Keep ISPs from tracking you and selling your history

Posted on Mar 26 2017 - 2:51pm by TekGuru

So as well all know recently a bill was passed that will allow ISPs to sell your internet history without you opting in to do so.  Now while reading this guide please remember that this is not 100 percent full proof, because nothing really is. For example your isp at any given time can block access to you favorite VPN by simply blocking access to well known IPs that those VPNs run (something like Netflix is doing now). Security is best run in layers, think of an Onion the more layers you have and the longer it takes someone to peel back those layers; the less likely they will probably want to go through all the layers to get to you. It probably would take to much time and effort making it not worth it anymore.  Also please note that this will be a basic guide and I will link to guides that are more in dept. Hopefully this will be a great starting place to get your wheels turning.

 

Important note: Please always use your ublock ogrins even when on this site. The best way to support this site is to book mark it and come back and visit us!

 

 

VPN

This one should be pretty obvious. Always use a VPN no matter what, the only tricky part is picking one.  As mentioned above your ISP can block a VPN at any given time, but since at the moment they are not a VPN is a must. There is out there a great guide to choosing a VPN at

https://thatoneprivacysite.net/vpn-section/ and   https://privacytoolsio.github.io/privacytools.io/

these two sites are great guides to help you choose which VPN is right for you.  Another thing to understand are VPN protocols.  This is basically just the different ways VPNs work. Each VPN is a little different and uses different protocols

The best website to learn more about all the different protocols for VPNs is https://www.bestvpn.com/blog/4147/pptp-vs-l2tp-vs-openvpn-vs-sstp-vs-ikev2/ this is one amazing explanation on how the different VPN protocols work, what they are, and how to choose which one works best for you.

Also if you really want to put your tin foil hat on, use a public wifi area such as starbucks when signing up for a VPN, use a prepaid card (so no name is given), use fake name and address, and use mail.com (mail.com doesn’t ask to many questions just sign up and get a free email account.) to get a fast email address you can use for the VPN.

 

OS

Your OS can do a lot of spying on you without you even knowing it. Especially if you are using Windows 10. And that is where we will begin this section. Dump Windows 10 if you can, try to use it very rarely and if possible only use it for gaming. Hopefully soon big titles will come to Linux and once they do Windows will be forgotten about.

 

OS recommendations

 

Qubes OS

Qubes_OS_Logo.svg

 

 

 

Qubes is an open-source operating system designed to provide strong security for desktop computing. Qubes is based on Xen, the X Window System, and Linux, and can run most Linux applications and utilize most of the Linux drivers.

https://www.qubes-os.org/

 

 

Debian

debian-wheezy-download

 

 

 

Debian is a Unix-like computer operating system and a Linux distribution that is composed entirely of free and open-source software, most of which is under the GNU General Public License, and packaged by a group of individuals known as the Debian project.

https://www.debian.org/

 

Fedora 

fedora_infinity_140x140

 

 

 

Fedora is an operating system based on the Linux kernel, developed by the community-supported Fedora Project and sponsored by Red Hat.

https://getfedora.org/

 

DNS

Your Internet service provider runs DNS servers for you, but you don’t have to use them. You can use third-party DNS servers instead, which offer a variety of features that your ISP probably doesn’t.

DNS Cryp

 

dnscrypt

 

 

 

DNSCrypt is a protocol that authenticates communications between a DNS client and a DNS resolver. It prevents DNS spoofing. It uses cryptographic signatures to verify that responses originate from the chosen DNS resolver and haven’t been tampered with.

https://dnscrypt.org/

 

Free & Public DNS Servers (Valid March 2017) source

Provider Primary DNS Server Secondary DNS Server
Level31 209.244.0.3 209.244.0.4
Verisign2 64.6.64.6 64.6.65.6
Google3 8.8.8.8 8.8.4.4
DNS.WATCH4 84.200.69.80 84.200.70.40
Comodo Secure DNS 8.26.56.26 8.20.247.20
OpenDNS Home5 208.67.222.222 208.67.220.220
DNS Advantage 156.154.70.1 156.154.71.1
Norton ConnectSafe6 199.85.126.10 199.85.127.10
GreenTeamDNS7 81.218.119.11 209.88.198.133
SafeDNS8 195.46.39.39 195.46.39.40
OpenNIC9 96.90.175.167 193.183.98.154
SmartViper 208.76.50.50 208.76.51.51
Dyn 216.146.35.35 216.146.36.36
FreeDNS10 37.235.1.174 37.235.1.177
Alternate DNS11 198.101.242.72 23.253.163.53
Yandex.DNS12 77.88.8.8 77.88.8.1
UncensoredDNS13 91.239.100.100 89.233.43.71
Hurricane Electric14 74.82.42.42
puntCAT15 109.69.8.51

Web Browser and Addins

If you want privacy the web browser is key. If you want privacy not using Chrome is very important, I would personally recommend FireFox but I have heard great things about chromium as well. Either way get ride of Chrome because all it does is spy on you for big brother Google.

After you get FireFox there are some really important things that you must do in order to ensure you privacy, such as getting the correct addins, disabling WebRTC (which is fairly easy to do in FireFox)

 

Addins (for FireFox)

Block Ads and Trackers with “uBlock Origin”

uBlock

Us this on every website you visit. Yes even on this site, leave your ublock origin on! If you have adblock though please turn it off remove it and follow the link below to ublock.  Ublock is an efficient wide-spectrum-blocker that’s easy on memory, and yet can load and enforce thousands more filters than other popular blockers out there. I would  recommend using Firefox but uBlock Origin also works in other browsers such as Safari, Opera, and Chromium. Unlike AdBlock Plus, uBlock does not allow so-called “acceptable ads”.
https://addons.mozilla.org/firefox/addon/ublock-origin/

Automatically Delete Cookies with “Self-Destructing Cookies”

Self-Destructing Cookies

Automatically removes cookies when they are no longer used by open browser tabs. With the cookies, lingering sessions, as well as information used to spy on you, will be expunged.
https://addons.mozilla.org/firefox/addon/self-destructing-cookies/

Encryption with “HTTPS Everywhere”

HTTPS Everywhere

A Firefox, Chrome, and Opera extension that encrypts your communications with many major websites, making your browsing more secure. A collaboration between The Tor Project and the Electronic Frontier Foundation.
https://www.eff.org/https-everywhere

Block Content Delivery Networks with “Decentraleyes”

HTTPS Everywhere

Emulates Content Delivery Networks locally by intercepting requests, finding the required resource and injecting it into the environment. This all happens instantaneously, automatically, and no prior configuration is required. Source code: GitHub.
https://addons.mozilla.org/firefox/addon/decentraleyes/

 

Privacy Badger

download

 

 

Privacy Badger automatically blocks spying ads and invisible trackers as you browse. It’s there to ensure that companies can’t track your browsing without your consent.

 

https://addons.mozilla.org/en-US/firefox/addon/privacy-badger17/

 

 

Stop cross-site requests with uMatrix

uMatrix

Many websites integrate features which let other websites track you, such as Facebook Like Buttons or Google Analytics. uMatrix gives you control over the requests that websites make to other websites. This gives you greater and more fine grained control over the information that you leak online.
https://addons.mozilla.org/firefox/addon/umatrix/

 

 

Be in total control with “NoScript Security Suite”

NoScript

Highly customizable plugin to selectively allow Javascript, Java, and Flash to run only on websites you trust. Not for casual users, it requires technical knowledge to configure.
https://addons.mozilla.org/firefox/addon/noscript/

 

 

WebRTC IP

 

Software like NoScript prevents this, it’s probably a good idea to block this protocol directly as well, just to be safe.

  1. Enter “about:config” in the firefox address bar and press enter.
  2. Press the button “I’ll be careful, I promise!”
  3. Search for “media.peerconnection.enabled”
  4. Double click the entry, the column “Value” should now be “false”
  5. Done. Do the WebRTC leak test again.

If you want to make sure every single WebRTC related setting is really disabled change these settings:

  1. media.peerconnection.turn.disable = true
  2. media.peerconnection.use_document_iceservers = false
  3. media.peerconnection.video.enabled = false
  4. media.peerconnection.identity.timeout = 1

 

Now you should be good to go. Just check using https://browserleaks.com/webrtc to make sure. If your real IP is hidden you will be good to go.

 

Search Engines

Lets not kid ourselves Google tracks everything you do and then some. Here are some Google alternatives:

Disconnect Search

Anonymous VPN service for popular search engines like Google, Bing, and Yahoo.

 

DuckDuckGo

Anonymous, unlogged web searches.

Link to DuckDuckGo

Startpage

Private, unlogged web searches.

Link to Startpage

Other Good Sources

 

Final Thoughts

Hopefully everyone reading this will find this guide very useful and a great starting place to make your self more secure. Again noting is 100 percent full proof, and everything is subject to change. And any security has a lot of layers. I know there is probably a lot I didn’t cover like using a raspberry pi as a tor router. Maybe some of the stuff I didn’t cover will be another guide/post. All we can do now if fight the best fight we can. I will continue to post when I can about the best ways to keep your self anonymous on the internet. I will also try to post more news and information about what the government is doing, ISPs, big companies ect that can put the internet, our privacy and for some our lively hood in jeopardy.

About the Author

I love anything that is tech related, gaming, science, movies ect. I am the owner and founder of AllThatTek.

2 Comments so far. Feel free to join this conversation.

  1. Ben Costly April 1, 2017 at 10:36 am - Reply

    How about using a VPN? All the above stated solutions are good, but do they cater online privacy and security? I am quite comfortable using PureVPN for past six months and it would seem a biased opinion but I am up for new solutions as well. But for now PureVPN is doing well for me.

    • TekGuru April 1, 2017 at 2:26 pm - Reply

      Using a VPN should work just fine. You would just want to make sure you browser doen’t leak your DNS because then your vpn would be useless.

Leave A Response