3.4 KiB
3.4 KiB
Take care about your sources
Part 1: Background
- Introduction
- a few clichés
- No Virus on mac => bullshit
- I got an antivirus, i do my updates => Are you using genuine version of every of your softwares ? No cracked photoshop comming with a keylogger ?
- a few clichés
- Notions
-
Password:
- About password strenght
- What to do with passwords
-
Data / Metadata:
- What are they (example of letter, metadatas in pictures, cookies
- how to take care about metadata
-
Crypto:
- How does it work
- How to use it (HTTPS, GPG, OTR...)
-
Internet:
- How does it work usually
- How does it work with a VPN
- How does it work with Tor
- Practicaly: take care about intermediates , use https, if possible use tor
- About internet: the cloud => Just somebody else computers.
-
Conclusion:
-
Antivirus are not enough
-
have strong passwords
-
block adds and tracking
-
encrypt whatever possible
-
try to use providers you trust
-
take care about your meta data
-
it is complicated ? use tails !
-
-
Part 2: Tails
- Why this presentation ?
- needs to take care about your security for more online intimity via
- some tools
- good practices
- Tails offers both:
- a distribution of preinstalled and preconfigured tools
- a behaviour that help to adopt good practices
- Tails ?
- **T**he
- **A**mnesic: Leave no trace on the computer unless asked explicitely
- **I**ncognito: Anonymous and censorship resilient Internet via Tor
- **L**ive **S**ystem: No installation, works from a DVD, USB Key, SD Card
- Tails in details:
- Build on top of Gnu/Linux (Debian, like Ubuntu)
- Since 2008-2009
- Free software (open, auditable)
- Supported by Debian, Mozilla, Freedom for Press, Mediapart, NGOs...
- Famous users (Snowden, Reporters without Borders...)
- A complete documentation and an user support
- Everybody have the same Tails
- Strong with to have a **simple** and **accessible** tool for everybody
- Tails: a fully featured tool
- Internet:
- Web browsing with Tor Browser
- Icedove (Thunderbird) + Enigmail for (encrypted) mails
- Pidgin + OTR for tchat
- Office work
- LibreOffice for documents
- Gimp for pictures
- Audacity for Audio
- MAT for metadata
- Hard drive encryption with a "persistence" mechanism for data
- Tails: a carefully made tool
- By default everything is well configured
- All the internet trafic use Tor
- If *needed* like for captive portal there is a "unsafe browser"
- A complete and sufficient tool distribution
- Integrate strong cryptographic tools
- Everybody have the same Tails: no need to worry about documents metadata, browser fingerprint etc...
- Volontarily Limited personalization
- How does it looks like
- screenshot(s)
- Does it works ?
- yeah, according to the NSA (thanks E. Snowden)
- screenshot of NSA slides
- Tails in summary
- A Live USB (DVD, SD), offering
- a full featured environnement (Internet, Office, Multimedia) for working
- Advanced tools for removing metadata, surf anonymously
- A good way to segment work/identities and adopt good practices
Notes about tails
-
how to get tails
- BIOS / EFI
-
tor
-
tails warning
- public servers by default
- bridges
-
how to trust tails
-
not only for journalists but
-
doctors
-
war zones
-
migrants to keep a safe contact
-
activists
-
lawers
-
...
-
-
can use tails on other computers
-
not for everyday use
-
try to not use it from your home