How to Harden Your Browser Against Malware and Privacy Concerns

toggle-button

 

Malware imageOne of the first lines of defense we have against the plague of security and privacy problems that stalk the internet resides within our browsers. This article is meant to help you to harden your browser against all types of problems. However, do note that I would strongly suggest that even if your main concern is only about privacy you should still read through the security sections as well. Preventing your computer from communicating with potentially dangerous sites, and helping to avoid malware, plays a very important role in increasing your online privacy. Thus, protecting your privacy really does require that you also increase your security.

 

Also, note that for true protection you should also read my article about How to Stay Safe While Online. To achieve true privacy you should also read my article about How to Protect Your Online Privacy. The article you are currently reading is meant to be used in conjunction with both of these other articles. It is not really meant to be viewed in isolation, although it is certainly useful in that respect as well.

 

Notice that this article is not really as long as it seems. By this I mean that you really only need to navigate to the section applicable to the browser you are using. You really don't even need to worry about the other sections. Also, note that all instructions are provided assuming that no other changes to the configuration have been made. When configuring these browsers I installed them with default configurations and modified them from there. Also, unless otherwise noted, any instructions provided are applicable to all browsers within the below categories. Whenever specific browsers required different changes I noted that in my instructions.

Changelog:

11/23/2014-Replaced links to DoNotTrackMe to Blur as the name changed.

11/24/2014-I replaced Blur with Ghostery for Chrome and Firefox as it was brought to my attention that the new version has very bad reviews.

11/26/2014-Updated description for how to find the settings for Flash.

 

Index

1. General Changes To Browser

2. Use A Privacy Focused Search Engine

3. Modify Your Current Browser To Achieve Improved Security And Privacy

    A) Instructions For Chromium Browsers

    B) Instructions For Firefox (And Firefox Variants)

    C) Instructions For Opera

    D) Instructions For Internet Explorer

4. Alternatively Use JonDoFox To Greatly Improve Your Privacy

5. Periodically Clear Browsing Data

 

1. General Changes To Browser

 

If you are running Adobe Flash, as most people are, then there are a few changes to the settings you should make. Regardless of which browser you use you should modify your flash player settings to make sure that third-party flash cookies are disabled. If you are running Windows Vista or Windows 7 do this by going to the control panel on your computer. Then, if you have your Control Panel set to Category view, go to the subsection for "System and Security". If you have the Control Panel set to Large Icons view, or Small Icons view, Flash should already be available. If you are running Windows XP you should go to the control panel and make sure that it is set to "Classic View". At this point you should see the icon for "Flash Player". Open it. Under the Storage tab make sure the option to "Block all sites from storing information on this computer" is selected. Also, under the Advanced tab make sure that the option to "Allow Adobe to install updates" is selected.

 

In addition, it's important to know that Java is constantly being exploited in order to install malware on users computers. Also, the java plugin is not even needed for most sites to work properly. Thus, if the java plugin is in fact installed in your browser, my advice would be to remove it unless you find it necessary. In addition, assuming you uninstalled Java entirely from your computer, which I would recommend unless you are actively using it, you should also use the built-in Windows search to find the file "npDeployJava1.dll" on your C-drive and, if it exists, delete it. For some reason this file is not removed with the Java uninstaller. In addition, if there are any plugins you don't use I would recommend that you remove them as well. These may pose a threat to your security.

 

2. Use A Privacy Focused Search Engine

 

Google’s search engine records your searches and aggressively tracks you. So do many of the other top search engines. For this reason I would suggest that you use an alternative search engine. One of the best anonymous search engines I've found is called StartPage. This search engine allows you to search using Google's search engine, but it blocks Google's ability to track you. Its not quite as powerful as using Google alone, but it's definitely a very good search engine. More information can be found on this page, and an explanation of how to make it the default search engine of your browser can be found on this page. The same company that makes StartPage also makes a search engine called Ixquick. This gathers its results from many different sources and thus may be even more useful than StartPage. More information about it can be found on this page, and an explanation of how to make it the default search engine of your browser can be found on this page. Both search engines have been certified by an independent third-party to not record your IP address or use tracking cookies.

 

Another very good option is called DuckDuckGo. This search engine will also not record any information about your searches. DuckDuckGo gathers its search results from a compilation of many sources. It also displays possible answers to the question you asked right at the top of the results page. It can be a very useful search engine. More information about DuckDuckGo can be found on this page, and a link to add it to your browser is provided on the main search page.

 

3. Modify Your Current Browser To Achieve Improved Security And Privacy

 

A) Instructions For Chromium Browsers

 

All Chromium browsers use the Google Safe Browsing blacklist to protect users from known dangerous sites. The browsers I have reviewed are Google ChromeComodo Dragon, and SRWare Iron. All have built-in secure sandboxing, which make them especially difficult for outsiders to exploit, and are quickly patched against any known vulnerabilities. However, I have certain problems with Google Chrome.  Although it does have minor privacy concerns, which are discussed on this page and on this one, the major problem I have with it is that it is made by Google. Google is well known for having problems respecting the privacy of others. A good listing of relevant incidents can be found on this page. Because of this I find it very difficult to trust Google Chrome and thus will not recommend that anyone use their products.

 

Luckily, Comodo Dragon and SRWare Iron do not have these privacy concerns. All of the code has been screened by the developers of these products to make sure that these privacy concerns have been removed. Also, Comodo Dragon comes with the option to enable Comodo Secure DNS, which will automatically stop you from connecting with most malicious sites. I would recommend enabling that, unless you are currently using another secure DNS server and do not want to switch. This will increase the security even higher than what you get by just using the Google Safe Browsing blacklist.

 

For the below Extensions, I would recommend that you read through the descriptions of all of them and install all which you believe would be helpful. Unless the instructions specifically mention a problem it should be safe for you to install all of them.

 

How to Increase Security

 

If you are using Google Chrome you will want to go to the settings and, at the bottom of the page, select the option to "Show advanced settings". Then select the option to "Check for server certificate revocation". For SRWare Iron you should navigate to the same area and do the same. Then also select the option to "Enable phishing and malware protection". No changes are required for Comodo Dragon.

 

Use These Extensions

Recommended For Both Beginner and Advanced Users

  • Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
  • BitDefender TrafficLight: With this installed if you happen upon a dangerous site, which is blacklisted by BitDefender, it will block the page from loading. These include malicious pages, phishing sites, and fraudulent sites.
  • Adblock Plus: After installing this it will load a page. Near the bottom you can select which additional lists you would want to use. Personally, I select all, but the choice is yours.

Recommended Only For More Advanced Users

  • ScriptSafe: This add-on will block nearly all scripts, and other possibly dangerous content, from executing. This means that even if you stumble onto a dangerous site you cannot be attacked unless you manually add the scripts on that site to your whitelist. Thus you are protected from harmful scripts and many privacy threats. However, many sites use these scripts, and plugins, for legitimate purposes. Thus these sites will not work correctly unless you manually add the scripts on that site to your whitelist. This extension makes this relatively easy to do. Also, under the options you should select ‘Antisocial Mode’. Using ScriptSafe takes some getting used to, but if you are serious about staying safe online then this add-on is a must have.

 

How to Increase Privacy

 

All chromium browsers provide users with the option to start the browser in incognito mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. In addition I would also advise that you change your default search engine to one which is discussed in section 2.

 

How to change configuration for improved privacy

Recommended For Both Beginner and Advanced Users

Go to Settings and click on the box at the bottom of the page that says "Show advanced settings".

Under the privacy section uncheck the box to "Use a prediction service to help complete searches...". Note that this change is not required for Comodo Dragon or SRWare Iron. Also make sure the option to "Predict network actions to improve page load performance" is unchecked for all browsers. For all browsers you should also select the option to "Send a 'Do not track' request with your browser traffic". Google Chrome users will also want to deselect the option to "Use a web service to help resolve navigation errors".

Now open the ‘Content Settings’ and select the box to ‘Block third-party cookies from being set’. This will prevent sites from loading cookies that are not from the site that you are currently on. Thus almost all tracking cookies will be blocked with very minimal negative side effects on your browsing. The only time you may have problems, and need to temporarily disable this, is sometimes when a legitimate site redirects you to another page. That said, in most cases it will work fine.

 

Recommended Only For More Advanced Users

Under the Privacy section, in the main settings menu, check the box that says 'Do not allow websites to know where you came from (suppress HTTP Referrer header)'. Note that this option is not available in Google Chrome and is not required for SRWare Iron. However, do note that this can cause problems with some websites and may need to be disabled in order for some sites to function properly.

More advanced users may wish to just block cookies globally. Then, when it becomes necessary, they can manually add sites to the whitelist. However, this can be somewhat annoying since many sites will not work properly without cookies enabled. You can configure your browser to do this by going to the privacy content settings and selecting the option to not allow sites to set any data. Then you can allow cookies for individual sites through an icon near the URL bar. If blocking cookies globally is too annoying for your tastes then you can instead use the Vanilla extension, which is discussed below. This will allow you to easily decide which cookies to keep, and which to delete. Although it cannot prevent cookies from being placed on your computer, it does allow you to decide how long unwanted cookies should be kept.

Also, advanced users may want to check the option to delete cookies and other site and plug-in data when the browser is closed. What this will do is that each time you close your browser it will clear all cookies, DOM Storage, and most other data. This means that nearly all information from your previous browsing session will be lost each time. Make sure when you've completed making whatever changes you would like to make to your configuration you select OK to save them.

 

Use These Extensions

Recommended For Both Beginner and Advanced Users

  • HTTPS Everywhere: This forces many sites, which have the option to encrypt your connection, to actually encrypt it. Therefore your connection with these sites will be much more secure. Although the version for Chromium browsers is technically still in beta I have noticed no problems with it.
  • LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
  • Ghostery: This will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit. It is a good companion for Adblock Plus.

Recommended Only For More Advanced Users

  • Vanilla: This is a very good cookie manager for Chromium browsers. However, if you decided to block all cookies globally, as mentioned above, then this extension is not needed. One major downside to this extension is that it can’t block cookies automatically. However, in the options you can select to ‘Auto delete unwanted cookies after 5 minutes”. You can also configure it to clear unwanted cookies on startup. If you decide to use it I would strongly suggest enabling both features. You also have the option to add sites to the whitelist so that those cookies will never be deleted.

 

B) Instructions For Firefox (And Firefox Variants)

 

FirefoxComodo IceDragonPale Moon, and Waterfox (which is only for 64 bit systems) all use the Google Safe Browsing blacklist to protect users from known dangerous sites. All of these browsers are also being constantly updated to protect you from new vulnerabilities.

 

If you are installing Comodo Ice Dragon I would suggest that you enable the Secure DNS servers, unless you are currently using another secure DNS server and do not want to switch. Comodo DNS servers will block certain dangerous sites which even Google Safe Browsing does not.

 

Also, I would like to say that any of these browsers would be a good choice in terms of both security and privacy. I suppose that Comodo IceDragon may provide slightly higher security, since it has Comodo DNS Servers to also block known dangerous sites, but any of the browsers are really very good.

 

For the below Add-ons, I would recommend that you read through the descriptions of all of them and install all which you believe would be helpful. Unless the instructions specifically mention a problem it should be safe for you to install all of them.

 

How To Increase Security

 

Use These Add-ons

Recommended For Both Beginner and Advanced Users

  • Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
  • BitDefender TrafficLight: With this installed if you happen upon a dangerous site, which is blacklisted by BitDefender, it will block the page from loading. These include malicious pages, phishing sites, and fraudulent sites.
  • Adblock Plus: This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. These can be found on this page. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to the EasyPrivacy+EasyList combination and Malware Domains. Note that after doing this you should go into your subscriptions and delete the Easylist one, as it will be covered by the combination list and is redundant.  This can be found by going to the settings for ABP in the extensions window.

Recommended Only For More Advanced Users

  • NoScript: This add-on will block nearly all scripts, and other possibly dangerous content, from executing. This means that even if you stumble upon a dangerous site you cannot be attacked unless you manually add the scripts on that site to your whitelist. Thus you are protected from harmful scripts and many privacy threats. However, many sites use these scripts, and plugins, for legitimate purposes. Thus these sites will not work correctly unless you manually add the scripts on that site to your whitelist. Using NoScript takes some getting used to, but if you are serious about staying safe online this add-on is a must have.

 

How To Increase Your Privacy

 

All of these browsers provide users with the option to start the browser in Private Browsing mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. I would also advise that you change your default search engine to one which is discussed in section 2.

 

How to change configuration for improved privacy

Recommended For Both Beginner and Advanced Users

Go to the dropdown menu and click on options. Then go to the Privacy tab. Make sure that the option that reads "Tell websites I do not want to be tracked" is selected. Now, under "History" select "Use custom settings for history" from the dropdown menu. Make sure that the option to "Accept third-party cookies" is unchecked. This will prevent sites from loading cookies that are not from the site that you are currently on. Thus almost all tracking cookies will be blocked. The only time you may have problems and need to temporarily disable this is sometimes when a legitimate site redirects you to another page. That said, in most cases it will work fine.

Recommended Only For More Advanced Users

More advanced users may wish to prevent cookies from being set at all. To do this please use the Cookie Controller add-on, which is explained below. However, if blocking cookies globally, and whitelisting them manually, seems like too much of a hassle you can instead select the option to only keep the cookies until the browser is closed, which is an option from the dropdown menu under the history section of the privacy tab.

Some users may also want to select the option to Clear history when the browser closes. To do this you can click on "Settings" and select the type of data you would like to have removed. I would advise removing the cookies, cache, and "Offline Website Data" as this will be able to remove most types of tracking data. That said, nearly all information will be lost each time you close your browser, but if you're willing to make the sacrifice it will certainly help improve your privacy. Once you're done making your changes to the settings you can click OK to save them.

 

Use These Add-ons

Recommended For Both Beginner and Advanced Users

  • HTTPS Everywhere: This forces many sites, which have the option to encrypt your connection, to actually encrypt it. Therefore your connection with these sites will be much more secure.
  • LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
  • Ghostery: This will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit. It is a good companion for Adblock Plus.
  • Self-Destructing Cookies: This deletes the cookies related to a site as soon as you close it's tab. Thus, it should increase privacy without reducing usability.
  • BetterPrivacy: This will automatically prompt you to delete all local shared objects (LSO's) from your computer each time Firefox closes. For more information on why these are such a privacy risk please read this article.

Recommended Only For More Advanced Users

  • RequestPolicy: This will block cross-site requests by default. Thus you will be protected from Cross-site request forgery, which otherwise could send information about your browsing habits to unknown parties. When installing this I would advise that you leave the settings at default. Also, I would advise that you do not whitelist any sites unless you are experiencing difficulties.
  • Cookie Monster: This add-on extends your privacy protection by blocking all cookies by default. It allows you to quickly and easily allow or block cookies globally and then manually add exceptions for individual sites. Like NoScript this takes some getting used to since many sites will not work correctly without cookies enabled. However, if protecting your privacy is important then this is a must have. Note that if you use this you shouldn't need to also use Self-Destructing Cookies.
  • Secret Agent: This add-on will impede most of the fingerprinting-based tracking that is used to track users. After installed it will continually randomize your browser profile. Thus it is not possible to fingerprint your actual browser. However, sometimes this will cause sites to not work correctly. In those cases you may need to disable it for those sites.

 

​C) Instructions For Opera

 

Opera can be downloaded from this page. In general I do like this browser. It is very configurable and also has a lot of very useful extensions which can be added.

 

For the below Extensions, I would recommend that you read through the descriptions of all of them and install all which you believe would be helpful. Unless the instructions specifically mention a problem it should be safe for you to install all of them.

 

How To Increase Security

 

How to change configuration of Opera for improved security

Recommended Only For More Advanced Users

Go to the Content section. If you are an advanced user you may want to deselect the option to "Enable JavaScript". This will protect you from any JavaScript based malware or privacy threats, but it will also mean that many websites will not work until you manually allow them.

Under the content section advanced users can check the box to "Enable plug-ins only on demand". This will mean that flash and java can only run on a page if you allow it, thus providing you with protection from many security and privacy threats.

Exceptions for both of these can easily be made for sites by right-clicking on any site and selecting "Edit Site Preferences". Then go to the content tab and manually uncheck the relevant box, and select OK, to add the site to your exceptions.

 

Use These Extensions

Recommended For Both Beginner and Advanced Users

  • Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.
  • Adblock Plus: This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. These can be found on this page. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to the EasyPrivacy+EasyList combination and Malware Domains. Note that after doing this you should go into your subscriptions and delete the Easylist one, as it will be covered by the combination list and is redundant.  This can be found by going to the settings for ABP in the extensions window.

 

How to Increase Privacy

 

Like most browsers Opera provides users with the option to start the browser in Private browsing mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. I would also advise that you change your default search engine to one which is discussed in section 2.

 

How to change configuration of Opera for improved privacy

Recommended For Both Beginner and Advanced Users

Under the settings part of the drop-down menu go to Preferences. Then go to the advanced tab. Under the Cookies section most users will want to select the option to "Accept cookies only from the site I visit". This will prevent sites from loading cookies that are not from the site that you are currently on. Thus almost all tracking cookies will be blocked. The only time you may have problems, and need to temporarily disable this, is sometimes when a legitimate site redirects you to another page. That said, in most cases it will work fine. Also, under the security section select the option to "Ask websites not to track me".

Recommended Only For More Advanced Users

Under the Cookies section more advanced users can select the option to "Never Accept Cookies". This will block any cookies from being set, which will stop some websites from working. For these cases you will need to manually add cookies to the whitelist. It greatly affects your browsing experience as this is not easy to do with Opera. An alternative to this is to check the box labeled "Delete new cookies when exiting Opera". This will mean that sites do not continue to remember your information, but it will still allow the sites to operate correctly. Also, as before right-clicking on the site, and going to "Edit Site Preferences" allows you to remember cookies from that particular site. Also, under the network tab, users can deselect the option to "Send referrer information". It may also be helpful to disable "Enable geolocation". However, do note that this can cause problems with some websites and may need to be re-enabled.

Also, advanced users may want to go to the History section and turn off the cache for the disk, although this will mean that each time you visit a page it will have to reload from scratch. Thus this will slow down your browsing experience, but it will make it much more difficult for sites to track you. When you are done making your changes select OK to save them.

 

Use These Extensions

Recommended For Both Beginner and Advanced Users

  • LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
  • Disconnect: This will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit.

 

​D) Instructions For Internet Explorer

 

Note that with Internet Explorer you need to enable add-ons after installing them. This will appear as a popup at the bottom of the screen.

 

For the below extensions, I would recommend that you read through the descriptions of all of them and install all which you believe would be helpful. Unless the instructions specifically mention a problem it should be safe for you to install all of them.

 

How to Increase Security

 

Recommended For Both Beginner and Advanced Users

Open the "Internet Options" and go to the Advanced tab. Then scroll down to the security section and select the option to "Enable SmartScreen Filter". This will check all sites, and downloads, against lists of known dangerous sites and files. Although this has certain privacy concerns I believe that the additional security it provides outweighs the privacy risks. That said, the choice is yours as to whether you want to enable it or not, but I would strongly recommend it.

 

  • Adblock Plus: This will block most ads, and tracking bugs.

 

Recommended Only For More Advanced Users

To disable flash globally go to tools, then safety, and click on "ActiveX filtering". After doing this flash, and all other ActiveX type content, will be blocked until you click the icon to enable it. This icon can be found on the address bar. You can then choose whether to turn ActiveX off or leave it on. This is a relatively good way to protect yourself from many threats, although I would prefer individual site whitelisting.

 

Use these add-ons

Recommended For Both Beginner and Advanced Users

  • Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. Please note that for sites which are largely concerned with political or religious content the ratings may be less accurate. This is because community driven services such as WOT can become tainted by individual's own biases. However, in terms of malicious sites, phishing sites, scam sites, and similar content, I find this service to be very reliable and I would not go online without it.

 

How To Increase Privacy

 

Internet Explorer provides users with the option to start the browser in InPrivate Browsing mode. What this means is that if you are running in this mode most privacy traces will be cleared as soon as the browser is closed. This is not nearly enough to adequately protect your privacy, but it is a good start. I would also advise that you change your default search engine to one which is discussed in section 2.

 

How to change configuration of Internet Explorer for improved privacy

Recommended For Both Beginner and Advanced Users

Open the "Internet Options". Under the Privacy tab most users can select the option to "Never allow websites to request your physical location". If needed you can manually add exclusions for particular sites, but this is almost never necessary. Also, most users will want to change the privacy settings to "Medium High".

Recommended Only For More Advanced Users

Open the "Internet Options". Under the General tab advanced users may want to select the option to "Delete browsing history on exit". This means that nearly all information will be lost each time you close your browser, but if you're willing to make the sacrifice it will help improve your privacy.

Under the privacy tab advanced users can click on the option for Advanced. Then select the option to "Override automatic cookie handling". Then uncheck the option to "Always allow session cookies". I would then advise that you select the option to Prompt for "First-part Cookies" and Block for "Third-party Cookies". Then select OK. When going to a site you will be prompted whether you want to accept the cookies or not. When making a decision I would suggest you select the option to "Apply my decision to all cookies from this website". However, this can be very annoying and you essentially have to do this for every site. Another alternative is to select Block for "First-party cookies" as well. However, this can be somewhat annoying since many sites will not work properly without cookies enabled. You then need to go back into the settings to manually add a site to the whitelist. Managing the cookies in such a way does greatly increase your level of privacy, but that comes at a great price in terms of usability.

Advanced users may want to go to the Advanced tab and disable the option to "Enable DOM Storage". This is located under the Security section. For an explanation of what that is please see this site.

 

Use these add-ons

Recommended For Both Beginner and Advanced Users

  • LastPass: This is a secure password manager with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often. This is very important at times like this where passwords are constantly being stolen from numerous sites.
  • Blur: This used to be called DoNotTrackMe. It will help to stop third-parties, ad agencies, and search engines from tracking the webpages you visit. More information is given in this review. Note that this may cause issues on Facebook and need to be disabled for all aspects of that site to work correctly. Other than that most sites should work fine with no changes to the configuration.

 

4. Alternatively Use JonDoFox To Greatly Improve Your Privacy

 

Note that for this browser I am not even considering security or usability concerns. This browser is truly oriented mainly towards privacy. For a more balanced approach please see my advice above. In addition to using this browser I would also advise that you change your default search engine to one which is discussed in section 2.

 

To surf the web with even greater anonymity than can be achieved with any of the above browsers, download JonDoFox from this page and install it. During installation it will prompt you to have it download Firefox. Assuming you don't already have Firefox installed let it install it for you. However, if you already have Firefox installed it will ask you whether you want to merge it with your Firefox configuration. You must either do that or install it as a portable browser. The choice is yours.

 

During the installation it will ask you if you want to download JonDo, which is a proxy program. I would recommend that you do not and instead use a virtual private network (VPN). This will provide you with an encrypted connection, much faster browsing speed, and an even higher level of privacy. To choose the best VPN for your needs please read this section of my article about How to Protect Your Privacy While Online. Make sure that if you do choose to use a VPN, you start it up each time before using JonDoFox to browse the internet. Also, if you do decide to use a VPN you should start up JonDoFox, left-click on the JonDoFox icon, and select the option for "No Proxy". When prompted you should also select the option to not show warnings about the proxy.

 

At this point JonDoFox is ready for you to begin browsing the internet with a very high level of privacy. No further changes are required for the configuration and no additional add-ons are required.

 

5. Periodically Clear Browsing Data

 

Even if the configuration changes suggested above some browsing data will still get saved to your computer. In addition you should be aware that the advice I give above will not prevent flash cookies from being stored on your computer from the site you are visiting. You have only disabled this for third-parties. Thus, to clear these flash cookies, and most other browsing data which may be on your computer, you may want to periodically clean your computer with a program called CCleaner. To download it you should download the Portable version from this page to avoid inadvertantly installing unwanted software.

 

After installing it there is one change you must make in order for it to clear flash cookies, as well as normal cookies and other browsing data. Please click on the Cleaner icon and go to the Applications tab. Then, under the Multimedia section, make sure that "Adobe Flash Player" is selected. Once you have made sure that CCleaner is configured properly you just make sure that all other programs are closed and then click on the button to "Run CCleaner". Running this periodically will help to increase your online privacy.

 

 

 

 

I realize that the configuration options, and available add-ons/extensions, for these browsers change over time. Thus I need your help in staying up to date with the best ways to protect all of these browsers from both safety and privacy concerns. Please help me by letting me know when you believe the advice I am providing is no longer entirely accurate, or that new approaches are now available.

In addition, please help by rating this article. If you believe this article deserves anything less than 5 stars, please leave a comment below explaining how you think it can be improved or where you find fault. This article is written by me but fueled by the community. Thus your opinions and advice are not only much appreciated, but actually necessary in order for this article to grow and improve.

 

If you found this article useful then perhaps you'd like to check out some of my others.

Best Free Antivirus Software

How to Avoid Spam

How to Clean An Infected Computer

How to Fix a Malware Infected Computer

How to Install Comodo Firewall

How to Know If Your Computer Is Infected

How to Protect Your Online Privacy

How to Report Dangerous Websites

How to Report Malware or False Positives to Multiple Antivirus Vendors

How to Report Spam

How to Stay Safe While Online

How to Tell if a File is Malicious

How to Tell If A Website Is Dangerous

 

This software category is in need of an editor. If you would like to give something back to the freeware community by taking it over, check out this page for more details. You can then contact us from that page or by clicking here

 

Please rate this article: 

Your rating: None
4.756685
Average: 4.8 (374 votes)
toggle-button

Comments

How on earth would this article convince you to abandon Ghostery? All it says is that they finance their operation by telling advertisers what their users don't want.

Since you have "looked elsewhere" what do you recommend to replace it?

I did not mean to imply that I thought it was stealing users data, it's just that I was a little uneasy with the extension to begin with, seeing as it's owned by an advertising company. I would advise using either Do Not Track Me, as advised by the current version of this article, or Disconnect. I really like both of these, but am currently unsure about which I would advise. Both are very good. Please try out both and let me know what you think of them. This may help me in deciding which I should be advising. Thanks.

As I understand it (but I may have got it wrong), Do Not Track Me is downloaded as part of AdblockPlus, which I already use in Firefox and Chrome - it is listed separately as an extension in my installation of Chrome but I do not see it in the list of extensions I have in Firefox.

I have added Disconnect to both browsers and will try it out as you ask - it seems to incorporate the Collusion extension, which works in Chrome but has never worked in Firefox for me.

EDIT - In fact Disconnect IS Collusion with an alternative "list" view which adds nothing to the party - at least with Ghostery you can allow individual widgets or other elements to enable functionality on trusted sites, with this one it seems to be all or nothing.

DoNotTrackMe can be downloaded from this page: http://www.abine.com/dntdetail.php? It should be entirely separate from AdblockPlus. Check it out. I think it has the granular control you're looking for. However, you can also selectively allow individual elements with Disconnect, at least with Chrome, which is what I briefly evaluated it with. You can also do the same for DoNotTrackMe.

I tried Disconnect yesterday in Firefox and IceDragon... I was expecting from the comments to get Collusion installed along with it, or something similar, but in both try-outs the relevant button was inactive in the drop-down menu even after I installed Collusion separately.

(Nodrog - yes I also gave up on Collusion for a while as it never seemed to work, but I tried it again recently and it seems fine now. My only issue is that in IceDragon it has to be disabled and then re-enabled to make the button appear, but then that's the case with a few extensions in IceDragon. I have it running now in FF 22 and 23 Portable, no problems.)

Must admit I didn't much like Disconnect really, but to be fair that could well just be because of the unfamilar interface, which is why I wasn't very keen on DoNotTrackMe either.

At the moment I see no reason not to stick with Ghostery... as far as results go, it seems to me to pick up more trackers than any alternatives that I've tried and also works very well as an ad-blocker. I do think it's the best of it's type as far as effectiveness goes.

The title of the article you posted could I think be a little misleading if people don't go on to read the whole thing, or indeed Ghostery's own info on the subject. They don't collect personal data, which some people might take from the article's title at first glance.

TrafficLight does include anti-tracking, and Cookie Controller controls tracking cookies of course. Collusion now includes an option to view cookie-based tracking separately, so you can indeed see this in action.

Very interesting discussion anyway, thanks for your comments.

Neither Disconnect nor Collusion will work in my FF 22, so it must be because of my particular configuration/extensions. I did check Disconnect out in Chrome but did not see anything that would draw me away from Ghostery.

As for DoNotTrackMe, I compared its findings with Ghostery's on this and three other sites I visit every day - Ghostery finds 3 here, DNTM none, for the others the scores were Gh - 10,7 & 6 to DNTM's 1,0 & 1. This is probably explained by DNTM only having around 600 trackers in its library whereas Ghostery has almost 1600 - no doubt DNTM will increase this over time.

DoNotTrackMe does seem to do better in Chrome, but I was irritated by the pop-up being two-thirds advert, with the tracker info in very small print.

So for me, with Firefox, it's the trio of Ghostery, Priv3 and AdblockPlus that fits the bill and, although not part of Chiron's purpose in this article, I would also recommend Safe Preview and/or Webutation for checking out links.

This is a great addon. I have used it myself in the past. However, as this article is already very long I have had to confine the software I recommend to certain categories. Thus, for software designed to detect dangerous sites I have decided to list only those which provide real-time protection. If I'm not wrong you must manually scan a site in order for this to protect you. Thus, with my criteria, I chose not to include it in this article. Still, I would like everyone to know that I do in fact hold this to be a very useful addon. However, I will not be including it in my article for the foreseeable future. Thank you and I hope you understand my position.

Yes, I do understand your position :) I realized after I posted this that it is a redundant step. I guess you could say that I am now more conscious than ever about anything I do online. That's why I visit your site often. I like the site, the articles, and the downloads recommended here...especially for security and privacy concerns.

I wouldn't say it's redundant. Remember that all approaches currently available for protecting a user from stumbling upon a dangerous site require that one of the services you are using already recognizes the site as dangerous. Thus, if there is a link you are suspicious of, it does make sense to scan it with Dr. Web before trying to go there. That is a useful layer of protection, and not one I would refer to as redundant. Thanks.

I followed the tutorial on beefing up my Google CHROME browser's security but I am having trouble finding the filters "settings" so I can adjust & delete as you recommended. Specifically, BitDefender TrafficLight to disable "Search Result Analyzer", and AdBlockPlus subscriptions to delete "Faboy's List".
The instructions I am trying to follow are below.
Thanks!

BitDefender TrafficLight: With this installed if you happen upon a dangerous site, which is blacklisted by BitDefender, it will block the page from loading. These include malicious pages, phishing sites, and fraudulent sites. The only advice I have for this extension is that after installing it you should go to the settings for it and disable the option for "Search Result Analyzer". This is to address a potential privacy concern in which your search results would be sent to BitDefender's servers.
Adblock Plus for Google Chrome (Beta): This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. These can be found on this page. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to the EasyPrivacy+EasyList combination and Malware Domains. Note that after doing this you can go into your subscriptions and delete the Faboy's List one, as it will now be largely redundant.

For both of these, you get to settings by opening your extensions page ... click Settings in Chrome's main menu, then click Extensions in the list on the left, then you should see a list of installed extensions and be able to choose Options for the ones you want to edit...

TrafficLight is pretty straightforward, just a list of options with On/Off buttons, while for AdBlock when you've clicked Options you should see a list of what Filters you are subscribed to.
(Another route to Options for TrafficLight is to left click the green button that should have appeared in your toolbar when you installed it, and then use the "settings" shortcut in the box that pops up.)

I just installed AdBlock in Chrome, just to see, and for me it installed EasyList by default and nothing else.

Must admit I'm not really a Chrome fan or regular user of it, but I just loaded it up anyway and that's how to change the settings that you mention.

To be honest I'm not exactly sure why you'd want to disable the Search Result Analyser in TrafficLight ... this is the component that gives you a green light or otherwise next to each search result in Google, and to me is an important part of the software. I don't see why this should raise any privacy concerns that wouldn't be raised by the extension as a whole but I'm not sure, hopefully Chiron can answer this more fully.

Thank you both for helping. I have now made it, I hope, more clear where to find the subscriptions for AdblockPlus. Also, I went ahead and removed the advice to disable the Search Results Analyzer. Originally I recommended to disable this because the sites queried by BitDefender TrafficLight were transmitted back to the BitDefender servers in non-encrypted form. However, I believe it is now encrypted. Thus, I suppose it's now okay to enable that option as well. Thank you very much for your feedback. This was very important. Do either of you have any other questions.

Thanks, quite a lot to take in but indeed worth a read.

Thank you. Please let me know if there's anything else you believe could be included.

Great advice here. I am wading through it all right now.

Thank you. Please let me know if you have any questions.

Sir what is the possible problem in my computer when i trying to type in my keyboard is keep disappearing my keyboard cursur in a second and not responding unless the cursur blinking again and I almust done everyting, system restore,scanning by kaspersky,malware scanner, uninstalling & installing keyboard driver, adjusting keyboard software in the control panel even changing keyboard I did but the problem still not solve.. for temporarily I made end process the explorer.exe under task manager the problem is gone but whenever i shutdown my pc the problem is coming back again :(

First, this is a great page, with good advice and links to valuable resources.

Second, it's a bit overwhelming. Looking at the Firefox extensions specifically, surely it's not necessary or even wise to add all of them. Perhaps you could make it clearer which ones mostly overlap or render others superfluous? (Perhaps provide a bottom line such as: 1. If you're not technically adept, install A B C, and if you're really paranoid, add D E. 2. If you are adept, install A F G , and if you're really paranoid D H.)

For the time being my advice is to install all of them. I have already separated the advice into those which are recommended for all users, and those recommended for only the advanced users. That said, I will go through this article soon and see if I can clear out the list a little, and make it a little more clear about how to choose which to install. Thanks for the great feedback.

Thanks for the article Chiron, one or two add-ons here which I wasn't aware of before and am trying out now.

So far I like the Startpage search engine, although the Bitdefender Traffic Lights add-on doesn't work with it. Or not for me at least. It's interesting to note the difference in reports between Traffic Lights and WoT, which I presume is down to their working in different ways.

I'm quite curious about this, as Traffic Lights reports "No suspicious elements on this page" which implies some kind of page scan. What's interesting is that it seems to do this very very quickly when compared to, for example, Virus Total or Comodo Web Inspector.

I'd also just add that Google Translator doesn't work on whole pages when a page is https, but the add on that you recommend allows disabling so it's not too much of a pain.

My experience with Traffic Light and FF21 (also 19 and 20) has been problematic, on balance.

Lately there have been too many instances of unresponsive scripts, the latest, which drove me crazy over the past 24 hours, is:
Script: chrome://trafficlight/content/utils.js:117. I had to disable TL to get FF to run - just froze it completely.

Also, as of late, Traffic Light seems to warn me about specific sites that I know are safe, the NY Times just this morning - there was an article I clicked on from another safe site, The Atlantic, and it kept giving me the warning about an unsafe site.

I trust WOT, also installed in my FF, and it works well with my search engines Ixquick and Start Page.

Yes, I must admit I'm toying with removing Traffic Lights too. Since I added it after reading Chiron's piece, it's kicked in maybe twice to warn me about dodgy sites. I think they were helpful warnings but I do notice that TL green lights a lot of sites that WoT gives red or orange lights to.

I have WoT as well which I've used for several years now, but I like the way that Traffic Lights will identify parts of a website rather than just blacklist the whole site. For instance on one occasion it was silent on a site until I followed a download link and it then kicked with a warning.

I also like having it just as an extra layer of security, I don't think you can ever have too many of those.

My issue with it really is that it does seem rather resource intensive. Since I added it I notice that Ice Dragon seems to top out my CPU more often and I've had more frequent "Not responding" moments. However I can't be sure that TL is the culprit until I've disabled it for a few days to test the theory properly.

I did remove it after I wrote the original reply yesterday and my system is back to being very responsive - until the script issues came up big time this week, I didn't realize TL could slow my system down (or paralyze it) to that extreme, until you really think about the process TL goes through.

BTW, I found an additional layer from another Gizmo article this week after I removed TL - this is germane to your comment about another layer of protection.

I added Microsoft's EMET to my security mix, based on an Vic Laurie article here at Gizmo's - EMET gave me that additional layer. Since it is engineered for Windows, it runs very efficiently.

Takes a while to understand how it configures, but worth taking a look at the capability.

My hat off to all these folks at Gizmo's...

I've disabled it now on both my PCs but to be honest haven't noticed a massive difference yet.

I did have an interesting experience with it yesterday though... I was looking to see if there's a new version of Site Specific Browser and when I opened the page TL blocked it. No idea why, and when I scanned the page with Virus Total, Bit Defender was the only AV on the list which flagged it as a danger. Confusingly though, when I closed Virus Total and re-opened the SSB site, TL said nothing. Odd.

Thanks for the tip about EMET as well, I checked out some reviews of it and will probably give it a spin.

Sorry for not commenting before now. The main reason I advise using TrafficLight is that I wanted something to help augment the phishing protection offered by the browsers. I was hoping that between the browser phishing protection, WOT, and TrafficLight, users would be mostly protected from phishing. However, if there are problems with TrafficLight I may have to rethink that strategy. Does anyone know of a different add-on which offers good phishing protection?

@Chiron: Regret no new Add-on to suggest! Just a FYI note to highlight the somewhat "hidden" update to all Mozilla based browser's (Firefox, Pale Moon, etc) SafeBrowsing system a while back that seemed to go largely unreported. In brief the built-in SafeBrowsing system has been "significantly improved" to provide "much more efficient operation" as Mozilla's Sid Stamm explains in his "Malware and Phishing Protection in Firefox " blog: http://blog.sidstamm.com/2012/02/malware-and-phishing-protection-in.html

More technical info in Mozilla developer Gian-Carlo Pascutto's "New SafeBrowsing backend" article on his Garf's blog: http://www.morbo.org/2012/02/new-safebrowsing-backend.html with design/implementation details in Bug #673470 "Replace the sqlite safeb store with a flat file" (https://bugzilla.mozilla.org/show_bug.cgi?id=673470) changeover completed from Firefox 19 with Bug #723153 "Remove old safebrowsing store from profiles" (https://bugzilla.mozilla.org/show_bug.cgi?id=723153).

Chiron,

1. A year or so ago I played around with Netcraft, an anti-phishing extension for Firefox. Not entirely sure why I removed it, but I suspect for performance issues.

2. I have the "Malware Domains" filter preferences list in AdBlock - it includes a number of phishing sites to be blocked, more added every month. The entire Malware Domains project is one I have been duly impressed with for a number of years.

3. I remember a Mozillazine posting specifically addressing an anti-phishing strategy around four (4) layered components: Secure Login or LastPass; Search Status, which displays Google page rank and Alexa page rank (along with a whole lot of other site information like WhoIs); WOT; and, FormFox, which displays the form action, the site to which the information you've entered is being sent.

I use LastPass and WOT, not sure about the other two(2) extensions.

Hello Chiron,

I'm still in two minds about Traffic Lights ... I left it disabled for a few days and to be honest didn't notice much difference as far as performance is concerned, so I have it running again now. True that Ice Dragon seems to use more CPU and sometimes web pages are a bit slower to load but on balance I think the extra layer is worth it.

A minor annoyance is that when TL locks me from a site, I can't seem to override that even when I click the "I understand the risks..." link. For instance I just read your comment about PrivDog, but when I went to have a look TL blocked the site and I had to disable TL to open it.

Concerning alternatives... I've been using Blue Coat K9 Web Protection for a while now. It differs from others in that it isn't a browser add on but instead installs itself as a system service, and thus works regardless of what browser you're using.

It takes the usual approach of running sites past a blacklist database, but also allows you to choose from a fairly comprehensive selection of keywords which can also be used to block sites, this being mainly aimed at parents who want to have control over what their children see on the internet.
You can also lock/unlock specific URLs, add your own keywords, have K9 block results from search engines, or use K9's own "Safe Search", you can select a "Youtube safety mode" (i.e. no adult content) and even set time restrictions on web access so that the web is completely locked at whatever times you choose. The website also has a site scanner where you can enter a URL for checking.

A start menu entry opens your "Admin page" in your browser... to access this you need to enter a password that you set when installing K9, and you can then change keywords etc, all your preferences and view a very detailed history of web activity sorted by category. The same password also lets you continue to a website when K9 blocks it.

It's a very unobtrusive thing - as far as CPU and RAM are concerned it's barely noticeable and in normal internet use I never see it. I was a little surprised just now when I signed in to my admin page and saw that it claims to have blocked almost 10,000 hits in the categories of Spyware/Malware Sources, Proxy Avoidance, and Suspicious. Going into the detailed report shows me that the Proxy Avoidance hits are from Expat Shield which as far as I can tell is still working fine, so I'm not sure what to make of that.

The only obvious downside is that the free version only licenses you for one computer. Also I'm not sure to what extent the program is still supported, as the forum is closed now and the copyright at the bottom of the admin page says 2009 or 2010 depending on what page you're on. Need to look into that further.

A quick Gizmo's search shows that K9 is mentioned a few times on here, but I'd be interested to hear if anyone else has tried it out and has any thoughts.

Thanks to everyone for your suggestions. I tried out K9, but found it too complicated for what I'm advising here. There are too many ways inexperienced users could forget to change a part of the configuration and thus become frustrated. I tested a few alternatives, but eventually came back to BitDefender TrafficLight. Thus, my main advice is to use BitDefender TrafficLight. However, I will be updating this article, perhaps next week, and will mention that users who are noticing significant performance hits can instead use the Netcraft anti-phishing extension. I believe that advice should work for everyone. Thank you.

Pages