Say you are trying to install software and receive message from the operating system about untrusted certificate in certificate chain. In such case you need to import certificate of the middle-man organization into the Linux certificate storage to make things happen. If for some reason your third-party certificate comes in DER binary format, you should convert it to CRT format: openssl x509 -inform DER -in certificate.der -out certificate.crt Copy to storage:

Recently my personal desktop at home has been subjected to multiple hacking attempts. Attacks were scattered and came from different IP addresses. They were all of a different nature. Most likely it was automatic security hacking bot searching for vulnerable systems or a script kiddie pretending to be a hacker. At first my computer was attacked using teardrop attack. This was repeated multiple times in a row. Simply speaking, teardrop is a type of network attack in which an attacker uses fragmented packets to overload network devices and penetrate the security of network.

UPDATED ON: 2023-11-29 First of all, make sure that firewall is TURNED ON and remote connections are TURNED OFF. As for me, i’m using [Outpost Firewall] . THAN BLOCK THAT UGLY PORT 3389! 3389 This port is used by [RDP protocol] . Take a note that 80% of external intrusions are using RDP interface to hack into your system. Next step will be to disable insecure SMB protocols, by means of command line with elevated admin privileges.

Aside from [Github certificate issue] , Python also showed me some teeth regarding certificate stuff. How quaint! I think that such things comes from the fact that i’m using “obsolete” Windows 7. But we don’t choose the easy way out, don’t we? I’m using [hacked Python 3.11.1] . After trying to install Python external module: pip install vosk system showed me this: WARNING: Retrying (Retry(total=4, connect=None, read=None, redirect=None, status=None)) after connection broken by 'SSLError(SSLCertVerificationErro r(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.

UPDATED ON: 2023-09-06 Some new parameters were added. Note that by default all [Nightly versions] of Firefox are sending back telemetry to third-parties in extensive manner. So, to disable such malicious actions besides turning off telemetry settings via standard GUI options: about:preferences#privacy You’ll need to use good old: about:config To change to: FALSE …or create following parameters in software registry: toolkit.telemetry.archive.enabled toolkit.telemetry.enabled toolkit.telemetry.unified toolkit.telemetry.unifiedIsOptIn toolkit.telemetry.bhrPing.enabled toolkit.telemetry.firstShutdownPing.enabled toolkit.telemetry.hybridContent.enabled toolkit.telemetry.newProfilePing.enabled toolkit.telemetry.reportingpolicy.firstRun toolkit.

I often get asked regarding Windows 7 safety especially in 2023. "Is it safe to use such old operating system?" "What about security?" "How about modern viruses?" .... …. and many other similar questions. Funny thing that people who are asking about security don’t give a damn about privacy. Yeah, that’s quite different definitions for sure, but from my point of view they always come together hand in hand. The main and the most important security police officer is your head.

Without further ado, straight to the facts: last version with sane amount of system services, which can’t be turned off absence of [neural networks API] , which is used for telemetry, collection/profiling user data with subsequent uploading collected information to third-parties [for the first time technology was introduced in Android 8.1] full support of any modern browser [even Android 6.0 can handle this] ability to load legacy Android 2.x applications without any issues [Android 14 is already blocking such apps] I care about older stuff simply because of code quality.

UPDATED ON: 2023-04-07 No chitter here, just plain breakdown of the most important stuff. ► WINDOWS 7 FIREWALL▼ [Outpost Firewall Pro] ◄ very advanced and lightweight firewall with host-based intrusion-prevention and anti-leak systems. Review is [here] . BROWSERS▼ [IceWeasel] ◄ my personal choice to surf web [mozilla crap ripped off] [LibreWolf] ◄ debloated in terms of privacy Firefox with pre-installed uBlock Origin [PaleMoon] ◄ the most mozilla-independent fork of Firefox [but slowly degrading] [Tor Browser] ◄ handy to overcome geo restrictions and other artificial limitations of obsolescent governments Warning: some telemetry is present!

Some time ago i’ve mentioned the fact about [Linux usage] on my laptop. It was a [Manjaro] based around [Arch] . Recently i stumbled upon [SalixOS] review. It’s a simplified [Slackware] distro with modern fast [Xfce] user interface. As you may already know Slackware is the most “Unix-like” Linux distribution. Besides i can’t afford myself to skip distro with motto: "Linux for the lazy Slacker" Here is a quick intro into Salix operating system.

Right after [Windows 7 reached end of life] in regards to non-pos esu updates i asked myself: “How can i improve security of ageing operating system?” Replacement of basic internal firewall comes back to mind in the very first place. After some comprehensive research i ended up with [Outpost Firewall Pro] , developed by [Agnitum] a small Russian company, which was acquired by crappy yandex later on. Software was dismissed after purchase immediately.

Stop using mainstream operating systems like Windows 11/10/8.1, modern Linux, like Ubuntu or modern MacOS versions. On mobile Android 14/13/12/11/10/9/8.1 are prohibited because they use neural networks to profile your device and dial back to “home” to dump your personal data and preferences. iOS from very beginning was very phony platform. My personal choices are Windows 7 for desktop and Android 8.0 for mobile. These two cover my digital needs fully, no restrictions whatsoever.

Super quick breakdown of the most essential security applications for Android OS. [ADAWAY] ► Effective hosts adblocker [AFWALL+] ► Root-based firewall based on Linux ip-tables [EXODUS] ► Check your applications for telemetry trackers and secure your privacy [YET ANOTHER CALL BLOCKER] ► quality open-source call blocker Forked mod for Russia region . Fork is manadatory thing for people living in a Russia because access to application online database was blocked by Czech owner, due to war initiated by bunker rat.

Some important links for those of you who care about online security and privacy.