Android Browser: GNU IceCat the better Android Browser for you?

If you use Android on your Tablet or Phone, and you like to get back more privacy and security you should take a closer look at the GNU IceCat Android Browser:

Source: https://ftp.gnu.org/gnu/icecat/38.6.0/ (Outside of Play Store)

IceCat need NO Google Account and does not call home, install it and try it. I don’t wanne miss IceCat on my Cellphones

Handling is same like Firefox, cause it’s based on Firefox Framework, but offers more user access.

WordPress: Secure Faster Effective Blogging

If you use WordPress or a other CMS for daily blogging, it’s useful to have a own User Acount on a PC.

Advantages:

  • Own Browser for Blogging with saved Passwords
  • Own Link Bar for quick switching between the Social Media Platforms
  • You won’t need to open Security Holes like API Software Interfaces for used Plugins
  • Speeds up the WordPress Blog cause reduced Plugin loads
  • You have the full control. cause most free API Plugins save your Passwords on foreign Servers
  • One touch Bookmarks let you jump fast between the Social Media Platforms
  • No Data are automatic transfered without your knowledge
  • Alternate you can setup three different browsers for each Social Media Platform one Window.
Wordpress Fast Blogging Secure
WordPress Fast Blogging Secure

Owncloud: Howto harden owncloud access with a ssh tunnel and squid

If you want to use a private secure owncloud (WebDAV Space Server) as Backup for all your devices you can harden the access thru a openssh Login with key auth and a squid as relay.

  • Install apache2, php5, mysql-Server, openssh, squid3
  • config Apache2 to listen on https://localhost:443
  • setup squid3  and config the Proxy to listen only on localhost:3128
  • install owncloud to /var/WWW with forced „https“ settings at the config.php
  • create ssh-keys to auth with password protected key to the SSH Server

If done, you can access the private Backup-Server via a Terminal/ Putty with the Tunneling Options

  1. $ssh -L 3128:localhost:3128 username@owncloudserver.home
  2. Open your Browser on your Client/PC with enabled Proxy usage = localhost 3128
  3. Connect the WebDAV by the URL https://localhost/ the owncloud Login should be displayed! Same with the WebDAV URL possible!

Advantage? You have a two factor protected Owncloud Access, with encryption inside a encrypted SSH Tunnel! Nobody should see files which are transmitted! Thats a tube inside a tube ..

 

Ubuntu 10.04 Lucid Lynx disable hide REBOOT SHUTDOWN STANDBY SUSPEND GNOME SYSTEM MENU SECURE KIOSK MODE

Problem: If you install ubuntu 10.04 Desktop by default
every user can shutdown,reboot,hibernate or standby a PC

If you want to disable this make:
– install gdm2conf from the ppa channel to customize hide System Menu at Login GDM2 Manager
– create custom Gnome System Menu Policy against User shutdown,reboot,hibernate or standby.

Steps:
create new policy file:
#sudo touch /etc/polkit-1/localauthority/50-local.d/custom-menu.pkla

edit new policy:
#nano nano /etc/polkit-1/localauthority/50-local.d/custom-menu.pkla

insert into:
[Disable suspend]
Identity=unix-user:*
Action=org.freedesktop.devicekit.power.suspend
ResultActive=no
ResultAny=no

[Disable hibernate]
Identity=unix-user:*
Action=org.freedesktop.devicekit.power.hibernate
ResultActive=no
ResultAny=no

[Disable shutdown]
Identity=unix-user:*
Action=org.freedesktop.consolekit.system.stop
ResultActive=no
ResultAny=no

[Disable reboot]
Identity=unix-user:*
Action=org.freedesktop.consolekit.system.restart
ResultActive=no
ResultAny=no

reboot and try!

To disable CTRL-ALT-DEL REBOOT edit #sudo nano /etc/init/control-alt-delete.conf
comment out:
#start on control-alt-delete

#task
#exec shutdown -r now „Control-Alt-Delete pressed“

For high Security:
disable TTY Consoles 1-6 with edit /etc/init/ttyX.conf (Value of X = 1-6)
comment out:
#respawn
#exec /sbin/getty -8 38400 tty1

Change at rights of /sbin/reboot /sbin/halt /sbin/shutdown /sbin/poweroff
that shutdown or reboot the System to 0700 from Console (SSH)

If you can access the PC Case cut the Reset and Power Cable from Mainboard
fix the Power Cable at Wall and PC against cut off !! PC inside locked steel Server Rack!!
(used are cheap at ebay)

AFTER ALL of this you can only reboot/shutdown with #sudo reboot or #sudo init 0!

Ubuntu 10.04 Lucid Lynx disable hide REBOOT SHUTDOWN STANDBY SUSPEND GNOME SYSTEM MENU SECURE KIOSK MODE

Problem: If you install ubuntu 10.04 Desktop by default
every user can shutdown,reboot,hibernate or standby a PC

If you want to disable this make:
– install gdm2conf from the ppa channel to customize hide System Menu at Login GDM2 Manager
– create custom Gnome System Menu Policy against User shutdown,reboot,hibernate or standby.

Steps:
create new policy file:

#sudo touch /etc/polkit-1/localauthority/50-local.d/custom-menu.pkla

edit new policy:

#nano nano /etc/polkit-1/localauthority/50-local.d/custom-menu.pkla

insert into:

[Disable suspend]
Identity=unix-user:*
Action=org.freedesktop.devicekit.power.suspend
ResultActive=no
ResultAny=no
[Disable hibernate]
Identity=unix-user:*
Action=org.freedesktop.devicekit.power.hibernate
ResultActive=no
ResultAny=no
[Disable shutdown]
Identity=unix-user:*
Action=org.freedesktop.consolekit.system.stop
ResultActive=no
ResultAny=no
[Disable reboot]
Identity=unix-user:*
Action=org.freedesktop.consolekit.system.restart
ResultActive=no
ResultAny=no

reboot and try!

To disable CTRL-ALT-DEL REBOOT edit

#sudo nano /etc/init/control-alt-delete.conf

comment out:
#start on control-alt-delete
#task
#exec shutdown -r now "Control-Alt-Delete pressed"

For high Security:
disable TTY Consoles 1-6 with edit /etc/init/ttyX.conf (Value of X = 1-6)
comment out:

#respawn
#exec /sbin/getty -8 38400 tty1

Change at rights of /sbin/reboot /sbin/halt /sbin/shutdown /sbin/poweroff
that shutdown or reboot the System to 0700 from Console (SSH)

If you can access the PC Case cut the Reset and Power Cable from Mainboard
fix the Power Cable at Wall and PC against cut off !! PC inside locked steel Server Rack!!
(used are cheap at ebay)

AFTER ALL of this you can only reboot/shutdown with

#sudo reboot
or
#sudo init 0