The Illusion of Privacy/Security using ANY Web-browser
Hi All,
Many of you may realize that for the last year or so many of my posts have been about exploring web-browsers and the steps which can be taken to protect the security of your operating system and the privacy of your information. Several of those posts have concerned efforts to structure web-browsers to 'run-as-spot' and fully comply with the objective of spot: denying an application permission to access any file outside of the Spot folder.
Puppies run as Root/Administrator by default. Th mechanism of Spot was developed to provide Puppies with security/privacy obtained OOTB in Multi-User systems: that a User can not access any files beyond his/her own 'Home' folder unless and until the User elevates his/her status to Administrator by giving the required password.
Yesterday I changed the test I used in evaluation. I had thought that Puppy had two web-browsers which, if properly set up, adhered to Spot’s stated restrictions: Mike Walsh's Google-Chrome SFS --not portable-- and firefox. Google-Chrome.sfs is physically located within the Spot folder rather than anywhere as is the case with portables. The tests I had run were (1) "if the web-browser was configured to download files anywhere would downloading other than to the Spot folder fail?” and (2) “While running as Spot, could a Browser’s Menu>Files open a file beyond the access files beyond the Spot folder?”. LibreWolf failed the second test regardless of how I set it up, including locating it within the Spot folder. That failure led me to re-examine Mike Walsh’s Google-Chrome SFS just to assure myself that I had one web-browser that was “Spot Compliant”. Well, I guess I never had tried the 2nd test because I quickly discovered that unlike firefox and its clones/forks, Google-Chrome does not have a File>Open on its Menu-bar, nor anywhere else. How does one upload files iusing GC & clones? Easy: on a page which permits uploads you click the upload button. That opens a GUI enabling file-browsing. Hence, my 3rd and definitive test:
Log into this Forum, start a new post (or go to one you’ve already made and click Edit) then invoke the Attachments>Add routine. Every web-browser I’ve tried gave me access to my mounted drives. Tor did; Opera running VPN did.
Think a different Operating System provides any greater security? privacy? because under it you run as a User with limited privileges? Well, I booted into Linux Mint Ulyana. Iron web-browser required that I provide a password to run it. But once it was running, Atttachments>Add gave me access to my mounted hard-drive.. And worse than under Puppies, Linux Mint Ulyana would automatically mount partitions which weren't already mounted.
If a web-browser permits uploads, it includes some mechanism to access your computer. Do you know of any web-browser which doesn't? Do you know of any operating system which won’t allow a web-browser to?
The tentative conclusion I’ve reached is that you can create hurdles: encrypt files, run as Spot, use Tor, employ a VPN, all of the foregoing. But as long as the information is somehow immediately available to you it is also available a dedicated hacker with sufficient computing resources determined to obtain it.
Not that I can. I can’t program my way out of a paper bag. But I can think of how it can be done. And that means that someone with the determination, knowledge and resources could.
The most effective way to maintain the security and privacy of any information is not to have it readily available such as ‘it’s on a USB-Stick not/no-longer plugged in.’
According to williams2, you can run any Puppy from a USB-Stick and configure it so that you can remove the Stick after it boots to desktop. But you have to have sufficient RAM to hold in memory the operating system, the web-browser, and just the information you then need. The only operating system I know designed to run that way is puli. viewtopic.php?p=2551#p2551 Do you know of any other?