Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Wed 16 Oct 2019, 12:44
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Anyone look at these Apps for Puppy?
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [1 Post]  
Author Message
purple379

Joined: 04 Oct 2014
Posts: 133

PostPosted: Tue 12 Feb 2019, 12:22    Post subject:  Anyone look at these Apps for Puppy?  

From: https://forums.linuxmint.com/viewtopic.php?f=231&t=287750

One of the posts reads:

Re: Virtualization for security.

Post by majpooper » Sun Feb 10, 2019 7:04 pm

Pjotr wrote: ⤴
Sun Feb 10, 2019 10:28 am
Firejail is a fine sandboxing application, ideal for your web browsers:
https://easylinuxtipsproject.blogspot.com/p/sandbox.html

You might find this article interesting, that I've written about security in Linux Mint:
https://easylinuxtipsproject.blogspot.com/p/security.html

Firejail makes a lot of sense as it will sandbox your browser and any other apps you use to go online.
Although a VM will give you the benefit of sandboxing you can take a performance hit - so to my way of thinking Firejail is the best of both worlds - sandbox like a VM and no performance hit. VMs are great IMO for that Windows app that you need occasionally that there is just not a satisfactory native linux substitute.

There are several ways to accomplish encrypted DNS and to prevent DNS leak.

DNScrypt - I haven't used this method for a while but when I did it was very effective.
There is a HOWTO thread for DNScrypt on this forum
https://forums.linuxmint.com/viewtopic.php?t=2707777

VPN - This can depend on the vpn provider - some providers do not do a good job of encrypting your DNS queries and let your DNS queries go to your ISP un-encrypted.I use Private Tunnel which I like and tested and found it does send my DNS requests encrypted to it's servers. So if you go the VPN route you would need to research which VPN would encrypt your DNS.
https://www.privatetunnel.com/

PiHole - This is my favorite and what I am using now. This takes a little effort but well worth it IMHO. PiHole is a great add blocker as well as blocking other bad actors before they even get to your browser which improves your browser performance. As well you can configure DNS over HTTPS (DoH) to Cloudflare DNS servers for added protection. This gives you several advantages - performance, add blocking, malware etc. protection, just plain bad actor protection, encrypted DNS and preventing DNS leak. I did set up PiHole on a VM for testing and it worked fine so that could be an approach. But in the end I decided to run PiHole on an old laptop running LMDE - PiHole will run on any Debian based OS to include Ubuntu and Mint - you can even get a little RaspberryPi for ~ $100 and run it on that.
https://pi-hole.net/
https://docs.pi-hole.net/guides/dns-over-https/



I hope it is all right to give this, while also listing the attribution to MajPooper.

Insofar as to which Linux Stub I might use to base a my virtual machines on. Puppy developers are not frantic to install the latest updates to software as it becomes available (I don't feel they need to be so concerned. Puppy offers excellent features to protect the OS and the user if it is carefully used) I noticed some folks talked about trying to install Tails onto their computer as a Primary OS. Tails developers are frantic to install the latest updates to apps, and linux Kernel. Someone mentioned that https://subgraph.com/ was intended for such purpose. Subgraph seems to have lapsed development.

I also have to admit, if security were the only goal, likely Virtual Box is not perfect in how it works.

I am back to which Fire Wall software and how to configure them, if I wanted to spend that much time. (I Don't)

I also wonder if anyone has tried to build a false reporting system for Browsers. Meaning a Website tries to execute code to find out the IP of the Browser, and the software catches that, and returns a value chosen by the individual who is using the browser.

Please feel free to dive in and tell me how I miss-wrote this post. I tend to make too many mistakes.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [1 Post]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0573s ][ Queries: 11 (0.0134s) ][ GZIP on ]