Original Post by The Bard of the American Redoubt

https_everywhere_new_logo-300x259As the ongoing American Redoubt Darknet (AmRD) project to help improve the Liberty blogosphere and in particular the American Redoubt movement we will introduce the next level of security upgrade.  Firefox and SSL Everywhere.  To recap for new visitors I have decided to volunteer my energy and experience to to help create a more anonymous and secure network for Liberty / Patriot communities.  My ultimate goal is to help us all create a American Redoubt (or Liberty movement) focused darknet, or private, secure as possible and highly anonymous computer network.  My first recommendation, after significant research I have recommended all Liberty / American Redoubt related websites / blogs to implement SSL.  I believe this will significantly increase the overall communities security poster and providing building blocks for the next parts of the AmR Darknet.   My next suggestion is something that you can implement.

no_ieThe suggestion is actually two fold.  My first suggestion to you is to stop using Microsoft Internet Explorer (IE) if you happen to use it.   Under no circumstance should your “normal” Internet browsing be done with IE.  You may have corporate websites that require IE, and that is ok, but your normal Internet browsing should not use IE.  IE is the most insecure, least trusted of any Internet browser.  Why is IE inherently insecure?  For one reason it is is directly connected to your Operating System (OS), the basic functions of your computer.  For Microsoft to “sell” or actually give away IE and control “market share” it directly bundles it with the OS.  Thus if a malicious entity “hacks” your IE, they have more of a direct path to hack your OS.  All other browsers are “separate” from your operating system.  They are from separate companies.   Another reason to avoid using IE is that the code, or how IE is “built” is completely hidden by Microsoft.  Thus if Microsoft has allowed any entities to have “back doors” into its browser it, there is no way to find out.

Think on this.  If IE gets pressure from “…entities with global reach..” they could easily “allow” or build back doors that that have direct access to your operating system and there is very, very little way the “general community” would know.  What we can tell about how IE is built into Microsoft OS, is nothing but bad.  If you are new to this, I highly recommend you install a more secure browser.  A decent browser I use is Firefox.   Thus to help you participate in the darknet, please install and use Firefox or a more secure browser if you can find it.

firefox-logo

The next significant recommendation in the AmRD project is to use the Electronic Frontier Foundation Firefox plugin called “HTTPS Everywhere.“  What HTTPS Everywhere does is turn on SSL on all sites, even sites you would not think of like Google or Wikipedia.  It then tries to rewrite insecure parts of various blogs / website to force them to use more secure SSL.   Here is from the EFF site.  “HTTPS Everywhere is produced as a collaboration between The Tor Project and the Electronic Frontier Foundation. Many sites on the web offer some limited support for encryption over HTTPS, but make it difficult to use. For instance, they may default to unencrypted HTTP, or fill encrypted pages with links that go back to the unencrypted site. The HTTPS Everywhere extension fixes these problems by using a clever technology to rewrite requests to these sites to HTTPS.”  Notice that EFF / TOR have plugins for Firefox, Chrome and Opera.  This is because IE is completely close and suspect by design.

The new feature of HTTPS Everywhere, the “Decentralized SSL Observatory” is optional, but I use it.  It’s designed to detect encryption weaknesses and notifies users when they are visiting a website with a security vulnerability.  In other words it keeps a copy of the CCS blog’s security certification.  If an entity modifies the certificate (such as forging a certificate and using it on a man-in-the-middle fake website” the SSL Observatory managed by the EFF will try and notify you. Here is the description from their site:  This is meant to let you know that the “secure” site you’re visiting may be leaving you open to eavesdropping or “man in the middle” attacks.  In addition, thanks to the EFF’s partnership with the Tor Project, an Internet anonymity program and network, HTTPS can help steer you clear of sites with fake or forged Secure Sockets Layer (SSL) certificates.  Thus to fully implement this upgrade to your security is to not use IE, I suggest considering Firefox.  Then install SSL Everywhere for Firefox.

Installing Firefox is simple just visit their site at Mozilla.org site and download Firefox.  Then go to the eff.org site and download the SSL Everywhere plugin.  It will ask you to use the Observatory, I recommend yes.  Then you can use “SSL Everywhere.”  I have confirmed that CCS works with it, but you can disable it in Firefox in the upper left corner if it appears it “break” any site.

 Click HERE to read the complete article.