Best security software for iOS

[crashoverride77]

Dude, I'm a telecommunications engineer and I have a CCNA, I know what VPN means.

Explain to me what a VPN does to protect your privacy! The answer is nothing! It can even be used to spy on you, as all you traffic will pass through God knows who. It's meant for enterprise use, not personal use.

The private mode of your browser lets you browse sites without storing cookies in permanent storage, or retrieving stored cookies. Cookies can be used to track you throughout the web, and that's a privacy concern.

So, "LMAO", I say.

Ever hear of IP addresses?
Good luck mr communication engineer. I will use a VPN or something like tor and you use private browser mode.
[doublepost=1463221029][/doublepost]

I am not arguing, I am merely trying to help someone who might think he is safe browsing while in reality is not.....if that someone think he knows best and don't listen to advice, it is not my problem.

If teaching is now considered arguing, I am sorry but it was NOT my intention, take what I told you and do what you prefere with it but you either are anonymous or you are not, there's no such thing as "AS anonymous as possible".

When you speak about tech there is no such thing as 100% or absolute

I never said you can be 100% secure when browsing but a VPN helps.

If somebody asks me how to manage passwords I would say a password manager because it will make it AS secure as possible.

Are you than going to reply to me but 256bit AES encryption could be hacked using a billion computers and years or the master password could get stolen.
Don't use password managers they are not secure?
Would that be your reply?

The term AS is probably the best word to describe tech.

 

[mrex]

private browsing hasnt much anything to do with securing your online identity :O

 

[Shirasaki]

Security is a system with multiple links. One link breaks, then system is not secure.
Private browsing prevents websites from storing preferences on your local storage. But remote storage is still there. Maybe next time it cannot identify you because there is no local file containing data which would match remote storage. So link broken. Your identity is being protected, somehow.
VPN provides encryption on literally anything you are going to transmit through Internet. But as someone says, VPN service provider itself is a potential man-in-the-middle attack participant.
So, home-made private VPN? Maybe this is another choice if you have the condition. Set up a private server in countries without censorship, and connect that private server using strong encryption while you are at countries with censorship. But it is costly. Potentially costly.
My 2c.

 

[Zirel]

Ever hear of IP addresses?
Good luck mr communication engineer. I will use a VPN or something like tor and you use private browser mode.

Yes, ever heard of NATs?

Most users are behind a NAT, which means the same public IP is shared by multiple users.

Most phones don't have a fixed IP address. and are behind a NAT!

Also, what's the point of hidding an IP? They get you with the cookies, your VPN or Tor doesn't protect you from the most common method used for tracking!

 

[Paco II]

Kind of funny conversation about VPN. VPN adds security but not anonymity. Very different things. Additionally, a personal VPN server will be far more secure than a third party service.

 

[Zirel]

Kind of funny conversation about VPN. VPN adds security but not anonymity. Very different things. Additionally, a personal VPN server will be far more secure than a third party service.

It depends.

What makes you believe that your Internet connection isn't tampered or screened, to begin with?

Everything that a VPN does for security is for "I don't trust this WiFi/Mobile connection, I'm going to use another connection". That's it!

For HTTPS websites, e.g., a VPN does absolutely nothing. Most "important" services, any decent service really, like banking, facebook, google searches, e-mail, etc. are HTTPS.

 

[Paco II]

When routing through an Internet connection that is not your own, even https can not guarantee security. If you trust your home Internet, than personal vpn is best solution for those worried about security. Far more secure.

It depends.

What makes you believe that your Internet connection isn't tampered or screened, to begin with?

Everything that a VPN does for security is for "I don't trust this WiFi/Mobile connection, I'm going to use another connection". That's it!

For HTTPS websites, e.g., a VPN does absolutely nothing. Most "important" services, any decent service really, like banking, facebook, google searches, e-mail, etc. are HTTPS.

 

[vexorg]

I would love to see your flawless work./s

I'll bet you would....

 

[Zirel]

When routing through an Internet connection that is not your own, even https can not guarantee security. If you trust your home Internet, than personal vpn is best solution for those worried about security. Far more secure.

HTTPS can guarantee security, doesn't matter how it is rooted.

Your computer comes with several root certificates installed. Those certificates are trusted by Microsoft, Google and Apple and are the same that public websites use.

Simplifying 300 hours of tutoring, each file transferred through HTTPS is verified against those certificates, and if it has been modified, your browsed detects the tampering, and shows an error message to you.

 

[Paco II]

And now you finally understand. Https doesn't guarantee security when you don't own or trust the Internet connection. And depending upon the browser, that warning may or may not be clear to the user. The user can proceed. Nothing stops them. To ensure security, use a trusted VPN. Nuff sedd.

HTTPS can guarantee security, doesn't matter how it is rooted.

Your computer comes with several root certificates installed. Those certificates are trusted by Microsoft, Google and Apple and are the same that public websites use.

Simplifying 300 hours of tutoring, each file transferred through HTTPS is verified against those certificates, and if it has been modified, your browsed detects the tampering, and shows an error message to you.

 

[Videomanmac]

A good way to protect on iOS and Mac is use your DNS settings with OpenDNS.

 

[Zirel]

And now you finally understand. Https doesn't guarantee security when you don't own or trust the Internet connection. To ensure security, use a trusted VPN. Nuff sedd.

I understand what?

HTTPS DOES guranteed security even, doesn't matter the Internet connection.

And depending upon the browser, that warning may or may not be clear to the user. The user can proceed. Nothing stops them.

Sure, if the user is dumb

Also, Apps stop working if the connection is tampered.

The user can proceed. Nothing stops them. To ensure security, use a trusted VPN. Nuff sedd.

What is a "trusted VPN", then?

 

[AndyK]

HTTPS is only secure if the entire session uses it. A lot of sites still only use HTTPS for authentication and then drop back to HTTP for the rest of the session. Assuming this isn't the case the the whole session uses HTTPS, you are safe as long as you trust the certificates your computer comes with.

As this discussion on SE shows though, you're still safer using a VPN than not even if your whole session is HTTPS and / or if you're a dumbass that clicks through invalid certificate warnings in your browser and allows page loads anyway. Particularly if you're on a public or untrusted connection.

 

[Zirel]

HTTPS is only secure if the entire session uses it. A lot of sites still only use HTTPS for authentication and then drop back to HTTP for the rest of the session. Assuming this isn't the case the the whole session uses HTTPS, you are safe as long as you trust the certificates your computer comes with.

Even if a site only does that, it's secure enough.

The functional part of the site is done through HTTPS.

 

[AndyK]

Even if a site only does that, it's secure enough.

That's not even remotely true. As exampled in the Stack Exchange post I linked:

Often users don't browse directly to the HTTPS site, they start off at the HTTP site and redirect from there. E.g you browse to http://example.org/, and click the Email link, which redirects you to https://mail.example.org/. Since the original HTTP page is not encrypted, that malicious user can modify your traffic, causing the Email link to NOT redirect to HTTPS, but maybe somewhere else. For example, if you clicked the Email link on example.org's homepage, would you notice that it took you to http://mail.exxxample.org/? (as an example). You might, someone else might not.

You can't be so naive to think that that is 'secure enough' and it certainly doesn't guarantee your connection is secure. That's like locking your bedroom door at night but leaving your front door unlocked.

 

[Zirel]

That's not even remotely true. As exampled in the Stack Exchange post I linked:

You can't be so naive to think that that is 'secure enough' and it certainly doesn't guarantee your connection is secure. That's like locking your bedroom door at night but leaving your front door unlocked.

What I mean is that if data is transferred through HTTPS, it's enough to be private.

If you put send your e-mail through HTTP, then it's another story.

 

[cynics]

What I mean is that if data is transferred through HTTPS, it's enough to be private.

If you put send your e-mail through HTTP, then it's another story.

HTTPS is only as secure as the certificate. If that is compromised than all bets are off such as when DigiNotar was compromised and the hacker(s) was able to issue authentic certificates to whoever they wanted that were completely legitimate.

HTTPS in no way can 100% guarantee privacy and/or security as we've already seen in the past.

 

[AndyK]

What I mean is that if data is transferred through HTTPS, it's enough to be private.

If you put send your e-mail through HTTP, then it's another story.

You've completely missed the point. Of course email providers aren't sending email in HTTP, it was an example of how your traffic can be intercepted while you move around between secure and non secure parts of a website.

Either way, when you're on a public or unknown connection, a VPN is always safer because loose HTTP packets are hardly the only thing people can use to steal your data.

 

[Zirel]

You've completely missed the point. Of course email providers aren't sending email in HTTP, it was an example of how your traffic can be intercepted while you move around between secure and non secure parts of a website.

Either way, when you're on a public or unknown connection, a VPN is always safer because loose HTTP packets are hardly the only thing people can use to steal your data.

No, you completely missed the point.

If you send your data from a HTTP page to an HTTPS endpoint, your data is safe.

What matters is the endpoint.

 

[Paco II]

Oh geez, no! If a page is not secure, anything can be going on with it. Please stop sharing bad information like this. Never enter sensitive data into a non-secure page.

No, you completely missed the point.

If you send your data from a HTTP page to an HTTPS endpoint, your data is safe.

What matters is the endpoint.

 

[Zirel]

Oh geez, no! If a page is not secure, anything can be going on with it. Please stop sharing bad information like this. Never enter sensitive data into a non-secure page.

No, the session is on HTTPS.

Yes, having a HTTP page is not a good idea. And has problems. But if your data is on HTTPS, there's nothing to fear.

 

[AndyK]

No, you completely missed the point.

If you send your data from a HTTP page to an HTTPS endpoint, your data is safe.

What matters is the endpoint.

That isn't true at all if someone intercepts the HTTP packets and redirects you to a non HTTP malicious page, which is the whole point I was making.

No, the session is on HTTPS.

Yes, having a HTTP page is not a good idea. And has problems. But if your data is on HTTPS, there's nothing to fear.

The entire session can only be HTTPS fully if the website you visit lands and remains HTTPS for the entire session. This is frequently not the case. Many websites land on a http session and then when you click something like 'login' or 'sign up' you are redirected to a HTTPS session.

This means that someone intercepting the HTTP traffic, can potentially redirect you to a malicious HTTP page to trick/fool you into 'logging in' when actually you're submitting your details to their malicious fake page.

I don't know how to make this any more simple for you to understand why a VPN is a solid step to prevent any of this happening when on an unfamiliar or public network.

 

[mrex]

from where do you find an computer expert who actually knows something rather than just talking and trying to look smart?

 

[crashoverride77]

That isn't true at all if someone intercepts the HTTP packets and redirects you to a non HTTP malicious page, which is the whole point I was making.



The entire session can only be HTTPS fully if the website you visit lands and remains HTTPS for the entire session. This is frequently not the case. Many websites land on a http session and then when you click something like 'login' or 'sign up' you are redirected to a HTTPS session.

This means that someone intercepting the HTTP traffic, can potentially redirect you to a malicious HTTP page to trick/fool you into 'logging in' when actually you're submitting your details to their malicious fake page.

I don't know how to make this any more simple for you to understand why a VPN is a solid step to prevent any of this happening when on an unfamiliar or public network.

Why bother? He thinks private browsing helps with your online privacy

 

[AndyK]

Why bother? He thinks private browsing helps with your online privacy

If users don't call out this kind of naivety and miss information spreading it just compounds the problem when someone that genuinely has no idea comes asking genuine questions.