchecked for all browsers. For all browsers you should also select the option to "Send a 'Do not track' request with your browser traffic". Google Chrome users will also want to deselect the option to "Use a web service to help resolve navigation errors".
Now open the ‘Content Settings’ and select the box to ‘Block third-party cookies from being set’. This will prevent sites from loading cookies that are not from the site that you are currently on. Thus almost all tracking cookies will be blocked with very minimal negative side effects on your browsing. The only time you may have problems, and need to temporarily disable this, is sometimes when a legitimate site redirects you to another page. That said, in most cases it will work fine.
Recommended Only For More Advanced Users
Under the Privacy section, in the main settings menu, check the box that says 'Do not allow websites to know where you came from (suppress HTTP Referrer header)'. Note that this option is not available in Google Chrome and is not required for SRWare Iron. However, do note that this can cause problems with some websites and may need to be disabled in order for some sites to function properly.
More advanced users may wish to just block cookies globally. Then, when it becomes necessary, they can manually add sites to the whitelist. However, this can be somewhat annoying since many sites will not work properly without cookies enabled. You can configure your browser to do this by going to the privacy content settings and selecting the option to not allow sites to set any data. Then you can allow cookies for individual sites through an icon near the URL bar. If blocking cookies globally is too annoying for your tastes then you can instead use the Vanilla extension, which is discussed below. This will allow you to easily decide which cookies to keep, and which to delete. Although it cannot prevent cookies from being placed on your computer, it does allow you to decide how long unwanted cookies should be kept.
Also, advanced users may want to check the option to delete cookies and other site and plug-in data when the browser is closed. What this will do is that each time you close your browser it will clear all cookies, DOM Storage, and most other data. This means that nearly all information from your previous browsing session will be lost each time. Make sure when you've completed making whatever changes you would like to make to your configuration you select OK to save them.
Use These Extensions
Recommended For Both Beginner and Advanced Users
- HTTPS Everywhere: This forces many sites, which have the option to encrypt your connection, to actually encrypt it. Therefore your connection with these sites will be much more secure. Although the version for Chromium browsers is technically still in beta I have noticed no problems with it.
- LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
- Do Not Track Me: This will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit. More information is given in this review.
- Ghostery: When prompted follow the wizard. I recommend that you do not enable GhostRank. Enabling this would allow Ghostery to anomously send information about the pages visited and objects blocked, which would be used for statistical purposes. If you want Ghostery to visually alert you each time it blocks potential privacy problems then leave the option to enable "Alert Bubble" checked. That said, this option is not necessary for our purposes. I would recommend that you select the option to "enable 3pe Library Auto-Update" when given the choice. I would also suggest you select the option to "enable Blocking" and then select the option to block all bugs. This add-on provides protection very similar to that of Do Not Track Plus, but I have seen no problems running both of them alongside each other.
- Window Name Eraser: This add-on helps prevent sites from identifying you, which is possible even if you have cookies disabled. It is specifically designed to help protect you from evercookies.
Recommended Only For More Advanced Users
- Vanilla: This is a very good cookie manager for Chromium browsers. However, if you decided to block all cookies globally, as mentioned above, then this extension is not needed. One major downside to this extension is that it can’t block cookies automatically. However, in the options you can select to ‘Auto delete unwanted cookies after 5 minutes”. You can also configure it to clear unwanted cookies on startup. If you decide to use it I would strongly suggest enabling both features. You also have the option to add sites to the whitelist so that those cookies will never be deleted.
B) Instructions For Firefox (And Firefox Variants)
Firefox, Comodo IceDragon, Pale Moon, and Waterfox (which is only for 64 bit systems) all use the Google Safe Browsing blacklist to protect users from known dangerous sites. All of these browsers are also being constantly updated to protect you from new vulnerabilities.
If you are installing Comodo Ice Dragon I would suggest that you enable the Secure DNS servers, unless you are currently using another secure DNS server and do not want to switch. Comodo DNS servers will block certain dangerous sites which even Google Safe Browsing does not.
Also, I would like to say that any of these browsers would be a good choice in terms of both security and privacy. I suppose that Comodo IceDragon may provide slightly higher security, since it has Comodo DNS Servers to also block known dangerous sites, but any of the browsers are really very good.
How To Increase Security
Use These Add-ons
Recommended For Both Beginner and Advanced Users
- Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
- BitDefender TrafficLight: With this installed if you happen upon a dangerous site, which is blacklisted by BitDefender, it will block the page from loading. These include malicious pages, phishing sites, and fraudulent sites. The only advice I have for this add-on is that after installing it you should go to the settings for it and disable the option for "Search Result Analyzer". This is to address a potential privacy concern in which your search results would be sent to BitDefender's servers.
- LinkExtend: This will show you the safety rating of the page from multiple services. It includes those of WOT, McAfee SiteAdvisor, Web Security Guard, Browser Defender, Norton Safe Web, and Google Safe Browsing. That said, although it can let you know if a site is known to be dangerous it will not automatically stop you from visiting the page. Note that after installing this, and restarting your browser, it will automatically start a wizard. I would advise that most users leave the options as default, although some may prefer to make a few tweaks. However, after finishing the wizard it will prevent you with a list of other programs which can be installed. I would advise that you do not install any of these and instead cancel this window.
- Adblock Plus: This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. These can be found on this page. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to the EasyPrivacy+EasyList combination and Malware Domains. Note that after doing this you should go into your subscriptions and delete the Easylist one, as it will be covered by the combination list and is redundant.
Recommended Only For More Advanced Users
- NoScript: This add-on will block nearly all scripts, and other possibly dangerous content, from executing. This means that even if you stumble upon a dangerous site you cannot be attacked unless you manually add the scripts on that site to your whitelist. Thus you are protected from harmful scripts and many privacy threats. However, many sites use these scripts, and plugins, for legitimate purposes. Thus these sites will not work correctly unless you manually add the scripts on that site to your whitelist. Using NoScript takes some getting used to, but if you are serious about staying safe online this add-on is a must have.
How To Increase Your Privacy
All of these browsers provide users with the option to start the browser in Private Browsing mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. I would also advise that you change your default search engine to one which is discussed in section 2.
How to change configuration for improved privacy
Recommended For Both Beginner and Advanced Users
Go to the dropdown menu and click on options. Then go to the Privacy tab. Make sure that the option that reads "Tell websites I do not want to be tracked" is selected. Now, under "History" select "Use custom settings for history" from the dropdown menu. Make sure that the option to "Accept third-party cookies" is unchecked. This will prevent sites from loading cookies that are not from the site that you are currently on. Thus almost all tracking cookies will be blocked. The only time you may have problems and need to temporarily disable this is sometimes when a legitimate site redirects you to another page. That said, in most cases it will work fine.
Recommended Only For More Advanced Users
More advanced users may wish to prevent cookies from being set at all. To do this please use the Cookie Controller add-on, which is explained below. However, if blocking cookies globally, and whitelisting them manually, seems like too much of a hassle you can instead select the option to only keep the cookies until the browser is closed, which is an option from the dropdown menu under the history section of the privacy tab.
Some users may also want to select the option to Clear history when the browser closes. To do this you can click on "Settings" and select the type of data you would like to have removed. I would advise removing the cookies, cache, and "Offline Website Data" as this will be able to remove most types of tracking data. That said, nearly all information will be lost each time you close your browser, but if you're willing to make the sacrifice it will certainly help improve your privacy. Once you're done making your changes to the settings you can click OK to save them.
Use These Add-ons
Recommended For Both Beginner and Advanced Users
- HTTPS Everywhere: This forces many sites, which have the option to encrypt your connection, to actually encrypt it. Therefore your connection with these sites will be much more secure.
- LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
- Do Not Track Me: This will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit. More information is given in this review. Note that if you use this with Comodo IceDragon it will work. However, it will mess up parts of the top bar. To get around this right click on the top bar and make sure "Add-on bar" is selected. Then select the option to "Customize...". Once this is done drag the Do Not Track Plus icon from the top bar to the customize window. Then drag it from there to the add-on bar, which is at the bottom. This should fix any cosmetic issues related to this add-on.
-
Self-Destructing Cookies: This deletes the cookies related to a site as soon as you close it's tab. Thus, it should increase privacy without reducing usability.
- Ghostery: When prompted follow the wizard. I recommend that you do not enable GhostRank. Enabling this would allow Ghostery to anomously send information about the pages visited and objects blocked, which would be used for statistical purposes. I would suggest you select the options to choose the options to block all 3pes and then to also block all known bad cookies. This add-on provides protection very similar to that of Do Not Track Plus, but I have seen no problems running both of them alongside each other.
- BetterPrivacy: This will automatically prompt you to delete all local shared objects (LSO's) from your computer each time Firefox closes. For more information on why these are such a privacy risk please read this article.
Recommended Only For More Advanced Users
- RequestPolicy: This will block cross-site requests by default. Thus you will be protected from Cross-site request forgery, which otherwise could send information about your browsing habits to unknown parties. When installing this I would advise that you leave the settings at default. Also, I would advise that you do not whitelist any sites unless you are experiencing difficulties.
- Cookie Monster: This add-on extends your privacy protection by blocking all cookies by default. It allows you to quickly and easily allow or block cookies globally and then manually add exceptions for individual sites. Like NoScript this takes some getting used to since many sites will not work correctly without cookies enabled. However, if protecting your privacy is important then this is a must have. Note that if you use this you shouldn't need to also use Self-Destructing Cookies.
- Secret Agent: This add-on will impede most of the fingerprinting-based tracking that is used to track users. After installed it will continually randomize your browser profile. Thus it is not possible to fingerprint your actual browser. However, sometimes this will cause sites to not work correctly. In those cases you may need to disable it for those sites.
C) Instructions For Opera
Opera can be downloaded from this page. In general I do like this browser. However, in my opinion it has a problem with the way disabling javascript globally is handled. Seeing as this is a very critical part of protecting your browser from both security and privacy threats I consider it to be a very large problem with the browser. It is not easy to re-enable java for individual sites without going back into the settings. Also, disabling it globally makes it impossible to run important privacy extensions. I consider this to be a major problem with this browser. This is discussed in greater detail below.
How To Increase Security
How to change configuration of Opera for improved security
Recommended Only For More Advanced Users
Go to the Content section. If you are an advanced user you may want to deselect the option to "Enable JavaScript". This will protect you from any JavaScript based malware or privacy threats, but it will also mean that many websites will not work until you manually allow them. Thus this is a very powerful weapon in your arsenal, but it comes at a price. It greatly affects your browsing experience. In fact, with Opera there is an even greater downside to enabling JavaScript. Disabling this will not allow extensions to function properly. This includes the security and privacy extensions recommended below. Thus the question of whether to disable javascript or not is not a trivial question with Opera, even if you're willing to deal with the additional work of manually whitelisting sites. I leave this choice up to you.
Use These Extensions
Recommended For Both Beginner and Advanced Users
- Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
- NoAds Advanced: After installing this extension go to the manage extensions and then go to the preferences for the extension. Then go to the tab for Subscriptions and select the ones for "Easylist and EasyPrivacy Combination" and the one for "Malware Domains". This will help protect you from ads, malware, and certain privacy threats.
How to Increase Privacy
Like most browsers Opera provides users with the option to start the browser in Private browsing mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. I would also advise that you change your default search engine to one which is discussed in section 2.
How to change configuration of Opera for improved privacy
Recommended For Both Beginner and Advanced Users
Under the settings part of the drop-down menu go to Preferences. Then go to the advanced tab. Under the Cookies section most users will want to select the option to "Accept cookies only from the site I visit". This will prevent sites from loading cookies that are not from the site that you are currently on. Thus almost all tracking cookies will be blocked. The only time you may have problems, and need to temporarily disable this, is sometimes when a legitimate site redirects you to another page. That said, in most cases it will work fine. Also, under the security section select the option to "Ask websites not to track me".
Recommended Only For More Advanced Users
Under the Cookies section more advanced users can select the option to "Never Accept Cookies". This will block any cookies from being set, which will stop some websites from working. For these cases you will need to manually add cookies to the whitelist. It greatly affects your browsing experience as this is not easy to do with Opera. Also, under the network tab, users can deselect the option to "Send referrer information". However, do note that this can cause problems with some websites and may need to be re-enabled.
Also, advanced users may want to go to the History section and turn off the cache for the disk, although this will mean that each time you visit a page it will have to reload from scratch. Thus this will slow down your browsing experience, but it will make it much more difficult for sites to track you. When you are done making your changes select OK to save them.
Use These Extensions
Recommended For Both Beginner and Advanced Users
-
Redirect to HTTPS: This forces many sites, which have the option to encrypt your connection, to actually encrypt it. Therefore your connection with these sites will be much more secure.
- LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
- Ghostery: When prompted follow the wizard. I recommend that you do not enable GhostRank. Enabling this would allow Ghostery to anomously send information about the pages visited and objects blocked, which would be used for statistical purposes. If you want it to visually alert you each time it blocks potential privacy problems then leave the option to enable "Alert Bubble" checked. That said, this option is not necessary for our purposes. I would recommend that you select the option to "enable 3pe Library Auto-Update" when given the choice. I would also suggest you select the option to "enable Blocking" and then select the option to block all bugs. This extension provides protection very similar to that of Do Not Track Plus, but I have seen no problems running both of them alongside each other.
D) Instructions For Internet Explorer
Note that with Internet Explorer you need to enable add-ons after installing them. This will appear as a popup at the bottom of the screen.
How to Increase Security
Recommended For Both Beginner and Advanced Users
Open the "Internet Options" and go to the Advanced tab. Then scroll down to the security section and select the option to "Enable SmartScreen Filter". This will check all sites, and downloads, against lists of known dangerous sites and files. Although this has certain privacy concerns I believe that the additional security it provides outweighs the privacy risks. That said, the choice is yours as to whether you want to enable it or not, but I would strongly recommend it.
Also, you can install a program which will block unwanted ads. For IE I would recommend installing a program called AdFender. It can be found on this page. After installing it right-click on the icon it created in the task bar and select "Open Main Console". Then go to the Filters section. Here I would advise selecting the option for EasyPrivacy in addition to EasyList, which should already be selected. The select OK to save your changes and close the console. This will now work in the background automatically removing unwanted ads.
Recommended Only For More Advanced Users
To disable flash globally go to tools, then safety, and click on "ActiveX filtering". After doing this flash, and all other ActiveX type content, will be blocked until you click the icon to enable it. This icon can be found on the address bar. You can then choose whether to turn ActiveX off or leave it on. This is a relatively good way to protect yourself from many threats, although I would prefer individual site whitelisting.
Use these add-ons
Recommended For Both Beginner and Advanced Users
- Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
How To Increase Privacy
Internet Explorer provides users with the option to start the browser in InPrivate Browsing mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. I would also advise that you change your default search engine to one which is discussed in section 2.
How to change configuration of Internet Explorer for improved privacy
Recommended For Both Beginner and Advanced Users
Open the "Internet Options". Under the Privacy tab most users can select the option to "Never allow websites to request your physical location". If needed you can manually add exclusions for particular sites, but this is almost never necessary. Also, most users will want to change the privacy settings to "Medium High".
Recommended Only For More Advanced Users
Open the "Internet Options". Under the General tab advanced users may want to select the option to "Delete browsing history on exit". This means that nearly all information will be lost each time you close your browser, but if you're willing to make the sacrifice it will help improve your privacy.
Under the privacy tab advanced users can click on the option for Advanced. Then select the option to "Override automatic cookie handling". Then uncheck the option to "Always allow session cookies". I would then advise that you select the option to Prompt for "First-part Cookies" and Block for "Third-party Cookies". Then select OK. When going to a site you will be prompted whether you want to accept the cookies or not. When making a decision I would suggest you select the option to "Apply my decision to all cookies from this website". However, this can be very annoying and you essentially have to do this for every site. Another alternative is to select Block for "First-party cookies" as well. However, this can be somewhat annoying since many sites will not work properly without cookies enabled. You then need to go back into the settings to manually add a site to the whitelist. Managing the cookies in such a way does greatly increase your level of privacy, but that comes at a great price in terms of usability.
Advanced users may want to go to the Advanced tab and disable the option to "Enable DOM Storage". This is located under the Security section. For an explanation of what that is please see this site.
Use these add-ons
Recommended For Both Beginner and Advanced Users
-
LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
- Do Not Track Me: This will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit. More information is given in this review.
- Ghostery: After installing this, and enabling it, left-click on the Ghostery icon and go to options. If you do not want it to visually alert you each time it blocks potential privacy problems you can deselect the option to have it "Show Alert Bubble". This is not needed for our purposes. Under the Blocking tab select the option to "Enable web bug blocking" and then select the option to select all. Then select OK to save your settings. This add-on provides protection very similar to that of Do Not Track Plus, but I have seen no problems running both of them alongside each other.
4. Alternatively Use JonDoFox To Greatly Improve Your Privacy
Note that for this browser I am not even considering security or usability concerns. This browser is truly oriented mainly towards privacy. For a more balanced approach please see my advice above. In addition to using this browser I would also advise that you change your default search engine to one which is discussed in section 2.
To surf the web with even greater anonymity than can be achieved with any of the above browsers, download JonDoFox from this page and install it. During installation it will prompt you to have it download Firefox. Assuming you don't already have Firefox installed let it install it for you. However, if you already have Firefox installed it will ask you whether you want to merge it with your Firefox configuration. You must either do that or install it as a portable browser. The choice is yours.
During the installation it will ask you if you want to download JonDo, which is a proxy program. I would recommend that you do not and instead use a virtual private network (VPN). This will provide you with an encrypted connection, much faster browsing speed, and an even higher level of privacy. To choose the best VPN for your needs please read this section of my article about How to Protect Your Privacy While Online. Make sure that if you do choose to use a VPN, you start it up each time before using JonDoFox to browse the internet. Also, if you do decide to use a VPN you should start up JonDoFox, left-click on the JonDoFox icon, and select the option for "No Proxy". When prompted you should also select the option to not show warnings about the proxy.
At this point JonDoFox is ready for you to begin browsing the internet with a very high level of privacy. No further changes are required for the configuration and no additional add-ons are required.
5. Periodically Clear Browsing Data
Even if the configuration changes suggested above some browsing data will still get saved to your computer. In addition you should be aware that the advice I give above will not prevent flash cookies from being stored on your computer from the site you are visiting. You have only disabled this for third-parties. Thus, to clear these flash cookies, and most other browsing data which may be on your computer, you may want to periodically clean your computer with a program called CCleaner. To download it you should download the Portable version from this page to avoid inadvertantly installing unwanted software.
After installing it there is one change you must make in order for it to clear flash cookies, as well as normal cookies and other browsing data. Please click on the Cleaner icon and go to the Applications tab. Then, under the Multimedia section, make sure that "Adobe Flash Player" is selected. Once you have made sure that CCleaner is configured properly you just make sure that all other programs are closed and then click on the button to "Run CCleaner". Running this periodically will help to increase your online privacy.
I realize that the configuration options, and available add-ons/extensions, for these browsers change over time. Thus I need your help in staying up to date with the best ways to protect all of these browsers from both safety and privacy concerns. Please help me by letting me know when you believe the advice I am providing is no longer entirely accurate, or that new approaches are now available.
In addition, please help by rating this article. If you believe this article deserves anything less than 5 stars, please leave a comment below explaining how you think it can be improved or where you find fault. This article is written by me but fueled by the community. Thus your opinions and advice are not only much appreciated, but actually necessary in order for this article to grow and improve.
If you found this article useful then perhaps you'd like to check out some of my others.
How to Clean An Infected Computer
How to Fix a Malware Infected Computer
How to Install Comodo Firewall
How to Know If Your Computer Is Infected
How to Protect Your Online Privacy
How to Report Dangerous Websites
How to Report Malware or False Positives to Multiple Antivirus Vendors
How to Tell if a File is Malicious
How to Tell If A Website Is Dangerous
This software category is maintained by volunteer editor Chiron. Registered members can contact the editor with any comments or suggestions they might have by clicking here.
- Article type:
- Login or register to post comments
Printer-friendly version
Comments
So much very useful information, thank you!
Thank you.
Please let me know if you have any questions.
The Ghostery "bugs" has been renamed and categorised into sub-sections for a while.
It also has new advanced options.
eg. a white-list and whether to auto-apply new updates.
Opera can also easily be made more secure.
* Security prefs.
It has a tick-box option for refusing tracking cookies.
Fraud and malware protection is on by default.
* Content Prefs.
If you set "Enable plug-ins only on demand, Flash and java wait for your bidding (makes Youtube much faster). It also disables all flash advertising.
You can right-click on any page you trust and "edit site preferences" then enable plugins, so Opera remembers it.
* Cookies Prefs.
Change the default to "Accept cookies only from the site I visit".
Tick "Delete new cookies when exiting Opera".
Again you can right-click on any page you trust and "edit site preferences" then allow that site to keep it's cookies.
Opera gives you various options to tailor sites and cookies. You may prefer to set it differently.
* Opera content-blocking.
When using Opera's own right-click and block option, before clicking "Done" if you click on "details" you can delete the folder from the URL and just block the whole site.
* Network Prefs.
Some users may want to disable "GeoLocation".
* Opera itself
You can open Tabbed windows as a "Private Tab"
*Plugins
"Redirect to HTTPS" was superseded by "Swiss Knife"
Plugins such as "LinkRedirector" and "Redirect Bypasser" These can help you avoid going to a site you were not expecting.
There are redirect removers for google, but if you use one of the above, google is dealt with.
"Block Linkbucks" will also help avoid redirection in forums etc.
"Zscaler Safe Shopping" is also available for Opera.
"WebRank SEO" shows the site ratings from WOT, SiteAdvisor and SafeWeb.
"SurfPatrol" checks for exploits and helps protect against hijacking of your data.
For checking a site I am on, or intend to visit I also use "NetTools" and "GeoData for IP".
There are other AV browser plugins for all browsers, and a few site-plugins for social sites.
You may find a few more bits to add here (or one of your other guides) by checking http://my.opera.com/dr-flay/blog/online-anti-malware
Thankyou Chiron.
Very useful page, but your Opera info is very old.
There are other plugins I have left-out, as they are not stable enough, or other ones include the same functionality (and my comment has grown huge)
https://addons.opera.com/search/?query=redirect
https://addons.opera.com/search/?query=virus
https://addons.opera.com/search/?query=blocking
https://addons.opera.com/search/?query=security
I favour blocking bad sites at the hardware level with a "HOSTS" block-list, as my first-line of defence.
No plugins are needed, so it works for all software and OSs.
http://my.opera.com/dr-flay/blog/how-to-block-sites
NOTE
I don't use Norton or McAfee products in any form, due to too many false-positives, and poor detection ratio.
They give a false-sense of security, which can be worse than knowing you have no protection.
@ Chiron:
Thank you very much for maintaining this article. I discovered it long time ago and have learned some useful things thanks to it. Today, after re-reading the article, I have installed BitDefender TrafficLight and changed the blocking lists for AdBlock Plus.
Just a minor correction regarding one of my favorite addons: you mention “Do Not Track Plus” several times. It has changed its name to “Do Not Track Me” some time ago. In any case, the link that you provide is the right one.
A final suggestion: as it causes recurrent security concerns, for Mozilla users that really need to have Java Runtime Environment installed in their computers, it might be a good idea to recommend them a firefox addon named QuickJava. It provides an easy way to manually enable/disable Java in that browser, so you can have it usually disabled, only excepting if visiting a trusted website that requires it.
Best regards.
Thank you very much for your suggestions. I have changed the name to "Do Not Track Me". Also, I took a quick look at QuickJava and, although I did not test it out, it seems very similar to NoScript. Is there a reason to recommend QuickJava if users are already using NoScript?
Thank you.
I tried QuickJava a couple of weeks ago after seeing the comment above, but unfortunately it did not seem particularly stable. Specifically, it kept spontaneously disabling images and also disrupted smooth scrolling somehow. I tried to report this to the developer but the contact page kept hanging, so ended up just removing the extension.
Thank you for your feedback. I wonder if others have also had similar experiences with it.
@ Chiron: Could you review the free adblocking Windows OS app AdFender (http://adfender.com/) which may be especially useful for all Internet Explorer users?
(Precis from AdFender's FAQs: "AdFender works with Windows 7/Windows Vista/Windows XP(SP2 or SP3), supports all leading web browsers: Internet Explorer, Firefox, Chrome, Safari and Opera. In addition to this, AdFender also supports Avant, Chromium, Comodo Dragon, Epic, Flock, K-Meleon, Lunascape, Maxthon, Pale Moon, QTWeb, RockMelt and SRWare Iron.")
Sadly I can't find a full Gizmo's review although there are a few mentions. Good reviews for latest version 1.60 on Softpedia but some less positive comments on earlier Adfender versions on Wilders Security Forums.
If AdFender is a trustworthy and reliable programme then it will be a great boon to all IE users who otherwise have very limited access to free adblocking software.
Thank you very much for finding this. I looked into the program and it allows users to use both EasyList and EasyPrivacy, just as with the other browsers. Also, it has good reviews wherever I searched.
Thus, I changed my advice for IE to using AdFender. However, I would not recommend it if your main browser is not IE, as it will always have to be open in the background, thus using some resources. However, for IE this is definitely the best program I have found.
Thank you very much for directing me to this program.
@ Chiron: Hi again, we exchanged a few comments in late August. This just to say that the Quero Toolbar site I recommended updated it's Adblock List downloads for IE9/IE10 TPL and for IE8 XML, both new lists dated 22 Oct 2012. I have checked both links in your article and they are correct - so this post is for info only!
Thank you, and once again I'd like to thank you again for your assistance in improving my advice for Internet Explorer.
Would you recommend using MaskMe?
That looks like a very useful extension. However, as long as you have two email addresses, one for legitimate uses and the other for signing up for other offers, I'm not sure how useful this will be.
That said, it does have some interesting features and I'll try it out once it's released.
Thanks.
Hi, peeps just a quick bit of advice, when downloading Linkextend on Firefox at the end of the installation you are offered / asked if you want to install the following add-ons to improve your browser experience, you don't have to download these to beable to use Linkextend and alot of them have a bad WOT rating .
Linkextend it's self is great tho :) I just though I'd point that bit of the installation out . Great article.
Thank you for pointing this out. I've updated the article to warn others about it.
Please let me know if you have any more observations.
Thanks.
Thank you Chiron for a most interesting article and to the many people who have posted some very relevant and useful comments.
1. After mentioning using Simple Adblock with IE you say: "That said, I am aware of no alternative add-on which is more useful for Internet Explorer." I have used the AdBlock IE8 XML made available on the Quero Toolbar website for a the last year.... you DO NOT need to install his toolbar.... just download the XML file from: http://www.quero.at/adblock_ie_xml.php (NOTE! The download button is a very location sensitive and to get the "Save link As" Right Click Menu to appear try clicking at top of button rather than in lower shaded area!) Quero XML list last updated "2012-03-12" and I am hoping for new update soon? Import into IE very simple and AdBlockiing has been seemless for me so far. Quero site also offers AdBlock IE9 TPL but untried by me.
2. As a long time DuckDuckGo user please mention that DDG now offers WOT display options in set-up pages.
Wouldn't adding the executable file of any browser to the EMET configure applications list harden the browser?
I am also wondering if installing the portable version of Firefox, or Comodo Dragon, or Chrome on the hard drive wouldn't be more secure than installing the regular version of those browsers on the hard drive? There shouldn't be any registry keys to cause security problems and you could have several versions of the browser on your system. For example, a regular surfing version, a more secure banking version, and a beta version.
Hardening it with EMET would definitely help to protect against drive-by-downloads and exploits. However, in my article about How to Stay Safe While Online:
http://www.techsupportalert.com/content/how-stay-safe-while-online.htm-0
I advise that users use either a HIPS, Sandbox, and Antivirus or a Sandbox and Antivirus or a HIPS and Antivirus to protect their computers. Thus, I believe that using EMET alongside that sort of protection may be redundant to an extent.
I'm trying to cut down on the scope of protection options I mention in my articles, because there are way too many to adequately cover. Thus I have opted for the more all-inclusive products as a way to try and simplify the act of protecting your computer. That said, I'll certainly keep EMET in the back of my head for future reference.
In terms of using multiple browsers. If you like you can do that, but I believe that for most people they would prefer not to bother with multiple browsers. That said, having JonDoFox along with another browser may be a good idea because of the vast privacy protections it offers, albeit at great loss of usability.
Please let me know if you have any other questions.
Thanks.
Thank you very much for pointing these things out.
I added the EasyList TPL to the article, and a few other suggestions. In fact I even removed my advice of using Simple Adblock. In addition please note that I only advise people to use the most up-to-date software. Thus I will not be including advice for IE 8.
In terms of DuckDuckGo I was going to edit the article to point out that people could change the settings so that WOT ratings show up next to the search results. However, I then realized that I am already advising that users install WOT with whichever browser they are using. Thus I believe that for the majority of users changing the settings would be largely redundant.
Please let me know if you have any more suggestions.
Thanks.
@Chiron - Thank you for you reply. Sadly IE8 is the most up-to-date version of Internet Explorer available to those (many) of us still running Windows XP/SP3 OS as MS decided not to produce an XP compatible version of IE9. If you want MS Updates you must still run IE8 - even if you mostly use another modern browser.
Is your advice regarding the Flash Player Settings Manager correct for most Windows, Mac & Linux OS users who are hopefully now running the current Flash Player 11.4?
Adobe's "Who uses this Settings Manager" in Flash Player Help at: http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager.html#124401 says "Beginning with Flash Player 10.3, the Local Settings Manager supersedes this online Settings Manager....... The Local Settings Manager can be accessed in the Control Panel in Windows and in System Preferences on a Mac." I think your article links to old "online" Settings Manager?
This a bit off topic, yet relevant. Fully agree with comment re IE9. Some of us wait patiently before upgrading to a major new Windows OS to allow sorting out of bugs, new apps, drivers, etc. Win 7/8 suddenly added new dimension of hardware requirements too, further delaying implementation.
Of course we will have to move on, but right now XP still works nicely for many of us. Please do not discard it... not yet, anyway.
I have updated the adblock advice to include IE 8. Please let me know if there is any other advice which is incompatible with Windows XP.
Thanks.
Thank you. I did not realize that about IE8. I have now updated the article to explain the situation better and have directed users towards the option available for IE8 as well.
As for Flash I really have to thank you for pointing that out. I've now updated the article, although I'm not entirely confident that the location is correct for XP. Can you please do me a favor and verify where the flash options are on XP?
Thanks.
@Chiron - Thanks again for your responses. Can't remember how I noticed Adobe move to local Settings Manager but they sure don't make it obvious!
Small point of detail - you link correctly to Quero AdBlock IE XML page but call it "TPL" which is IE9 speak....."XML" is IE8 speak! IE8 XML Import instructions are on left side of same Quero page BUT I must stress again how position sensitive that download button can be - keep Right Clicking until you get "Save target/link As" menu - try top of button clear of lower shaded area or refresh page and try again - can be maddening if unaware of problem!
XP/SP3 Flash Player Settings Manager location much as Win 7 in Control Panel..... BUT two possible views of XP Control Panel....and only the older "Classic View" shows Flash icon. (If Flash or Java icons accessible from the more modern "Category View" - then I have never found how!) So full route is: START>Control Panel>Switch to Classic View(if reqd)>Flash Player>Storage.
Thank you very much.
I've once again updated the article. Hopefully it is correct this time.
I really can't thank you enough for your help.
lot's of great and useful information, thank-you.
Thank you.
Please let me know if you have any questions.
I did a search for a person's name, in quotes, with startpage and got only 4 results. I did it with google and got a slew of pertinent results (344 total). Hardly a good substitute, and I can't believe it uses google. It says "enhanced by google".
Thank you. I've updated the article to explain this better.
True. There are more search sites than those mentioned here, but not a single one of them equals the sheer power of the inquisitive Google and none of them can truly guarantee anonimity. The privacy concept also applies to a diverse parade of popular products. Yet there are hidden manual settings that can be applied to achieve reasonable balance, rather than shunning the culprits.
That said, it must be added that this article is well done and obviously took an effort, considering the range and complexity of the subjects. A few of the apps mentioned are also priceless. Not everybody wants stitches when, sometimes, a plaster will do. (Thank you for that).