Page 1 of 1
Internet Security Helper
Posted: Fri 14 Jun 2013, 18:05
by sc0ttman
Internet Security Helper
This tool can
setup ad-blocking, peerguardian, VPNs, DNS servers, Firewall and more... Click on any button and another GUI or program will load up and guide you through doing what you want to do.. Each thing is easy to setup - follow the menus, instructions, etc..
The buttons will be disabled if the required programs are not installed..
...
CHANGES YOU CAN MAKE in /usr/sbin/netsecurity:
- change all instances of `Firewall_Genie` to `firewallinstallshell` (or other)
- change all isntances of 'run_as_spot' to 'run-as-spot'
- errmm.. anything you can think of..
NOTE:
You can get all the required apps and their dependencies from the akita repo (they should work in most pups)...
Peer guardian (cli only) & deps:
libmnl-1.0.3-i486.pet 7k
libnetfilter_queue-1.0.2-i486.pet 9k
libnfnetlink-1.0.1-i486.pet 11k
pgl-2.2.2-i486.pet 46k
OpenVPN:
libpam0g-0.99.7 29k
openvpn-2.3.2-i486.pet 253k
Macchanger-gui
http://www.murga-linux.com/puppy/viewtopic.php?t=64216 ~100kb
Firewall_Genie
http://www.murga-linux.com/puppy/viewtopic.php?t=59616 ~40kb
Total size of all pets is only about 450kb
NOTE: See further down this thread for a .pet that contains all these files already, but you're recommended to get what you can from your own puppys repo.
Posted: Fri 14 Jun 2013, 18:12
by sc0ttman
As a side note, with the constant encroachment of CISPA, PIPA, SOPA and whatever the next acronym will be, I thought something like `netsecurity` should pop up on screen as soon as a net connection is detected for the first time - it could be called from delayedrun, before the flash-installer, for example. I will be doing this in Akita.
Puppy should lead the way in all distros in protecting users online security, and even privacy - I think someone on this forum could come up with something similar, but much better than this one.
A note about VPN, it uses a .ovpn (basically a openvpn settings file) file from VPNBook.com to get the 'openvpn' tool setup correctly with VPNBooks VPN.. This tool doesn't create any SSL certificates or anything...
Any suggestions or tips are welcome.
Posted: Fri 14 Jun 2013, 18:29
by sc0ttman
Forgot, for Akita only I will add a button to install firefox-17esr, as the akita pkg has security addons, and not sure whether or not anyone would mind if i just added that to 0.2, cos the FF pkg should work on all recent pups... Or maybe I might do TOR-browser instead.. or even both.. Akita pkg for the TOR-browser is a little old though...
Posted: Fri 14 Jun 2013, 19:05
by radky
Hi Scott,
Great concept and very nice implementation.
Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Thanks again.
Posted: Fri 14 Jun 2013, 19:22
by sc0ttman
radky wrote:Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Not really, but here's one that might not work in your pup!
http://www.sendspace.com/file/76cr47 - this includes all needed progs & their deps
Posted: Fri 14 Jun 2013, 19:51
by nooby
Is what this guy talks about good information?
https://www.grc.com/SecurityNow.htm
Posted: Fri 14 Jun 2013, 19:53
by radky
sc0ttman wrote:radky wrote:Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Not really, but here's one that might not work in your pup!
http://www.sendspace.com/file/76cr47 - this includes all needed progs & their deps
Thanks Scott,
Everything is now accessible from the netsecurity GUI, with one exception.
Pup-Advert-Blocker does not load, and returns the following error with gtkdialog version 0.8.4 r503M:
Code: Select all
** (gtkdialog4:15318): ERROR **: gtkdialog: Error in line 6, near token '</label>': syntax error
Posted: Fri 14 Jun 2013, 20:10
by sc0ttman
Thanks for the link nooby, I know nothing about advanced security etc...
radky wrote:sc0ttman wrote:radky wrote:Do you have plans for a future release with all utilities included in one pet (no disabled buttons)?
Not really, but here's one that might not work in your pup!
http://www.sendspace.com/file/76cr47 - this includes all needed progs & their deps
Thanks Scott,
Everything is now accessible from the netsecurity GUI, with one exception.
Pup-Advert-Blocker does not load, and returns the following error with gtkdialog version 0.8.4 r503M:
Code: Select all
** (gtkdialog4:15318): ERROR **: gtkdialog: Error in line 6, near token '</label>': syntax error
The pup-advert-blocker should be included in most recent pups now anyway, it's in woof as far as i know... maybe just replace it with the default one in /initrd/blah...
**best to replace or delete the pup-advert-blocker from the pet**
but...
Oops... Now I remember, Akita has weird translations in places... You need to save the following text in a file called
pup-advert-blocker.locale in
/usr/share/locale/en/LC_MESSAGES/
Code: Select all
# english
Loc_no_ads_selected="No ad lists selected. Ad blocking will be disabled."
Loc_success="Success - your settings have been changed.\n\nYour hosts file has been updated."
Loc_start_btn="Start"
Loc_start_btn_tt="Click to download and then block a list of advertising servers"
Loc_edit_btn="Edit"
Loc_edit_btn_tt="Manually edit your hosts file in a text editor, adding or removing any entries you like"
Loc_quit_btn="Quit"
Loc_quit_btn_tt="Exit or Cancel"
Loc_help_btn="Help"
Loc_help_btn_tt="Learn more about blocking and disabling online adverts"
Loc_help1="The $title tool adds stuff to your '/etc/hosts' file, so that many advertising servers and websites will not be able to connect to this PC."
Loc_help2="Leave your cursor over a service to see a short description. You can choose one service or combine multiple services for more advert protection."
Loc_help3="Blocking ad servers protects your privacy, saves you bandwidth, greatly improves web-browsing speeds and makes the internet much less annoying in general."
Loc_howto="Leave your cursor over a service to see a short description. You can choose one service or combine multiple services for more advert protection."
Loc_summary="Block online ads in all browsers with this simple tool"
Loc_choose_service="Choose your preferred ad blocking services"
Loc_mvps_desc="Blocks many known malware sites and unsafe adult networks"
Loc_systcl_desc="A large, fairly comprehensive list of many known ad servers"
Loc_technobeta_desc="A smaller list of popup adverts, ad servers and ad networks"
Loc_yoyo_desc="A small and effective list of very popular ad servers"
Loc_start="Click '${Loc_start_btn}' to block the selected ad servers"
Loc_edit="Click '${Loc_edit_btn}' to edit the hosts file"
Posted: Fri 14 Jun 2013, 21:42
by radky
Oops... Now I remember, Akita has weird translations in places... You need to save the following text in a file called pup-advert-blocker.locale in /usr/share/locale/en/LC_MESSAGES/
Works great now!
Thanks
Posted: Sun 16 Jun 2013, 11:36
by sc0ttman
MacChanger-gui has been updated to 1.2, you can now choose your network interface before changing MACs...
http://murga-linux.com/puppy/viewtopic.php?t=64216
No certificate verification method has been enabled
Posted: Wed 24 Jul 2013, 05:44
by chapchap70
Thanks for doing this.
I downloaded and installed the 76cr47 file (pet) so I can run the VPN. I am running FatDog64 so I had to load the slacko 32 bit pet to get the terminal to open in order to enter the username and password.
I got a "No certificate verification method has been enabled" error and the terminal outputted a whole bunch of other stuff but then closed. I went to the website it directed me to and I didn't understand what I needed to do. Something about man in the middle.
I have a lot to learn since I don't even know if my computer is considered just a client or both the server and the client while running VPN.
My questions for now is can I assume the program is running properly on my computer or was it supposed to automatically supply certificate verification?
Thanks
Re: No certificate verification method has been enabled
Posted: Sun 04 Aug 2013, 11:33
by sc0ttman
chapchap70 wrote:Thanks for doing this.
I downloaded and installed the 76cr47 file (pet) so I can run the VPN. I am running FatDog64 so I had to load the slacko 32 bit pet to get the terminal to open in order to enter the username and password.
I got a "No certificate verification method has been enabled" error and the terminal outputted a whole bunch of other stuff but then closed. I went to the website it directed me to and I didn't understand what I needed to do. Something about man in the middle.
I have a lot to learn since I don't even know if my computer is considered just a client or both the server and the client while running VPN.
My questions for now is can I assume the program is running properly on my computer or was it supposed to automatically supply certificate verification?
Thanks
probably the password is too old.. check the site.. they change the passwords quite often... in a newer netsecurty i put into akita, the password will be retrieved from the website itself before being shown in the popup box...
Re: No certificate verification method has been enabled
Posted: Sun 04 Aug 2013, 23:30
by chapchap70
sc0ttman wrote:probably the password is too old.. check the site.. they change the passwords quite often... in a newer netsecurty i put into akita, the password will be retrieved from the website itself before being shown in the popup box...
Thanks sc0ttman; that was it.
The error I posted about was still there though. Does everyone else get this error and should I worry about it? Another thing is that the vpnbook IP address is marked as a spam originator so I was not able to send email while logged in. I'll have to try another vpnbook IP. I used the Euro2 one.
Edit: I think the owner of the server (vpnbook?) is cautioned to use encryption?
http://openvpn.net/index.php/open-sourc ... .html#mitm
Anyone getting DNS leaks?
Posted: Thu 14 Nov 2013, 01:25
by chapchap70
From what I can gather, my ISP, Verizon Fios uses transparent DNS proxies. If there were no DNS leaks, there would be no mention of Verizon in the results. When I have tried this while using optimumwifi, only the vpnbook addresses were showing.
This seems to be more of a Windows problem as the solutions offered are for Windows users.
Currently, November 13, 2013 at 5:22pm PST,
Your IP Address Is:
93.114.45.13
Your DNS test results
This page shows the DNS servers that your computer is using to resolve DNS names. The owners of the servers listed below have the ability to log the names of all websites you connect to.
WARNING: If you are connected to a VPN service and ANY of the servers listed below are not provided by the VPN service then your DNS may be leaking. (You should be able to recognise them based on the hostname, ISP and location). This is not an issue if you trust the owners of these servers with your private data.
We detected the 2 DNS servers listed below.
IP: 68.237.161.41
Hostname: 68.237.161.41
ISP: Verizon Internet Services
Country: United States
IP: 71.243.0.38
Hostname: 71.243.0.38
ISP: Verizon Internet Services
Country: United States
Posted: Wed 08 Jan 2014, 01:58
by surender
sir how tohave auto login into Vpn account without entering manual username and password