21 Tips to be Secure Online – Surf Safe & Anonymous Pt 2

If you want to be anonymous in real life, buy a big coat. Online, and for your PC, it’s more complex. Why do it? To shore up your identity, safeguard data, secure eCommerce and give peace of mind.

This guvGuide helps you find the level of anonymity to suit you, to take control of your identity, to enjoy faster, safer surfing and, in Part 2…

…to reconsider online habits and configure your browser

[sniplet guvSellBox]

I’ve endeavoured to make this guide as comprehensive as possible; detailed, yet bulleted. But hey, if there’s something missing, you’ve got a suggestion, or a disagreement, please leave a comment below, and we’ll improve the guide. Tx.

Anonymous Surfing

As we turn our attention to measures that can help with anonymous surfing, we must each consider our online habits, our level of online experience and the degree of usability – or web interaction – that we require. This is because, if we wanted total security with no risk, we would be left with a bland, yet perhaps still fulfilling experience. On the other hand, if we threw caution to the wind, risking all, we may have an improved experience, but perhaps with dashed anonymity and, if we havn’t follows the steps in Part 1, a box full of viruses.

For most, there needs to be a balance somewhere between risk and interactivity. Hopefully these tips will help you to find your balance.

1. Social & bookmark sites, forums etc

With networks like Facebook or Del.ici.ous, for example, set privacy options carefully. Not only are profiles often public, social sites can take your details to the top of the search engine rankings. Using a social site? Plug your name into Google to see what I mean. Alter the privacy setting to set who sees what.

2. Aliases

Attach your name to a forum comment, and you may find the instance at the top of Google’s search results. Aliases or pseudonyms are harder to trace to you, and can be ideal for chat services, forums, social sites and a blog.

3. Passwords

If you use the same password for every site, and that is found out, you’re wide open.

4. Phone number

Using services like Call-Safe or LetsCallMe, you can receive calls to an anonymous number. Great, for example, for online dating…or so I am reliably informed, hmm.

5. Avatars

For many communities, say, when you can’t control privacy settings on a forum, an avatar is a more prudent choice than a personal photo.

6. Email addresses

For most online subscription services, you needn’t use your personal or business email address. Instead of using your_name@xyz.com, get into the habit of registering a throw-away like nospam123@xyz.com. Then, other than helping to disguise your identity, if your email address is harvested and spammed, you can bin it and employ another.

7. Emails

When you send a mail it jumps through various servers before receipt. At each hoop it jumps it through, it can be read. To prevent this, encrypt your emails. PGP, for example, is easy to set up and offers basic protection for Outlook, Express, Thunderbird and Eudora. Or if you’ve got some serious trade secrets, look at something like GnuPG. If you are using Gmail, and have Firefox, then you can use this Greasemonkey encryption script.

8. Webmail

Online email hosts like Hotmail or Gmail are convenient, for sure, but there is speculation over how user data is used. The speculation rises for those companies doubling as a search engine. Smaller webmail providers are a smaller risk but threats remain (if you really wanna know, such as IP exposure, IP address broadcasting and traffic sniffing.) There are workarounds, but by far the best one is to avoid webmail altogether, or to use it only when you have to. Ideally, use a local web client like Outlook Express, popping mail to that.

9. ISPs

Ditto above. Most large ISP’s collect user data and process it, often for targetted ads, else just for their own records. Generally, the bigger the ISP, the higher the risk to your anonymity. A private ISP may cost more but can give greater anonymity.

10. Data

Use software to store and encrypt your personal info, from logins to credit cards. Roboform is a good choice, has a basic free edition, and can be bundled into Firefox so you’ve got automatic logging in for your registered sites, each with a separate profile.

11. Data storage online

Ditto again, some of the above concerns. Would you entrust the family silver into an unfamiliar neighbour’s care? That’s not a dissimilar scenario. If you can, keep everything local, else on an external drive or flash card. If you do keep it online, look carefully at the services encryption tools.

12. Credit cards

Bear in mind, they can be keylogged. If you don’t know about key logging, you definitely need to. Refer to Part 1 of this series for the particularly dangerous key logging trojans that can lurk within computers, recording whatever you type, and how to secure against them. As offline, credit cards also leave a trail of what you do and where you are.

13. Gate-keep robots

If you’ve got a site or blog you want to keep private – maybe an intranet, for example – else have private pages therein, create a robots.txt file and upload it to your site root. Properly configured, those pages or entire sites can’t be indexed by search engines and will be unsearchable.

14. Public computers

Web cafes and the like are convenient but, unless well-maintained, may be riddled with trojans, some of which may be key-logging trojans. As I’ve explained, these particularly malicious little critters take a note of everything you type including, for example, your credit card details. If you must use a public machine, keep your personal details on a flash card and copy/paste the info from there, eliminating keystrokes, negating key-loggers. Even better, get a copy of something like Roboform Mobile so you’ve got all your sensitive data encrypted with that, on your card.

15. Initiative

This is really the best safeguard of all, so use yours.

OK, that’s it for safe surfing. Almost…

Browsers & their settings

Let’s look more closely at our window on the web, the browser, considering a few tweaks.

16. Phishing

These are scams to obtain sensitive data, employing misleading emails and websites. All those spammy emails you get asking you to update your online banking details? Phish. If you inadvertently click through one of those emails, your properly configured web browser will detect a scam, alert you and report the fraud. In-browser protection will slow down surfing but adds protection. You can see how to change or ensure your browser-specific phishing settings, here at Guvnr, right here.

17. History

To safeguard anonymity, you can delete this, else set up your browser not to record it.

18. Favorites/Bookmarks

Ditto above.

19. Javascript

This is a subject full of misconceptions, but one that we have to understand to be safe online. It may sound very techy, Javascript, but I set out in Part 4 of this guide, in accessible language, what we need to know and why, and how best to protect ourselves from malicious code.

20. Cookies

They can get a bad rap. But far from being bad, some are crucial to usability. Then again, many are intrusive. There’s a bit to cover here, and so I’ve set aside this topic for Part 3 of this guide, explaining precisely what browser settings will give you the most suitable level of anonymity.

21. Firefox

It’s better for anonymity, with options such as multiple profiles and a slew of add-on plugins to enhance security. For example, the CustomizeGoogle add-on helps you control what is reported back to Google about your surfing habits. Anyone know a comparison with Netscape, Safari, Opera or Chrome? I use them only vaguely.

That’s it for the safer surfing tips. Together with your secure PC, you’re well on the way to deciding upon a suitable level of anonymity, online.

Part 3 of this series, published tomorrow, looks at cookies, and how you can avoid the bad ones while retaining the useful majority. Then, in Part 4, we’ll look similarly at javascript before finishing off, in Part 5, by setting up our proxy server.

What have I forgotten? Tons probably. Your comments are valued …

Related posts:

1. Preview: How to Surf Anonymously & Hide Your PC
2. How to Surf Anonymously & Hide Your PC: Part 1 – Anonymising Your PC
3. Enable the Phishing Setting for Firefox, Internet Explorer, Opera, Chrome & Safari Browser