Privacy Paranoia

[Knightmare]

Policeman nice addon, it's much like NoScript+RequestPolicy, but to me much likes NoScript, because NoScript addon included ABE feature in advance option and used RequestPolicy to prevent Cross-Site Request Forgery (CSRF) attacks.

It seems odd to me that NoScript is the only addon that can offer this protection. Either ABE is unknown to everyone or it's not that important.

[dcs18]

So using uBlock with Adguard won't slow my connection? Also should I get uBlock or uBlock Origin?

Have been testing uBlock against Adguard - uBlock sucks, for me.

If you are a n00b you will like uBlock - if you are an Advanced User you will prefer Adguard.

Personally, I have gone back to Adblock Plus - my second choice would be Adguard.

[opr]

Adguard is a no-no for anyone paranoid on privacy or security.

For it to filter HTTPS, it has to act as a man-in-the-middle intercepting kind of proxy with its own self-signed CA cert that our browser need to install and trust.

So to use Adguard we have to really trust it won't do anything bad in the future or have any weakness in its MITM operations.

[dcs18]

Same with Mozilla Firefox, too - and NOD32, Kaspersky . . . . . . . . . . for that matter of fact - Microsoft, too.

One needs to trust them all - so then, any form of computing is a no-no. :tehe:

[Knightmare]

Can I use RequestPolicy with Policeman?

[dcs18]

Can I use RequestPolicy with Policeman?

I prefer NoScript - one add-on which replaces both the ones you asked about. :)

[opr]

Same with Mozilla Firefox, too - and NOD32, Kaspersky . . . . . . . . . . for that matter of fact - Microsoft, too.

One needs to trust them all - so then, any form of computing is a no-no. :tehe:

I posted a article at //www.nsaneforums.com/topic/244361-how-kaspersky-makes-you-vulnerable-to-the-freak-attack-and-other-ways-antivirus-software-lowers-your-https-security/

It warns about software using this type of method.

Also, Hanno the article author warns about adguard in the comments:

I checked my certificate manager, shocked to see root CA certificate installed by my anti-ads software - Adguard!

It looks to be working as what you wrote, a MITM attack software to block ads but there was no warning or asking me for permission during the install.

Much thanks if you can do a quick analysis to see how good or bad it works.

#1.1.2 fsecon on 2015-04-29 21:49 (Reply)

Had a look at it. It's bad. It's bad in a very interesting and creative way.

If you have adguard installed: Remove it together with its cert immediately. It's a huge security risk. I'll post details later.

#1.1.2.1 Hanno (Homepage) on 2015-04-30 21:33 (Reply)

Its not a question of trusting everything, we just need to check carefully and only trust those software that has earned it and look for safer alternatives to replace bad ones like adguard.

[dcs18]

Its not a question of trusting everything, we just need to check carefully and only trust those software that has earned it and look for safer alternatives to replace bad ones like adguard.

Who is going to be the judge whether Adguard earned it or not . . . . . . . . you, me or Hanno? :)

Who was the judge whether Mozilla Firefox, NOD32, Kaspersky and Microsoft, earned it or not? :dunno:

[opr]

Hanno can be that judge based on his/her analysis of the risks created by those software usage of man-in-the-middle attack method for their operations.

​

Microsoft and ​Firefox is by default safe as they don't use this MiTM method.

The rest that you listed can be better judged by their respective users with the information out there now.

​

[dcs18]

Hanno can be that judge based on his/her analysis of the risks created by those software usage of man-in-the-middle attack method for their operations.

Seeing that we can't even be sure of Hanno's gender - I wouldn't lay my bucks on his/her judgement (it is their job to publish and then sensationalize anything and everything - it is their business to blow things out of proportion.)

Microsoft and ​Firefox is by default safe as they don't use this MiTM method.

Whoever gave you that idea? :lol:

[opr]

Based on his technical analysis and his past security articles, I believed Hanno and have removed adguard from my computer to help my paranoia.

Oh, Hanno is a guy apparently - https://twitter.com/hanno, or do we need to check his birth certificate too? :rolleyes:

[dcs18]

Based on his technical analysis and his past security articles, I believed Hanno and have removed adguard from my computer to help my paranoia.

Well, all the best - I don't use Adguard . . . . . . . . but, had installed it very recently and know for sure that Hanno and his articles are garbage.

Oh, Hanno is a guy apparently - https://twitter.com/hanno, or do we need to check his birth certificate too? :rolleyes:

Apparently, you just seemed to have discovered that Hanno is a "he" and not a "she." :coolwink:

Nope, no need for a birth certificate - just get into Hanno's genes (jeans - sorry about that sick pun.) :tehe:

[opr]

​Jokes aside, care to share how you "know for sure" that his articles are garbage?

[dcs18]

. . . . . . . . and vice versa. ;)

[opr]

​Sorry, what?

[dcs18]

http://dictionary.reference.com/browse/vice+versa