Jump to content


Check out our Community Blogs

Sundance

Member Since 13 Sep 2013
Offline Last Active Sep 17 2015 06:32 AM
*****

#671110 It's Official

Posted by Sundance on 14 May 2014 - 07:40 AM

Congratulations! :P Have fun! :) Be sure to give them the talk of how majorly insecure any iPhone running Siri is :P 


  • 1


#670988 New member here

Posted by Sundance on 11 May 2014 - 10:55 PM

Welcome! :) Enjoy your time here! I also commend you on your ability to last 14 years in the helpdesk environment, I don't think I would be able to last a week.


  • 1


#670449 Third Interview with Apple and Offer

Posted by Sundance on 26 April 2014 - 06:09 AM

Congrats K!


  • 1


#670445 Reducing browser finger printing

Posted by Sundance on 26 April 2014 - 04:59 AM

Perhaps KJGino should make a tutorial on what MITM attacks are and how to avoid them? 


  • 1


#670375 Reducing browser finger printing

Posted by Sundance on 24 April 2014 - 02:29 PM

Reducing Browser Fingerprinting

 

Prerequisites 

- Firefox / Iceweasel / Nightly

- Any OS that supports FireFox / Iceweasel / Nightly

 

What is Browser Fingerprinting?

When a browser visits a website it leaves data behind that can be used to track you or provide details about who you are, an example would be if I were to visit Google they could give me a cookie that gives me a unique ID and they can then track me across their websites (YouTube, etc) and by doing so they can tell what I am viewing and personalise adverts on my Google searches to be more accurate or suggest YouTube videos that I might enjoy. 

 

Now if you have cookies disabled they can still track you via your browser fingerprint, what a site can do is grab your useragent, your headers, your plugin info, screen size and system fonts and identify you, to check how unique you are go to Panopticlick and click "Test Me"

 

How can it affect me?

Browser fingerprinting can make you traceable and if you are someone like myself who prefers to remain anonymous online just due to the respect for privacy, being easily printed is not so good!

 

How do I defend against it?

To defend against browser finger printing we need to throw some curve balls against any type of script that is trying to gather our data.

 

Step 1

- Install FireFox / Iceweasel / Nightly

 

Step 2

- Open up the preferences / options tab

- Navigate to "privacy"

- Select "Tell sites I do not want to be tracked"

- Navigate to "Applications" 

- It should display a list of services such as Flash, mailto, Podcast

- Select "Always Ask" OR "Preview in X" X being your respective browser.

 

Step 3

- Install Ghostery

- Install Adblock Plus

- Install NoScript

 

Step 4

- Open up about:config 

- To do this, open up a new tab and type "about:config" into the address bar

- It will give you a confirmation message to make sure it's what you want to do

- There will be a search bar, in that search bar enter "general.useragent.override"

- It should come up blank and that's fine, right click on the blank space

- Select New > String

- A new pop up will appear, enter in "general.useragent.override"

- When it asks you for a variable enter in "Mozilla/5.0 (Windows NT 6.1; rv:10.0) Gecko/20100101 Firefox/10.0"

- Do the same with the following entries

 

 

                            STRING NAME | STRING VARIABLE
                                                     |
​general.appname.override           |  Netscape
general.appversion.override        ||  5.0 (Windows)
general.oscpu.override                ||  Windows NT 6.1
general.platform.override             |  Win32
general.productSub.override       ||  20100101
general.buildID.override              ||  0
general.useragent.vendor           ||  (Leave Blank!)
general.useragent.vendorSub     ||  (Leave Blank!)
intl.accept_languages                  || en-us,en;q=0.5
network.http.accept.default          || text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
network.http.accept-encoding      || gzip, deflate

 

 

Step 5

- Restart FireFox / Iceweasel / Nightly

- Test your fingerprint again on Panopticlick

- It should be much lower than your original score!

- Anything less than 18 bits is good!

 

Any problems feel free to contact me!


  • 2


#670129 Second Interview with Apple

Posted by Sundance on 17 April 2014 - 10:15 AM

You could argue it makes you a better developer because you've heard first hand what the main issues are with various products from mobiles to work stations
  • 2


#669670 Your Feedback

Posted by Sundance on 01 April 2014 - 06:45 PM

To all members

 

Over the years I have been a consumer of many products, I often research a product and look at reviews of it, unless of course I know a lot about the product, then I look at the specifications of it, after all why bother with the majority of the reviews (I skim read them) when I know what I'm talking about and what I want?

 

After I have purchased the product, I often leave a review of it and tell my friends about how good or bad it is, this is of course can be both good or bad for the company not as a major factor, but as a minor factor, if I tell my friends it is a bad product, they will be unlikely to buy it due to fear of the same disappointment, they may then tell their friend that they know someone who had a bad experience, this brings more negativity to the product.

 

Now you may wonder why I'm going on about product reviews and word of mouth when I'm on a programming forum right?

 

The answer is simply this; all of the staff here genuinely care about CodeCall and its members, it's rare you find a community so willing to help people grow with out asking for anything in return (i.e. registration to view tutorials, higher post count to view "members" only areas) one thing however we love to hear is how we can improve your CodeCall experience, we're not a huge company, your contribution can help change and grow CodeCall so others may enjoy CodeCall.

 

So please, if you do have any feedback or suggestions for CodeCall on how to make it better, be sure to PM any Moderator or Roger with any suggestions, we can promise you, your opinion will matter, no matter who you are, your rank, **, experience in the industry.

 

Yours sincerely

The CodeCall Staff


  • 1


#669666 Codecall IRC?

Posted by Sundance on 01 April 2014 - 02:26 PM

Duct tape and cookies usually works?

 

On a serious note; Giving them a reason to stay, such as a more community based feel would help, perhaps more discussion based forums where topics like the latest movies can be discussed?


  • 2


#669635 Codecall IRC?

Posted by Sundance on 31 March 2014 - 08:44 PM

It's totally up to you if you'd like to run it as an unofficial branch of CC, but I don't believe we are active enough to maintain it, a lot of people come here for support then leave with only the core community residing on a daily basis.


  • 1


#668529 Had interview with Google today

Posted by Sundance on 24 February 2014 - 06:10 PM

Sorry to hear that Pally, however the fact you got as far where most would wash out is a testimony to yourself! Plus it is better to have tried and lost than to never have tried at all! :)

 

I'm proud of you Pally, most people wouldn't even attempt to apply at google due to fear of automatic rejection. 


  • 1


#668507 How to SSH Tunnel

Posted by Sundance on 23 February 2014 - 10:13 PM

How to SSH Tunnel!


Introduction

After reading many various posts on SSH tunneling I failed to find a decent one that really explained how to do it without giving you a wall of text to read, so I have decided to write a little tutorial!

What is an SSH Tunnel?
An SSH Tunnel is a way to send unencrypted information over an encrypted network, it is an excellent method for security and browsing the internet without restrictions that may be placed by your router for an example in the UK ISP providers forbid access to various torrent sites, using an SSH Tunnel you can circumvent this whilst also managing to keep your browsing information hidden from your ISP, however this should not be a method used to access illegal content, rather a way to stay anonymous on the internet, because privacy is important!

Legal
By following this tutorial you accept that I hold no responsibility to anything you do whilst SSH Tunneling, SSH Tunneling is not illegal and should only be used for your own privacy.

Requirements
A server (either remote or local is fine, this tutorial is for learning purposes however a remote server is better for seeing the magic happen)
A browser of your choice (For this tutorial I will be using Firefox/Iceweasel)
Either a terminal that supports the SSH command OR PuTTy

PuTTy can be found here

Step one - Start your terminal / PuTTy Client
Open up PuTTy OR your Terminal

PuTTy
F2ZJaPr.png

Terminal
7hWp6uw.png



Step Two - Configure the ports!
For PuTTy enter in your servers IP and port (by default the SSH Port is 22)
Then under the "connection" option on the left of PuTTy, click the right facing arrow that is next to "SSH"
Select "Tunnels" and you will be presented with the following screen

GFb0Ioh.png


In source port input a port of your choice for me it is 9090, then select "Dynamic" from the radio buttons and click "Add" to the right of "Source Port"

XVpbw9r.png


You will then see your PuTTy window looks something like this

ApRvqnX.png


For the Terminal use the following example replacing user with your servers main username (normally it will be root unless you have specified a different username) and then replace ip with your server's IP and then type -D and replace the XXXX with the port you would like to tunnel out of.
Vm5ZJhs.png
Here's an example of the terminal code and what it would look like for me

ssh kadence@192.168.0.1 -D9090

Then for PuTTy just press "Open" on the bottom right and enter in your password when prompted and move on to the next step!
For terminal just press enter and enter your password when prompted, once logged in move on to the next step!


Step Three - Configure your browser!


Open up your browser (For me it is Iceweasel but Firefox has an identical GUI.) and open up prefrences and navigate to Advanced > Network > Settings

zvBO1Lt.png


You will see this menu

1vwkggv.png

Select "Manual Proxy Configuration" from the radio buttons and inside "SOCKS HOST" enter in 127.0.0.1 and then in the box directly to the right enter in the port you designated earlier, for me it is 9090 you do NOT have to include the -D part if you are using a terminal / seen the -D pop up in PuTTy

Then press "OK".

After this is done, exit the "preferences" menu and try connecting to a site, to test it has worked type into google "What is my IP?" it should tell you the IP of your server you have SSH'd into.

If all is okay and you can see your servers IP then you are done!

Congratulations you have just done your first SSH Tunnel!



Notes
- You MUST leave your PuTTy window / Terminal open at all times, otherwise you will not be SSH Tunneled OR your browser will throw an error such as "The proxy server is refusing connections"
- This will only work for programs / applications you have changed the SOCKS proxy configuration to match.



If you have any questions feel free to PM me OR tweet me here!


  • 1


#668469 For all our would-be entrepeneurs

Posted by Sundance on 21 February 2014 - 11:32 AM

I too have had clients just like that.

 

A recent one expected me to work within such a small time frame and kept trying to pile on the work, it's almost like they think that programming is just clicking and dragging into boxes and that their projects shouldn't take longer than a few hours.


  • 2


#668039 Codecall IRC?

Posted by Sundance on 07 February 2014 - 03:07 AM

May I also suggest that we make a skype group? Unofficially but still a group in which we can 'all' talk without having to add one another? It's really simple to do so.


  • 1


#667867 Having trouble deciding what to charge for one page site

Posted by Sundance on 03 February 2014 - 05:02 AM

I would say do it for free if in return he recommends you to his friends as a good programmer! :)


  • 2


#667265 Corrupting Wishes Game

Posted by Sundance on 13 January 2014 - 12:41 AM

Granted but in gaining this ability you realise that life is truly pointless and you end up depressed in a home with nothing but justin bieber CD's to listen to.

 

I wish I had more skittles because these things are delicious.


  • 1




Recommended from our users: Dynamic Network Monitoring from WhatsUp Gold from IPSwitch. Free Download