How To Minimize Tracking and Improve Privacy Online

How To Minimize Tracking and Improve Privacy Online

Ever since 2013 when Edward Snowden released classified documents detailing nation-state spying programs people have been a little more weary of what they do and say online. While the revelations were shocking to many, I don’t think it was enough for the average person to really take any steps of their own to protect themselves.

It wasn’t until 2018 when the Cambridge Analytica/Facebook news broke revealing how much of people’s personal data from Facebook was being used in a manner they didn’t know about or would likely have approved of had they known.

It’s at this point, along with numerous, almost daily, tech news reports of major companies being hacked and data stolen, that many people, including some governments, are starting to take action against usage of personal data by companies. People are beginning to ask questions and wondering how they can help to protect themselves in an online world.

The aim of this post is to provide several solutions someone can use to help them improve their privacy online and minimize the amount of website tracking of users across the Internet.

Easy Things

These are some things most anyone can do very simply and quickly on their own.

Web Browsers

Consider using a different web browser than the default one on your computer. If you’re using Microsoft’s Internet Explorer, or new browser, Edge, or Apple’s Safari, you may want to switch to Mozilla’s Firefox browser. While generally speaking those other browsers aren’t bad per se, its just that they aren’t open source and don’t lend themselves to particular plugins or extensions to help with our scenario here.

I will give credit to Apple’s Safari though since Apple is making efforts to curb Internet tracking and they’re adding new tools in the forthcoming macOS Mojave this Fall to help further protect users online.

Firefox is an open source project by the Mozilla Foundation and open source means that the source code if open for anyone to see, poke at, review and audit for flaws. The other browsers are closed source which means their companies keep that code to themselves so we have to trust that they have our best interest in mind and that they are covering all aspects of security too. Open source vs. closed source often turns into a philosophical debate and personal preference thing for each person and we’re not going to get into that here.

Browser Extensions

All of the extensions I list below are available on Firefox and some are also available on other browsers like Safari and Google Chrome as well.

The Web of Trust extension isn’t a privacy or tracking protection plugin, but works with search engines to give a grade on the reputation of a website before you click on it. It can help warn you of a malicious site before you go to it. Its just a helpful extension for good web browsing habits.

Search Engines

Google is by far the most popular search engine and for good reason too. They always turn up the best results for a search when you need it. But Google makes it money on advertising and tracking users to show them targeted advertising. When we use their search engines we are shown advertisements that help them make money. The same thing goes for Yahoo! Search and Bing search.

Consider using a search engine that doesn’t track you like DuckDuckGo. Its a decent search engine and they’re improving all the time. They’re no Google though when it comes to getting the best results and sometimes I have to go back to Google to get what I need, but that doesn’t happen too often.

Privacy Settings

Go into every device you have, mobile or computer and look for every privacy related thing they offer, including ads and location based stuff and opt out or disable them. This goes for iOS devices (iPhone, iPad), Android devices, Mac computers, Microsoft Windows PC’s, your web browsers, like Firefox, Chrome, Safari and anything else that has a Settings app or area. Look for them, look through them and turn off everything you’re not comfortable with.

Intermediate Things

In this section I’ll talk about some things that might require an intermediate skill level to accomplish, though they’re not very hard and might even fall into the easy category for some people.

Cookies

Cookies are small files with a few details about you on your computer.

Delete browser cookies and disable third-party cookies in your web browser. Warning: deleting all cookies will delete special settings that some websites use to help you log in quicker or remember other specific things that you like. It’s not a big deal though, because when you visit the site again, you’ll fill in the information and the site will put in a new cookie. Some browsers will let you pick and choose which cookies to delete as well.

Cookies aren’t necessarily a bad thing and generally are a good thing to help ease some tasks on the Internet. But some can be used for more nefarious things at times.

Third-party cookies are the ones that place cookies on your computer for sites that you didn’t specifically visit and usually will track you across the web for advertising purposes. Check your browser settings to ensure they are disabled. Apple’s Safari does this by default but not all browsers do.

Flash Cookies

Delete Flash cookies also called LSO’s or Locally Shared Objects. These are similar to browser cookies (above) but are stored in a different location and require going into Adobe’s Flash settings to eliminate them. Click the link above to get instructions on how to do that.

Browser Fingerprinting

When using a regular computer don’t browse the web with your browser in full screen mode. This helps contribute to browser fingerprinting, another way to track you across the web. There are ways to track you by logging the window screen size of your browser along with the the browser you’re using and other attributes of your computer. By changing the window size of your browser you can throw off those tracking statistics. Click the link above to test your browser’s fingerprinting susceptibility.

Advanced Things

Pi-Hole

Setup a Pi-Hole. Then add your choice of curated block lists. I block over 1.2 million domains in my Pi-Hole.

Screen Shot 2018-06-09 at 5.35.27 PM

The Pi-Hole is another open source and free solution that provides network level blocking by DNS. This is by far my favorite tool of all. By working at the network level it means that every device that is connected to the same network benefits from its protection. It works for both wired and wireless clients no matter what their make and model are.

How it works is that you add block lists of known advertisers, trackers, malware sites, porn sites, or any site or type of site you can think of. When a device on the network tries to phone home to a website, and advertiser or anything in the block lists, the query is Pi-Holed and never goes to the Internet to get that data or content. The Pi-Hole returns the blocked content as being on the local network instead at 127.0.0.1. This is where the beauty of the Pi-Hole comes in over just using ad blockers in your browser.

Most ad blockers work by simply masking or hiding the ad, the tracker or other stuff from your physical view. While in the background your web browser went out to the Internet and downloaded that ad to your browser and your computer. It just didn’t show it to you. With the Pi-Hole the ad is never downloaded in the first place and therefore there is nothing to hide from your sight. The beauty in that is a Pi-Hole can even speed up your Internet browsing experience by preventing excess data from being downloaded. This is especially helpful if you have data caps on your Internet connection.

Plus, the Pi-Hole gives the advanced user a lot of other tools to enable, disable the service as needed, add custom block lists, white lists and provides a nice reporting interface. Pi-Hole comes pre-configured with around 100,000 blocked domains for advertising and tracking, but if you visit the link in the first sentence of this section on curated lists, you can get a whole lot more.

The Pi-Hole can be run on a little computer called a Raspberry Pi which can be bought from Amazon for about $50. It can also be run on Ubuntu Linux on a physical machine or even in a virtual machine. I’ve tested all three of those setups and they all work great.

Pi-Hole is free and supported by donations so please consider donating to the project to keep it going and to get new features they’re working on. I have a monthly donation I give them and I encourage anyone who uses it to do so as well. This is by far the best tool I’ve ever come across for managing privacy.

Just Block Facebook

If you just want to block all Facebook stuff including Instagram and Whatsapp and don’t want to do it with a Pi-Hole you can add all of Facebook’s domains from this curated Pi-Hole list and just copy/paste them into your computers hosts file. If you look at the list you might be amazed at how many domains Facebook owns.

pfSense Firewall

This is another great open source project that is easy to use for the tech savvy person and free as well. When I mean easy, it is far easier to use than say an enterprise class Cisco firewall or adaptive security appliance like I use at work.

If you use a pfSense firewall and I do, use pfBlockerNG and enable DNSBL. It actually does the same thing as a Pi-Hole, but isn’t quite as refined as the Pi-Hole as far as reporting and accessibility goes.

If you have a Pi-Hole then you don’t have to enable DNSBL, but still use pfBlocker. It also can be configured to block IP’s from foreign countries trying to pry into your network. I have mine setup to block all IP’s that aren’t from the United States trying to get into my network. This helps prevent unauthorized access right at the firewall level since there is no reason that I have for me or anyone else to gain approved access from another country.

pfSense being free can run on a Linux machine or in a virtual machine running Linux.

pfSense also partners with Netgate to produce physical, hardware firewalls as well. This product line is always tested with the latest versions of pfSense to ensure that updates don’t break things when released. I have one of these hardware firewalls that I use and I’m very happy with it.

Setup a VPN

A good VPN can help block a lot of stuff too. But not all VPN’s are created equal and a user has to weigh the options available by each provider and determine if it does what they want. Ideally, one would want to create their own VPN and OpenVPN is a good choice. Here is a very comprehensive VPN comparison chart website. Take a good look there and see which VPN may be right for you.

Use the Tor Browser

If a person is in serious need of complete and total anonymity online then they probably already know about Tor, or should know about it. Tor is based off of the Mozilla Firefox browser and incorporates a lot more privacy protections for its users. Used in conjunction with a good VPN, a user has a high level of confidence that they can’t be tracked online.

There are more things we can do to minimize tracking, but this is a very good start.

Comments

I welcome all comments, suggestions and corrections on this post. If I missed something, or wrote something wrong please let me know and I’ll be happy to update this post. Also, if you know of a tool or service that can help with protecting our privacy online, please let me know that too!

Contact Me

 

23 Hours with a Samsung Galaxy S8

23 Hours with a Samsung Galaxy S8

This years marks the 10th anniversary of the iPhone by Apple. I’ve owned the iPhone ever since beginning with the original one. Then I had the 3GS, 4S, 5S and 6S. Before the iPhone and the advent of smartphones I had 3 different Nextel phones. I don’t recall the model name of my very first cell phone but it was a Nextel and resembled a small brick. Then I had the Motorola i730 flip phone and the Motorola i830 flip phone. The i730 was my favorite because it was silver in color and had that neat little colorful disco ball thing on the front and had a nice looking blue outer display too. It was kind of fat for a cell phone compared to today’s ultra thin phones, but it still felt good in the hand. After those phones and getting my first iPhone I’ve had no other phone in the past decade.

I like to consider myself a techie of sorts and it’s even my job to be an IT person. I have no trouble switching between the various platforms of computers and other forms of technology. Even when it’s not work related people come to me with their tech problems and I’m usually good at helping to resolve them.

After the past decade with iPhone and iOS I thought that perhaps I’d try out a new smartphone platform this time. To me there was nothing wrong with the iPhone and it has done everything I needed and wanted it to do and has worked superbly all along.

Perhaps it was out of boredom and complacency that I decided I wanted to try another smartphone. Since the Android operating system is pretty much the only other mobile platform out there it kind of limits my choices. Windows mobile is officially dead as Microsoft has just announced that it has been discontinued.

Apple has recently announced their new phones for 2017/2018 in the iPhone 8 and the iPhone X (pronounced ten). The prices for these phones are quite expensive and the iPhone X has a starting price of $999 round that off and it’s $1,000. The iPhone X also has this fancy new display and edge to edge screen with a “notch” at the top where they added their camera’s and face detection sensors for their new FaceID system. They’ve done away with a physical Home button and TouchID on this new phone. The iPhone 8 still retains the same form factor as the 7 and 6 before it with some changes in the material and of course new and upgraded options. It was because of this new $1,000 price tag and FaceID that sort of helped me gravitate toward trying something new. $1,000 for a phone? Sheeesh! I really don’t want to be paying that for a phone no matter how great they are. FaceID is pretty cool and the work they put into developing it and making it possible is amazing. However, I doubt its practicality in my life as being useful. I’m quite accustomed to the Home button and very often I will leave the iPhone on a table and just press the Home button to either see notifications or unlock the phone to do something quickly without needing to pick the phone up. Based on the keynote demonstration of the iPhone X it appears that you have to pick it up, look at it and then swipe up to unlock it. For me that’s not as convenient as the Home button with TouchID. Plus did I mention it costs $1,000 to start?

On the Android front there are numerous different phone makers out there and they all put their own little touch, or flare, into them on top of the base Android OS. The only one that keeps Android pure are the phones made by Google, the maker of Android. I wanted to experience Android as Google intended it to be just as I have iOS with Apple. Of course, iOS and iPhone are all made by Apple and there are no customizations made to it by other manufacturers – because there are none – so the experience on iOS is a pure one.

I admit I don’t know a lot about Android but over the past month I’ve been learning a lot. I decided to go with the Google Pixel which was first introduced in late 2016 and I learned that the Pixel 2 was set to be announced soon, so I would wait until then to make a decision on what I was going to do, if anything. In the meantime I was trying to do my homework on it and Android in general.

I mostly decided to go after the new Google Pixel 2 which is as pure as Android can be since it’s all made by Google. But after a lot of reading of various forum comments, watching YouTube videos and blog articles about Google’s ability to deliver on the hardware front of the original Pixel and the Nexus line before that it gave me cold feet a day before the big announcement. I was ready to try a different experience other than the iPhone this time around and wanted to try Android. Because of the reputation of Google having supply and demand issues for months at a time I decided to get a Samsung Galaxy S8 instead. I stopped in at the ATT store after work one day and they gave me $300 for my iPhone 6s! That was $100 more than Samsung was going to give me if I bought from their website, so I said sure why not.

I went home with the Samsung Galaxy S8 that day and began to go thorough it and set up my various apps and accounts. Learning the new OS was also a major task of mine as well. It is very different from Apple’s iOS.

This Samsung phone from AT&T not only had Android on it (of course) but it also has an integrated layer of Samsung apps and it also has a layer of AT&T apps on it as well. This was something I was trying to avoid when going the Android way, but I knew it was all going to be there on the Samsung phone.

To keep a long story from getting any longer, I was unhappy with the layers of apps and compatibility between them. I was banging my head against the wall for hours trying to get Google Photos (which works great and I like) to sync with Samsung Gallery (their photos app) which only works with their Samsung Phone/Contacts app in order to sync my contact’s photos to it. I finally figured out a workflow to accomplish the task the next morning.

Then, the finger print sensor is in an awkward location on the top of the back next to the camera. I had a heck of a time getting my finger on it properly to read it and half the time I’d flip the phone to the side so I could see where I was placing it on the sensor. So I wasn’t too pleased with that.

Another thing was the USB-C charger cable would come disconnected ever so slightly if it was nudged and I’d nudge it again and it would connect back up. It wasn’t that the cable was coming out of the phone, it just had sloppy tolerances for mating with the phone.

I decided that all of that stuff and some other things were too much for me to live with and I went back to the store and returned it. They gave me back the iPhone 6s I gave them and they reversed everything and put it all back the way it (my AT&T account) was. The only thing I am out is a $45 restocking fee.

Then my plan was to pre-order the Pixel 2 like I originally wanted. But while I was restoring my iPhone back from iTunes, I decided against that. This kind of change is too much for me!

I said screw it and I ordered an iPhone 8 Plus 64GB directly from Apple. I paid for it all up front, plus a black leather case for a total of $898.88. I had almost all of that already saved up which I was going to spend on the Pixel 2.

In the end I still spent nearly $1,000 on a mobile phone and I didn’t get the Pixel 2 like I was planning. Had I been a little more patient and waited one more day for the Pixel 2 announcement I might have bought that and probably would have been happier than with it compared to the Galaxy S8. But, I still have the nice new iPhone 8 Plus which does everything I need and want and I don’t have to worry about it.

Since I own the iPhone and don’t owe Apple or AT&T anything for it, perhaps I’ll still buy a Pixel 2 down the road and just have two phones and swap the SIM card between them. Who knows? We’ll see.

%d bloggers like this: