| #: |
From / Date: |
Question / Answer: |
| 5426. |
Mike
Worcester. MA
Age: 48
Feb 15, 2009
|
Canada land ownership
I can't answer from firsthand experience, but I do have 2 friends, both US citizens, who own vacation homes in Canda. I also have a cousin in Ottawa who is a US citizen and "landed immigrant" (permanent resident) in Canada who owns his home there with his Canadian wife. So it would seem that it's certainly possible for Americans to own property in Canada.
|
| 5425. |
Lee
Flagstaff,AZ
Age: 33
Feb 15, 2009
|
Blocking Domains in Windows - Was: Your own DNS Server
Sorry about that; you are correct about an entry for a domain such as doubleclick.net in the Windows hosts file does not block ads.doubleclick.net or any subdomains. I forgot that this is only the case when setting up domains for a DNS server.
|
| 5424. |
Brian
detroit, mi
Age: 21
Feb 15, 2009
|
#5421
adding a domain like "doubleclick.net" will not block everything from that domain. For example, I still get ads displaying from "ad.doubleclick.net" even when I have "doubleclick.net" in the Hosts. Only if I actually insert "ad.doubleclick.net" do the ads get blocked.
|
| 5422. |
Adam
Florida
Age: 33
Feb 14, 2009
|
No ID, no health care
Just came from a walk-in Walgreens "Take Care Health Clinic" seeking a flu shot; cash pay of course. Filled out their sheets of patient info with the usual bogus details. When I got in to see the nurse, in the chair with my sleeve rolled up, she asked for my Drivers License. "Sorry, I don't have it with me," I answer calmly. She flatly refuses to treat me. They will not treat anyone without a photo ID. I called their corporate office; same answer. I asked how they can refuse to treat people who have been recently mugged of their ID, or a homeless person who has none, etc... its corporate policy without exception. Its getting harder all the time to be invisible.
...
Why not offer your passport, which does not show an address?
|
| 5421. |
Lee
Flagstaff, AZ
Age: 33
Feb 14, 2009
|
Blocking Domains in Windows - Was: Your own DNS Server
Since most people run Windows, there is actually a shortcut you can use to block specific domains *without* having to operate your own DNS server; the only draback being that you would have to modify each machine to get the desired effect rather than have all the machines use a specific DNS server under your control. For most people this will be fine and this method even works on old versions of Windows.
1) go to "Start" -> "Run"
2) type in the following command:
notepad %WINDIR%\system32\drivers\etc\hosts
3) each line in this file has an IP address followed by some whitespace (spaces,tabs) and then a host name to map IP addresses to names. anything not specified in this file goes to your DNS server. For our purposes, we are going to use this file to block entire domains. For each domain to block, use 127.0.0.1 for the IP address, followed by the name of the domain you wish to block. For example, to block Google's auto completion, use this entry:
127.0.0.1 clients1.google.com
Note, this wouldn't block google.com or ads.google.com, etc. To block an entire evil domain such as doubleclick.net use this:
127.0.0.1 doubleclick.net
This would effectively block doubleclick.net and any subdomains such as www.doubleclick.net, ads.doubleclick.net, etc. Get the idea?
4) Save the file and the changes take effect immediately, unless you're using Windows 95 and if I remember correctly, you have to tell the OS to reload the `hosts` file.
For linux, the process is a little more involved, but a DNS server comes with most distros and you simply just turn it on and set up your configuration file. I can post my configuration file if anyone is interested. Technically you can use the hosts file with Linux/Unix too (that's where Microsoft got their idea).
Follow the link below and copy N paste the contents to your own hosts file to block the vast majority of marketing domains. Good luck!
Submitted Link #1: http://logicassembly.com/hosts_example.htm...
|
| 5420. |
John
Virginia Beach, VA
Age: 39
Feb 14, 2009
|
Canada Land Ownership
Does anyone know anything about property/land ownership in Canada by US citizens? Can a US citizen but land and build property on it or buy property with no issues?
...
Why not look up some Canadadian real estate agencies and call them?
|
| 5418. |
Mike
Houston
Age: 59
Feb 13, 2009
|
Mail
We bought a new home and my wife inadvertently forwarded at the post office with a change of address notice mail from our physical ghost address to our new home physical address. Is there anything we can do to mitigate this? This is our retirement home that we just finished building. Thanks!
Mike
...
Oh-oh!
Well, we all make mstakes. Let's see if this can be corrected. Hopefully this just happened and if so, do not accept mail. Have it returned to the P.O. as wrong address, and then go get your mail at the post office in person and explain a mistake was made.
Otherwise, if you are already accepting mail, fill out another form or talk to the postmaster to cancel the forwarding address because you are "thinking" about moving. (And then do think about it!) But do get right on this, fast. If any of you readers work in a post office and can help, let's hear from you, okay?
|
| 5416. |
Eleanor
San Jose, California
Age: 44
Feb 13, 2009
|
Computer Paranoia
Hey, you guys are making me paranoid with all this computer talk. I thought that unless you are currently under investigation by some law enforcement agency, no record of the websites you visit is likely to be kept for more than a few months, except on your own computer. Most IP addresses change every time you dial up. You would have to go through the internet service provider's records to find out who had that IP on a given day and time, and I don't think they keep those records longer than they have to because after awhile, it would take up too much hard drive space on their servers. Why would they go to the trouble and expense unless required to by law?
I don't want to restart the technical conversation about VPNs and whatnot, but if your computer has been used to access websites that would embarrass you or damage your reputation, can't you just destroy your hard drive, get a new computer, and never let your new computer be used for such purposes? Aren't you likely to be relatively safe from discovery of old website history after a few months or years have passed? How long could website servers, internet access providers, and search engines keep all that data, anyway?
I had an icky boyfriend who used my computer for all kinds of things. I got rid of him and the computer, too. My new computer is password protected and no one uses it but me. Should I be concerned about old website records that might still exist somewhere?
|
| 5415. |
Lee
Flagstaff,AZ
Age: 33
Feb 13, 2009
|
Your own DNS server
I know this may be a suggestion for those more technically inclined, but the best way to block ads such as Google and other nosy marketing-tracking domains (in addition to other browser techniques) is to set up your own DNS server. Your own DNS server will specify which domains you "control" and everything else will forward on to your existing ISP's DNS server (or even a separate DNS server in a remote location that you control if you want to bounce your requests around). Basically, each site you go to, keep track of the domain or subdomain that is requesting ads (or a domain you want to otherwise block) and reference a single zone file that points to an internal IP address that doesn't exist or just use the loopback IP 127.0.0.1 for these domains. You configure all the domains you specify you are "authoritative" for and everything else you will pass on to the real DNS server. For example, you probably don't want to block google.com, but you want to block clients1.google.com because this domain is referenced "as you type" each character into the search box for auto completeion suggestions. You also want to block everything from google-analytics.com. When you log in to Windows XP, there is a DNS request to crl.microsoft.com or crl.verisign.com I've found which attempts to check your website root certificates. Because I don't trust either company with my privacy, I've disabled these subdomains in my DNS server so they effectively go nowehere, but this doesn't prevent me from visiting microsoft.com, verisign.com or other subdomains such as msdn.microsoft.com, etc. You can set up all these specifics from your own DNS server. When I surf, I see a bunch of "blank" panes, almost no ads and my DNS file has about 70 domains that are safe to block altogether. When I see an ad, I look at the HTML, the status bar or look at my DNS server spy window (I currently have this set up under Linux) to see what domain is being loaded and then update my DNS server on the fly. This works on Windows and Linux DNS servers and you need not need a separate machine. If anyone wants details on setting this up even if you are not technically inclined, I'd be glad to post a link to a tutorial I could write.
|
| 5414. |
Drake
Los Angeles, CA
Age: 34
Feb 12, 2009
|
5412 answer addendum
"Survey: 40% of hard drives bought on eBay hold personal, corporate data.
Buyers found data on everything from corporate spreadsheets to e-mails and photos."
Submitted Link #1: http://www.computerworld.com/action/article.do?com...
|
| 5413. |
Wendy
Richardson,TX
Age: 45
Feb 12, 2009
|
Marc & JJL, VPNs, My Last Word
Marc, I agree that the basic VPN setup doesn't do nearly as much to protect one's privacy when surfing online. If I conveyed that VPNs will provide the absolute highest level security available, then I've been remiss in my posts. But, I also have decided I don't want to give too much information about what I'm doing to protect my own privacy so, when asked, I'm giving basic information. I'm acutely aware that achieving a high level of security when accessing the internet for any purpose--and, in reality, most people use ONE computer or laptop and/or smartphone for everything, no matter how insecure that is--requires far more sophistication than I was able to convey in my posts.
For the average user who is trying to protect themselves from the average risks online and off, but especially at unsecured wireless hotspots, a basic VPN with at least 128 bit encryption should be fine. I do NOT advocate using unsecured wireless hotspot. However, even using a VPN, there are still a number of things to keep in mind and I can't post them all here. I have posted some of them, you've posted others. Everyone considering using a VPN should do some serious research about them, proxy servers, VPN software v. hardware, pros, cons, security issues that still remain using just a VPN, etc. and determine what level of security is best for them. They should then choose a highly reputable, trustworthy vendor or else their risks may be higher than without a VPN.
So, before allowing any "security" procedure designed to protect your computer, laptop or smartphone to lull you into a false sense of security (no pun intended), remember two things. First, determined people (from law enforcement to tech savvy PIs to hackers/stalkers/criminals) hack through VPNs all of the time. If they can hack government servers, they can hack even the most secure VPN setups. Second, NO solution is perfect in this technological environment and BE CAREFUL ONLINE, period.
JJL, I agree with you, too, but, like I said, most people use their computers for everything. Most can only afford one good one and others can't manage two. My solutions are for the average computer user. Again, I won't say where I lie in that spectrum because I've learned that no matter what I do to protect myself online, there are ALWAYS ways for those who really want to know what I'm doing online to find out.
Therefore, based on that realization and my substantial research, not only have I made some significant changes to my privacy protection strategy, I'll be keeping much more to myself than I'm telling on this site, which is why I only gave the basic overview of what VPNs are and can do. Anybody that reads my posts (or anyone else's here) needs to do their own due diligence on all of it and use the information they find here at their own risk.
Finally, to the extent you can, do whatever you can to create or procure other hiding places like JJL states in both great books. (I've read both and refer to them often!) Don't allow technology and "life" to distract you so thoroughly, you forget the good ol' fashioned basics. Nuff said!
|
| 5412. |
Marc
Burlingame, CA
Age: 44
Feb 12, 2009
|
VPNs and protecting your IP address
There's been a lot of talk here recently regarding VPNs and secure / anonymous browsing. Some of what has been said is accurate, some of it not.
A VPN will NOT give you a high level of privacy for web browsing from your home or any location that is directly tied to you. For e-mail access and simpler protocols that do not change often, it can. But browsers have become inextricably intertwined with other programs and libraries such as Adobe's Flash and Java. These external programs often have direct access to facilities on a computer such as it's networking card. This means they can bypass any VPN software and still give up your true IP and MAC address.
If you disable all these features and programs, most websites will no longer work, as they have come to depend on such external programs to view their content. So you wind up defeating the purpose of having web access in the first place.
The best and safest option for the moment is using a separate computer that is only used for web browsing. Use free public access 802.11 WiFi points or a cellular data carrier with an annonymous account for the actual internet connection. Most cellular data cards do not have GPS built into them and allow for an external antenna. Using a highly directional antenna on a cellular modem or WiFi card can go a long way in defeating the signal strength based location technology that they both use.
Firefox with the Adblock and NoScript plugins installed helps to keep your browsing more private, but there are still several large holes that need to be plugged and new ones are being created as browser capabilities expand. By the time you read about the next one and fix the hole, your privacy may have already been compromised.
...
Okay, readers, the time has come to get up on my soap box.
… Your biggest danger is in losing your laptop, or getting it stolen, or having the files copied surreptitiously. I have friends who have ways of making any computer talk and they aren’t even employed by any of the three-letter agencies. So here are my suggestions.
… 1. Do not send any secret messages by e-mail, whether encrypted or not.
... 2. Do not go to any Web sites that will embarrass you if and when a record of this comes to light.
... That is why I talk about secret hiding places in both How to Be Invisible and in Invisible Money. That is where you should direct your efforts!
|
| 5411. |
George
Pomona, CA
Age: 24
Feb 12, 2009
|
Re: Perth Mint
The Perth Mint has several retail locations spread across the world in major cities, a few of which are in the U.S. (Los Angeles, San Francisco, Atlanta, Boston, and New York, I believe). You can go in-person and make a deposit and all they will ask you for is a passport (for tracking/identification purposes when it comes to picking up your gold). You get a certificate along with a deposit tracking number. If you decide to do it by mail, fax or online, then it gets more extensive and requires all sorts of identifying paperwork.
I'm not sure if they're still dispensing bearer certificates, as it's been a while since my family has used them, and that was pre-PATRIOT Act. But, the certificates are treated aren't as cash-equivalents or bullion at national borders, which means they're non-reportable. (It's a contract for immediately redeemable bullion storage, not bullion itself.) So, if you wanted to take more than $10,000 out of the country, this is one way to get around it. Just be sure to redeem your certificates in something other than U.S. dollars, as they will result in a report as well.
But, I agree with J.J., this is impractical for the average person. They require at least $25,000 minimum in cash or metal. Still, I mentioned it because it's a lot smarter than some guy stuffing his cowboy boots! :) LOL
Submitted Link #1: http://www.pmcg.com.au/...
|
| 5410. |
Wendy
Richardson,TX
Age: 45
Feb 12, 2009
|
Online Service of Process
Frankly, whether or not your on Facebook or any other social media site, I believe there's a possibility you can be served online if process servers can't find and address or agent of yours to accept process.
If you have any email address that can be linked to you, personally, even for an LLC that you don't use for true business purposes, like those you use to register your vehicle or title your home or other personal property (and so may be considered by the courts as your "alter ego" that you use to hide from creditors, especially if you've already got a judgment against you) or an email address linked to your business if your business is the subject of any investigation or defendant in a lawsuit, service of process may be coming to your state just as it already has in other. (And, if you're a US resident who appears to have moved to another country, to the country of purported residence, if their law permits that, has certain treaties with the US and/or has no laws preventing you from being served for something that's not a crime in the country of residence/email location. Keep in mind that many (if not most) EU countries WILL cooperate with US investigators and law enforcement to locate you, especially if subpoenaed.)
This is especially true if you use free email like Gmail, Hotmail or others and/or the email can be trace back to an IP address known to be registered to you or your business, particularly if that IP address is on a computer at a physical where you'd be served, anyway. That's because free email services have no incentive to protect you over their own business interests and, frankly, neither do most private companies so check the terms of service for their policy on serving subpoenas through their servers to clients of the service. Some make it easy and say that; others make it costly, charging by the hours to validate a subpoena and making it clear they will contact their client to see if they want the opportunity to quash the subpoena before it's served. You want the latter kind of service provider.
Those who live in states where service of process must be in person for money judgment to be awarded in civil cases (or to a person over a certain age that is located at your known residential or business address) have less to worry about but who knows when those laws will change? (If you have a CMRA, though, make sure you tell them they can NOT accept certified or registered mail on your behalf because that's another way to effect process.) Thus, it's best not to use email addresses in your true name, at your known residential location (whether on your driver's license or not) or place of business and to use services that strip your IP address from your email like Gmail, to its credit, claims to do to send email. (Though Gmail WILL give you up if subpoenaed themselves or the right PI gets the right Google employee on the phone and uses social engineering to get info on you.
So, potential service by email is yet another reason to get that VPN service since anonymity online is limited primarily to those whose IP and email addresses can't be determined or can't be served via social media. Also, use a service that allows you to block senders BEFORE reading their email because it will be returned to them as undeliverable, ESPECIALLY if you're on any social media sites Try to find one that both allows you to block and return as unread any emails you don't recognize and makes it hard for process to be served upon you through them.
Finally, keep in mind that email is like telephone numbers. If you send email to known associates and their ISP records and/or email service provider records show that, that may be another way to find an email address to serve you. BUT, keep in mind that if your subpoenaed to appear before a court and/or criminal service of process is being attempted on you, whether process is effectively served or not, if it can be shown that you're in a known area and are avoiding being served, the laws are different and avoiding that service may lead to a failure to appear (in court) bench warrant being issued or law enforcement obtaining a warrant for your arrest. So, be careful about what kind of service you're trying to avoid.
Submitted Link #1: http://ctsummationblog.wordpress.com/2008/03/20/se...
|
| 5409. |
Sebastian
Knoxville, TN
Age: 58
Feb 12, 2009
|
Google Analytics blocking
Google Analytics is a service that Google offers to websites that tracks who you are, by way of ip address, how you got to the website, and what parts of the website you visit. It works by downloading a script to your computer. One website that I know uses Google Analytics is fatwallet.com. Watch the programs that are downloaded at the bottom of your browser. The easiest way to block Google Analytics is to use Firefox as your browser (I think that it is much better than IE) and the NoScript plugin. It blocks all scripts that try to run on your computer, making it safer and persevering privacy.
|
| 5408. |
Sebastian
Knoxville, TN
Age: 58
Feb 12, 2009
|
Requests for copies of DL, passport, etc.
I have a current passport. I couldn't find my old when I applied for the new one. I was asked about and I told the truth: It is someplace in my house but I wasn't able to find. The clerk nodded and processed the application.
|
| 5407. |
Andrew
Silver Spring, MD
Age: 63
Feb 12, 2009
|
George, #5405 re Perth Mint
George, how would a privacy-seeking individual deposit the pysical gold or platinum in the Perth Mint, which is located in Australia? Also, as a governmental institution, would the Perth Mint, issue an anonymous or "bearer" certificate? I wish this were possible, but I am skeptical. Just asking.
...
I hesitated about even posting George's comments because they seemed impractical. FYI, I never put money into precious metals. I prefer Canadian and American dollars.
|
| 5405. |
George
Pomona, CA
Age: 24
Feb 12, 2009
|
Re: $70,000 in cow boots?
Surprisingly this is not a lot of cash. I mean, it's a lot, not in size. Do this experiment. One day go to the bank and ask for $100 in fresh singles in a brick of cash. See how thick that is? A hundred $100 bills feels the same way and is just as thick, only its worth $10,000 instead of $100. So, he pretty much only had to fit seven of these small bricks of cash in his boots. I'd say that at most he added two or three inches to his height overall, not that I'd suggest anyone do this.
It's just too risky carrying around this much cash. If he really didn't want to attract attention, he could have went to a flea market and bought a few rolls of gold and platinum coins, deposited them at the Perth Mint in exchange for a certificate of their value (in gold), and cashed in the certificate anonymously overseas.
|
| 5403. |
Wendy
Richardson,TX
Age: 45
Feb 11, 2009
|
#5379, Cell phone dangers
I agree that, if you have a dangerous stalker or similar issue, it's a good idea to buy drop or throwaway phones and use them the way he suggests. Otherwise, you can use a prepaid phone coupled with a virtual phone number/phone service like Vumber (which I've gotten away from by the way because I want even more anonymity and I've learned there a number of other services you can use to achieve the same purposes) and online SMS service (if you really need to text people) and achieve the same privacy. The idea is NEVER to use the cell phone, prepaid or not, to call or text anyone, especially relatives and known associates because it can be tracked and pinged as well as leaves records of calls/texts everywhere you call or text. You can't slack or give in and let some people call or text you or your cell phone because it's easier for them, either. And, frankly, I wouldn't let anyone know what cell phone provider I use, either, no matter what it is. Disappearing is WORK, can be expensive and your technique must be honed as conditions change (like surveillance technology and techniques in a surveillance society like the US or UK). It's worth it once the hard part is over, though.
|
| 5402. |
Wendy
Richardson,TX
Age: 45
Feb 11, 2009
|
What VPNs Are
Billson, a VPN is a virtual private network and it's what large corporations use regularly to allow their telecommuters and mobile workers to connect to enterprise servers. A GOOD VPN (usually a hardware VPN for corporations and the government) encrypts the internet connection between the user and the VPN server.
For the individual, it's a software tunnel that allows you to log onto a network server owned by the VPN service provider and surf the internet without revealing your own local (ISP) IP address (which if you look up on an IP geolocation website can pinpoint your location, sometimes almost exactly). Basically, you're logging onto to someone else's server, which has a different IP address from yours, and surfing the net from their server. Some providers log all activity; others don't keep logs at all nor do they watch what you do online like your ISP does. Your ISP only knows you've logged onto a VPN. For all they know, you could be accessing files on a server at work or a client's location.
Tor/Privoxy can be used with VPNs to clean up your tracks on the internet and preventing certain things from ending up on your hard drive, like permanent cookies and incriminating files. Privoxy also hides the applications you're using through your browsers. (Go to network-tool dot com and use the "Privacy dot net Browser Test" to see what I mean by "revealing applications you're using through your browsers".) They're more commonly used with SSH tunnels. (You can look that up on Wikipedia.) SSH tunnels protect more but can be complicated to set up, according to my research. As complicated as it all seems, it's not that hard to learn so do your research and experiment with VPN services until you find one that works for you.
However, Tor is a controversial investigator magnet and gets blacklisted from a number of sites because of the way it's been used so it's better to use other tools, like Firefox add-ons, to achieve those things Tor/Privoxy are supposed to achieve. You can use tools that disable javascript (which can reveal your IP address and other information) and prevent "clickjacking", something hackers and PIs use to trick you into revealing your IP address.
A GOOD, encrypted (SSL-128 bit or better) VPN like the one below should work for you, if you want basic protection. They are especially important when you're using wireless and some are even available for use on PC and iPhones.
HOWEVER, if you're running from the law or intending to do anything illegal, it won't matter what you use, you'll probably be caught. Keep in mind that services in the US and EU are subject to the USA Patriot Act and all that implies. Like US-based email, warrantless searches are permissible no matter what law enforcement officials say publicly.
If you not flouting the law in any way, you need to determine if it's just about privacy for you and you want to use an offshore VPN provider that offers offshore and US server services (but makes it hard for an individual who thinks you have money and wants to sue you, a stalker or investigator to find your or subpoena the VPN provider's records because it's expensive too do overseas as HTBI says about the Canary Island address) to further protect your privacy and location. Again, however, if you're the subject of three-letter agency investigation, a VPN won't protect you, at least for long.
Finally, a VPN isn't the be all and end all of internet privacy protection. You STILL need to have good firewall, antivirus and anti-spyware software installed on your computer. If you're using Windows, keep it updated. Use other protection software (check out CNET's download.com "security/privacy" software for more information) and use FIREFOX, NOT IE to access the internet. And DON'T do anything illegal or "gray area". You still have the same obligation to use common sense online, VPN or not.
Submitted Link #1: http://www.witopia.net/...
|
|
|
 |
