Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Long story short, for various reasons I'm tired of google spying on my web surfing, so I've been monitoring my outbound connections from googlesyndication sites like, er, well, LQ.org and believe I have all their networks blocked now. Thus far my outbound traffic policy denys connections to:
The GUI gives me the option to disable events by source IP or by port, but the source is me in this case and I still want to be notified of other (non-google) HTTP events.
So I guess I have two questions:
1) Is there a way I can make sure my list of Google network ranges is complete? Or a way to query whois by net block owner rather than IP perhaps? Monitoring traffic all day to find them is becoming quite tedious.
2) Is there a way to ignore/eliminate events based on destination IP? I really like firestarter's little system tray applet (reminds me of BlackICE) but it's almost constantly in a flashing red state since I added google to my blacklist.
another good option is to use squid with some ACLs to block google domains... it's a little more powerful than using a hosts file cuz you can use regular expressions to catch addresses which you didn't know were in use (for example, the address "imageads32.googleadservices.com" wouldn't be blocked by the hosts file posted by craigevil)...... squid can also do reverse DNS lookups so that if an IP is used, it will reverse resolve it and then see if it matches any of your ACLs...
Nice thing about using HOSTS file is browser doesn't hang momentarily waiting for a timeout. It's just too much maintenance for me. If I had a dedicated server for my gateway I'm sure squid would probably work well too. I'd just prefer to block all of google, that way I don;t have to worry about some new hole compromising my privacy.
Anyway, FWIW, after two days of monitoring my google blacklist is now:
Install a small local proxy
I use wwwoffle but there are others (privoxy)
It does some caching, offline browsing, filtering with regexp (hostname,..) and lots of other things.
Redirecting to 127.0.0.1 with host file can be a pain if you have a local webserver or a restrictive firewall.
I decided to use the hosts file too actually. Still blocking all google traffic with packet filters, my preferred method, but it was just too annoying when accessing sites like LQ.org. Redirecting to 127.0.0.1 in addition to the filter makes site usable again.
Oh, and I do block all cookies by default. Unfortunately that's not enough to keep them from tracking your web surfing (on affiliated sites anyway.)
Why so paranoid? Your IP keeps track of everything you do anyway. What is so bad about Google? As compared to say Yahoo, Lycos, Windows Live or any other web directory.
Why so paranoid? Your ISP keeps track of everything you do anyway. What is so bad about Google? As compared to say Yahoo, Lycos, Windows Live or any other web directory.
There is no such thing as privacy online.
Without Anonymization, every computer in the internet communicates using a traceable Address. That means:
* the website visited,
* the internet service provider (ISP),
* and any eavesdropper on the internet connection
can determine which websites the user of a specific computer visits. But then again even with something like Tor+privoxy or JAP your ISP can still track you.
just use scroogle.org - i think that does pretty much what you want.
and if you're really paranoid, EFF provides something called Anonymizer_Software_EFF.exe - but, as you guessed, it only runs on windoze.
Personally I like using Google search engine from my browser. Debian gets money for the searches, oh no Google tracks your searches!! Guess what so does almost every other search engine out there. Unless your searching on how to make bombs or something else that would be illegal I don't see what the big deal is.
Tor + Privoxy, and/or anon-proxy hides most of the crap like your IP adress. Not accepting cookies or at the very least setting them to expire each session takes care of a lot of tracking.
Hey, I know this thread is a couple days old, but I had a few minutes and was reading.
I am in agreement, the isp knows everything you do. Some mentioned tor and others good suggestions as well. Here is one that wasn't mentioned. I really like it too
AnonOS http://kaos.to/cms/
They have a live cd I use all the time and it is simply wonderful.
It uses tor out of the box and alot of other nice features.
Most ISP's don't track users to the extent Google does. At most they're interested in statistics like network utilization. It takes enormous amounts of storage to keep track of every website every user visits. Unless you're in the business of selling that kind of information (as Google is) there's no rational reason anyone would spend that kind of money.
Now, that's not to say the Gestapo, er FBI, doesn't have a Carnivor program running on your ISP's network, but that's another matter entirely.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.