Internet Safety

Part Two – The Email Plan.

3 Comments Posted on by Snoskred
Email is important.

In this day and age, it is one major way that we keep in touch with each other. If you have never received a spam or scam email, you are extremely lucky. Imagine trying to wade through hundreds of spam trying to find the important emails you need to read. It happens every day to people who aren’t expecting it. Here’s a screenshot from one of my now abandoned email accounts –

spam

So what do you do when you are bombarded with spam? You don’t really have much choice but to open a new email account and start again. It’s very frustrating and extremely annoying not to mention time consuming. But spam is only an annoyance. Scam can lose you money, and there’s so many of them on the internet it is virtually impossible to keep up to date on the latest scams which are out there.

Why have an email plan? Because if you only have one email account, and that gets bombarded with spam and scam mails, it can be a real pain in the rear. So how does it work? It will seem complicated but it is actually very simple.

Basically you make one central gmail account. Let’s call it Snoskred1, for example. This email address is NEVER given to anyone. Nobody. Not even your closest family. Why? Because you can’t trust them. Trust me on that. ;)

Then you make an email account that you use for signing up for things on the internet. Let’s call it Snoskred2. It’s handy to have all that in one place for many reasons. You can’t trust any place on the internet to keep your email address to themselves because they earn money for selling email addresses and it is impossible to know which places will do that, and which places won’t, so it is easier just to treat them all as if they’re going to sell your email address.

However, you *can* trace how people got your email address by using another great gmail trick. There is a feature in GMail where you can add a + to the address and it will get to your email address. So if you sign up to an internet forum, you can put the name of the forum into the actual email address itself, exactly like this – snoskred2+forumname@gmail.com – which means if you start to get spam on that email address, you then know where the spammers got your email address from. And it does work, I have tested it.

Gmail allows you to forward mail to another account, so you simply forward Snoskred2 to Snoskred1. *ALL* mail sent to Snoskred2 will be forwarded except for mail gmail thinks is spam – and most of the time gmail gets it right. It’s as easy as putting in an email address.

So then you make an email address which you give to friends and family. Let’s call it Snoskred3. But these are your friends and family, and surely they won’t give your email address to spammers and scammers, right? Wrong. How many times have you got a mail from them with FWD in the title? If you look closely at that mail, you’ll probably see a bunch of email addresses in the CC field.

There are companies on the internet which try to trick your friends and family into giving out your email address by giving them a free Ipod for every 10 email addresses of friends and family that they “refer” – though they never give them the Ipod. And if your friends and family sign up for a new service, they are offered the option to let others know about it by email, which puts your email address out there and at risk.

Again, you can use the gmail trick to trace which of your friends and family are giving out your email address – snoskred3+friendname@gmail.com – and if you start to get spam to that email address you’ll know, next time don’t give them your email address. ;)

Gmail allows you to forward mail to another account, so you simply forward Snoskred3 to Snoskred1. *ALL* mail sent to Snoskred3 will be forwarded except for mail gmail thinks is spam – and most of the time gmail gets it right. It’s as easy as putting in an email address.

So by now you’re probably starting to get the idea but you’re still not sure why we’re doing this? Because if snoskred3 gets bombarded with spam, you turn the forwarding to snoskred1 off, and then you’re back to a spam free email account. You can make a new snoskred3 account which you personally give to the friends and family who didn’t give your address to scammers, forward that one to snoskred1, and once a week or so manually log in to check the old snoskred3 account to make sure you aren’t missing any important mail.

I recommend having two more email accounts, one for official stuff, one for work colleagues and acquaintances, but it’s up to you.

Confused yet? I hope not. ;) I’ll post this and you can let me know if you found it too confusing, I’ll try again. ;) But also have a look at this chart, and if you understand that you can turn any of the pink arrows off anytime you like then this post may make more sense. ;)

emailplan

email safety, Internet Safety

Internet Safety Part One.

6 Comments Posted on by Snoskred

Em from Three Times Three had a little scare the other day, and it’s inspired me to write some blogs on internet security. I thought rather than trying to cover everything in one day, I’d do a week’s worth – your basic guide to keeping safe on the internet. So to start with, a little info about me and how I know anything at all about internet safety.

I’ve been on the Internet since 1992, in fact before the internet was as you know it. When I first got onto the net, I knew a girl who was “stalked” before stalking became popular. She made the mistake of using her real full name on a bulletin board. A guy took her real full name and found out where she lived, and turned up on her doorstep. Lucky for her nothing serious happened because of it, but it taught me right from the word go, the most important rule of being on the internet.

NEVER EVER USE YOUR REAL LAST NAME.

This is majorly important. You can be traced, even if you do not have your last name listed in the phone book. There are many ways it can be done and there are even companies on the internet who sell information about people, especially in the USA.

I started out using my first name and a made up last name. As time went on, I decided that even though my first name was the same as millions of other people, if I am going to use an alias on the internet I might as well choose another first name. After all, your parents choose that for you and nobody is ever really happy with it, so why not use the first name you’ve always longed to have?

There’s some other really basic important rules which I follow, so let’s cover them off right away.

1. Don’t give out any information about yourself on the internet. This includes phone number, address, shoe size, bank account details, social security number, passport information, car registration, anything which could be traced back to you or could be used to “steal” your identity.

2. Passwords are majorly important. Use lots of them. Write them down in a book.

If you use one password for everything, and your password is stolen, whoever stole it now has access to everything you signed up for on the internet. How often do passwords get stolen? A fair bit actually. There are scammers on the internet who “phish” for passwords. Many internet cafes have programs running on them which send your password to criminals. Have you ever used an internet cafe to check your email?

Not only that, but most people on the internet *join* things like forums, websites, blogs, all kinds of things. You don’t always know who has access to the information you put in when you register on a forum. For example, phpbb is one popular type of internet forum. It is also full of security holes and many such forums show your passwords to the *owner* of the forums. If you use the same password for a forum as you do for your email which you signed up with, you’ve just given someone the password to your email account.

Whoa, right? Yeah I bet you never thought of that. So how to fix it? Step one is change the password to your main email account ASAP, to something you haven’t used anywhere before. Step two is a bit more painful – the changing of *all* your passwords on forums and websites, and your blog, etc. Just take them one at a time.

3. Don’t use your internet service provider email account on the internet. There are plenty of free email providers, make use of those. Have one password for your ISP account and DO NOT DO NOT DO NOT EVER use that password for anything else on the internet.

This one is a biggie for me. Your ISP email account – ISP is how you connect to the internet, so it will end with the name of the company you are accessing the internet through, eg @bigpond.net.au @aol.com, should be given out rarely and never used as a contact email address for you on the internet.

Why?

This account identifies YOU to your internet company. Your internet company knows your real name, address and more than likely your billing information. There’s a lot of reasons why it isn’t a good idea to use it. I could go into them. The stories are long. So if you really want to know say so in the comments, I’ll blog it on its own.

So what email address should you be using on the internet? I think the best idea is to use several Gmail accounts. The reason I say that is, gmail allows you to forward to other email accounts for free. So I have a plan of how to use the accounts, which I will blog tomorrow, but here’s a sneak preview, a map.

emailplan

The reason for using so many accounts is, if one of them is compromised in some way (say one of your friends is silly enough to send out a forward with your email address along with 200 of her closest friends which means spammers get the email address) then you can shut the forward off for that one and make a new one. It does work, and if you’ve ever had spam coming to you at the rate of 10 per hour you can see the benefits of doing this. Especially if it is all viagra or enlarging the size of something you don’t have because you’re a woman. ;)

5. When making an email account, always expect the spanish inquisition. Or, expect spam. The way a lot of internet spammers work is, they use a “dictionary attack” – which means they send email to every word that is found in the dictionary, and every surname found in the telephone book, and every first name they can think of. You can outwit them simply by making your account two things – not a person, place or thing, and using numbers. I like words spelt backwards – sdrawkcab760 would be a great username.

Of course, doing the above will do you no good if you go and put sdrawkcab760@gmail.com as the contact me email address on your blog. Why? Because the spammers have access to email extractors which grab email addresses from the internet. But you want people to be able to email you, right? This is where my email plan (seen above) can really be of benefit.

That’s just the tip of the iceberg. It may have been a little overwhelming, but your security is important. More to follow in the days ahead, so keep checking back. ;) And if you have any questions or specific concerns or need me to explain something more clearly, you can email me or put it in the comments, and I will address it.

Here’s to staying safe on the internet ;)

email safety, Internet Safety

What you need to know about scambaiting.

Leave a comment Posted on by Snoskred

So as you may have heard, a little article was published in the Sydney Morning Herald as well as The Age..

It’s the same article as far as I can tell. And yes, I am the Taryn responsible, though of course Taryn is not my real name and may I just point out, if you’re using your real name on the internet, that’s not a good idea. People can track you down. Seriously. Don’t do it. It’s dumb-itty dumb and very dangerous.

Someone linked to the article on a discussion forum I hang out at and for some reason a mod there thinks it’s not ok to scambait so therefore has denied discussion which encourages scambaiting or tells people how to do it. Which is akin to handing people a loaded gun and refusing to give them instructions on how *not* to shoot themselves, in my opinion. If you want to scambait, you need to be doing it safely, and if you want to do it but nobody is allowing you to find out how to do it safely, that’s putting people’s personal safety at risk. And so the reason for this post. Sorry if the mod concerned doesn’t like it, but this is my blog and you have no power here. ;)

Scammers are criminals. They have been known to kidnap, torture, and murder victims. If you give them any personal information that they could trace you with, you could be in danger. So you need to make everything up. Fake names, fake addresses, and in fact make them somewhere far from where you really live. When I first started out baiting, I was pretending to be in the USA.

Secondly, the internet uses things called IP addresses (our little anonymous friend from yesterday will enjoy this bit) and those can actually identify your computer. For example – click here – every time you send an email your IP address goes with it, and someone who knows what they are doing can look at the headers of the email, and see your IP address.

But wait, there’s more, because every time you visit a website, your computer tells that website all kinds of information – such as your browser type, what kind of operating system you use, even right down to your screen resolution. People like me use trackers which take a copy of all of that information each time you visit here. That’s no problem if you’re a nice person who just wants to read my blog, but if you want to leave a nasty comment, you’re screwed, because all that info is right there just waiting for me to send it to your ISP. ;) which of course, I already have. So look forward to what Karma is bringing you, my little anonymous mate. ;) So you don’t visit scammer websites without knowing how to *hide* all that information.

Scambaiters need to know a few technical things in order to be able to do what we do. We’re pretty smart, it’s really not a good idea to mess with us.

Angry Snoskred, anonymity, internet, Internet Safety, scambaiting

Exposure.

1 Comment Posted on by Snoskred

I’m not sure if you’ve heard of the girl with the one track mind saga. It’s a blog on the internet where a girl has been pretty intimately blogging details of her life. Somehow it got turned into a book and the girl decided to release it under a pseudonym – however, she may have forgotten for a moment that she lives in the UK, and that is the home of tabloid journalism. A newspaper found out her real name, who she really was, and then published those details.

I feel really sorry for her – I can’t imagine blogging that sort of stuff, let alone having everyone from your parents to everyone in your entire country then finding out you wrote it, and reading that kind of personal stuff.

That and another incident which I have been reminded of have led to this blog about baiters and our potential exposure. I personally would feel *safe* if my real information got out on the net, because I live in a country where there’s not too many lads, but I would be plenty not happy all the same. For some of the baiters reading this who live in the US, Canada, UK, Amsterdam and possibly even South Africa, there’s a lot more potential for harm actually finding its way to a baiter who is exposed.

So when any of us tell other people information about ourselves, we *trust* that information won’t be given to others. There’s been a couple of occasions where I have *deliberately* led fellow **baiters** astray about who someone actually is. Once it was for a joke, which the baiter himself came up with, and several of us went along with. I believe there are still some baiters who are completely unaware that it was a joke – I do not believe the baiter involved ever got a chance to dispel the myths about himself. Not because he didn’t want to, but because he got busy. And they *were* brilliant myths.. that was a heck of a lot of fun, that joke.

Once it was because unknown to other baiters, we have an incredible secret in our midst, which myself and only the baiter involved are actually aware of – as far as I know. There’s very good reasons to keep it secret and I certainly do not intend to share the secret here but the reason I mention it is.. underlying everything there has been a fear that it will get found out somehow. Looking at the One Track Mind blog, I cannot imagine the aftermath if it were to be exposed.

Those of you thinking you know what it is, you’re dead wrong. To make sure you realise this, I will now state that the secret is who someone is in real life, not who they are on the internet. Just so you know.

And now to other topics of lesser import.

1. Pride and Prejudice. I read it again. What a surprise, huh? I love this book. I actually have a big book with all Jane Austen‘s books in there – Sense and Sensibility, P&P, Emma, Mansfield Park, Northanger Abbey, Lady Susan and Persuasion. I bought it for $20 a couple of years ago. The amount of times I have read it, I would hate to think. This is the book I always read in between other books. This is the book I always pick up when I go to bed, want to read a little, but am too tired to start a new book. The language is so soothing. It is almost as good as Shakespeare but my Shakespeare book is way too heavy to hold up in bed. :(

2. Indiana Jones and the temple of doom. I was playing this at work today and a kid who was about 8 years old got scared by it. Hello? What closet has this kid been sheltered in? So his Mother says to me “You should have something a bit more kid friendly on”. I said, this IS kid friendly, it’s PG rated, and most of the other movies I have which “look” kid friendly are packed full of swearing. I can’t play animation because it makes the screens look terrible and we’d never sell any. So while I was doing the invoice, she kept telling this kid not to look but he was mesmerized, and he was starting to get a bit freaked out, so I said to him, hey mate, don’t worry, he’s Indiana Jones and it all turns out fine in the end. It makes me wonder what kind of movies (if any) this kid is allowed to watch at home. It was the bit of the movie where the little kid has the voodoo doll and is stabbing it while Indy is fighting some guy. If something as simple as stabbing a voodoo doll makes this kid freak out.. I fear for his future in this world. BTW I am gonna order this, too.

3. I just watched Girl with a Pearl Earring. There’s never enough Colin Firth. Even the 6 hour Pride and Prejudice did not contain enough of him. The movie was good though.

That’s it for now, off to bed. Night all.. :)

Angry Snoskred, anonymity, books, internet, Internet Safety, movies, pseudonym