Towards a Free (as in speech) system – (or Flash Reduced diet #3)

July 25, 2009 at 1:14 pm | In Life, Tech, XO | 1 Comment
Tags: , , , , , ,

It seems that one of the side effects of my Flash reduced diet is a desire to get away from all restricted formats. In looking back I can see that this journey actually began when I got my OLPC XO during last years Give 1 Get 1 program. As I progress on this journey I am stripping away more and more of my reliance on restricted/patent encumbered formats. I am also working hard to rid my systems of any Proprietary binary blobs or software with restrictive or anti-social licenses. I have cleaned up Ubuntu on my main laptop as much as I can and am now looking into replacing Ubuntu with gNewSense. The main stumbling block to doing so is the fact that my main laptop is my Asterisk/Voip centre and I’ll have to do the re-install at a time when there would be no incoming calls.

The thing that has surprised me is how little has broken. As I mentioned in my previous postings on Flash reduction things definitely do break, but nothing that I couldn’t easily live without.

My biggest concern was dropping restricted kernel modules as I feared that some of my hardware may cease to function. As it turns out I have been quite good at buying hardware that is fully supported by open source software. My next concern was that I might have trouble with Various media types but again nothing significant broke I can still watch the CBC news at night just fine. I did loose mplayer, VLC, and Avidemux that I had come to depend on but they have been replaced with other tools that do not have the licensing complications of those applications. I have managed to completely do away with the multiverse repositories on my main laptop.

My next challenge will be to do the same on the XO. This may be challenging as the XO is shipped with proprietary kernel modules for the wireless card. and I suspect the Video will be problematic. My Ultimate goal will be to get gNewSense on my main laptop and then work on porting it to the XO. It may well be worth the effort of porting to the XO even if the wireless doesn’t work as one can always add an external wireless card that is supported by Free software.

Flash Reduced Diet #2

June 22, 2009 at 3:32 pm | In Tech | 1 Comment
Tags: , , , , , ,

About a month ago I started my Flash Reduced diet. I must say, it’s a month on, and I am really enjoying the current state of affairs. Gnash although not perfect, renders what it does render well. As I mentioned in my previous post gives a lot more control to the user, including automatically saving video. I enjoy knowing that all LSO’s are going straight to /dev/null/ now (for the non Linux users in the crowd that is a black hole from which nothing returns). I’ve yet to play with the whitelist/Blacklist. I definitely would recommend Gnash to anyone looking for a Flash alternative or just looking to have a Flash reduced diet.

I am still pondering going totally Flash Free.. but as that would break a lot of sites I’m not (quite) there yet.

Flash reduced diet.

May 26, 2009 at 5:14 pm | In Life | 2 Comments
Tags: , , , , , ,

I realized today that I no longer required Flash for video conferencing (had a friend that wasn’t on Skype until recently). And thus I now had the chance to loose a huge proprietary blob from my nice open source system. So out goes Adobe Flash 10 and in goes Gnash.

Today is the first day of living with a Flash reduced diet on my main delaptop (laptop that sits on my desk all day). I have learnt from using my OLPC XO as my main mobile computer that life can go on just fine sans Flash. However after removing Flash from my main delaptop I find myself wondering how much my productivity will increase now that I will be less distracted by cute videos and the like. I’m not talking about ads they don’t exist on my systems thanks to things like “Adblock Plus“. I’m talking about all the “check out this cool vid..” and “Isn’t this cute (Flash animation)” that us netizens are bombarded with daily.

I can already feel myself being more focused.

Other benefits of installing Gnash. I have a LOT more control over privacy, and a lot more control over the Flash content that I do choose to watch.

I understand that a Flash reduced diet isn’t for everyone. It breaks a lot of the stuff on the web because Flash is way over used. That, however, is one of the reasons I rail against it. I hate being railroaded into using some proprietary thing just because it is popular with the masses, or because it make web 2.0 development fast and easy, and lets admit it one of the large reasons for Flash adoption is so companies can pollute your system with LSO’s which most people don’t know about or how to get rid of. Because in the eyes of companies deploying Flash.. Track you they must.

Updates….

October 16, 2008 at 3:58 pm | In Privacy/Security | Leave a Comment
Tags: , , , , , , , , ,

Just a short entry to let people (RSS) know that I’ve made updates to My “Flash ‘Cookies’, a hidden bane” entry and also put a link in the Side Bar to downloadable Flash LSO (cookie) removal scripts.

Enjoy

All About WebBugs

October 14, 2008 at 12:03 pm | In Privacy/Security | 1 Comment
Tags: , , , , , , , , , ,

What is a WebBug anyway?

A webbug or web beacon, pixel tags, tracking bugs, etc are tiny 1×1 pixel images (gif, jpg, png, tif, etc) (and increasingly Flash objects) that companies put into websites or e-mails to track where, when, and by whom they are viewed. On most modern computer screens a single pixel is very hard to see. Even if that weren’t the case 99% of the time these images are transparent so even if you have fantastic eyes you wont see them.

Isn’t this just done by evil hackers/Spammers?

There is a growing trend for large online companies to use these bug/tags to track people. This is partly due to the fact that browsers have gotten better at letting people block older ways of tracking you (cookies, ad banners, etc). So it is the next step in an ongoing techie arms race. Good techies trying to protect your privacy/anonymity. Corporate techies trying to track you so people can make money off of you, or off of people that will pay to know what you are interested in.

A prime example of this is Yahoo’s decision to start using webbugs.

Should I be scared?

Web tracking is nothing new, this is just the next step in the dance. So, being scared is probably over reacting a wee bit. You are perfectly justified in feeling concerned, annoyed, pissed off, righteously indignant, or just plain peeved. Privacy is a right and these folks are dancing around that as best they can.

What can I do?

Unfortunately there isn’t one simple, install this program and it will all go away, type thing you can do. However, this does not mean that there isn’t anything you can do. There are some definite steps you can take to protect your privacy and I’ll cover them briefly here.

E-mail:

I’ll start with e-mail as it is probably one of the easier things to protect from webbuggery. First set your e-mail client to never touch remote/online images. This alone will stop many webbugs in their tracks. If there is such an option consider setting your mail client not to render HTML at all. (this might be a bit drastic for most people). Definitely disable Java, JavaScript, VBScript, etc in e-mails. In this day and age having a scripting language active in your e-mail client is tantamount to leaving your keys in your car with the doors open.

Other things you might want to consider:

Digitally signing all e-mails you send (makes them tamper proof).

Sending mail in text only format (yeah, I know, no smilies.. but safer).

Digitally encrypt all e-mails so they can’t be viewed “in transit”

How to make Browsing safer:

Unfortunately since browsing means loading pictures, blocking webbugs while browsing takes a bit more work. Basically you need a system to block the undesirables. There are many options out there but all take at least some work to set up. One of the easiest is the Adblock Plus extension to the Firefox browser. It makes blocking undesirable elements in a webpage quite easy. The problem is that the webbugs are impossible to see so you have to use the “tools -> page info -> media” function of the browser to locate what elements are 1×1 pixel in size and then block them. Not all 1×1 pixel things are bugs. luckily the bugs are often easy to spot as they will come from a source outside the page you are viewing, or will have a fairly obvious hint in the URL like “adserver.”, “adscript.”, “track”, etc. Adblock Plus also offers free filter subscriptions which it will use to get block lists that have been generated specifically for it. The “ABP Tracking Filter (by rick752)” under miscellanious does a good job on blocking many of these webbugs

This is a bit of a pain in the posterior but once it is done you are pretty good to go. You will still want to check from time to time to make sure that there are not any new ones.

The same approach can be used if you have a router that supports a block list. Just keep adding the nasties to the list and soon you’ll be browsing much more safely. The one drawback to this approach is that some webpages try to use Java/Javascript to load up the ads/webbugs. Having them blocked at the router can sometimes make the page stall while Java tries to get the offending material but can’t reach it.

Other options exist such as Privoxy which is a software proxy that will clean a lot of this stuff up for you. My problem with a solution like this is that although Privoxy is very good at what it does I can’t be sure it’s catching everything I want it to.

The best approach, and the one I use, is a combination of the above. Things that don’t block well at the router I block with Adblock Plus and NoScript. I use Privoxy (and Tor) if I am going some place I am unsure about and definitely wouldn’t want tracking/spamming me.

In the end the decision of what to do about this issues is up to you. It’s your privacy, It’s your choice. Sadly many people feel their privacy isn’t worth the effort it takes to set these filters up.  The things I have talked about here is not a complete list of the options to protect ones privacy. Unfortunately going into all the options would make this document far too long and probably make it classify as a good sleep aid for most people.

Included below are some links for further reading on the subject. Enjoy.

Yahoo’s “Web Beacons”

Privoxy

Tor

Firefox

Adblock Plus

Peer Guardian

GnuPG – e-mail signing/encrypting

WebBug Articles:

http://www.leave-me-alone.com/webbugs.htm

http://www.spywareinfo.com/articles/webbugs/

http://www.securityspace.com/s_survey/data/man.200609/webbug.html

Flash ‘Cookies’, a hidden bane

July 28, 2008 at 9:57 am | In Privacy/Security | 18 Comments
Tags: , , , , ,

—- N.B.

I have made several updates to this post as I have noticed continued interest in it.

There is follow up to this in the comments below for those looking for a way to delete Flash cookies. I’ll be posting an windows bat file to do about the same soon. There is now a link in the sidebar to the right to downloadable versions of the LSO (Flash Cookie) removal scripts one for XP and one for Linux. I have yet to find a functional way to stop the cookies from being set as it seems blocking them seriously messes with some sites functionality.

There is another privacy bane on the net. “Flash Cookies”, or technically “local Shared Objects”. There is a good explanation of them on this Blog and also a link to the Adobe Flash Settings Manager which will let you manage them think you are managing them. These “cookies” are not cleared when you clear you browser’s cookies, are not stopped by telling your browser to prevent cookies, are not stopped by normal cookie managers. You currently have to use the Settings manager, or root them out and delete them manually.

you can go to the Settings manager and dong the following:

- Setting the default storage size to 0 (none) on the “Global Storage Settings” tab

- Unchecking “Allow third-parties Flash content to store data on your computer”

- Unchecking “Store common Flash components to reduce download time”

- Check “Never Ask Again” (some sites manage to ignore this.. but see below)

(bare in mind that I am draconian about my privacy, and would rather have things asking me for permission all the time rather then doing things without asking. You can, of course, set things to you own liking.)

– It has been pointed out that the above has little permanent effect as there seems to be little or no enforcement of the above settings and sites go ahead and store LSO’s even with the limit set to 0 –

- Bookmark the settings manager (you’ll want to come back to it now and then)

If a site is annoying about asking for storage go to the Settings manager from a new browser tab or window and use the “Website Storage Settings” tab in the Settings manager to tell the site to never ask again.

You can also use the “Website Storage Settings” to allow sites that you want/need to save data and limit how much they can store.

If ever there was a good reason for using NoScript, (which prevents flash and other things from running without permission) this is one. (of many)

– I strongly recommend the use of NoScript as an increasing number of sites have started using flash “web beacons” to track people (they hide a transparent 1×1 flash object on the webpage just so they can set an LSO (flash cookie) –

Good day, And happy and safe surfing.

Site of the Week #8

May 3, 2008 at 11:52 am | In site of the week | Leave a Comment
Tags: , , , ,

Bored? Slow day at the office? At the library but don’t feel like studying? Well then this weeks site of the week is for you. It is a wonderful site with a plethora of online flash based games to play. No sign up necessary.

you can find it at:

http://armorgames.com/

Go, play, enjoy

Blog at WordPress.com. | Theme: Pool by Borja Fernandez.
Entries and comments feeds.