>Accidentally click in one website >The website has a

>>61351170
I use NoScript, and have never had this issue.

>>61351170

You fucked up using a browser that supports JS and other exploitable features. This has nothing to do with antivirus.

>>61351170
>I use FireJail
>I use NoScript
>I use Ublock Origin
>I use Flash Control (blocks flash and HTML5)

I'd be real interested to hear how the situation you described would manage to find success with these things installed.

>>61351215
>You fucked up using an OS that can easily be fucked over by a fucking browser and other exploitable features. This has nothing to do with browsers.
And fixed.

>>61351215
eset detects exploits in js

>>61351229
Not running js prevents exploits in js.

>>61351224
>blocks flash and HTML5
which extension?

>>61351170
>be on shady site withour protection
>be on a shady site in the first place
>complain on /g/ about my own stupitidy

t. OP

>>61351253
how do you browse 4chan with js disabled?

>>61351280
I literally told you. It's called Flash Control. You can override it by clicking on an icon that appears, showing you that Flash/HTML5 has been blocked.

>>61351283
Doesn't even matter. I'll go to any site someone wants to post. With FireJail and the right addons, you're bulletproof.

>>61351319
>he thinks extensions is better than using a decent OS

>>61351329
You have to have a decent OS in order to use Firejail. The decent OS was implied.

>>61351170
You still had to click something. You saw the 'x' button wasn't a real 'x' button and you still clicked it. An antivirus wouldn't stop that since you technically clicked to install it. Alt+F4, or just shutting down the computer would've been better.

>>61351343
what is the difference of using gentoo firefox and gentoo + firejail firefox?

>>61351319
go to these

* 17ebook.co
* aladel.net
* bpwhamburgorchardpark.org
* clicnews.com
* dfwdiesel.net
* divineenterprises.net
* fantasticfilms.ru
* gardensrestaurantandcatering.com
* ginedis.com
* gncr.org
* hdvideoforums.org
* hihanin.com
* kingfamilyphotoalbum.com
* likaraoke.com
* mactep.org
* magic4you.nu
* marbling.pe.kr
* nacjalneg.info
* pronline.ru
* purplehoodie.com
* qsng.cn
* seksburada.net
* sportsmansclub.net
* stock888.cn
* tathli.com
* teamclouds.com
* texaswhitetailfever.com
* wadefamilytree.org
* xnescat.info
* yt118.com

>>61351360
Firejail limits where FF can access files (including saving shit).

>>61351361
I'll take a screencap of whatever you feel the worst site you listed is. Which one would you like?

>>61351395
wouldn't be better to use privacy badger instead of firejail?

>>61351292
By excluding it

>>61351395
i don't know any of these, it's just a list of results from the google search "most virus infected webistes"

pick one.

>my common sense 2017 blocks the pages.

File: nice try.png (149KB, 1366x768px) Image search: [Google]

149KB, 1366x768px

>>61351395
Think you replied to the wrong guy.
>>61351361
Here you go.

>>61351405
then what's the point of using js blocker if you allow js to run?

>>61351402
Why not both?

>>61351415
nice.
Linux bro-fist.

>>61351417
Selectively excluding which sites you automatically block is completely different from allowing all sites by default.

File: 1483318699157.png (127KB, 601x508px) Image search: [Google]

127KB, 601x508px

>>61351417
>then what's the point of using js blocker if you allow js to run?

>>61351415
>Mint
>he didn't move to Devuan
>he is using a system with bloatware and adware
>he is not using default Ubuntu
>he is not using Linux Lite
>He is not using superior Chakra OS

>>61351448
That is correct. I'm happy with what I have. I'm sorry my choice bothers you.

>>61351225
Yes he should be using one with them built in like Linux.

>>61351456
On a serious question here, can you get malware or spyware using default firefox with simply adblocker on linux or do you actually need firejail/noscript ?

>>61351484
Of course you can. I mean, the fact that you need a sudo password to install pretty much anything should stop most shit, but that doesn't mean that you're in the clear and shouldn't protect yourself.

Firejail is literally so fucking easy to install and forget about, there's literally no excuse. You would do well to use a user agent spoofer, too (I just set it to the Windows version of the highest FF version they offer). NoScript is kind of a pain at first, but once you figure out what to allow on the sites you visit the most, it becomes less and less of a hindrance as time goes on.

>>61351484
Were you unaware of Heartbleed's existence?

>>61351532
i thought the linux kernel wasn't affected by it

>>61351549
http://www.unixarena.com/2014/04/openssl-heartbleed-bug-solaris-linux.html

>>61351549
If you aren't going to stay aware of threats, you had better use NoScript and firejail..

>>61351562
fair enough but red hat is literally the windows version of Linux
in the past 3 years I only used Chakra OS, Ubuntu and now Devuan
>>61351594
I'll have to learn how to set up firejail first

>>61351602
No, you don't.
https://sites.google.com/site/easylinuxtipsproject/sandbox#TOC-Install-Firejail

File: how to firejail.png (155KB, 1366x768px) Image search: [Google]

155KB, 1366x768px

>>61351602
>I'll have to learn how to set up firejail first
If you have it installed, here's all you need to do.

>>61351630
after I launch where will firejail save the browse settings?

>>61351649
If you're talking about FF settings, it won't. Make sure your settings are what you want them to be BEFORE switching over to Firejail, as it will revert to the last settings you had BEFORE going to Firejail.

File: FrontPageAnimation.gif (30KB, 444x283px) Image search: [Google]

30KB, 444x283px

>>61351170
If you must browse the Web on old Windows, OP, there is a correct, completion solution for securing your browser, and it is called Sandboxie.You won't need to plug security holes with NoScript if you use it. Everything else is a half measure and a kluge. https://www.sandboxie.com/

>>61351667
So it will use /etc/firejail/firefox/ instead of /etc/firefox/ ?
Sorry to ask but I don't understand why firejail will prevent data access to kernel

>>61351646
Or terminal

nohup firejail firefox &

File: firejail limits.png (185KB, 1366x768px) Image search: [Google]

185KB, 1366x768px

>>61351682
Firejail is a sandbox. It limits absolutely all downloads, etc, to the Downloads folder in Mint (to give an example using the OS I'm most familiar with). You can also only upload files from your downloads folder

>>61351510
CVE-2016-5195 shows how long major security flaws tend to stay in the linux core thanks to the TLAs. The fact it's open source also gives a fantastic illusion of security to users, "if the code is open source people will audit it, not me though I'll just run it"

>>61351700
or ln firejail as firefox in /usr/local/bin

>>61351714
At least Linux allows you to see the vulnerabilities, which can allow you to either fix them, or make an effort to avoid said exploits. Windows and Mac do not.

>>61351710
so by default Firejail will only work in the downloads folder? it will never save any setting to the /etc/ folder? how about bookmarks?

>>61351742
If you are wondering about what Firejail does the website I linked you earlier will do a better job explaining it to your satisfaction. I'd copy it, but it's 2300 characters.

https://sites.google.com/site/easylinuxtipsproject/sandbox#TOC-Why-the-sandbox-of-Firejail-is-useful

>>61351760
I asked about bookmarks because firefox saves in the settings file too I was wondering if the changes made using firejail will be permanent regarding the settings config file or it's simply coping Firefox previous settings and starting a fresh ''sandbox'' in every start

>>61351771
Your bookmarks will be saved.

>>61351786
thanks I'll give it a try in a few hours cos now I'm using a shit laptop with windows

all the regulars use gnu/linux, where you can use an antivirus but it isn't really needed unless you're hosting files for strangers. if you are gonna listen to some /g/ advice, listen to all of it.

>>61351224
A hidden service on tor literally owned my tor browser which had its security slider at high. The browser wouldn't close until I killed the internet connection. CIA will get to you regardless, fucking retarded script kiddies.

>>61351883
Tor allows javascript by default, dumbass.

>>61351732
So do you read the code before installing? If so you are doing a shit job as the average security flaw is active for 5 years in Linux significantly longer than Windows.

>>61351899
Read nigger

>>61351922
The average security flaw is active forever in Windows. There are literally hundreds of flaws that Microsoft has stated that they will not patch flaws.

A single security flaw never being patched instantly shoots the average up to infinity.

>>61351931
Even with the security slider at high, Tor still allows Javascript by default. Disabling Javascript requires unchecking a box.

>>61351949
No it automatically kills the JavaScript when you set it to high.

File: 2489614.png (209KB, 390x390px) Image search: [Google]

209KB, 390x390px

>>61351361
>texaswhitetailfever

>>61351939
Trumptards actually believe this. In reality. The average windows flaw security flaw is patched in 150 days, less than 1/10th of the time Linux security issues take to be patches.

>>61351953
Pretty sure it just makes Javascript "click to enable," on high. Sounds like you clicked on something you shouldn't have.

http://news.softpedia.com/news/Microsoft-Details-the-Windows-XP-Flaw-It-Will-Never-Fix-440010.shtml

Even if they patched one billion security flaws in 0 seconds, except for that one, the average shoots to infinity, because infinity divided by 1,000,000,001 is still infinity.

>>61351996
Also meant for: >>61351982

>>61351939
>There are literally hundreds of flaws that Microsoft has stated that they will not patch flaws.

Name 5 and link us to the CVE for each.

>>61351996
Nope. JavaScript was disabled the whole time.

File: ebin post, friendo.jpg (8KB, 265x265px) Image search: [Google]

8KB, 265x265px

>>61351170
> Windows XP
Common Sense 2017 update when?

>>61352013
why would you install microsoft patches? Just use windows 7 with anti virus + ublock + noscript
>>61352020
Tor is broken by design

https://www.srware.net/en/software_srware_iron_chrome_vs_iron.php

>>61352020
Then feel free to explain how it happened.

>>61352020
Link the website, and I'll go there. Not joking.

>>61352013
No need. I only need to list one, and the average shoots to infinity. I already listed one.

will Firejail block access to root when running firefox?

let's say I run

firejail firefox

do I need to set up anything?

>>61352094
Firejail will not block access to root. What Firejail will do is block access to your user folders, excepting Downloads. It doesn't block root because root modifications still require your sudo password.

>>61352121
going back to a few questions earlier, when I save a bookmark using firejail firefox where will this setting be saved at? /downloads?
I read in the distrowatch review that
"firejail can disable a process's ability to gain access to the root account''
how do I do that?

>>61352141
Not who was advising you earlier. I don't know, and I don't know.

File: file.jpg (70KB, 888x583px) Image search: [Google]

70KB, 888x583px

>>61352152
No problem
For what I could read the one graphical version of firejail shows that root is disabled when running firefox

>>61351224
>FireJail
exploitable over dbus :(

File: 1495470272004.webm (2MB, 1116x768px) Image search: [Google]

2MB, 1116x768px

>>61351361
Went to them all with uBlock Origin and uMatrix disabled. What now?

File: 1251807128457.jpg (3KB, 100x124px) Image search: [Google]

3KB, 100x124px

>>61352515
i can't believe you've done this

>>61352094
The default profile for Firefox will prevent Firefox from obtaining root privileges and I do believe su and sudo are blacklisted so it can't use them either. Now of course, there could be an exploit that makes it possible for an application running in Firejail to obtain root privileges.

>>61352290
>rmenv=DBUS_SESSION_BUS_ADDRESS
doesn't seem to work but
>env DBUS_SESSION_BUS_ADDRESS=/dev/null
should do the job?

>>61351170
>Accidentally

So, forgot to use Common Sense 2017

>>61352515
I see you use common sense 2017 OS, tough.
Best protection confirmed.

>shady pop-up opens on browser
>don't click X button
>open Dev Tools, find lightbox + pop-up element
>set CSS to display:none;
>carry on

>>61352638
but its overwriteable ?
the corresponding github issue states only net=none solves the problem

>>61351170
>The website has a built-in pop up you can't close
Stopped reading. Install uBlock Origin at the very least, you retard.

>>61351170
>The website has a built-in pop up you can't close
What did they mean by this?

>>61353270
>>61353191
It happens all the time on sites like putlocker, it opens another tab whenever you hit play on the video. Adblockers do nothing and it can even prevent you from accessing task manager

>>61352705
These pop ups are more malicious and scream 'YOU HAVE A VIRUS' and literally prevent you from closing anything. Removing laptop battery has been my only solution.

>>61351170
>on windows
>not using anti virus
kek

>>61353191
>>61353270
>Trusting an extensions to block things for you
do you realize they don't update them often and plug-ins are not 100% reliable?
Also when you click in the own browser exit Chrome usually says
"Are you sure you want to close?" and if you click yes the spyware will install regardless if you press ALT+F4

>>61351448
>Devuan
>Linux "Lite"
>Chakra OS
Nice troll

>>61351170
>letting scripts run in your browser

>>61351771
It depends on how you set it up. By default the .mozilla folder (and indeed the Downloads folder) will be available, which is where all settings etc are saved. You can limit folder access to your liking though.

>>61351646
or just run firecfg, which placed symlinks to firejail in /usr/local/bin, effectively overriding "firefox" with firejail (and anything else with a profile)

>>61351742
it uses per-application profiles to determine what is and is not allowed
you can allow your browser access to other things, like for example, i allow my browser to access my reactions folder, which isn't under downloads

>>61353388
what's wrong with those OS? they are all use stable kernel

>>61353500
>i allow my browser to access my reactions folder, which isn't under downloads
did you set up this in the command line?

>>61353533
firejail provides a means to adjust the profiles it comes with in a way that won't be clobbered by updates, using <profile>.local, which is read before the main profile
put your modifications in there, such as;

whitelist <path to reactions folder>

>>61352952
net=none isn't really an option for your web browser. I noticed I fucked up before, there shouldn't be an equal sign after rmenv since I was putting it in the profile. So putting this should at least be better than nothing, I doubt most exploits will bother with setting the environment variable before launching the exploit and even then it won't be able to access dbus.

rmenv DBUS_SESSION_BUS_ADDRESS
blacklist /usr/bin/dbus*

>2010+7
>still using NoScript
I thought everyone moved on to uMatrix

>>61353586

thanks

File: 1467824733988.gif (73KB, 129x150px) Image search: [Google]

73KB, 129x150px

>>61353930
I use both

>>61351170
NoScript stops all forms of clickjacking.

ignorant be thee

>>61351224
Have there been HTML5 exploits?

Besides WebGL fingerprinting, obviously.

File: 1316130629202.jpg (19KB, 525x521px) Image search: [Google]

19KB, 525x521px

>>61351410
>>61352030
>>61352666
>>61352687
Is there an official site?

TL;DR: Ubuntu + firejail?

>>61354772
file:///

>>61351170
>Alt + F4
>Ctrl + W
You did this to yourself.

>>61351170

windows defender and common sense 1.0 is all you need

File: 29356983265.png (85KB, 500x430px) Image search: [Google]

85KB, 500x430px

>>61351170

>Accidentally click in one website

Maybe you just shouldn't be fucking autistic. What kind of retard "accidentally clicks onto a website?"

>>61351960
May I respectfully ask you what the fuck is that?

File: .....jpg (39KB, 489x391px) Image search: [Google]

39KB, 489x391px

>>61351361
i just clicked every single on of these, opened them all in tabs on windows 10 chrome

nothing happened except 100% CPU utilization.

>been using 36 for almost a year
>browse all kind of shady chink and russian porn sites
>have had the occasional pop up slip by and the are you sure you want to exit? dialog
Fuck now im really paranoid, nothing strange so far, cpu usage is low when it should but still.

>>61359021
You went too far. This isn't even you posting any more. You have been replicated. Nice try.

MS-DOS doesn't have this problem