Archive for the ‘Security’ Category

Stop your friends’ Facebook app from accessing YOUR private information

No Comments »

 

I thought I had carefully controlled what other people I choose to share my photos and my personal information with me on my Facebook and I was really careful about what third-party Facebook applications I allow to have access to personal details such as my birthday, my status updates, my photos, my location and educational and work history but I was WRONG until today. Read the rest of this entry »


How to enable WebSocket in Firefox

No Comments »

WebSockets
WebSockets is an advanced technology that makes it possible to open an interactive communication session between the user’s browser and a server. With this API, you can send messages to a server and receive event-driven responses without having to poll the server for a reply.

As you might know, WebSocket is disabled in Firefox due to security issues (This was fixed in Firefox 6+ by implementing a newer version of the protocol that corrects the problem.) while it’s being supported in Chrome and Safari. However, you can still enable WebSocket in Firefox by opening

about:config and setting the network.websocket.enabled preferences to true

That’s it, Enjoy

Refrence: https://developer.mozilla.org/en-US/docs/WebSockets


Secure browsing, How to use SSH (encrypted tunnel) for browsing

2 Comments »

Using ssh as a proxy or encrypted tunnel to browse the web can sometimes be necessary:

  1. When you’re at some public place but need to login securely to your work place.
  2. When local access restrictions make life really difficult.

I use SSH for the security reasons. I want to make sure that my security and login information will remain secure:

ssh -D 12345 myuser@remote_ssh_server

Replace myuser with your user account and remote_ssh_server with the IP or Hostname of your server.

The above command will do all, but if you want to add more options, you can add other options like:-

-D 12345: This does the dynamic stuff and makes it behave as a SOCKS server.
-f : This will fork the process into the background after you type your password (for Linux only, on windows skip that).
-C : Turns on compression.
-q : Quiet mode. Since this is just a tunnel we can make it quiet (for Linux only, on windows skip that).
-N : Tells it no commands will be sent. (the -f will complain if we don’t specify this)

Next, set up your browser to use the proxy server. Most browsers include proxy support. For Firefox, go to Edit→Preferences→Advanced→Network→Settings, and specify that you want to use a Manual Proxy, localhost, port 12345 and SOCKS v5 (although OpenSSH supports both versions 4 and 5).

HTTP Proxy (The first input). Must be left blank and add this config to SOCKS only.

Now your browser is using a secure tunnel to your remote SSH server, Enjoy


Microsoft & Google Pakistan Defaced by Turkish hackers

No Comments »

 

MarkMonitor Inc, USA based company who is responsible for over 110 domains including google.com.pk, microsoft.com.pk, paypal.pk, domain control panel hacked, last night and some sites are still down as of (24th November, 2012)

Google Pakistan’s home page (google.com.pk) is “hacked” by Turkish hackers putting a message which says “Pakistan Downed”. Paypal site is still down and showing this:-

turkeyhack

WHOIS record of those hostings point to some free hosting service as DNS providers:-

dns1.freehostia.com
dns2.freehostia.com

List of sites affected:-

  1. biofreeze.com.pk
  2. blackstone.pk
  3. blogspot.pk
  4. itunes.pk
  5. gmails.pk
  6. zynga.com.pk
  7. chrome.com.pk
  8. chrome.pk
  9. visa.com.pk
  10. bx.com.pk
  11. abbvie.com.pk
  12. abbvie.pk
  13. cgma.pk
  14. chacos.com.pk
  15. cimacpa.pk
  16. cisco.pk
  17. ciscosystems.pk
  18. blogspot.com.pk
  19. cpacima.pk
  20. cpaintl.pk
  21. cpaldglobal.pk
  22. cpalwglobal.pk
  23. drivealliance.pk
  24. eastman.biz.pk
  25. eastman.net.pk
  26. eastman.org.pk
  27. ebay.pk
  28. monatin.pk
  29. everyblock.pk
  30. youtube.pk
  31. 3com.web.pk
  32. hp.web.pk
  33. revlon.pk
  34. streetwear.pk
  35. windows7.pk
  36. windows8.pk
  37. windowsrt.pk
  38. yahoo.pk
  39. yahoomaktoob.pk
  40. zynga.pk
  41. firstdirect.com.pk
  42. flickr.pk
  43. fordgofurther.pk
  44. gbuzz.pk
  45. gmailbuzz.pk
  46. gmail.pk
  47. googlebrowser.com.pk
  48. google.pk
  49. googlebuzz.pk
  50. googlechrome.com.pk
  51. abbviepharmaceuticals.pk
  52. abbviepharmaceuticals.com.pk
  53. hewlettpackard.pk
  54. hexagon.com.pk
  55. hsbcamanah.biz.pk
  56. hotmail.com.pk
  57. hpcloud.com.pk
  58. hp.com.pk
  59. hpscalene.com.pk
  60. hsbc.biz.pk
  61. hsbcadvance.com.pk
  62. hsbc.pk
  63. hsbcpremier.com.pk
  64. hsbcprivatebank.biz.pk
  65. hsbcamanah.com.pk
  66. hsbcdirect.com.pk
  67. hsbcnet.com.pk
  68. hsbcpremier.biz.pk
  69. hsbcpremier.pk
  70. hsbcprivatebank.com.pk
  71. investdirect.biz.pk
  72. investdirect.com.pk
  73. ipod.pk
  74. jaiku.pk
  75. kellyservices.com.pk
  76. maktoob.pk
  77. markmonitor.pk
  78. microsoftsmartglass.com.pk
  79. microsoftsmartglass.pk
  80. xboxsmartglass.com.pk
  81. xboxsmartglass.pk
  82. msn.org.pk
  83. windowsstore.pk
  84. windowsstore.com.pk
  85. opteron.com.pk
  86. parkplaza.pk
  87. paypal.pk
  88. postini.pk
  89. scalene.com.pk
  90. schwab.biz.pk
  91. schwab.com.pk
  92. sonystyle.com.pk
  93. streetwear.com.pk
  94. theworldslocalbank.com.pk
  95. genapp.pk
  96. genapp.com.pk
  97. generationapp.pk
  98. generationapp.com.pk
  99. windows.com.pk
  100. windows7.com.pk
  101. windows8.com.pk
  102. 3com.biz.pk
  103. 3com.fam.pk
  104. 3com.net.pk
  105. 3com.org.pk
  106. gchrome.com.pk
  107. aicpacima.pk
  108. apple.pk
  109. google.com.pk
  110. microsoft.pk

Fighthing Google Groups Spam

2 Comments »

 

Recently, in Pakistan many companies have started offering email marketing.
These companies collect email data from various sources, and then start sending emails in bulk.

Majority of these email marketing companies are using Google groups to send emails.
Google groups enables them to build an email database and thru these groups then can send bulk emails.

Many people have complained about being added without their consent and receiving several emails on daily basis. Because of a Ban/unban bug in Google Groups, I myself reported Google to fix that bug, but no response yet from their side.

Here is how you can unsubscribe google groups, and make sure that no one can add you again.

Create an account on Google at : http://accounts.google.com
You can use your company email address to create an account.
Google will send you verification email which you should verify.

Once you create the account, you will see the main dashboard page.
Add as many emails as you want in the same account ( usually the ones which are receiving SPAM mails from Google groups)

Once you have added all the accounts.
Go to dashboard –

At the lower part of the screen there is a link for GROUPS
Click on the link.

On the lower right hand side of the screen, you will find the option for “manage subscription”
Or Open : http://groups.google.com (without logging off, off-course)

GoogleGroups

Click on   My Groups

Once you click on that link, you will see how many companies / groups have added your emails address.

Click on the group which subscribed you without your permission or you don’t want to be part of that group.

Group-Link

Click “My Membership” from here you can select the option to unsubscribe from that mailing list.
That’s it !!! and now you are done !!

Also, from the User Preference option (click on settings icon settings):-

usersettings

You can enable the option to :

  • not to allow any other company to add you
  • not to send any other Google group emails.

The Google group spam has been there for a while and many people have been asking me about how to avoid the spam.

I hope this will help to unsubscribe and reduce the spam from Google groups.


How to Secure your Windows 7 OS

No Comments »

 

You can download a w7 security benchmark from https://benchmarks.cisecurity.org/en-us/?route=downloads.multiform.

In addition to the recommendations there you may want to:

 

1. Disable Teredo tunneling.

http://www.mydigitallife.info/how-to-disable-tcpipv6-teredo-tunneling-in-vista/.

 

2. Unbind Client for Microsoft Network and Printer and File sharing from all network adapters.

 

3. Disable Remote Desktop service.

 

4. Disable UPNP device host.

 

5. Disable ISCSI initiator.

 

6. Disable Computer Browser service.

 

7. Disable NetBios helper service.

 

8. Disable RRAS.

 

9. Disable remote registry service.

 

10. Move the firewall log from its default location and enable logging of all connections.

 

11. Enable process tracking in the local security policy.

 

12. Enable “User Account Control: Only elevate executable(s) that are signed” local security policy.

 

These are just a few things off the top of my head.
Best to run x64 version of Windows as the host.  The script kiddies are still targeting x86.

 

Of course, these recommendations are also applicable on Vista/XP OS.

 

You also may want to keep track of your BIOS, NIC and GPU firmware. 🙂
(If you know how)