Firefox 87 trims HTTP Referrers by default to protect user privacy

Firefox 87 trims HTTP Referrers by default to protect user privacy

However, if a website does not set any kind of referrer policy, then web browsers have traditionally defaulted to using a policy of ‘no-referrer-when-downgrade’, which trims the referrer when navigating to a less secure destination (e.g., navigating from https: to http:) but otherwise sends the full URL including path , and query information of the originating document as the referrer.

Privacy News Online | Weekly Review: March 5, 2021

Privacy News Online | Weekly Review: March 5, 2021

A group of researchers from universities in Germany and the United States have done a privacy study on Alexa Skills.Read more: https://therecord.media/first-fully-weaponized-spectre-exploit-discovered-online/.Privacy News Online is brought to you by Private Internet Access, the world’s most trusted VPN service.

Privacy Talks | Interview with Josh Aas from Let’s Encrypt

Privacy Talks | Interview with Josh Aas from Let’s Encrypt

Timestamp Links & Questions: [] – Could you tell us what Let’s Encrypt does and what led you to co-found it?[] = Could you give a quick explainer of what HTTPS is and what role Let’s Encrypt plays in enabling HTTPS?Learn more about Let’s Encrypt at:

Amazon Plans Largest Corporate Surveillance Program

Amazon Plans Largest Corporate Surveillance Program

Before they take it down, here's the video Amazon circulated internally to roll out what amounts to the largest expansion of corporate surveillance in human history: using artificial intelligence enabled cameras on their fleet of thousands of delivery vans https://t.co/CJy1jPj134 — Evan Greer (@evan_greer).

Russia wants to outlaw TLS 1.3, ESNI, DNS over HTTPS, and DNS over TLS

Russia wants to outlaw TLS 1.3, ESNI, DNS over HTTPS, and DNS over TLS

The draft law (text in Russian) “bans the use of encryption protocols allowing for hiding the name (identifier) of a web page or Internet site on the territory of the Russian Federation.” This is supposed to help the Roskomnadzor in their job as Russia’s censor.

The American Scholar: Our Post-Privacy World - <a href='https://theamericanscholar.org/author/thomas-a-bass/'>Thomas A. Bass</a>

The American Scholar: Our Post-Privacy World - <a href='https://theamericanscholar.org/author/thomas-a-bass/'>Thomas A. Bass</a>

Called Total Information Awareness (TIA), it was the “biggest surveillance program in the history of the United States,” said Senator Ron Wyden (D-Oregon), whose Senate Select Committee on Intelligence had nominal oversight.

China expands Great Firewall to block HTTPS traffic that uses TLS 1.3 and ESNI

China expands Great Firewall to block HTTPS traffic that uses TLS 1.3 and ESNI

Chinese censors upgraded the GFW to be able to block HTTPS traffic that uses TLS 1.3 and ESNI.TLS 1.3 (Transport Layer Security) and ESNI (Encrypted Server Name Indication) are new technologies that augment HTTPS – the secure way in which website users “talk” with the websites they visit over the internet.

Firefox 80: HTTPS-only Mode in Settings

Firefox 80: HTTPS-only Mode in Settings

Up until now, Nightly users had to set the value of the preference dom.security.https_only_mode to TRUE to enable the feature in the browser.Mozilla added a new preference to Firefox 80 Nightly that provides users of the browser with options to enable the HTTPS-Only mode in the browser.

Digicert will shovel some 50,000 EV HTTPS certificates into the furnace this Saturday after audit bungle

Digicert will shovel some 50,000 EV HTTPS certificates into the furnace this Saturday after audit bungle

On Monday, Digicert VP of product security and compliance Brenda Bernal explained, via Mozilla's Bugzilla system, that the mass revocation this week was needed because intermediate certificate authorities created between August 2013 and February 2018 were incorrectly left out of its audit reports.

Talk about the fox guarding the hen house. Comcast to handle DNS-over-HTTPS for Firefox-using subscribers

Talk about the fox guarding the hen house. Comcast to handle DNS-over-HTTPS for Firefox-using subscribers

Comcast has agreed to be the first home broadband internet provider to handle secure DNS-over-HTTPS queries for Firefox browser users in the US, Mozilla has announced.

Using DNS over HTTPS (DoH) with OpenDNS

Using DNS over HTTPS (DoH) with OpenDNS

Under Use Provider , choose Custom and enter one of the following URLs: Standard DNS: FamilyShield (blocks adult content): Choose OK and your queries will be encrypted!.

GitHub - zhenyolka/DPITunnel: DPITunnel is an android app made for censorship bypass

GitHub - zhenyolka/DPITunnel: DPITunnel is an android app made for censorship bypass

DPI Tunnel is an application for Android that uses various techniques to bypass DPI (Deep Packet Inspection) systems, which are used to block some sites.To overcome this problem DPI Tunnel uses DNS-Over-HTTPS technology, that sends DNS request in HTTPS packets.

Private Internet Access announces another year of Let’s Encrypt sponsorship

Private Internet Access announces another year of Let’s Encrypt sponsorship

Besides providing free TLS certificates for websites seeking to migrate to HTTPS, Let’s Encrypt also uses its corporate sponsorship money to work on improving the security of their own certificate authority infrastructure.

HTTPS Is A Privacy Nightmare

HTTPS Is A Privacy Nightmare

After reading NSA files, I wouldn’t be surprised if NSA already hacked some of the big CAs. I don’t see what stops governments from issuing a subpoena for the CAs in their countries to sign a certificate so they could sniff the communication of whoever they want.

GitHub - SadeghHayeri/GreenTunnel: GreenTunnel is an anti-censorship utility designed to bypass the DPI system that is put in place by various ISPs to block access to certain websites.

GitHub - SadeghHayeri/GreenTunnel: GreenTunnel is an anti-censorship utility designed to bypass the DPI system that is put in place by various ISPs to block access to certain websites.

GreenTunnel bypasses DPI (Deep Packet Inspection) systems found in many ISPs (Internet Service Providers) which block access to certain websites.For example, if the administrator chooses to block the hostname youtube using this feature, all Website access attempts over HTTPS that contain youtube like in the SNI would be blocked.

Let's Encrypt Has Issued a Billion Certificates

Let's Encrypt Has Issued a Billion Certificates

Today 81% of page loads use HTTPS globally, and we’re at 91% in the United States!Today we serve nearly 192M websites with 13 full time staff and an annual budget of approximately $3.35M.

Firefox enables DNS-over-HTTPS by default (with Cloudflare) for all U.S. users

Firefox enables DNS-over-HTTPS by default (with Cloudflare) for all U.S. users

However, the way Mozilla implemented DNS-over-HTTPS in the Firefox web browser also received criticism over in past few months over favoring Cloudflare and instead of trying to upgrade to an encrypted DoH server operated by the user's existing DNS provider.

Firefox turns controversial new encryption on by default in the US

Firefox turns controversial new encryption on by default in the US

Starting today, Mozilla will turn on by default DNS over HTTPS (DoH) for Firefox users in the US, the company has announced.When it announced that it would be turning on DoH by default last year, Mozilla said that it would allow for opt-in parental controls and disable DoH if Firefox detects them.

Protect Your Browsing With DNS Over TLS

Protect Your Browsing With DNS Over TLS

What Can You Do. Support for DNS over TLS isn’t as mature as HTTPS yet, but it’s still easy enough to get set up and use.Your Windows PC is now configured to use Stubby to send your DNS over TLS.

Google really is listening and recording on apps

Google really is listening and recording on apps

When you set up your Google account, it asks you to "opt in" to let Google track your video and audio recordings.Google, we discovered, can record, store and archive your queries when using the apps or even https://t.co/lhIuCc5DLl and voice search.

Certbot Leaves Beta with the Release of 1.0

Certbot Leaves Beta with the Release of 1.0

Earlier this week EFF released Certbot 1.0, the latest version of our free, open source tool that helps websites encrypt their traffic.The release of 1.0 officially marks the end of Certbot's beta phase, during which it has helped over 2 million users maintain HTTPS access to over 20 million websites.

Windows will improve user privacy with DNS over HTTPS

Windows will improve user privacy with DNS over HTTPS

There are now several public DNS servers that support DoH, and if a Windows user or device admin configures one of them today, Windows will just use classic DNS (without encryption) to that server.

Configuring DNS-Over-HTTPS on Pi-hole

Configuring DNS-Over-HTTPS on Pi-hole

This means that the connection from the device to the DNS server is secure and can not easily be snooped, monitored, tampered with or blocked.In the following sections we will be covering how to install and configure this tool on.

SCHILLING: If You Value Freedom On The Internet, Stop Using Google Chrome

SCHILLING: If You Value Freedom On The Internet, Stop Using Google Chrome

Here’s the background: Google has announced that they will soon start changing the way users are connected to websites through its Chrome browser, using a new protocol called DNS over HTTPS (DoH).

P410n3 - blog: Slipping past China’s Firewall in a Trojan Horse

P410n3 - blog: Slipping past China’s Firewall in a Trojan Horse

If a normal user connects to a Trojan Server on the HTTPS port 443, he will be served a legitimate website or service.It’s worth noting that you can redirect such requests to ANY service on your server that you want to.

Why Every Privacy Activist Should Embrace* DNS-over-HTTPS

Why Every Privacy Activist Should Embrace* DNS-over-HTTPS

But I can’t get on board with my peers who believe that it’s a good idea to throw vitriol at DoH just because it might complicate “legacy” crap like the above, or that disintermediating DNS is somehow bad for security controls.

Why big ISPs aren’t happy about Google’s plans for encrypted DNS

Why big ISPs aren’t happy about Google’s plans for encrypted DNS

Google and Mozilla are trying to address these concerns by adding support in their browsers for sending DNS queries over the encrypted HTTPS protocol.Despite insinuations from telecom companies, Google says, the company has no plans to switch Chrome users to its own DNS servers.

Encrypted DNS could help close the biggest privacy gap on the Internet. Why are some groups fighting against it?

Encrypted DNS could help close the biggest privacy gap on the Internet. Why are some groups fighting against it?

Alongside technologies like TLS 1.3 and encrypted SNI, DoH has the potential to provide tremendous privacy protections.But to avoid having this technology deployment produce such a powerful centralizing effect, EFF is calling for widespread deployment of DNS over HTTPS support by Internet service providers themselves.

Mozilla plans to roll out DNS over HTTPS to US users in late September 2019

Mozilla plans to roll out DNS over HTTPS to US users in late September 2019

Starting in late September 2019, DNS over HTTPS (DoH) is going to be rolled out to Firefox users in the United States.Starting in late September 2019, DNS over HTTPS (DoH) is going to be rolled out to Firefox users in the United States.

Kazakhstan begins intercepting citizens’ web traffic to ‘protect them from cyber threats’

Kazakhstan begins intercepting citizens’ web traffic to ‘protect them from cyber threats’

The Kazakhstan government has started to intercept all HTTPS traffic from all devices within its borders effective July 17, reports ZDNet. Local internet service providers (ISPs) have been instructed by the government to force their citizens to install a state-authorized certificate on all devices, and all browsers.

More