Bonum Certa Men Certa

Using Windows With TOR is Like Wearing Makeup to Dodge CCTV

CCTV



Summary: The TOR project asks users to abandon Microsoft Windows, which helped the NSA (based on identified IP blocks) crack anonymity

THE thing about proprietary software is, it infects any system it is surrounding, making everything penetrable if the underlying layer has a back door, which Windows has. Activists who challenge authority must never rely on proprietary software, suggests experience [1, 2],



More GNU/Linux distributors should start promoting their products based on privacy as a selling point, not just software freedom, especially now that a lot of people are concerned about mass surveillance. Sadly, however, even some of these distributors are now compromising their users' privacy inside Azure, whose host is in bed with the NSA.

"Several mainstream articles are publishing the Tor Project's recommendation to drop Windows," told us iophk, noting also the poor headline at the Telegraph. He gave this better example from IDG:

The TOR Project is advising that people stop using Windows after the discovery of a startling vulnerability in Firefox that undermined the main advantages of the privacy-centered network.

The zero-day vulnerability allowed as-yet-unknown interlopers to use a malicious piece of JavaScript to collect crucial identifying information on computers visiting some websites using The Onion Router (TOR) network.


There is more here. "In the pre-Mono days," iophk says, "I would have expected Canonical and Ubuntu to be all over that. Shuttleworth could make an invitation like he did to the Suse developers. However, with their Community "Manager" defending MS, that may not happen. Speaking of the "manager", his and the others' responses to your old post here has elicited denial of the problem as well as a bit of an attack. I think the topic is very worth revisiting at least once a month."

Here is another post about this subject. It is reproduced as follows from JoinDiaspora:

The exploit of Tor by JavaScript



Who were affected?



  • Window Users
  • People who enabled JavaScript
  • Used the Tor Browser Bundle



~Windows~



Most of the users were windows users, I'm not claiming that Linux or Gnu|linux users are superior but to be more accurate, some windows users don't have the mentality of security or common sense when it comes to protecting them self and their devises. Gnu|linux users or Unix users are more aware of their surrounding and what goes within their Systems, now that said Windows users need to understand that to be safe and secure you need to take away all of those applications that would cause a back door to your system.



These are the following said applications:



Javascript - There are multiple ways of disabling this, but my favorite way is to add an add-on called, "NoScript". This disables script's to be activated and or used within your browser, you have nothing to worry about, you are able to fully activate or deactivate JavaScript if needed.



Flash - Yes Flash, there are ways of doing this, either deleting the flash application or never going to YouTube ( I doubt you'll be doing this). There are multiple add-ons for your browser that will disable the usability of flash and allowing Html5 to take over.



Cookies - Cookies are a great way of entering your system and gather some useful information about said system and maybe you. There are add-ons for disabling these little critters. there are multiple said add-ons like Self-Destructing Cookies or going into your system and deleting them yourself.

~JavaScript~



JavaScript is not safe cause it has bugs. This holds true for the various implementations of JavaScript, as well as the browsers that JavaScript runs in. Some bugs can, when discovered, be exploited to bypass the said sandbox, or to perform other malicious actions on your machine, like what the FBI did to a specific Tor network. So JavaScript is not safe in most occasions, anybody running JavaScript can be the target for something malicious.



~Using Tor Bundle~



Tor bundle uses an old version of Firefox and is easily exploited, add-ons are not implemented within the browser. Even if you were using Tor you would of gotten targeted. Using a different applications for the same cause will allow users to be much safer than having a bundle and thinking that no one can actually hack|crack into said system. This is false when using anything, just keep in mind that you could always be Hacked|cracked by someone or a specific organization.



Forgot to mention one thing, passwords. People please, don't create a password that is easily created like, your name, age, birth place, or someone or something. The best way of creating a good passphrase is to use Uppercase letters as well as other symbols for instance if your name is jonny michaels use Joney_M1ch_els. keep in mind that this example is just a bare minimum for a truly secure Password.

If you have any questions on what to use or just have anything to ask me just ask.



Like alway, happy hacking



And if you don't use free software, the hacking (or cracking) is all on you.

Comments

Recent Techrights' Posts

Sponsored by Linux Foundation
All the pages are full of 'Linux' Foundation ads that are not about Linux
It's Hard to Dispose or Get Rid of Swasticars Now
'Memecars' only sell as long as people have a 'belief' in them
 
Links 13/03/2025: COVID-19 Legacies and "Modern" Cars as Spying Machines on Wheels
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, March 12, 2025
IRC logs for Wednesday, March 12, 2025
The Fall of the Open Source Initiative (OSI): Microsoft-Sponsored OSI is Probably Not Even the Real Steward of the Open Source Definition, It's More Like an Identity Thief at This Point (Like "FSFE", a Microsoft-Sponsored Imposter of FSF)
As we'll show later, many people (even inside OSI) are very angry at the OSI right now
Gemini Links 12/03/2025: Cataloging Books, Ramen, and MElon
Links for the day
Links 12/03/2025: Anti-Union Actions and New Efforts at Truce/Ceasefire in Ukraine
Links for the day
CodeWeavers Ads Weaved by LLM Slop at BetaNews
How much of this was even touched by a human being?
Springtime Plans
We currently have two long series underway
In Australia, iOS Estimated to be Bigger Than or Equal to Windows
Not even counting macOS
Brett Wilson LLP Does Not Deny Microsoft or Another "Third Party" Secretly Funds the SLAPPs Against Techrights, Bankrolling Despicable People Who Deserve Criticism
Writing about crime is not a crime
Gemini Links 12/03/2025: LLM Slop Lacks a Future, Wordle Clone Comes to Gemini Protocol
Links for the day
Using FUD That Blames "Linux" for Typos, Turning It Into LLM Slop That Blames "Linux" for Typos
It is probably the "leader" at LLM slop (fake 'articles') about "Linux"
Links 12/03/2025: Big Cuts to US Education and Science (e.g. NOAA)
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, March 11, 2025
IRC logs for Tuesday, March 11, 2025
Crossbow murders: prevention, missed opportunities
Reprinted with permission from Daniel Pocock
This yt-dlp Bug Report Shows Us That the Future of YouTube is DRM and It's Time to Leave (yt-dlp Should Also Leave Microsoft GitHub, Which Censors YouTube Downloaders)
GAFAM traps aren't "free hosting"; they herd us all into a world of tollbooths and locks, surveillance and planned obsolescence (you own nothing, you only rent)
Ukraine Didn't Take Twitter/X Down, Microsoft or Windows Likely Did
There are many debunkings (to likely false accusations), but won't that just be another example of Windows TCO, exacerbated externally in the form of Windows botnets?
The Fall of the Open Source Initiative (OSI): Worse Than What the Media Has Focused on, Losing Sight of Who Owns and Runs the OSI
Members' dues are less than 3% of the income; where does the 97+ percent come from other than Microsoft?
Apple Seems to Have Run Out of Things to Boast About After Apple Vision Pro Failed Spectacularly
With "Apple Intelligence", Apple has finally named a product after what target customers lack
Slopwatch: Reckless FUD and Machine-Generated Spam from LinuxSecurity.com, cybersecuritynews.com, and gbhackers.com (Google Boosts LLM Slop About "Linux")
Google and so-called 'Google News' continue to yield anti-Linux misinformation
Gemini Links 11/03/2025: 'Chainsaw Politicians' and Proprietary Software Hell
Links for the day
Links 11/03/2025: Covid-19 5 Years On and Violence in Syria
Links for the day
Links 11/03/2025: NASA Besieged and "DOGE Has Become What It Claimed To Destroy"
Links for the day
Fresh IBM Layoffs Reported in Europe and North America, Jobs Allegedly Moved to South Asia (Low Salaries)
As usual, IBM does not talk about this
Illuminating Injustice is Critical When Reckless Microsofters and Law Firms Try to Silence Reporters of Violence Against Women
I want to clarify that I'm well within my right (and not running afoul of any rules) by explaining what goes on here
EPO Central Staff Committee: "The Strategy of the Office Lacks Transparency and Cannot be Understood"
Microsoft and the EPO violate data protection laws
Microsoft Has Not Much Left to Show Investors, Shares Fall Almost 20%
It's not even clear how Microsoft makes money anymore
Links 11/03/2025: Spring and Misfin Server
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, March 10, 2025
IRC logs for Monday, March 10, 2025