Recommendations for a Safe Browser

I enjoyed the post on 'Safe' and 'Promiscuous' Web Browsers. It was also stated in this followup post what browsers he uses: “Normally my primary promiscuous browser is Firefox, and my secondaries are using REALLY old and obscure versions of Netscape and Safari--ones that no one uses.” I say, 'to each his own.' I don't think the average user wants to bother finding and running old versions of browsers. First there's the compatibility issue of getting it to run on your OS (make it old, but not TOO old), and then there are sites that just won't display or function correctly when you visit them. If users don't want to get that complicated, I recommend another solution that will nip this in the bud. Run Firefox with the AdBlock Plus and NoScript extensions. AdBlock plus is great, it automatically blocks most advertisements on web pages. That's where most of these exploits are coming from, anyway, so by blocking them right off the bat, there are less threats out there to worry about. The second extension I recommend is NoScript. This prevents any script from executing on any webpage. Obviously, this makes some sites not display or function properly, so when you're on a site you trust and want to interact with, you can select to either temporarily or permanently whitelist it. The NoScript extension is so secure that it can even be a pain in the neck sometimes, such as when you visit a site and try to register, then realize you need to whitelist it so the "submit" button will work, for example. When you whitelist it, it reloads the page and sometimes the text you just typed in disappears. So it's helpful to remember to whitelist when you first load the page! An alternative to NoScript, if you find it too annoying, is the extension FlashBlock. This extension prevents flash from running on any sites you visit. Where a flash window would be, a 'play' button appears that you can click if you want the animation to run. Like NoScript, you can also whitelist sites. I doubt you could get much more secure than the AdBlock/NoScript combination for a browser, but hey, to each his own. Personally I do not recommend running old software. It can have old vulnerabilities you wouldn't think of, and even though these vulnerabilities may not be often targeted, the Internet is so vast, how do you know you're not going to come across an old web page with a vulnerability on it, and get compromised? Also, many newbie users have their Windows Updates turned off and their antivirus out of date. I've seen enough PC's infected with exploits I thought weren't even around anymore so I recommend to stay current with whatever you use.

Sears.com installs spyware

Although this isn’t specifically about a wireless networking issue, this horrifying story illustrates how important it is to keep your computer safe from spyware and malware. It doesn’t matter how good your wireless encryption is if everything you with your browser is sent to some anonymous marketing research company. Why, exactly, does a market research company need my bank account user name and password, anyway? This story appears on the CA Security Advisor Research blog: Sears.com: Join the Community – Get Spyware Check out the Sears Update: Privacy Policy, Scorecard, and Genetic Heritage for more information on the source (“genetic heritage”) of the spyware and more details about the issues this software raises. For the weasel-like corporate spin from Sears on this clear breach of consumer privacy, see this update: Sears Update: Response to Rob Harles, VP SHC Community. Fortunately, this year I was able to do my Christmas shopping without going to Sears. It will be a long time until I favor them with my business again.