What's your privacy setup?

McFirewavesJr · Sep 13, 2017

<div class="bbWrapper">I'm usually not the paranoid/conspiracy guy, but it recently started freaking me out to realize how much I was being spied on. From FB messenger scanning my conversations to offer me products, to websites installing keystroke spyware on my mobile and the realization that apple owns our fingerprints, voice print and soon face scan...<br /> <br /> Currently in the process of cleaning up my stuff and doing a lot of "ungoogling";<br /> <br /> <ul> <li data-xf-list-type="ul">Using a external hard drive instead of gDrive (until I find something I trust)</li> <li data-xf-list-type="ul">Factory reset my phone frequently (I'm actually in the process of leaving my smartphone at home and carrying around a basic phone, but this is not for security, it's a lifestyle choice)</li> <li data-xf-list-type="ul">Not using Chrome, google and gmail anymore</li> <li data-xf-list-type="ul">couple other things in progress.</li> </ul>What you guys do the escape the increasing surveillance from the Matrix?</div>

Dislike ads? Become a Fastlane member: Subscribe today and surround yourself with winners and millionaire mentors, not those broke friends who only want to drink beer and play video games. :-)

Dunkafelics · Sep 14, 2017

<div class="bbWrapper">Interesting post and something I am looking to see what others do as well.<br /> <br /> To be honest I am not too worried about the government or big corporations spying on what I am doing. I've never really thought it was the biggest issue unless you are doing something wrong (ie. criminal activity, terrorism, etc.)<br /> <br /> I will say that I am more worried about those that partake in hacking, identity theft, etc. What do you guys do to combat these types of behaviours?</div>

urianasi · Sep 14, 2017

<div class="bbWrapper">I've worked in the infosec field for some time. I really like it. After reading many books on privacy and data, technical books on computer science, white papers on the subject, and worked in some projects I gotta say that you are right: it is a big issue. And something to freak about.<br /> <br /> Let me start by saying that you can't rely only on tools if you want privacy. Tools will give you a degree of privacy, if used correctly, but it is well understood in the field that <i><a href="https://www.schneier.com/essays/archives/2000/04/the_process_of_secur.html" target="_blank" class="link link--external" rel="noopener">security is a process</a></i> and not a few tools here and there. In software, flaws are inevitable, vulnerabilities exist in all programs and new ones are discovered all the time. All. The. Time.<br /> <br /> The solution to this problem is to <i>reduce the risk of exposure </i>regardless of the product. Everything we use is built by others, how do we know they are <i>trustworthy? </i>We have to <i>trust </i>someone, right? Trust is a very big word. We don't realise how important it is.<br /> <br /> Now, I don't want to over extend my post. We could fill a book on all the moral, ethical, psychological dilemmas on security. It is important to understand, though, that <a href="https://ssd.eff.org/en/module/choosing-your-tools" target="_blank" class="link link--external" rel="noopener">security is a process</a>, not just the use of a tool.<br /> <br /> Here are a few practices and tools that I use in a daily basis:<br /> <ul> <li data-xf-list-type="ul">I pay for a VPN monthly. I can recommend you iVPN and Mullvad. I use <a href="https://openvpn.net/index.php/open-source.html" target="_blank" class="link link--external" rel="noopener">OpenVPN </a>client.</li> <li data-xf-list-type="ul">I don't have any social network. In those services, you're the product.</li> <li data-xf-list-type="ul">I store my pictures, docs, videos, and more in a Dropox account, <b>but</b> in an encrypted container. I encrypt my data in a container first, and then upload that file. In that way, I have a backup of my data, but it is encrypted with strong algorithms.</li> <li data-xf-list-type="ul">I use a password manager that generates passwords automatically for each new account. I don't even now my password from this forum. I use pwsafe, designed by Bruce Schneier, a famous Cryptologist and Author.</li> <li data-xf-list-type="ul">I browse in Firefox with some configurations and some addons: Privacy Badger, uBlock Origin, HTTPS Everywhere, NoScript, Profile Spoofing. I use it for online purchases, or other sensitive stuff. I use Google chrome for ocassional browsing.</li> <li data-xf-list-type="ul">I use Windows for ocassional browsing and playing games. I use GNU/Linux for everything else that requires other levels of protection, such as online purchases. I fully encrypt my Linux disks.</li> <li data-xf-list-type="ul">For communications I use Whatsapp. <a href="https://www.eff.org/deeplinks/2016/10/where-whatsapp-went-wrong-effs-four-biggest-security-concerns" target="_blank" class="link link--external" rel="noopener">I know, I know</a>. I would prefer to use Signal, but my family is far away and they are not tech savvy. Whatsapp implemented end-to-end encryption with the creator of Signal, so I <i>decided to trust</i> them.</li> <li data-xf-list-type="ul">This should be obvious, but I don't send any sensitive and private information through normal channels of communications.</li> <li data-xf-list-type="ul">I do use Gmail, but I also use <a href="https://tutanota.com/" target="_blank" class="link link--external" rel="noopener">Tutanota </a>and <a href="https://protonmail.com/" target="_blank" class="link link--external" rel="noopener">Protonmail</a>. Email is broken, though. The majority of the protocols on the internet like HTTP, TCP, SMTP were not designed with security in mind. Email it's fundamentally broken. If you want to communicate with other people securely, don't use email, use Signal.</li> <li data-xf-list-type="ul">I own an iOS smartphone. They <a href="https://ssd.eff.org/en/module/problem-mobile-phones" target="_blank" class="link link--external" rel="noopener">are a problem</a> from a security stand point, and I know it. I use it as much as a dumbphone as I can. I have the 16GB model, and I always have more than 5gb free. Like you said <a href="https://www.thefastlaneforum.com/community/members/34741/" class="username" data-xf-init="member-tooltip" data-user-id="34741" data-username="@Fred Chevry">@Fred Chevry</a>, a dumbphone won't improve security. 2G networks are encrypted but with a <a href="https://en.wikipedia.org/wiki/A5/1" target="_blank" class="link link--external" rel="noopener">very weak algorithm</a>, so they are fundamentally broken. I chose it because I consider iOS <a href="https://ssd.eff.org/en/module/how-encrypt-your-iphone" target="_blank" class="link link--external" rel="noopener">more secure</a> than <a href="https://blog.torproject.org/mission-impossible-hardening-android-security-and-privacy" target="_blank" class="link link--external" rel="noopener">Android</a>.</li> </ul>That's all I can think of right now. I might take other measures, but these are the most important ones. This is not bullefproof, there are some trade offs in my design, but it still considerably better than not using anything.<br /> <br /> Some recommendations for the most protection you can have?<br /> <ul> <li data-xf-list-type="ul">Use a <a href="https://www.mullvad.net/" target="_blank" class="link link--external" rel="noopener">VPN </a>at all times. Don't trust your ISP provider.</li> <li data-xf-list-type="ul">Use <a href="https://signal.org/" target="_blank" class="link link--external" rel="noopener">Signal</a>, if possible, for instant messaging and calls. Or, <a href="https://otr.cypherpunks.ca/" target="_blank" class="link link--external" rel="noopener">Pidgin + OTR.</a></li> <li data-xf-list-type="ul">Don't use the same laptop for browsing, playing games and make purchases online. Play in a console (DO NOT DOWNLOAD PIRATED GAMES), do ocassional browsing in a computer, and online banking and purchases in another computer used ONLY for that.</li> <li data-xf-list-type="ul"><a href="https://www.veracrypt.fr/en/Home.html" target="_blank" class="link link--external" rel="noopener">Encrypt your files</a> before uploading them to the cloud.</li> <li data-xf-list-type="ul">Use <a href="https://www.torproject.org/projects/torbrowser.html.en" target="_blank" class="link link--external" rel="noopener">TOR Browser</a>, if possible, for private browsing.</li> <li data-xf-list-type="ul">Use <a href="https://www.gnupg.org/" target="_blank" class="link link--external" rel="noopener">PGP </a>for emails. This is not bulletproof, but it's the best thing you can do with the broken SMTP protocol.</li> <li data-xf-list-type="ul">Encrypt your disks, and use <a href="https://prism-break.org/en/categories/gnu-linux/" target="_blank" class="link link--external" rel="noopener">GNU/Linux</a> (Debian + LUKS). Use <a href="https://tails.boum.org/" target="_blank" class="link link--external" rel="noopener">Tails </a>or <a href="https://www.qubes-os.org/" target="_blank" class="link link--external" rel="noopener">QubesOS </a>in case you really want to be protected.</li> <li data-xf-list-type="ul">Use a <a href="https://pwsafe.org/" target="_blank" class="link link--external" rel="noopener">password manager</a> encrypted with a strong passphrase. Use <a href="https://www.cs.ox.ac.uk/files/6487/pwvault.pdf" target="_blank" class="link link--external" rel="noopener">pwSafe</a>.</li> <li data-xf-list-type="ul">Use <a href="https://www.yubico.com/" target="_blank" class="link link--external" rel="noopener">two factor auth</a> in all web apps. If they don't have it, demand it (I recently wrote my bank about this... 2017 and no 2 factor auth, can you believe it?)</li> <li data-xf-list-type="ul">Don't <a href="https://www.usenix.org/legacy/event/sec08/tech/full_papers/halderman/halderman.pdf" target="_blank" class="link link--external" rel="noopener">just delete</a> your files, shred them using <a href="https://www.bleachbit.org/" target="_blank" class="link link--external" rel="noopener">Bleachbit</a>.</li> </ul>And remember two things:<br /> <ol> <li data-xf-list-type="ol">Encryption is your friend, use it. Use it for communication, for disks, for everything.</li> <li data-xf-list-type="ol">Have common sense. This is probably one of the most important things too... If you see an ad offering a free iphone, please don't click on it. Do not open any files from unknown sources. Don't rely on antivirus only (in fact, I don't even have one).</li> </ol>That's all I can think of, and that's probably almost everything I do to protect myself online.<br /> <br /> Hope it helps!</div>

McFirewavesJr · Sep 14, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 50414" data-quote="urianasi" data-source="post: 638962" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=638962" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-638962">urianasi said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> I've worked in the infosec field for some time. I really like it. After reading many books on privacy and data, technical books on computer science, white papers on the subject, and worked in some projects I gotta say that you are right: it is a big issue. And something to freak about.<br /> <br /> Let me start by saying that you can't rely only on tools if you want privacy. Tools will give you a degree of privacy, if used correctly, but it is well understood in the field that <i><a href="https://www.schneier.com/essays/archives/2000/04/the_process_of_secur.html" target="_blank" class="link link--external" rel="nofollow ugc noopener">security is a process</a></i> and not a few tools here and there. In software, flaws are inevitable, vulnerabilities exist in all programs and new ones are discovered all the time. All. The. Time.<br /> <br /> The solution to this problem is to <i>reduce the risk of exposure </i>regardless of the product. Everything we use is built by others, how do we know they are <i>trustworthy? </i>We have to <i>trust </i>someone, right? Trust is a very big word. We don't realise how important it is.<br /> <br /> Now, I don't want to over extend my post. We could fill a book on all the moral, ethical, psychological dilemmas on security. It is important to understand, though, that <a href="https://ssd.eff.org/en/module/choosing-your-tools" target="_blank" class="link link--external" rel="nofollow ugc noopener">security is a process</a>, not just the use of a tool.<br /> <br /> Here are a few practices and tools that I use in a daily basis:<br /> <ul> <li data-xf-list-type="ul">I pay for a VPN monthly. I can recommend you iVPN and Mullvad. I use <a href="https://openvpn.net/index.php/open-source.html" target="_blank" class="link link--external" rel="nofollow ugc noopener">OpenVPN </a>client.</li> <li data-xf-list-type="ul">I don't have any social network. In those services, you're the product.</li> <li data-xf-list-type="ul">I store my pictures, docs, videos, and more in a Dropox account, <b>but</b> in an encrypted container. I encrypt my data in a container first, and then upload that file. In that way, I have a backup of my data, but it is encrypted with strong algorithms.</li> <li data-xf-list-type="ul">I use a password manager that generates passwords automatically for each new account. I don't even now my password from this forum. I use pwsafe, designed by Bruce Schneier, a famous Cryptologist and Author.</li> <li data-xf-list-type="ul">I browse in Firefox with some configurations and some addons: Privacy Badger, uBlock Origin, HTTPS Everywhere, NoScript, Profile Spoofing. I use it for online purchases, or other sensitive stuff. I use Google chrome for ocassional browsing.</li> <li data-xf-list-type="ul">I use Windows for ocassional browsing and playing games. I use GNU/Linux for everything else that requires other levels of protection, such as online purchases. I fully encrypt my Linux disks.</li> <li data-xf-list-type="ul">For communications I use Whatsapp. <a href="https://www.eff.org/deeplinks/2016/10/where-whatsapp-went-wrong-effs-four-biggest-security-concerns" target="_blank" class="link link--external" rel="nofollow ugc noopener">I know, I know</a>. I would prefer to use Signal, but my family is far away and they are not tech savvy. Whatsapp implemented end-to-end encryption with the creator of Signal, so I <i>decided to trust</i> them.</li> <li data-xf-list-type="ul">This should be obvious, but I don't send any sensitive and private information through normal channels of communications.</li> <li data-xf-list-type="ul">I do use Gmail, but I also use <a href="https://tutanota.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Tutanota </a>and <a href="https://protonmail.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Protonmail</a>. Email is broken, though. The majority of the protocols on the internet like HTTP, TCP, SMTP were not designed with security in mind. Email it's fundamentally broken. If you want to communicate with other people securely, don't use email, use Signal.</li> <li data-xf-list-type="ul">I own an iOS smartphone. They <a href="https://ssd.eff.org/en/module/problem-mobile-phones" target="_blank" class="link link--external" rel="nofollow ugc noopener">are a problem</a> from a security stand point, and I know it. I use it as much as a dumbphone as I can. I have the 16GB model, and I always have more than 5gb free. Like you said <a href="https://www.thefastlaneforum.com/community/members/34741/" class="username" data-xf-init="member-tooltip" data-user-id="34741" data-username="@Fred Chevry">@Fred Chevry</a>, a dumbphone won't improve security. 2G networks are encrypted but with a <a href="https://en.wikipedia.org/wiki/A5/1" target="_blank" class="link link--external" rel="nofollow ugc noopener">very weak algorithm</a>, so they are fundamentally broken. I chose it because I consider iOS <a href="https://ssd.eff.org/en/module/how-encrypt-your-iphone" target="_blank" class="link link--external" rel="nofollow ugc noopener">more secure</a> than <a href="https://blog.torproject.org/mission-impossible-hardening-android-security-and-privacy" target="_blank" class="link link--external" rel="nofollow ugc noopener">Android</a>.</li> </ul>That's all I can think of right now. I might take other measures, but these are the most important ones. This is not bullefproof, there are some trade offs in my design, but it still considerably better than not using anything.<br /> <br /> Some recommendations for the most protection you can have?<br /> <ul> <li data-xf-list-type="ul">Use a <a href="https://www.mullvad.net/" target="_blank" class="link link--external" rel="nofollow ugc noopener">VPN </a>at all times. Don't trust your ISP provider.</li> <li data-xf-list-type="ul">Use <a href="https://signal.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Signal</a>, if possible, for instant messaging and calls. Or, <a href="https://otr.cypherpunks.ca/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Pidgin + OTR.</a></li> <li data-xf-list-type="ul">Don't use the same laptop for browsing, playing games and make purchases online. Play in a console (DO NOT DOWNLOAD PIRATED GAMES), do ocassional browsing in a computer, and online banking and purchases in another computer used ONLY for that.</li> <li data-xf-list-type="ul"><a href="https://www.veracrypt.fr/en/Home.html" target="_blank" class="link link--external" rel="nofollow ugc noopener">Encrypt your files</a> before uploading them to the cloud.</li> <li data-xf-list-type="ul">Use <a href="https://www.torproject.org/projects/torbrowser.html.en" target="_blank" class="link link--external" rel="nofollow ugc noopener">TOR Browser</a>, if possible, for private browsing.</li> <li data-xf-list-type="ul">Use <a href="https://www.gnupg.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">PGP </a>for emails. This is not bulletproof, but it's the best thing you can do with the broken SMTP protocol.</li> <li data-xf-list-type="ul">Encrypt your disks, and use <a href="https://prism-break.org/en/categories/gnu-linux/" target="_blank" class="link link--external" rel="nofollow ugc noopener">GNU/Linux</a> (Debian + LUKS). Use <a href="https://tails.boum.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Tails </a>or <a href="https://www.qubes-os.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">QubesOS </a>in case you really want to be protected.</li> <li data-xf-list-type="ul">Use a <a href="https://pwsafe.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">password manager</a> encrypted with a strong passphrase. Use <a href="https://www.cs.ox.ac.uk/files/6487/pwvault.pdf" target="_blank" class="link link--external" rel="nofollow ugc noopener">pwSafe</a>.</li> <li data-xf-list-type="ul">Use <a href="https://www.yubico.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">two factor auth</a> in all web apps. If they don't have it, demand it (I recently wrote my bank about this... 2017 and no 2 factor auth, can you believe it?)</li> <li data-xf-list-type="ul">Don't <a href="https://www.usenix.org/legacy/event/sec08/tech/full_papers/halderman/halderman.pdf" target="_blank" class="link link--external" rel="nofollow ugc noopener">just delete</a> your files, shred them using <a href="https://www.bleachbit.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Bleachbit</a>.</li> </ul>And remember two things:<br /> <ol> <li data-xf-list-type="ol">Encryption is your friend, use it. Use it for communication, for disks, for everything.</li> <li data-xf-list-type="ol">Have common sense. This is probably one of the most important things too... If you see an ad offering a free iphone, please don't click on it. Do not open any files from unknown sources. Don't rely on antivirus only (in fact, I don't even have one).</li> </ol>That's all I can think of, and that's probably almost everything I do to protect myself online.<br /> <br /> Hope it helps! </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> Epic reply. Most of your recommendations can be applied with little effort, will start working on it right now. Thanks a lot.<br /> <br /> <a href="https://www.thefastlaneforum.com/community/members/32175/" class="username" data-xf-init="member-tooltip" data-user-id="32175" data-username="@Dunkafelics">@Dunkafelics</a> It's perfectly understandable not to be worried about such issues if you are a law abiding citizen, but just like driving a car without insurance; it could go very well until it goes wrong. <br /> <br /> The age of communication is still in it's early stages, but evolving incredibly fast. What is not a concern today could become one tomorrow and at that point it will be too late to act and protect yourself. What kind of threats could we be facing?<br /> <ul> <li data-xf-list-type="ul">Crypto currency wallets theft</li> <li data-xf-list-type="ul">Online Banking...</li> <li data-xf-list-type="ul">Various Scam/Fraud</li> <li data-xf-list-type="ul">Increased insidious targeting from marketers</li> <li data-xf-list-type="ul">Could a hypothetical tyrannical government of the future profile you using private data?</li> <li data-xf-list-type="ul">Employers hiring private firms to look deeper in your life than they are supposed to?</li> <li data-xf-list-type="ul">The love of your life hiring cyber investigators to find out everything on you before your first date?</li> <li data-xf-list-type="ul">List goes on...</li> </ul>You could be very grateful TOMORROW for being preventive TODAY my friend!</div>

McFirewavesJr · Sep 15, 2017

<div class="bbWrapper"><a href="https://www.thefastlaneforum.com/community/members/50414/" class="username" data-xf-init="member-tooltip" data-user-id="50414" data-username="@urianasi">@urianasi</a> Do you have something to recommend for anti virus software?<br /> <br /> Edit: I applied most of the strategies you recommended. It took about an hour (bit bleach ran for about 4 hours lol). Google ads now displays ads in languages I can't read because of Tor<img src="/community/imgs/emoticons/em-rofl.png" class="smilie" loading="lazy" alt=":rofl:" title="ROFL :rofl:" data-shortname=":rofl:" /> and I'm fine with that.</div>

urianasi · Sep 15, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 34741" data-quote="Fred Chevry" data-source="post: 639308" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=639308" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-639308">Fred Chevry said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> <a href="https://www.thefastlaneforum.com/community/members/50414/" class="username" data-xf-init="member-tooltip" data-user-id="50414" data-username="@urianasi">@urianasi</a> Do you have something to recommend for anti virus software?<br /> <br /> Edit: I applied most of the strategies you recommended. It took about an hour (bit bleach ran for about 4 hours lol). Google ads now displays ads in languages I can't read because of Tor<img src="/community/imgs/emoticons/em-rofl.png" class="smilie" loading="lazy" alt=":rofl:" title="ROFL :rofl:" data-shortname=":rofl:" /> and I'm fine with that. </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> I don't use any antivirus. Why? Because they are not necessary... If you apply <b>common sense.</b> I mean, why will you need an antivirus if you don't allow scripts in webpages, you don't torrent, don't download any suspicious file, you don't allow macros in Word documents... They decrease system performance and usually give a <i>false sense of security.<br /> </i><br /> What do I use? A machine with a correctly configured firewall and I install updates daily.<br /> <br /> You see... The majority of the people I've met that are experts in the field of security don't use an antivirus, because they apply common sense <b>and</b> <i>they keep their software up to date. </i>I'm not even kidding. Professionals use more adblocker than an antivirus.<br /> <br /> And the last thing is that <i>antivirus detection rate is very low</i>. The problem with AV is that they usually compare new threats with existent ones, or they search for similar patterns. And although sometimes succeed, the majority of the time they don't. If the threat is new, you're basically screwed, with or without AV until you apply the patch.<br /> <br /> Antivirus Software is the best example of a program that is treated as the ultimate solution for the problem of security. You think you are safe, "that's it, I'm already protected"... Wrong. <b>Security is a process, not a tool.</b><br /> <br /> However, sometimes you need to <i>share </i>your primary machine with family. If you do, or if you want an extra layer of protection, I would recommend <a href="https://usa.kaspersky.com/" target="_blank" class="link link--external" rel="noopener">Kaspersky</a>, because experts agree that it's the one that <a href="https://www.youtube.com/watch?v=NtzZBTjKngw" target="_blank" class="link link--external" rel="noopener">is harder to bypass</a> (spoiler alert: they bypass it anyway, although it took a little longer).<br /> <br /> About your edit. That's great, you've applied some principles quickly. And you're using Tor, fantastic! (deep web? lol)... Just remember: <i>it's a process, not a tool.<br /> </i><br /> Cheers!</div>

Dislike ads? Become a Fastlane member: Subscribe today and surround yourself with winners and millionaire mentors, not those broke friends who only want to drink beer and play video games. :-)

McFirewavesJr · Sep 22, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 50414" data-quote="urianasi" data-source="post: 639440" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=639440" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-639440">urianasi said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> I don't use any antivirus. Why? Because they are not necessary... If you apply <b>common sense.</b> I mean, why will you need an antivirus if you don't allow scripts in webpages, you don't torrent, don't download any suspicious file, you don't allow macros in Word documents... They decrease system performance and usually give a <i>false sense of security.<br /> </i><br /> What do I use? A machine with a correctly configured firewall and I install updates daily.<br /> <br /> You see... The majority of the people I've met that are experts in the field of security don't use an antivirus, because they apply common sense <b>and</b> <i>they keep their software up to date. </i>I'm not even kidding. Professionals use more adblocker than an antivirus.<br /> <br /> And the last thing is that <i>antivirus detection rate is very low</i>. The problem with AV is that they usually compare new threats with existent ones, or they search for similar patterns. And although sometimes succeed, the majority of the time they don't. If the threat is new, you're basically screwed, with or without AV until you apply the patch.<br /> <br /> Antivirus Software is the best example of a program that is treated as the ultimate solution for the problem of security. You think you are safe, "that's it, I'm already protected"... Wrong. <b>Security is a process, not a tool.</b><br /> <br /> However, sometimes you need to <i>share </i>your primary machine with family. If you do, or if you want an extra layer of protection, I would recommend <a href="https://usa.kaspersky.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Kaspersky</a>, because experts agree that it's the one that <a href="https://www.youtube.com/watch?v=NtzZBTjKngw" target="_blank" class="link link--external" rel="nofollow ugc noopener">is harder to bypass</a> (spoiler alert: they bypass it anyway, although it took a little longer).<br /> <br /> About your edit. That's great, you've applied some principles quickly. And you're using Tor, fantastic! (deep web? lol)... Just remember: <i>it's a process, not a tool.<br /> </i><br /> Cheers! </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> That was my guess for anti-virus. I was just wondering what to do for an initial clean or in case I fear infection. By the way my encrypted external hard drive is my new favorite thing!<br /> <br /> Tor is great, but it definitely takes time to get used to. Leaving the google empire is not the most user friendly thing, but I'm cool with that.<br /> <br /> Could you expand on the deep web...</div>

urianasi · Sep 22, 2017

<div class="bbWrapper">Well, the thing with Tor is that I only use for real private stuff. I mean, things that I don't want other people to know. <br /> <br /> This happens rarely, but sometimes the bug bites me and I use tor, and access the famous deep web.<br /> <br /> Tor is much slower because of the proxies, you're not connecting directly to the server you're requesting. So it is not my everyday briwser. But still, is good to have it, specially to avoid tracking or acces .onion sites.<br /> <br /> The famous deep web is just that: sites that have a .onion file (like HTML) that are hosted in servers connected to the Tor network. It is famous because there are many things there considered ilegal or prohibited. Not everything, of course, but there are some rare sites like bitcoin escrow services, or the possibility to purchase false documents, rare porn and stuff like that. But like I said, there are also great sites related to privacy, papers, books, free education, interesting forums where you can have good discussions about computer security, etc.<br /> <br /> And yes, leaving google is almost impossible. I use it at work A LOT. You can't really escape, but make sure remember that their model is advertising, and If you don't want it you can block tracking, ads, use Firefox with some extensions deleting cookies and you'll be fine.<br /> <br /> Good luck!</div>

eliquid · Sep 23, 2017

<div class="bbWrapper">I've done a lot that <a href="https://www.thefastlaneforum.com/community/members/50414/" class="username" data-xf-init="member-tooltip" data-user-id="50414" data-username="@urianasi">@urianasi</a> has mentioned.<br /> <br /> One thing I've done that I've done for a long time is the use of different "machines" for different tasks which was also mentioned earlier.<br /> <br /> Example:<br /> <ol> <li data-xf-list-type="ol">I have a Macbook Pro that I only use for writing ( this is more for productivity, but also security too )<br /> </li> <li data-xf-list-type="ol">I have a desktop that ONLY gets used when I need to log into very secure sites, like my online banking or purchasing stuff online/paypal, etc</li> <li data-xf-list-type="ol">I use another desktop for browsing the web or playing games, etc.</li> </ol><br /> I've moved to using Firefox more and more now on most machines with all the privacy settings and plugins as well as Tor.<br /> <br /> I use Dropbox, but I also use BitSync ( it has a new name now, not sure I remember the new name ) and I was going to do the crypt container, but I opted for a custom script I wrote that simply 7-zips the file 3 times. 7-zip has 256 AES encryption and will modify the file names too... basically I 7-zip the file, then 7-zip that file, and 7-zip that file. Each level has its own unique password. It's a script so I just drop a file into a special folder and then all I need to do is enter in the passwords I want to use.<br /> <br /> In this manner no one at DropBox can read my files, but anyone that gets access to my Dropbox will have to crack each level of zip with its own unique password too.<br /> <br /> I've also started to use Protonmail and 2 Factor Auth.<br /> <br /> I can tell you, it can be very very cumbersome to use 2 Factor Auth. I have it tied to my cell phone ( Samsung S 4 ) which is also encrypted and having to find my cell phone, have it powered, and enter in my password to unlock it 2x ( boot and login screen ) is a bit much for me trying to handle using 2fa as a first timer just to get to the Google Authenticator app to use Amazon and other things. But that's the tradeoff for security I guess.<br /> <br /> I've done a lot more, and I am still learning daily though.</div>

loop101 · Sep 23, 2017

<div class="bbWrapper">I've looked in to Qubes OS, but have not switched permanently yet. <br /> <br /> <a href="https://www.qubes-os.org" target="_blank" class="link link--external" rel="noopener">Qubes OS: A reasonably secure operating system</a></div>

eliquid · Oct 7, 2017

<div class="bbWrapper">I built a tool in the other privacy tool thread to help me secure files easily and for free. Simple enough my mom could use it almost.<br /> <br /> <a href="https://www.thefastlaneforum.com/community/threads/take-your-computer-security-seriously-you-are-at-risk.69521/page-4#post-644357" class="link link--internal">GOLD - Take Your Computer Security Seriously! YOU Are At Risk!</a></div>

Dislike ads? Become a Fastlane member: Subscribe today and surround yourself with winners and millionaire mentors, not those broke friends who only want to drink beer and play video games. :-)

Raoul Duke · Oct 7, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 50414" data-quote="urianasi" data-source="post: 638962" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=638962" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-638962">urianasi said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> I've worked in the infosec field for some time. I really like it. After reading many books on privacy and data, technical books on computer science, white papers on the subject, and worked in some projects I gotta say that you are right: it is a big issue. And something to freak about.<br /> <br /> Let me start by saying that you can't rely only on tools if you want privacy. Tools will give you a degree of privacy, if used correctly, but it is well understood in the field that <i><a href="https://www.schneier.com/essays/archives/2000/04/the_process_of_secur.html" target="_blank" class="link link--external" rel="nofollow ugc noopener">security is a process</a></i> and not a few tools here and there. In software, flaws are inevitable, vulnerabilities exist in all programs and new ones are discovered all the time. All. The. Time.<br /> <br /> The solution to this problem is to <i>reduce the risk of exposure </i>regardless of the product. Everything we use is built by others, how do we know they are <i>trustworthy? </i>We have to <i>trust </i>someone, right? Trust is a very big word. We don't realise how important it is.<br /> <br /> Now, I don't want to over extend my post. We could fill a book on all the moral, ethical, psychological dilemmas on security. It is important to understand, though, that <a href="https://ssd.eff.org/en/module/choosing-your-tools" target="_blank" class="link link--external" rel="nofollow ugc noopener">security is a process</a>, not just the use of a tool.<br /> <br /> Here are a few practices and tools that I use in a daily basis:<br /> <ul> <li data-xf-list-type="ul">I pay for a VPN monthly. I can recommend you iVPN and Mullvad. I use <a href="https://openvpn.net/index.php/open-source.html" target="_blank" class="link link--external" rel="nofollow ugc noopener">OpenVPN </a>client.</li> <li data-xf-list-type="ul">I don't have any social network. In those services, you're the product.</li> <li data-xf-list-type="ul">I store my pictures, docs, videos, and more in a Dropox account, <b>but</b> in an encrypted container. I encrypt my data in a container first, and then upload that file. In that way, I have a backup of my data, but it is encrypted with strong algorithms.</li> <li data-xf-list-type="ul">I use a password manager that generates passwords automatically for each new account. I don't even now my password from this forum. I use pwsafe, designed by Bruce Schneier, a famous Cryptologist and Author.</li> <li data-xf-list-type="ul">I browse in Firefox with some configurations and some addons: Privacy Badger, uBlock Origin, HTTPS Everywhere, NoScript, Profile Spoofing. I use it for online purchases, or other sensitive stuff. I use Google chrome for ocassional browsing.</li> <li data-xf-list-type="ul">I use Windows for ocassional browsing and playing games. I use GNU/Linux for everything else that requires other levels of protection, such as online purchases. I fully encrypt my Linux disks.</li> <li data-xf-list-type="ul">For communications I use Whatsapp. <a href="https://www.eff.org/deeplinks/2016/10/where-whatsapp-went-wrong-effs-four-biggest-security-concerns" target="_blank" class="link link--external" rel="nofollow ugc noopener">I know, I know</a>. I would prefer to use Signal, but my family is far away and they are not tech savvy. Whatsapp implemented end-to-end encryption with the creator of Signal, so I <i>decided to trust</i> them.</li> <li data-xf-list-type="ul">This should be obvious, but I don't send any sensitive and private information through normal channels of communications.</li> <li data-xf-list-type="ul">I do use Gmail, but I also use <a href="https://tutanota.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Tutanota </a>and <a href="https://protonmail.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Protonmail</a>. Email is broken, though. The majority of the protocols on the internet like HTTP, TCP, SMTP were not designed with security in mind. Email it's fundamentally broken. If you want to communicate with other people securely, don't use email, use Signal.</li> <li data-xf-list-type="ul">I own an iOS smartphone. They <a href="https://ssd.eff.org/en/module/problem-mobile-phones" target="_blank" class="link link--external" rel="nofollow ugc noopener">are a problem</a> from a security stand point, and I know it. I use it as much as a dumbphone as I can. I have the 16GB model, and I always have more than 5gb free. Like you said <a href="https://www.thefastlaneforum.com/community/members/34741/" class="username" data-xf-init="member-tooltip" data-user-id="34741" data-username="@Fred Chevry">@Fred Chevry</a>, a dumbphone won't improve security. 2G networks are encrypted but with a <a href="https://en.wikipedia.org/wiki/A5/1" target="_blank" class="link link--external" rel="nofollow ugc noopener">very weak algorithm</a>, so they are fundamentally broken. I chose it because I consider iOS <a href="https://ssd.eff.org/en/module/how-encrypt-your-iphone" target="_blank" class="link link--external" rel="nofollow ugc noopener">more secure</a> than <a href="https://blog.torproject.org/mission-impossible-hardening-android-security-and-privacy" target="_blank" class="link link--external" rel="nofollow ugc noopener">Android</a>.</li> </ul>That's all I can think of right now. I might take other measures, but these are the most important ones. This is not bullefproof, there are some trade offs in my design, but it still considerably better than not using anything.<br /> <br /> Some recommendations for the most protection you can have?<br /> <ul> <li data-xf-list-type="ul">Use a <a href="https://www.mullvad.net/" target="_blank" class="link link--external" rel="nofollow ugc noopener">VPN </a>at all times. Don't trust your ISP provider.</li> <li data-xf-list-type="ul">Use <a href="https://signal.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Signal</a>, if possible, for instant messaging and calls. Or, <a href="https://otr.cypherpunks.ca/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Pidgin + OTR.</a></li> <li data-xf-list-type="ul">Don't use the same laptop for browsing, playing games and make purchases online. Play in a console (DO NOT DOWNLOAD PIRATED GAMES), do ocassional browsing in a computer, and online banking and purchases in another computer used ONLY for that.</li> <li data-xf-list-type="ul"><a href="https://www.veracrypt.fr/en/Home.html" target="_blank" class="link link--external" rel="nofollow ugc noopener">Encrypt your files</a> before uploading them to the cloud.</li> <li data-xf-list-type="ul">Use <a href="https://www.torproject.org/projects/torbrowser.html.en" target="_blank" class="link link--external" rel="nofollow ugc noopener">TOR Browser</a>, if possible, for private browsing.</li> <li data-xf-list-type="ul">Use <a href="https://www.gnupg.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">PGP </a>for emails. This is not bulletproof, but it's the best thing you can do with the broken SMTP protocol.</li> <li data-xf-list-type="ul">Encrypt your disks, and use <a href="https://prism-break.org/en/categories/gnu-linux/" target="_blank" class="link link--external" rel="nofollow ugc noopener">GNU/Linux</a> (Debian + LUKS). Use <a href="https://tails.boum.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Tails </a>or <a href="https://www.qubes-os.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">QubesOS </a>in case you really want to be protected.</li> <li data-xf-list-type="ul">Use a <a href="https://pwsafe.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">password manager</a> encrypted with a strong passphrase. Use <a href="https://www.cs.ox.ac.uk/files/6487/pwvault.pdf" target="_blank" class="link link--external" rel="nofollow ugc noopener">pwSafe</a>.</li> <li data-xf-list-type="ul">Use <a href="https://www.yubico.com/" target="_blank" class="link link--external" rel="nofollow ugc noopener">two factor auth</a> in all web apps. If they don't have it, demand it (I recently wrote my bank about this... 2017 and no 2 factor auth, can you believe it?)</li> <li data-xf-list-type="ul">Don't <a href="https://www.usenix.org/legacy/event/sec08/tech/full_papers/halderman/halderman.pdf" target="_blank" class="link link--external" rel="nofollow ugc noopener">just delete</a> your files, shred them using <a href="https://www.bleachbit.org/" target="_blank" class="link link--external" rel="nofollow ugc noopener">Bleachbit</a>.</li> </ul>And remember two things:<br /> <ol> <li data-xf-list-type="ol">Encryption is your friend, use it. Use it for communication, for disks, for everything.</li> <li data-xf-list-type="ol">Have common sense. This is probably one of the most important things too... If you see an ad offering a free iphone, please don't click on it. Do not open any files from unknown sources. Don't rely on antivirus only (in fact, I don't even have one).</li> </ol>That's all I can think of, and that's probably almost everything I do to protect myself online.<br /> <br /> Hope it helps! </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> Could I use Kali, in a way to find holes in my security? Not great for a daily OS though.</div>

rogue synthetic · Oct 7, 2017

<div class="bbWrapper">Great advice here from <a href="https://www.thefastlaneforum.com/community/members/50414/" class="username" data-xf-init="member-tooltip" data-user-id="50414" data-username="@urianasi">@urianasi</a> and <a href="https://www.thefastlaneforum.com/community/members/16090/" class="username" data-xf-init="member-tooltip" data-user-id="16090" data-username="@eliquid">@eliquid</a> <br /> <br /> I used to be much more paranoid about security, especially with regard to disk encryption and tunneling HTTP traffic. These days I'm less worried about it, not because the issues have changed but because using Truecrypt volumes and having to keep passphrases for three layers of EncFS partitions was past the point of diminishing returns for me. Even using password manager it just became too tedious, and hell if the NSA wants my stuff they're going to get it one way or another. <br /> <br /> These days I'm in 80/20 mode on security. I do enough to deter the casual script-kiddies and drive-by Russians without making daily use painful. <br /> <br /> I've only got the one desktop using Linux, with some Windows virtual box images I can fire up if need be. I keep Tails on a thumb drive in case of emergency. (Qubes is downright amazing but I'm still scared of it.) I do keep strong passwords/phrases on all my accounts, and use 2-factor wherever it's available. That's just good sense.<br /> <br /> I use Firefox with uMatrix + uBlock Origin, tweaked to block the main offenders without making sites unusable. I've got Chromium and Vivaldi here as backups, though I barely use them and for nothing more than basic browsing.<br /> <br /> I use an Android smartphone, but this is only because I loathe Apple. Since I'm an old luddite, I don't have any social media accounts to speak of, and I don't have anything secure on the phone anyway. I only switched to it from "analog" in the last year and it's mainly for taking pics of my kids. <br /> <br /> I suppose if I were doing any "serious" work that involved the internet I'd add a VPN and use Tor more than I already do. I do agree with getting away from Gmail and the google ecosystem. Despite having an old gmail "main" account, I have backups on Tuta and Protonmail. <br /> <br /> But my policy on this shows my age. I'm still in 90s mode, where you didn't put anything on the internet if you didn't expect it to turn up in the news. I don't suppose that's practical in a lot of ways now, but thinking that way and acting on it as much as is feasible can save a lot of headaches in the Age of Instagram.</div>

eliquid · Oct 7, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 50026" data-quote="rogue synthetic" data-source="post: 644363" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=644363" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-644363">rogue synthetic said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> Great advice here from <a href="https://www.thefastlaneforum.com/community/members/50414/" class="username" data-xf-init="member-tooltip" data-user-id="50414" data-username="@urianasi">@urianasi</a> and <a href="https://www.thefastlaneforum.com/community/members/16090/" class="username" data-xf-init="member-tooltip" data-user-id="16090" data-username="@eliquid">@eliquid</a><br /> <br /> I used to be much more paranoid about security, especially with regard to disk encryption and tunneling HTTP traffic. These days I'm less worried about it, not because the issues have changed but because using Truecrypt volumes and having to keep passphrases for three layers of EncFS partitions was past the point of diminishing returns for me. Even using password manager it just became too tedious, and hell if the NSA wants my stuff they're going to get it one way or another.<br /> <br /> These days I'm in 80/20 mode on security. I do enough to deter the casual script-kiddies and drive-by Russians without making daily use painful.<br /> <br /> I've only got the one desktop using Linux, with some Windows virtual box images I can fire up if need be. I keep Tails on a thumb drive in case of emergency. (Qubes is downright amazing but I'm still scared of it.) I do keep strong passwords/phrases on all my accounts, and use 2-factor wherever it's available. That's just good sense.<br /> <br /> I use Firefox with uMatrix + uBlock Origin, tweaked to block the main offenders without making sites unusable. I've got Chromium and Vivaldi here as backups, though I barely use them and for nothing more than basic browsing.<br /> <br /> I use an Android smartphone, but this is only because I loathe Apple. Since I'm an old luddite, I don't have any social media accounts to speak of, and I don't have anything secure on the phone anyway. I only switched to it from "analog" in the last year and it's mainly for taking pics of my kids.<br /> <br /> I suppose if I were doing any "serious" work that involved the internet I'd add a VPN and use Tor more than I already do. I do agree with getting away from Gmail and the google ecosystem. Despite having an old gmail "main" account, I have backups on Tuta and Protonmail.<br /> <br /> But my policy on this shows my age. I'm still in 90s mode, where you didn't put anything on the internet if you didn't expect it to turn up in the news. I don't suppose that's practical in a lot of ways now, but thinking that way and acting on it as much as is feasible can save a lot of headaches in the Age of Instagram. </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> I share a lot of your thoughts.<br /> <br /> I'm not worried about the NSA or some alphabet gov agency.<br /> <br /> I'm more worried about bank accounts, client information, customer data, my kids info, etc in the hands of some russian hacker or ID thief who could then sell it off to other people later or use the data in some unexpectant way.<br /> <br /> Past that, I do get worried about being integrated too much in the Apple or Google or Microsoft ecosystem. AKA, having a lot of my "info eggs" in one basket so I do tend to move away from being integrated too much in those systems if possible. For example, I don't use Apple Pay and other systems where my data/info is stored in what I consider a "big target" other that what I just have to have on file min.<br /> <br /> .</div>

urianasi · Oct 7, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 38282" data-quote="Raoul Duke" data-source="post: 644360" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=644360" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-644360">Raoul Duke said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> Could I use Kali, in a way to find holes in my security? Not great for a daily OS though. </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> If you want to use it to find holes, yes you can. I use it from time to time to scan my networks and stuff.<br /> <br /> However, some handy tools are available to download for any Linux distribution, like nmap for instance. If you use Linux, just install the tools you want and that's it. Kali has a bunch of them, and some of them you probably won't even use once.</div>

urianasi · Oct 7, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 50026" data-quote="rogue synthetic" data-source="post: 644363" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=644363" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-644363">rogue synthetic said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> I used to be much more paranoid about security, especially with regard to disk encryption and tunneling HTTP traffic. These days I'm less worried about it, not because the issues have changed but because using Truecrypt volumes and having to keep passphrases for three layers of EncFS partitions was past the point of diminishing returns for me. Even using password manager it just became too tedious, and hell if the NSA wants my stuff they're going to get it one way or another. </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote><br /> Ah, yeah... The old problem between usability and security. <br /> <br /> Sometimes it makes all things take longer or more difficult...</div>

Dislike ads? Become a Fastlane member: Subscribe today and surround yourself with winners and millionaire mentors, not those broke friends who only want to drink beer and play video games. :-)

WildFlower · Oct 8, 2017

Have a great day!

McFirewavesJr · Oct 9, 2017

<div class="bbWrapper"><blockquote data-attributes="member: 2722" data-quote="WildFlower" data-source="post: 644419" class="bbCodeBlock bbCodeBlock--expandable bbCodeBlock--quote js-expandWatch"> <div class="bbCodeBlock-title"> <a href="/community/goto/post?id=644419" class="bbCodeBlock-sourceJump" rel="nofollow" data-xf-click="attribution" data-content-selector="#post-644419">WildFlower said:</a> </div> <div class="bbCodeBlock-content"> <div class="bbCodeBlock-expandContent js-expandContent "> I keep aluminum foil in the car in case I need to disappear. <img src="/community/imgs/emoticons/em-wink.png" class="smilie" loading="lazy" alt=";)" title="Wink ;)" data-shortname=";)" /> and it's not for a hat! ;P </div> <div class="bbCodeBlock-expandLink js-expandLink"><a role="button" tabindex="0">Click to expand...</a></div> </div> </blockquote>TUrning your phone in a baked potato?</div>

WildFlower · Oct 9, 2017

Have a great day!

Mckenzie · Mar 30, 2018

SUSCEPTIBILITY: "Fear of ill health breaks down Nature's body resistance, and creates a favorable condition for any form of disease one may contact." Napoleon Hill

Mckenzie · Mar 30, 2018

SUSCEPTIBILITY: "Fear of ill health breaks down Nature's body resistance, and creates a favorable condition for any form of disease one may contact." Napoleon Hill

What's your privacy setup?

Welcome to the only entrepreneur forum dedicated to building life-changing wealth.

Build a Fastlane business. Earn real financial freedom. Live your best life.

Tired of paying for dead communities hosted by absent gurus who don't have time for you?

Regular Contributor

Regular Contributor

New Contributor

Regular Contributor

Regular Contributor

New Contributor

Regular Contributor

New Contributor

Gold Contributor

Bronze Contributor

Gold Contributor

Silver Contributor

Bronze Contributor

Gold Contributor

New Contributor

New Contributor

Regular Contributor

Regular Contributor

Regular Contributor

Regular Contributor

Regular Contributor

Navigation Shortcuts

Welcome to an Entrepreneurial Revolution

Follow MJ DeMarco

Fastlane Resources

Get The Books that Change Lives...