Internet Security Helper

Antivirus, forensics, intrusion detection, cryptography, etc.
Post Reply
Message
Author
User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

Internet Security Helper

#1 Post by sc0ttman »

Internet Security Helper

This tool can setup ad-blocking, peerguardian, VPNs, DNS servers, Firewall and more... Click on any button and another GUI or program will load up and guide you through doing what you want to do.. Each thing is easy to setup - follow the menus, instructions, etc..

Image

Image

The buttons will be disabled if the required programs are not installed..
...

CHANGES YOU CAN MAKE in /usr/sbin/netsecurity:

- change all instances of `Firewall_Genie` to `firewallinstallshell` (or other)
- change all isntances of 'run_as_spot' to 'run-as-spot'
- errmm.. anything you can think of..

NOTE:

You can get all the required apps and their dependencies from the akita repo (they should work in most pups)...

Peer guardian (cli only) & deps:

libmnl-1.0.3-i486.pet 7k
libnetfilter_queue-1.0.2-i486.pet 9k
libnfnetlink-1.0.1-i486.pet 11k
pgl-2.2.2-i486.pet 46k

OpenVPN:

libpam0g-0.99.7 29k
openvpn-2.3.2-i486.pet 253k

Macchanger-gui

http://www.murga-linux.com/puppy/viewtopic.php?t=64216 ~100kb

Firewall_Genie

http://www.murga-linux.com/puppy/viewtopic.php?t=59616 ~40kb


Total size of all pets is only about 450kb :)

NOTE: See further down this thread for a .pet that contains all these files already, but you're recommended to get what you can from your own puppys repo.
Attachments
netsecurity-0.1-noarch.pet
+gtkdialog,+pgl,+openvpn,+firewall_genie,+pup-advert-blocker,+run-as-spot,+macchanger-gui
(5.83 KiB) Downloaded 1140 times
Last edited by sc0ttman on Sat 15 Jun 2013, 08:49, edited 7 times in total.
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

#2 Post by sc0ttman »

As a side note, with the constant encroachment of CISPA, PIPA, SOPA and whatever the next acronym will be, I thought something like `netsecurity` should pop up on screen as soon as a net connection is detected for the first time - it could be called from delayedrun, before the flash-installer, for example. I will be doing this in Akita.

Puppy should lead the way in all distros in protecting users online security, and even privacy - I think someone on this forum could come up with something similar, but much better than this one.

A note about VPN, it uses a .ovpn (basically a openvpn settings file) file from VPNBook.com to get the 'openvpn' tool setup correctly with VPNBooks VPN.. This tool doesn't create any SSL certificates or anything...

Any suggestions or tips are welcome.
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

#3 Post by sc0ttman »

Forgot, for Akita only I will add a button to install firefox-17esr, as the akita pkg has security addons, and not sure whether or not anyone would mind if i just added that to 0.2, cos the FF pkg should work on all recent pups... Or maybe I might do TOR-browser instead.. or even both.. Akita pkg for the TOR-browser is a little old though...
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

radky
Posts: 977
Joined: Mon 03 May 2010, 03:13

#4 Post by radky »

Hi Scott,

Great concept and very nice implementation. :)

Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?

Thanks again.
[color=blue][b][url=http://www.smokey01.com/radky/PupMates.html]PupMates[/url][/b][/color]

User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

#5 Post by sc0ttman »

radky wrote:Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Not really, but here's one that might not work in your pup!

http://www.sendspace.com/file/76cr47 - this includes all needed progs & their deps
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#6 Post by nooby »

Is what this guy talks about good information?
https://www.grc.com/SecurityNow.htm
I use Google Search on Puppy Forum
not an ideal solution though

radky
Posts: 977
Joined: Mon 03 May 2010, 03:13

#7 Post by radky »

sc0ttman wrote:
radky wrote:Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Not really, but here's one that might not work in your pup!

http://www.sendspace.com/file/76cr47 - this includes all needed progs & their deps
Thanks Scott,

Everything is now accessible from the netsecurity GUI, with one exception.

Pup-Advert-Blocker does not load, and returns the following error with gtkdialog version 0.8.4 r503M:

Code: Select all

** (gtkdialog4:15318): ERROR **: gtkdialog: Error in line 6, near token '</label>': syntax error

User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

#8 Post by sc0ttman »

Thanks for the link nooby, I know nothing about advanced security etc...
radky wrote:
sc0ttman wrote:
radky wrote:Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Not really, but here's one that might not work in your pup!

http://www.sendspace.com/file/76cr47 - this includes all needed progs & their deps
Thanks Scott,

Everything is now accessible from the netsecurity GUI, with one exception.

Pup-Advert-Blocker does not load, and returns the following error with gtkdialog version 0.8.4 r503M:

Code: Select all

** (gtkdialog4:15318): ERROR **: gtkdialog: Error in line 6, near token '</label>': syntax error
The pup-advert-blocker should be included in most recent pups now anyway, it's in woof as far as i know... maybe just replace it with the default one in /initrd/blah...

**best to replace or delete the pup-advert-blocker from the pet**

but...

Oops... Now I remember, Akita has weird translations in places... You need to save the following text in a file called pup-advert-blocker.locale in /usr/share/locale/en/LC_MESSAGES/

Code: Select all

# english

Loc_no_ads_selected="No ad lists selected. Ad blocking will be disabled."
Loc_success="Success - your settings have been changed.\n\nYour hosts file has been updated."

Loc_start_btn="Start"
Loc_start_btn_tt="Click to download and then block a list of advertising servers"
Loc_edit_btn="Edit"
Loc_edit_btn_tt="Manually edit your hosts file in a text editor, adding or removing any entries you like"
Loc_quit_btn="Quit"
Loc_quit_btn_tt="Exit or Cancel"
Loc_help_btn="Help"
Loc_help_btn_tt="Learn more about blocking and disabling online adverts"

Loc_help1="The $title tool adds stuff to your '/etc/hosts' file, so that many advertising servers and websites will not be able to connect to this PC."
Loc_help2="Leave your cursor over a service to see a short description. You can choose one service or combine multiple services for more advert protection."
Loc_help3="Blocking ad servers protects your privacy, saves you bandwidth, greatly improves web-browsing speeds and makes the internet much less annoying in general."
Loc_howto="Leave your cursor over a service to see a short description. You can choose one service or combine multiple services for more advert protection."

Loc_summary="Block online ads in all browsers with this simple tool"
Loc_choose_service="Choose your preferred ad blocking services"
Loc_mvps_desc="Blocks many known malware sites and unsafe adult networks"
Loc_systcl_desc="A large, fairly comprehensive list of many known ad servers"
Loc_technobeta_desc="A smaller list of popup adverts, ad servers and ad networks"
Loc_yoyo_desc="A small and effective list of very popular ad servers"
Loc_start="Click '${Loc_start_btn}' to block the selected ad servers"
Loc_edit="Click '${Loc_edit_btn}' to edit the hosts file"
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

radky
Posts: 977
Joined: Mon 03 May 2010, 03:13

#9 Post by radky »

Oops... Now I remember, Akita has weird translations in places... You need to save the following text in a file called pup-advert-blocker.locale in /usr/share/locale/en/LC_MESSAGES/
Works great now! :)

Thanks

User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

#10 Post by sc0ttman »

MacChanger-gui has been updated to 1.2, you can now choose your network interface before changing MACs... http://murga-linux.com/puppy/viewtopic.php?t=64216
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

chapchap70
Posts: 210
Joined: Thu 18 Nov 2010, 05:39
Location: The Island Of Long (NY, USA)

No certificate verification method has been enabled

#11 Post by chapchap70 »

Thanks for doing this.

I downloaded and installed the 76cr47 file (pet) so I can run the VPN. I am running FatDog64 so I had to load the slacko 32 bit pet to get the terminal to open in order to enter the username and password.

I got a "No certificate verification method has been enabled" error and the terminal outputted a whole bunch of other stuff but then closed. I went to the website it directed me to and I didn't understand what I needed to do. Something about man in the middle.

I have a lot to learn since I don't even know if my computer is considered just a client or both the server and the client while running VPN.

My questions for now is can I assume the program is running properly on my computer or was it supposed to automatically supply certificate verification?

Thanks

User avatar
sc0ttman
Posts: 2812
Joined: Wed 16 Sep 2009, 05:44
Location: UK

Re: No certificate verification method has been enabled

#12 Post by sc0ttman »

chapchap70 wrote:Thanks for doing this.

I downloaded and installed the 76cr47 file (pet) so I can run the VPN. I am running FatDog64 so I had to load the slacko 32 bit pet to get the terminal to open in order to enter the username and password.

I got a "No certificate verification method has been enabled" error and the terminal outputted a whole bunch of other stuff but then closed. I went to the website it directed me to and I didn't understand what I needed to do. Something about man in the middle.

I have a lot to learn since I don't even know if my computer is considered just a client or both the server and the client while running VPN.

My questions for now is can I assume the program is running properly on my computer or was it supposed to automatically supply certificate verification?

Thanks
probably the password is too old.. check the site.. they change the passwords quite often... in a newer netsecurty i put into akita, the password will be retrieved from the website itself before being shown in the popup box...
[b][url=https://bit.ly/2KjtxoD]Pkg[/url], [url=https://bit.ly/2U6dzxV]mdsh[/url], [url=https://bit.ly/2G49OE8]Woofy[/url], [url=http://goo.gl/bzBU1]Akita[/url], [url=http://goo.gl/SO5ug]VLC-GTK[/url], [url=https://tiny.cc/c2hnfz]Search[/url][/b]

chapchap70
Posts: 210
Joined: Thu 18 Nov 2010, 05:39
Location: The Island Of Long (NY, USA)

Re: No certificate verification method has been enabled

#13 Post by chapchap70 »

sc0ttman wrote:probably the password is too old.. check the site.. they change the passwords quite often... in a newer netsecurty i put into akita, the password will be retrieved from the website itself before being shown in the popup box...
Thanks sc0ttman; that was it.



The error I posted about was still there though. Does everyone else get this error and should I worry about it? Another thing is that the vpnbook IP address is marked as a spam originator so I was not able to send email while logged in. I'll have to try another vpnbook IP. I used the Euro2 one.

Edit: I think the owner of the server (vpnbook?) is cautioned to use encryption?

http://openvpn.net/index.php/open-sourc ... .html#mitm

chapchap70
Posts: 210
Joined: Thu 18 Nov 2010, 05:39
Location: The Island Of Long (NY, USA)

Anyone getting DNS leaks?

#14 Post by chapchap70 »

From what I can gather, my ISP, Verizon Fios uses transparent DNS proxies. If there were no DNS leaks, there would be no mention of Verizon in the results. When I have tried this while using optimumwifi, only the vpnbook addresses were showing.

This seems to be more of a Windows problem as the solutions offered are for Windows users.

Currently, November 13, 2013 at 5:22pm PST,
Your IP Address Is:
93.114.45.13
Your DNS test results

This page shows the DNS servers that your computer is using to resolve DNS names. The owners of the servers listed below have the ability to log the names of all websites you connect to.

WARNING: If you are connected to a VPN service and ANY of the servers listed below are not provided by the VPN service then your DNS may be leaking. (You should be able to recognise them based on the hostname, ISP and location). This is not an issue if you trust the owners of these servers with your private data.

We detected the 2 DNS servers listed below.
IP: 68.237.161.41
Hostname: 68.237.161.41
ISP: Verizon Internet Services
Country: United States
IP: 71.243.0.38
Hostname: 71.243.0.38
ISP: Verizon Internet Services
Country: United States

surender
Posts: 67
Joined: Sun 31 Mar 2013, 01:39

#15 Post by surender »

sir how tohave auto login into Vpn account without entering manual username and password

Post Reply