Internet Surfing Safety Tips – Part One

Most internet browsers cache what site you last visited and offers that information to the next site you go to. It is called an HTTP Referrer. This information is used for website statistics and demographics. This information could potentially be used for nefarious reasons. The company GRC makes the well known Spinrite hard disk recovery software and security software. According to their site: 

“The web’s HTTP protocol was designed with little concern for a web surfer’s privacy and well before aggressive commercial interests decided to track surfers across the web, while storing and compiling any personal information that might leak from their browser.

Information is leaking from web browsers?
Yes, absolutely, and frighteningly so. The often repeated claims that “no user identifiable information is being sent or collected” is just so much nonsense. Those statements are meant to lull trusting and uninformed Internet users into a false sense of privacy and security.

When a web resource is requested from a server, the “Referer” header line provides the requested server with the URL of the web page that requested the item. But if an online web form has just been filled out and submitted using the most common “GET” method, the web surfer’s potentially personal and private data will appear in the URL and it will be sent to any third-party servers, such as advertising, tracking, or web-bug servers, whose resources appear on the form’s submission confirmation page!” 

Now some browsers, like Internet Explorer, are supposed to block this HTTP Referrer when you leave a secure site and go to a none secure website, but not all browsers do. Also, your IP address is given to websites so they can track demographics. If you are not using a proxy, firewall or internet security software, this could point directly back to your individual machine. While you are at GRC, it is also a great place to check and see if you have any open ports on your system. Their Shields Up! online program checks to see if your firewall is doing its job and blocking access to your computer. The best you can get is a “True Stealth” rating, which means that your firewall doesn’t give your computer away by responding to general ping or probing requests. If you have open ports, you should check into it.

Daniel W. Dieterle

Internet Surfing Safety Tips

Many people use online mail, banking and buy items on the internet now. The biggest question is,”What are some things I can check to increase my safety online?”

There are two ways to browse the internet, regularly and securely. Regular sites have the designation “http://” in front of the www. address, secure/encrypted websites us the “https:// designation.

What is the difference? Regular websites are not encrypted. Any information you enter into them is transfered across the internet in standard readable text. Secure sites encrypt the data you enter before sending it over the internet. This makes it very difficult, if not impossible, for someone to intercept and read this information.

Whenever you are asked to log in to a secure site, whenever you are purchasing items, or checking your financial information, glance up at the address bar and make sure that it says “HTTPS://” in front of the web address instead of “HTTP://” This tells you that your are using a secure site and that your information is being encrypted as it is sent over the internet. Standard sites are not encrypted.

Believe it or not, hackers have found a way to divert your HTTPS:// connections to a standard HTTP:// unencrypted address. So instead of your address bar at the top of internet explorer saying something like https://securebankingfor  it will actually say and your information that you thought was secure could be intercepted.

Oh, one last point, don’t rely on the lock icon that shows up in the address bar when on a secure site, hackers have found a way to duplicate that also. Always check for the “https://”

Daniel W. Dieterle