Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: The most SECURE browser?

20 May 2014   #41
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
Browser tests?

Browser tests. Mostly they just check that plugins are up to date rather than simulate exploits.

Here's a few that do more. Screenshots posted so that results can be compared.

check-and-secure | powered by cyscon GmbH! (Warning. Will offer to install HitmanPro Alert. Maybe you don't want it).

Feature Settings Check - Main - Not really a browser check. Checks to see if your security blocks harmless malware test samples.

BrowserSpy.dk - aimed at testing privacy.

Zeigen's Referrer Test referrer test

The most SECURE browser?-referrer-test.jpg

PC Flank: Make sure you're protected on all sides. - lots of stuff

https://www.ssllabs.com/ssltest/viewMyClient.html SSL/TLS test (Ciphers test)

The most SECURE browser?-ssl-client-test.jpgThe most SECURE browser?-ssl-client-test-2.jpgThe most SECURE browser?-ssl-client-test-3.jpgThe most SECURE browser?-ssl-client-test-4.jpg

https://www.howsmyssl.com/ Another SSL test

The most SECURE browser?-how-my-ssl.jpg

https://panopticlick.eff.org/index.php - Browser Fingerprinting

The most SECURE browser?-panopticlick.jpg

https://www.grc.com/dns/dns.htm - DNS Nameserver Test

Test for X-FRAME-OPTIONS - Click-jacking test

The most SECURE browser?-test-x-frame.jpg

As for IE - I don't want to knock it. It does well if configured correctly but that's the hard bit! I've never found a way to selectively allow flash content rather than allowing flash to run for the whole page.

The most SECURE browser?-flash-content.jpg




My System SpecsSystem Spec
.
20 May 2014   #42
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
Forgot to post these

Domains and IP's blocked:

The most SECURE browser?-block-1.jpgThe most SECURE browser?-hosts.jpg


My System SpecsSystem Spec
20 May 2014   #43
UsernameIssues

W7 Pro SP1 64bit
 
 

I did not mean to imply that IE11 was the best for you. You might do fine with Aviator. Just don't believe all of the hype that they have written about it.

For me, I enabled EPM within IE11. Nothing else to configure. I don't have Flash installed. If I want to see a website with flash content, I use Pale Moon or Chrome. I keep all three (IE, Pale Moon and Chrome) open most of the time. It helps me separate websites that I'm logged into from ones where I want some level of privacy.

Callender mentioned some good info on testing a browser, but contests with cash prizes seem to be some of the best testing. I doubt that you will see a small player like Aviator join competitions like that anytime soon.
My System SpecsSystem Spec
.

21 May 2014   #44
exitPr0gram

Windows 7 Professional Version 6.1 Build 7601 SP1
 
 
Whitehat Inquiry Reponse

Quote   Quote: Originally Posted by carwiz View Post
Let me ask you something. How many entries do you have in your Host file? That will tell me how concerned you are about security. How many sites do you allow to use Flash? Are you using a 64-bit browser? Do you have enhanced security turned on? Do you have Windows Firewall turned on? How many entries have you put in the firewall?

Most answers to these questions will be; zero, all, don't know, what's that and who cares. Then they will complain that IE or Windows is unsafe. Yeah, right.
I wrote an email to WhiteHate Aviator support to get clarification for the sake of this thread. My email is as follows:

Hello,

I have tried out your browser which was recommended to me on a forum that i started HERE and honestly, so far, i love it.

I am wanting to get information on what Aviator supports and what it does not. Such as "ASLR" and which versions of "TLS" do you guys support and which one is enabled by default?

My goal is to find a browser that is secure out of the box with minimal configuration required. I thought Aviator was AWESOME until people started talking about IE11 and how secure it is on that forum blah blah blah (then again it is SevenForums so people being in favor or IE11 is to be expected)

Please give me some information to add to that t possibly convert them to Aviator, LOL.

Also, do extensions that work in Chrome such as Zenmate and Adblock work just like they would in Chrome? I think its awesome that you already add Disconnect because thats what i was using in addition to the other two i mentioned while i was still using Chrome. Also, can adding these extensions to White Hate Aviator effect it's security? Say for instance, Zenmate has a newly found exploit and someone tries to use it on me.



P.S.

Any recommendations on settings that I can configure in order to make Aviator even MORE secure than it already is? And maybe some type of "Benchmark" site recommendation to calculate the security of the browser compared to others?


Their reply is as follows:

Hi,

Thanks for the questions! I’ll take them one at a time:

- Aviator in terms of security support is similar to Chrome due to the shared Chromium source. That means it supports ASLR, DEP and TLS 1.0, 1.1 and 1.2. Due to the click-to-play that’s standard on Aviator for Flash and Java, the drive by downloads that compromise these systems are drastically reduced in effectiveness for the average user.

- Yeah I can see a Windows oriented forum being a bit biased towards IE. Just a bit.

- Extensions for the most part work with Aviator just as they would in Chrome. Adblock definitely works for Aviator (though there’s a native adblock built in to Aviator), and even though a customer has told me they couldn’t use Zenmate, it’s worked just fine for me. Extensions that can be incompatible are some password managers which require a check of the browser type before working with it (1Password is like this, though we are in the process of getting approved) and some that don’t work in incognito mode in Chrome won’t work in Protected mode in Aviator (since this is the default mode in Aviator it decreases the effectiveness of these extensions) among others types. Exploits in terms of extensions seem to be limited to the permissions granted to the extension. So if you give an extension access to cookies or history, then those are at risk with the extension if it is exploited.

- For an increase in security, you can keep in mind that Aviator’s settings are designed to be a strict as can be allowed without drastically affecting the browsing experience. If you want to crank up Aviator from “Secure and Accessible” to “Ungodly levels of Security” the options to do that are in place in terms of things like preventing javascript, flash and cookies entirely, bulking up on the standard security and privacy extensions (HTTPS Everywhere, avast!, VPNs) and generally just an increase in awareness and good habits in browsing (regularly closing Aviator, caution on unknown sites, etc). There are tons of ways to ensure even more security and privacy, the only real limit is how much convenience and effort are you willing to sacrifice really.

- As for browser bookmark sites; despite being a person who, you know, works for a browser I don’t really have any good suggestions outside of the usual acid or html5-compatibility tests that a quick search will show are pretty common. I don’t know if there’s any legitimate sites that could do security/privacy testing in such an acceptable way that I could recommend here, but there very well could be some out there unbeknownst to me.

I hope this answers your questions, if I missed anything let me know and I’ll try to cover it. And if you have any others, please don’t hesitate to let us know!
My System SpecsSystem Spec
21 May 2014   #45
exitPr0gram

Windows 7 Professional Version 6.1 Build 7601 SP1
 
 

Quote   Quote: Originally Posted by Callender View Post
Browser tests. Mostly they just check that plugins are up to date rather than simulate exploits.

Here's a few that do more. Screenshots posted so that results can be compared.

check-and-secure | powered by cyscon GmbH! (Warning. Will offer to install HitmanPro Alert. Maybe you don't want it).

Feature Settings Check - Main - Not really a browser check. Checks to see if your security blocks harmless malware test samples.

BrowserSpy.dk - aimed at testing privacy.

Zeigen's Referrer Test referrer test

Attachment 318619

PC Flank: Make sure you're protected on all sides. - lots of stuff

https://www.ssllabs.com/ssltest/viewMyClient.html SSL/TLS test (Ciphers test)

Attachment 318624Attachment 318621Attachment 318622Attachment 318623

https://www.howsmyssl.com/ Another SSL test

Attachment 318617

https://panopticlick.eff.org/index.php - Browser Fingerprinting

Attachment 318618

https://www.grc.com/dns/dns.htm - DNS Nameserver Test

Test for X-FRAME-OPTIONS - Click-jacking test

Attachment 318625

As for IE - I don't want to knock it. It does well if configured correctly but that's the hard bit! I've never found a way to selectively allow flash content rather than allowing flash to run for the whole page.

Attachment 318629
I'm unfamiliar with all except PC FLank. I like that site. Seems to do a thorough job. But i have to actually enabled a few features in Aviator (I forget which ones exactly i think Cookies).

I'll look in to the others... Thanks!!!
My System SpecsSystem Spec
21 May 2014   #46
exitPr0gram

Windows 7 Professional Version 6.1 Build 7601 SP1
 
 

Quote   Quote: Originally Posted by Callender View Post
Browser tests. Mostly they just check that plugins are up to date rather than simulate exploits.

Here's a few that do more. Screenshots posted so that results can be compared.

check-and-secure | powered by cyscon GmbH! (Warning. Will offer to install HitmanPro Alert. Maybe you don't want it).

Feature Settings Check - Main - Not really a browser check. Checks to see if your security blocks harmless malware test samples.

BrowserSpy.dk - aimed at testing privacy.

Zeigen's Referrer Test referrer test

Attachment 318619

PC Flank: Make sure you're protected on all sides. - lots of stuff

https://www.ssllabs.com/ssltest/viewMyClient.html SSL/TLS test (Ciphers test)

Attachment 318624Attachment 318621Attachment 318622Attachment 318623

https://www.howsmyssl.com/ Another SSL test

Attachment 318617

https://panopticlick.eff.org/index.php - Browser Fingerprinting

Attachment 318618

https://www.grc.com/dns/dns.htm - DNS Nameserver Test

Test for X-FRAME-OPTIONS - Click-jacking test

Attachment 318625

As for IE - I don't want to knock it. It does well if configured correctly but that's the hard bit! I've never found a way to selectively allow flash content rather than allowing flash to run for the whole page.

Attachment 318629
You might have stated already... But what browser do you use? Wanna play a game and compare results on each site? LoL... I'll be testing Aviator.
My System SpecsSystem Spec
21 May 2014   #47
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
What browser

Well for those tests I used Cyberfox 28.0.1 64bit AMD optimized version but it's been tweaked a lot (via preferences) and also uses add ons for certain stuff. For example javascript is enabled but can't be detected by Panopticlick and the user agent is randomised. So it's not really a true "out of the box" test.

I don't limit myself to one single browser either!

And that TLS stuff - I used the Powershell script here:

How to fix SSL 2.0 and BEAST on IIS - Information Security Stack Exchange

And the reg files attached here:

Changing IE's SSL cipher order | Wilders Security Forums

That takes care of windows but also had to configure browsers to disable weak ciphers.
My System SpecsSystem Spec
21 May 2014   #48
exitPr0gram

Windows 7 Professional Version 6.1 Build 7601 SP1
 
 

Quote   Quote: Originally Posted by Callender View Post
Well for those tests I used Cyberfox 28.0.1 64bit AMD optimized version but it's been tweaked a lot (via preferences) and also uses add ons for certain stuff. For example javascript is enabled but can't be detected by Panopticlick and the user agent is randomised. So it's not really a true "out of the box" test.

I don't limit myself to one single browser either!

And that TLS stuff - I used the Powershell script here:

How to fix SSL 2.0 and BEAST on IIS - Information Security Stack Exchange

And the reg files attached here:

Changing IE's SSL cipher order | Wilders Security Forums

That takes care of windows but also had to configure browsers to disable weak ciphers.
I will check out the CyberFox browser as well. I am fine with using multiple browsers for different situations.

What do you think about the response from Whitehat Aviator? Seem secure "Out of the Box" with what he was saying? Do you disagree with anything that he said?

Also, how do i change the "Agent" for a browser? Meaning if i want it to show up as Internet Explorer instead of Chrome (to other users) how would i do so? I'm at work and dont have Aviator installed on this machine.
My System SpecsSystem Spec
21 May 2014   #49
Callender

Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
 
 
Aviator User Agent String

Well you can manually change the user agent string in Aviator by right clicking the Aviator shortcut and adding the user agent in the target box. So if you add:



--user-agent="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)"

including the space before -- ,then sites will identify the browser as IE8 but it might cause some features on the site not work correctly.

The most SECURE browser?-aviator-properties.jpg

The most SECURE browser?-whats-my-agent-string_aviator.jpg

It does seem to be pretty secure in so far as that without any plugins installed there shouldn't be a problem!

How can you make your browser more secure? Well whatever browser you use, keep plugins updated, keep the browser updated and if possible try to configure it securely. Then use a secure DNS Nameserver.

As for other browsers like Cyberfox - it's a Firefox variant, you can change the user agent string or use an add ons like User Agent Switcher or User Agent Cleaner plus a few others.


My System SpecsSystem Spec
21 May 2014   #50
exitPr0gram

Windows 7 Professional Version 6.1 Build 7601 SP1
 
 

Quote   Quote: Originally Posted by Callender View Post
Well you can manually change the user agent string in Aviator by right clicking the Aviator shortcut and adding the user agent in the target box. So if you add:



--user-agent="Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)"

including the space before -- ,then sites will identify the browser as IE8 but it might cause some features on the site not work correctly.

Attachment 318724

Attachment 318725

It does seem to be pretty secure in so far as that without any plugins installed there shouldn't be a problem!

How can you make your browser more secure? Well whatever browser you use, keep plugins updated, keep the browser updated and if possible try to configure it securely. Then use a secure DNS Nameserver.

As for other browsers like Cyberfox - it's a Firefox variant, you can change the user agent string or use an add ons like User Agent Switcher or User Agent Cleaner plus a few others.
Excellent, thanks!!

I'll probably change it to read "Chrome" since it is a Chrome variant. I'm wondering if it displays that it is "Whitehat Aviator" to begin with or if it already reads as "Chrome/Chromium" ..

BTW, i tried to +1 you but it sais i need to spread some around before giving. I don't think I've even +1'd you yet...
My System SpecsSystem Spec
Reply

 The most SECURE browser?




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
FireFox - mouse & browser& browser freezes in Facebook page
I have FF 17. The mouse is freezing in facebook & I find the only escape to release the browser is reboot. The same FB page works fine in internet explorer.
Browsers & Mail
Portable Browser :- How to be my Default Browser and/or use a URL Link
My desktop URL link is unable to access the Web based Admin console of my Netgear Router, and various application "F1 / Help" buttons no longer give help when they need internet resources. Previously I started with a conventional installed Firefox Browser, but after erratic premature update...
Software
How Secure is your Browser ?
More...
Browsers & Mail
The Secure Browser
A sandboxed version of Firefox 3.6, from Dell of all people Secure Browser Anyone tried it yet? A Guy
Browsers & Mail


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 05:26.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App