I’ve just gone through the users registered to access the website and have de-activated a few members who haven’t accessed the website in the last 12 months. If you are one of those and wish to be re-activated just drop us a line. All members of Cardiff u3a are able to access the website. If you want to read, or indeed contribute, items please get in touch quoting your membership number.
I’ve also reviewed the status of members of Forums and Topics, I’ve changed a couple of members from Moderator to Participant, and added a couple of new Moderators. The difference in status is academic really. You can all add Topics and Reply to Topics.
We’ve touched on this topic in number of ways “over the years”, but never specifically looked at Identity – our identity and how it is handled, and yes mistreated, in the digital world.
I don’t intend to go over old ground again, but will provide a basis to introduce what will be the main subject of today – Passkeys, which Iain will present. I will do that through referencing previous posts on this website.
We start with the first post I wrote way back in 2015, aptly entitled “Let’s start at the beginning …“. In this I go through the basic steps in creating a strong password and a few other things besides.
Then in 2020 we discussed using Password Managers in the post “Using a Password Manager and implementing Two Factor Authentication” which again reviews setting a password before moving into the area of using password managers – which have the advantage of your passwords being configurable to be available on any many machine, anywhere as they’re held in encrypted form, in the cloud. This post also introduces the idea of Two Factor Authentication (2FA) whereby having logged into a website you’re challenged to use an application (usually held on your smartphone), eg Google’s Authenticator or Authy (the one I use) to provide a second credential to the website to confirm you are who you said you are!
Earlier this year (in January, I touched on Passkeys) in this post “Prevention and protection from Scams“, which also referenced my main post on the subject – “Keeping safe online” – which I’ve tried to keep up-to-date and will review again in the near future.
And then, in March 2025, I made you aware of the value of having an Apple ID and account – even if you’re not an Apple user, as a means of getting a set of user credentials (Identity) that you can use instead of supplying your regular email address, and creating a password, when requested, when visiting a website – often for purchases. Apple is well recognised for its privacy and security concerns, and unlike Microsoft, Google, Facebook or X, is more likely than any of the others to not use your Identity for any other purpose other than providing you with a digital identity.
That leads nicely into a bit of history from my working life at Cardiff University that I’ve never shared with you before which I’m very pleased to have been part of. Let me paint a picture, you need to go back 20 years; I’ll share a number of scenarios.
First. You’re a student, or a member of staff, you want an email address, you want to access file store, you want to access the growing number of resources available from the internet through the library, or even just manage your library subscription. You need a UserID and Password, or multiple UserIDs and Passwords to do what you want to do online. Nothing new here, it’s what you experience every time you access a new website! But quite a drudge when you’re in the same institution.
Solution. The IT department creates a unified Identity system that all departments can use. A single UserID and Password for each user.
However. If the staff member or student (on vacation at home say) wants to access their email, file store, whatever from another institution, they most normally couldn’t and the best they could hope for was applying for a “temporary”, or “guest user” account which would at best only provide limited privileges to the visited institution. Rather frustrating.
Solution. Cardiff University through the work of a young researcher – Rhys Smith (who’s tragically not with us anymore) – investigated and implemented (with external funding from JISC) the possibility of using a technology which went by the name of Shibboleth, but more accurately used Security Assertion Markup Language (SAML) architecture to provide Single Sign On to all resources within an organisation in the first instance …
In information technology, Shibboleth is a community-wide password that enables members of that community to access an online resource without revealing their individual identities. The origin server can vouch for the identity of the individual user without giving the target server any further identifying information.[25] Hence the individual user does not know the password that is actually employed – it is generated internally by the origin server – and so cannot betray it to outsiders.
… but then by binding other organisations together into Federations, allowed all users of a federated organisation to access the resources they were entitled to use (from their host organisations’ permission policies) from any other institution in the same federation. In the UK this became the UK HE Federation. Nirvana! [Following on from this in due course, individual Federations applied to become members of more universal federated access and Microsoft and Google (for instance) implemented federated access using SAML v.2]
But how about WiFi, wasn’t that the solution anyway? Well yes, it was in one sense but if you wanted to move from one campus to another and use that institutions’ WiFi network you still had to apply for a separate UserID and Password. The work Cardiff did was to extend their work with SAML/Shibboleth to provide WiFi Roaming which meant that you could move between institutions and your host institution would provide the credentials that allowed you to login on different campuses.
End of history, but a fine exemplar of the implementation of Single Sign On. My role … I led a UK project to encourage and develop good practice in Identity Management within institutions, and then to encourage the institutions to take-up Shibboleth and Federated Access Management. For more information on this you can refer to Perplexity (of course!!!)
Finally, a couple of links to hardware implementations of Identity Security …
Claude …
Can you detail and describe physical devices used for identity purposes to allow access to systems, ie dongles or USB-stick based devices
Physical identity devices for system access come in several forms, each with different security mechanisms and use cases:
Hardware Security Keys
FIDO2/WebAuthn Keys (like YubiKey, Google Titan, SoloKeys)
Small USB, NFC, or Bluetooth devices that implement open authentication standards
Generate cryptographic signatures to prove identity without transmitting secrets
Often feature a physical button that must be pressed to authorize access
Resistant to phishing attacks since they’re bound to specific domains
Support multiple authentication protocols (FIDO2, U2F, PIV, OATH)
Smart Cards and Tokens
PIV/CAC Cards
Credit card-sized devices with embedded chips
Common in government and enterprise environments
Require PIN entry and card reader
Store certificates and cryptographic keys securely
USB Cryptographic Tokens
Larger than security keys, often with displays and keypads
Can store multiple certificates and keys
Some generate time-based one-time passwords (TOTP)
Examples include SafeNet eToken, Nitrokey Pro
Biometric Devices
USB Fingerprint Readers
Standalone devices that authenticate users via fingerprint
Often used with Windows Hello or similar systems
Can be integrated into keyboards or mice
Facial Recognition Dongles
Less common but emerging technology
Small cameras that perform facial authentication
Specialized Security Dongles
Software License Dongles
Protect expensive software from piracy
Contain encrypted keys that applications check
Examples include HASP dongles, Sentinel keys
Cryptocurrency Hardware Wallets
Secure devices for managing digital currency private keys
Examples include Ledger, Trezor devices
Often require physical confirmation for transactions
Technical Characteristics
These devices typically feature:
Tamper-resistant hardware that protects stored secrets
Secure elements or trusted platform modules (TPMs)
Various connectivity options (USB-A, USB-C, NFC, Bluetooth)
Battery-free operation (powered by host device)
Cross-platform compatibility
The main security advantage is that sensitive cryptographic material never leaves the device, making them highly resistant to remote attacks and credential theft compared to software-only solutions.
Do you need a paid subscription to open an Apple account and be able to Sign in with Apple?
No, you don’t need a paid subscription to open an Apple account or use Sign in with Apple. Creating an Apple ID (Apple account) is completely free and allows you to: • Sign in with Apple on third-party websites and apps • Access basic Apple services like the App Store • Use iCloud’s free tier (with 5GB of storage) • Make purchases in Apple’s digital stores Paid subscriptions like Apple One or individual services (Apple Music, iCloud+ storage, etc.) are optional add-ons to your free Apple ID account. To create an Apple ID, you just need an email address, a password, and some basic personal information. You can sign up directly on an Apple device or through the Apple website.
What about Hide my Email address?
You’re asking about a good feature! Hide My Email is part of Apple’s privacy features, but it has different availability: Free version: • You can use Hide My Email when signing up for services with “Sign in with Apple” – this gives you a randomly generated email address that forwards to your real one • This basic functionality is available to anyone with a free Apple ID Paid version (requires iCloud+ subscription): • The full-featured Hide My Email service that lets you create and manage multiple private email addresses anytime (not just when signing up for services) • Create unlimited email addresses • Manage all your private email addresses in Settings • Use custom domain names with iCloud Mail iCloud+ subscriptions start at $0.99/month for the 50GB plan, which includes the expanded Hide My Email functionality. The subscription also includes other privacy features like Private Relay and expanded HomeKit Secure Video support.
What a question! Total of course might be the first answer, but is it actually the right one. It’s an entirely personal choice, and you have to weigh up how much you want to share of yourself online, how much personal information you need to share online, and how to secure that which you have to provide online to obtain services. Yes – it’s not an easy question to answer! But first some highlights …
So where should we start. Well … I thought I’d just ask Perplexity and Claude to help me …
Perplexity advise me thus …
The amount of privacy you need or want depends on your personal values, lifestyle, and circumstances. Here are some considerations:
Factors Influencing Privacy Needs
1. Personal Boundaries: Privacy allows you to maintain control over sensitive information about yourself, such as financial, medical, or personal details.
2. Life Stage: Adolescents often need privacy to explore their identity and independence, while adults may seek it to protect personal data or maintain emotional boundaries.
3. Cultural and Social Context: In some environments, privacy can be a matter of safety (e.g., journalists in authoritarian regimes), while in others, it may be less critical.
Balancing Privacy and Openness • Online Privacy: Use tools like password managers, VPNs, and privacy-conscious apps to protect your data. • Relationships: Healthy relationships respect privacy but avoid secrecy that harms trust. • Public Interactions: Avoid oversharing in public spaces or online forums to maintain control over your personal information.
Practical Steps • Define what information you’re comfortable sharing. • Use privacy tools to secure digital data. • Communicate clearly about boundaries with others. Ultimately, the right level of privacy is subjective and should align with your comfort level and values.
… whilst Claude “goes the extra mile” and provides me with a Comprehensive Personal Privacy Guide …
# Digital Privacy Mastery: Protecting Your Online Presence
## Digital Privacy Landscape
### Understanding Digital Privacy Digital privacy is about controlling your personal information in the online world, protecting yourself from: - Data collection and tracking - Unauthorized access to personal information - Potential misuse of your digital footprint - Cybersecurity threats - Online surveillance and profiling
### Digital Privacy Threat Landscape
#### Primary Digital Privacy Risks 1. **Data Harvesting** - Corporate data collection - Targeted advertising - Behavioral tracking - Comprehensive digital profiling
2. **Cybersecurity Vulnerabilities** - Personal data breaches - Identity theft - Financial fraud - Unauthorized account access
3. **Online Tracking Mechanisms** - Cookies and tracking technologies - Social media data mining - Search engine tracking - Cross-platform data sharing
### Digital Privacy Assessment Levels
#### Basic Digital Privacy (Beginner Level) - Limited awareness of online tracking - Minimal privacy settings - Using default browser and app configurations - Sharing personal information freely online
#### Intermediate Digital Privacy (Aware Level) - Understanding basic tracking mechanisms - Selective social media sharing - Using some privacy tools - Aware of potential online risks - Implementing basic security measures
#### Advanced Digital Privacy (Expert Level) - Comprehensive online protection strategy - Minimal digital footprint - Advanced encryption and anonymity tools - Proactive threat monitoring - Strategic online information management
### Comprehensive Digital Privacy Toolkit
#### 1. Personal Information Management - Audit existing online accounts - Minimize personal data sharing - Use alternative/temporary contact information - Create dedicated email addresses for different purposes
#### 2. Authentication and Access Control 1. **Password Management** - Use complex, unique passwords - Implement password manager - Enable two-factor authentication - Regularly update passwords
2. **Account Security** - Review app and service permissions - Disconnect unused accounts - Use privacy-focused authentication methods - Implement login alerts
2. **Tracking Prevention** - Block third-party cookies - Use anti-tracking browser extensions - Disable location tracking - Limit browser fingerprinting
#### 4. Social Media and Online Presence 1. **Platform Privacy Settings** - Minimize public profile information - Restrict personal data visibility - Control tagging and sharing permissions - Regularly audit connected applications
2. **Content Strategy** - Be selective about online sharing - Use pseudonyms when appropriate - Understand platform data policies - Implement content self-censorship
#### Digital Privacy Mindset - Treat personal data as valuable asset - Develop critical thinking about online sharing - Stay informed about privacy technologies - Cultivate a proactive privacy approach
#### Continuous Privacy Improvement 1. Regular privacy audits 2. Stay updated on emerging threats 3. Adapt privacy strategies 4. Learn from privacy best practices 5. Invest in privacy education
### Legal and Ethical Dimensions - Understand data protection regulations - Know your digital rights - Recognize ethical data use - Support privacy-focused initiatives
### Conclusion: Your Digital Privacy Journey Digital privacy is an ongoing process of: - Awareness - Strategic management - Continuous learning - Technological adaptation
**Key Takeaway**: Your digital privacy is a personal responsibility and a fundamental right in the digital age.
### Action Plan 1. Conduct immediate privacy audit 2. Implement basic protection tools 3. Develop privacy-conscious habits 4. Continuously educate yourself 5. Regularly reassess your digital privacy strategy
… so with that, I might as well stop and let AI take over!!!! Here’s Claude’s presentation …
# Securing Your Digital Privacy
## Table of Contents 1. Understanding Digital Privacy 2. Risks in the Digital Landscape 3. Protective Strategies 4. Essential Tools and Techniques 5. Best Practices for Everyday Protection
---
## 1. Understanding Digital Privacy
### What is Digital Privacy? Digital privacy is the protection of personal information in the online world, encompassing: - Personal data protection - Control over personal information sharing - Prevention of unauthorized access to digital identities - Maintaining anonymity and security in digital interactions
### Why Does Digital Privacy Matter? - Prevent identity theft - Protect personal and financial information - Maintain personal autonomy - Avoid targeted manipulation - Safeguard professional and personal reputation
---
## 2. Risks in the Digital Landscape
### Common Digital Privacy Threats - Data breaches - Phishing attacks - Social engineering - Tracking and profiling - Unauthorized data collection - Malware and ransomware
### Potential Consequences - Financial fraud - Personal information exposure - Reputation damage - Stalking and harassment - Professional and personal discrimination
---
## 3. Protective Strategies
### Personal Information Management - Minimize personal data sharing - Use privacy settings on social media - Be cautious about online forms and surveys - Regularly audit online accounts and permissions
### Digital Footprint Reduction - Use pseudonyms when possible - Limit personal information in public profiles - Be mindful of location sharing - Regularly delete unnecessary online accounts
### Practical Privacy Tips - Use two-factor authentication - Regularly update software and devices - Be skeptical of unsolicited communications - Use unique passwords for each account - Enable encryption on devices - Avoid public Wi-Fi without VPN protection
### Online Behavior - Think before posting - Limit personal information sharing - Be aware of app permissions - Regularly review privacy settings - Use privacy-focused search engines
---
## Additional Resources
### Recommended Websites - [Electronic Frontier Foundation (EFF)](https://www.eff.org/) - [Privacy Tools](https://privacytools.io/) - [Have I Been Pwned](https://haveibeenpwned.com/)
### Learning More - Take online privacy courses - Follow cybersecurity blogs - Stay informed about latest privacy technologies
---
## Conclusion
### Your Digital Privacy is Your Right - Be proactive - Stay informed - Continuously educate yourself - Protect your digital identity
*Remember: Digital privacy is an ongoing process, not a one-time solution!*
… that’s just too much to take-in isn’t it, so I think I still have a place, and I’ll simplify things down to just a few points – but please take note of both of these AI contributions as a checklist to visit and re-visit on a regular basis.
So my plan is to cover the following:
Safeguarding
Cookies – Deny usually works (but you may need to temporarily switch off adblockers if the site is of particular value/importance to you – but remember to switch it back on afterwards. Alternatively – look for a different site that doesn’t impose that requirement. It’s nearly always imposed to get marketing information from you – what you’re doing, what you’re looking at, where you are, what you’re buying etc etc.
Adblockers – these protect you from yourself to some extent, as you won’t see adverts that you might be tempted to click on; but they also remove invasive ads from appearing on your screen and interrupting your reading. They should also prevent pop-ups (in small windows) appearing – but be aware that some websites have this facility hard-wired into their code, so the best solution is to avoid such websites as you can’t switch-off the pop-ups. Claude gives advice on the best ad blockers available …
Choosing the best ad blocker depends on your specific needs, such as browser compatibility, customization options, and additional features like privacy protection. Here are some of the top ad blockers for different scenarios:
## Top Ad Blockers for 2025
### 1. **AdGuard** - **Best For:** System-wide ad blocking and broad compatibility across multiple browsers and devices. - **Features:** Offers robust app coverage, parental controls, browsing security, and a VPN. It has a user-friendly interface and provides detailed statistics on blocked ads. - **Compatibility:** Browsers, Windows, macOS, Android, and iOS. - **MV3 Compliance:** Yes, with a compliant beta extension for Chrome. - **Cost:** Starts at $29.88, with plans covering up to nine devices[1][2].
### 2. **uBlock Origin** - **Best For:** Customization and Firefox users. - **Features:** Highly customizable with the ability to add custom filters and scripts. It is free and open-source. - **Compatibility:** Primarily for browsers. - **MV3 Compliance:** No. - **Cost:** Free[1][3].
### 3. **Total Adblock** - **Best For:** Ease of use and YouTube/Facebook ad blocking. - **Features:** Blocks third-party trackers, improves page load times, and offers a premium plan with antivirus software. - **Compatibility:** Browsers. - **MV3 Compliance:** Currently unaffected but lacks a clear transition plan. - **Cost:** Free version available, with premium starting at $1.59/mo[2].
### 4. **Surfshark CleanWeb** - **Best For:** Unlimited devices and VPN integration. - **Features:** Blocks ads across multiple devices, including smart TVs, and offers VPN benefits like data encryption and phishing protection. - **Compatibility:** Unlimited devices, including smart TVs. - **MV3 Compliance:** Unaffected. - **Cost:** Bundled with Surfshark VPN[2].
### 5. **Ghostery** - **Best For:** Privacy-focused users. - **Features:** Offers anti-tracking features and detailed ad-blocking statistics. - **Compatibility:** Chromium-based browsers, Android, and iOS. - **MV3 Compliance:** Yes. - **Cost:** Free, with premium options available[1][3].
### 6. **Adblock Plus** - **Best For:** General ad blocking with acceptable ads feature. - **Features:** Allows acceptable ads to support websites, with a user-friendly interface. - **Compatibility:** Chrome and other browsers. - **MV3 Compliance:** Not specified. - **Cost:** Free[8].
### Comparison Table
| Ad Blocker | Best For | Compatibility | MV3 Compliance | Cost | |------------|---------|---------------|----------------|------| | AdGuard | System-wide blocking | Browsers, Windows, macOS, Android, iOS | Yes | $29.88+ | | uBlock Origin | Customization, Firefox | Browsers | No | Free | | Total Adblock | Ease of use, YouTube/Facebook | Browsers | Unaffected | $1.59/mo+ | | Surfshark CleanWeb | Unlimited devices, VPN | Unlimited devices | Unaffected | Bundled with VPN | | Ghostery | Privacy features | Chromium-based browsers, Android, iOS | Yes | Free+ | | Adblock Plus | General ad blocking | Chrome and other browsers | Not specified | Free |
Each of these ad blockers offers unique benefits depending on your priorities, whether it's customization, privacy, or ease of use.
Sources [1] Best Ad Blockers of 2025 - Cookies https://www.aboutcookies.org.uk/ad-blockers [2] Best Ad Blockers That Still Work in Chrome March 2025 https://allaboutcookies.org/best-ad-blockers-for-chrome [3] The Best Ad Blockers for 2025 - PCMag https://www.pcmag.com/picks/best-ad-blockers [4] What is the best AdBlocker for Chrome? (browser opinions aside) https://www.reddit.com/r/Adblock/comments/1ex5hyq/what_is_the_best_adblocker_for_chrome_browser/ [5] Best ad blockers of 2025 - TechRadar https://www.techradar.com/pro/best-ad-blockers [6] AdBlock — block ads across the web - Chrome Web Store https://chromewebstore.google.com/detail/adblock-%E2%80%94-block-ads-acros/gighmmpiobklfepjocnamgkkbiglidom [7] Best Ad Blocker 2025 | My top choices that REALLY work! - YouTube https://www.youtube.com/watch?v=92ITOpOxRcQ [8] Adblock Plus | The world's #1 free ad blocker https://adblockplus.org
… add to this Magic Lasoo if you use Apple kit with the added benefit that it blocks ads on YouTube if you view through Safari [otherwise you’ll need to consider purchasing YouTube Premium at £12.99pm, which might be worth it if you’re a big YouTube watcher].
Password managers
A subject we’ve looked at before; recommended password managers would be one from this article, 1Password has my son’s recommendation; but as you know I rely on the less feature-rich but very effective – within a 100% Apple environment – Password app (using iCloud Keychain)
Two factor authentication (2FA)
You might care to look at this page from the BBC on 2FA as well – I would recommend using Authy, if you go down the third-party authenticator route
[A Postscript from Signal – 28/03/2025]
I don’t think I mentioned it yesterday but with an increasing number of apps, the two above included, you don’t need to provide login credentials, you can “Login with Apple” or Google, and I think Microsoft for some. This means the app account is tied to your Apple account (or whatever) and an anonymous userId is created which provides privacy as well as not needing to create a password as well.
Don’t proceed with Free option, or 7-day trial if ads appear immediately you take your first step (eg I followed after research a link to the best recommended software for a particular purpose, but after I downloaded it – no problems, I was immediately bombarded by ads when I started the app up with the plea to pay for an ad-free version), and don’t take the 10% off next purchase offer – this is a particularly insidious “trick” often linked to travel websites, where you are offered 15% off your next purchase, only to find that by clicking on the link you have to provide information, or permission, to send personal information to other businesses.
Be mindful of links on purchase sites – similar to the above, but just be aware that the re-direction takes you away from the original website where you might have felt relatively safe. On that not, always use a Credit Card for online purchases (or Apple or Google Pay, or Paypal) as you’re provided with some protection against fraud.
Beware of location tracking – switch-off all that don’t need your location to work. In your apps just be aware that not all apps need to know where you are – maps … yes; weather – maybe; asda – not really!
Privacy settings in apps – Facebook, Google
Facebook (from Perplexity) …
To enhance your privacy on Facebook, here are key settings to adjust:
1. Control Who Sees Your Posts Go to Settings & Privacy > Settings > Privacy. Adjust the audience for your posts: choose "Friends," "Only Me," or customize it further. Avoid "Public" for maximum privacy.
2. Manage Profile Visibility Edit your "About" section to limit shared details like work, education, and contact info. Set visibility to "Friends" or "Only Me". Turn off search engine linking to your profile under Settings & Privacy > How People Find and Contact You.
3. Secure Your Account Enable two-factor authentication and use a strong password. Regularly review apps connected to your account and remove unnecessary ones.
4. Limit Old Posts Use the "Limit Past Posts" option in Privacy Checkup to restrict visibility of older posts.
5. Control Tags and Posts on Your Profile Under Profile and Tagging, decide who can post on your profile and who can see tagged posts. Set to "Friends" or stricter options.
6. Ad Preferences Turn off personalized ads by reviewing ad preferences in Settings & Privacy > Ad Preferences.
Review these settings periodically for better privacy control!
… and remember my advice to logout from Facebook and Instagram after use. A belts and braces protection of your privacy.
Google offers several privacy settings to help users control their data and online experience. Here are key privacy settings you should consider adjusting:
Web & App Activity Turn off this master privacy control to limit Google's collection of your search history, location data, and app usage. To do this: Go to any Google website Click on your profile picture Select "Google Account" Navigate to "Data & Privacy" Find "Web & App Activity" and turn it off
Location History Disable location tracking by turning off both Web & App Activity and Timeline (formerly Location History). This prevents Google from storing detailed information about your movements.
Auto-Delete Options If you prefer to keep some features enabled, set up auto-delete for your data: Go to "Privacy & Personalization" Select "Web & App Activity" or "Timeline" Choose "Auto-delete" and set your preferred time period
Ad Personalization Limit targeted advertising by adjusting these settings: Go to "Privacy & Personalization" Find "Ad Personalization" Turn off personalized ads
Chrome Privacy Settings For Chrome users, consider these adjustments: Disable automatic sign-in: Settings > Sync and Google Services > Turn off "Allow Chrome Sign-In" Sign out of Chrome: Click your profile picture > Sign out Manage sync settings: Settings > Sync and Google Services > Manage What You Sync
Additional Controls Review and limit data sharing with third-party apps and services Use Google's Privacy Checkup tool to review and adjust your settings Explore the "Data & Privacy" section in your Google Account for more options
Remember, while these settings can enhance your privacy, they may also affect some Google services' functionality. Regularly review and update your privacy settings to maintain your desired level of data protection.
Options you might consider …
Subscription rather than free – a hobby horse of mine! If it’s worth using, it’s worth paying for – especially if it prevents your information being sold on to other sites, or marketing organisations.
Privacy focussed solutions as a choice – Proton vs Google;
Open source as a consideration – always investigate whether there is a FreeWare or DonationWare option, and then consider offering a subscription is requested – Wikipedia, Signal, Libre, etc etc
Wise choices when downloading – be sure of the website before you download software
Here are some of the best sites for downloading safe freeware:
1. **FileHippo** - **Features**: Offers a wide range of current apps, categorized for easy navigation. Provides older versions of software, which can be useful if newer versions cause issues. - **Benefits**: Properly labels any additional software offers, making it easy to avoid unwanted downloads[2].
2. **Softpedia** - **Features**: Over 1 million software titles, regularly updated and checked for malware. Offers mirrors for previous versions of programs. - **Benefits**: Detailed descriptions, user reviews, and editor ratings help ensure safe downloads[1][2].
3. **MajorGeeks** - **Features**: Long-standing reputation for reliability, with a curated list of top freeware picks. - **Benefits**: Known for its trustworthiness, despite a somewhat outdated interface[2].
4. **SnapFiles** - **Features**: Highlights a "Freeware Pick" and a "Random Pick" to discover new apps. Includes user reviews and warnings about bundled software. - **Benefits**: Offers a section for portable programs, ideal for running apps without installation[2].
5. **Ninite** - **Features**: Allows downloading multiple apps at once, automatically rejecting toolbars and unwanted software. - **Benefits**: Ideal for setting up new PCs or reinstalling software securely, with background updates[2].
6. **Tucows** - **Features**: Established reputation with a wide range of software available. - **Benefits**: Known for reliability and safety, though less frequently updated[1].
7. **Portable Freeware** - **Features**: Curated directory focusing on portable freeware with comprehensive descriptions and user comments. - **Benefits**: Ensures software runs without installation and leaves no traces on the host machine[3].
8. **Chip.de/Chip.eu** - **Features**: Offers a variety of software with hints about potential toolbars or adware within the software itself. - **Benefits**: Known for avoiding adware wrappers in downloads[1].
9. **Nonags** - **Features**: Specializes in non-adware freeware, ensuring safe downloads. - **Benefits**: Ideal for those seeking software without bundled unwanted programs[1].
10. **GitHub** - **Features**: A platform primarily for open-source software development, offering a wide range of free and safe software. - **Benefits**: Software is often reviewed and audited by the community, ensuring safety and quality[3].
Sources [1] what's your trusted site for freeware? (sourceforge ect.) : r/software https://www.reddit.com/r/software/comments/1xwokn/whats_your_trusted_site_for_freeware_sourceforge/ [2] Safest Websites to Download Windows Software - Bug Zero https://blog.bugzero.io/safest-websites-to-download-windows-software-ffff6b2e152b [3] Best Website for downloading Freeware Software? - Bogleheads.org https://www.bogleheads.org/forum/viewtopic.php?t=404839 [4] The best free software that's completely safe (we've checked) https://www.which.co.uk/news/article/the-best-free-safe-software-ajW7U4V3dBVU [5] CNET Download: Free Software Downloads and Reviews for ... https://download.cnet.com [6] The 10 Safest Free Software Download Sites for Windows in 2023 https://www.youtube.com/watch?v=KCaTww_6YcY [7] Top 10 Sites to Download Free PC Games Completely Safe and Legit https://www.movavi.com/learning-portal/sites-to-download-free-pc-games.html
A VPN offers a degree of protection (even with a cell connection)
Using a VPN while connected to a cellular internet connection is not strictly necessary but is highly recommended for several reasons:
### **Why Use a VPN on Cellular Data?** 1. **Enhanced Privacy**: - Cellular providers can track and log your online activity. A VPN encrypts your data, preventing your Internet Service Provider (ISP) from monitoring or selling your browsing habits[2][3][4].
2. **Increased Security**: - While cellular networks are generally more secure than public Wi-Fi, they are not immune to threats like phishing or malicious attacks. A VPN adds an extra layer of encryption to protect sensitive information[1][2][3].
3. **Bypass Geo-Restrictions and Throttling**: - A VPN allows you to spoof your IP address, enabling access to region-specific content or bypassing ISP throttling during high-bandwidth activities like streaming or gaming[2][3].
4. **Protection Against ISP Tampering**: - Some ISPs compress or modify website content for mobile browsing. A VPN ensures you access unaltered content[1].
### **When You Might Not Need a VPN** - If your primary concern is casual browsing or using apps like WhatsApp or Facebook, and you trust your cellular provider, a VPN might not feel essential[5]. - Using a VPN increases data usage (by 5–15%) and can drain your battery faster, so it may not be ideal if you're on a limited data plan or low battery[1][2][4].
### **Conclusion** While cellular networks are safer than public Wi-Fi, using a VPN enhances privacy and security. It is particularly valuable if you frequently handle sensitive data, want to avoid ISP tracking, or access geo-restricted content. However, consider the trade-offs in terms of data usage and battery life.
Sources [1] Does a VPN work on mobile data? - Surfshark https://surfshark.com/blog/does-vpn-work-on-cellular-data [2] Should you use a VPN when connected to cellular data? | Tom's Guide https://www.tomsguide.com/computing/vpns/should-you-use-a-vpn-when-connected-to-cellular-data [3] Does VPN work on mobile data? - Cybernews https://cybernews.com/what-is-vpn/does-a-vpn-work-on-mobile-data/ [4] Does a VPN work without Wi-Fi? - NordVPN https://nordvpn.com/blog/does-vpn-work-without-wifi/ [5] Who here uses VPN when on mobile data? - Reddit https://www.reddit.com/r/VPN/comments/n8x2kv/who_here_uses_vpn_when_on_mobile_data/ [6] Do you need a VPN on your phone? Here's the truth. - Mashable https://mashable.com/article/do-you-need-a-vpn-on-your-phone [7] Why You Need a VPN on Your Smartphone | McAfee Blog https://www.mcafee.com/blogs/mobile-security/privacy-please-why-a-vpn-on-your-smartphone-may-be-a-smart-move-for-you/ [8] Do I Really Need a VPN at Home? - PCMag https://www.pcmag.com/how-to/do-i-need-a-vpn-at-home
So it’s up-to-you – how much privacy do you actually want; how much privacy do you need!
A few weeks ago during one of our regular meetings, somebody brought up the topic of Apple News+. One of the features of the service is that it gives you access to over 400 magazines to peruse at your hearts content. This made me sit up and listen, because I knew of a service called Pressreader. This provides access to 7,000 newspapers and magazines from more than 120 countries in over 60 languages, all for free.
How do you access this service? It might involve a trip to your local library.
First, you need a library card. You might already have one, but to make this work, you need to ask your librarian for a P.I.N. number. Both are free. Make sure you keep your details of your library card and P.I.N. You will need them to sign up to the service and you really don’t want to suffer from a nasty case of Passworditis do you.
Next, go to pressreader.com and sign up. You’ll be asked to select your local library…probably Cardiff. You’ll also be asked for your library card number and P.I.N. number. And that is it. You can then browse the catalogue, check the news in the latest newspapers or find absolutely anything from their huge range of magazines….and I’ll say this again, all for free through your local library membership.
If you’re new to the world of on-line reading, you might want to check on another service, free through your library card membership. Visit libbyapp.com
This is a more general library service, giving you access to thousands of electronic books and audiobooks which you can borrow, again, all for free; all part of the library service.
Probably best to load the libby app onto your laptop, tablet or wherever you think you’d enjoy sitting back to read your recently borrowed Agatha Christie
I had an Apple MacBook Air. I bought it early in the lockdown year 2020. At the time, I bought the base model with just 256 Gb of storage. I decided that I could probably get around that limitation simply by storing things in my Apple Cloud. For a while, that appeared to work. Then a few weeks ago I decided to find out how much actual storage I had left available. I’d actually used nearly 200 Gb.
It was then that I discovered that Apple operated a trade in scheme. It works like this. You log on to the Trade In website and provide the details of your device; serial number and the state of its general condition. The then give you an indication of the estimated value. I was offered £275. Considering that I’d made good use of this laptop for about five years, I felt that was a good deal.
Problem was, until then, I really hadn’t thought of getting a new computer. Perhaps about two years in the future was my thinking. However, if my laptop was worth £275 now, I really didn’t think it would be worth that much in two years time.
I’d heard so many good things about the Apple Mac Mini that I decided that this might be for me. It dawned on me that although I’d bought a laptop five years ago, I had never ever taken it out. I had it connected to a large monitor. I also had Apple bluetooth keyboard and mouse. I really didn’t need a laptop.
You start the Trade-In process by filling in an on-line form. Basically, you get asked about the device’s condition. Any scratches, bumps or bulges, that sort of thing. From this, you get awarded a valuation. If you accept, in a few days time, you receive a delivery; a box to pack your device and some instructions on how to proceed.
This isn’t just limited to Apple devices. They accept other brands but they only pay out in the form of an Apple gift card.
I had to create a back-up using something called Time Machine. This, supposedly creates a file containing all of your documents and settings from your old machine. This can then be plugged in to your new machine, which will then set itself up just like your old machine. Well. We’ll see.
I then had to re-set my laptop to day one, thus deleting everything from my old laptop. After that, I packed up the laptop using the provided box and took it to the post office.
I’ll be honest, I found this process a bit emotional. Watching the laptop delete all of the data, then handing it over to the post office, it was a bit like taking an old dog to the vet for the last time. But, hey ho, we must move on.
I made one mistake. Apple devices have a feature called Find My. This is a security device. If your device is lost or stollen, Find My helps you to locate it. It has to be turned off before you start the procedure. They can’t proceed until it is turned off. Eventually I found that you could turn off this feature ‘in the cloud’.
Be prepared for a wait. This isn’t a fast process. It appeared to me that every step along the journey takes 3-5 days. 3-5 days to receive your box. 3-5 days for your device to be delivered to Apple. 3-5 days for them to confirm your valuation, 3-5 days to receive your Apple gift card. Only then will you be able to order your new device.
I suppose you need to think long and hard before considering this service. You could find yourself without your computer for three to four weeks. Also, I estimate that I’m going to get about 25%-30% of my original purchase. Maybe I should have delayed or found another way to fund my new computer. However, I console myself by looking at YouTube videos that tell me that the new Mac Mini is indeed the best thing since sliced bread.
And so we turn to passwords and online security. I’ve dealt with this at some length previously in a post entitled “Keeping safe online” which I last updated in May 2023, and although much of it is still relevant and most, if not all, of the links are still working, I thought to write something from scratch, rather than do another edit/revision.
I’m going to skip to the content at the end of the article referred to above and pick-up the theme of Passwords, Passkeys and Two-Factor Authentication (TFA).
First-of-all – you want a fright? Try typing your favourite password(s) – you do have more than one, don’t you? – into this website.
Secondly, check to see just how vulnerable your email address might be, using …
Screenshot
… go to haveibeenpwned? – and if you want to know what pwned means, and how to pronounce it, look here. If a service you use is in this list, you seriously should change your password!
Another approach is to use a tool that looks at your “digital footprint” to examine where you might be exposed. Such a tool is this one from Malwarebytes.
So that’s got your attention, right? You really need to deploy/use a Password Manager to hold your passwords – preferably one that is usable/consistent across all your devices. Two such products are 1Password and Dashlane. Both of which get very good reviews.
The alternative to using a Password Manager application is to use the password security offered by your browser. In Apple’s case this is iCloud Keychain – which stores the passwords – with its associated Passwords app; in Google’s case this is Google Password Manager. Both of these now offer support from one ecosystem to the other – so multi-platform users can choose one or the other. Microsoft also offer a Password Manager using the Edge browser, but its features are possibly not as well developed as those of Apple or Google, nor of dedicated password manager applications such as 1Password or Dashlane which score best with users who have a mixture of Microsoft, Apple and Google devices and applications.
And now we have Passkeys. When assessing whether you want to move to a Password Manager, you MUST check that the chosen one supports Passkeys as defined in the FIDO Alliance …
… and the key to its success and inter-operability is its integration with biometric signatures. So Passkeys are the platform for increased and improved internet security and should be welcomed with open arms – for Apple, for Google and for Microsoft.
If a Passkey can’t be employed on your favourite website, or even if they are, you may be asked to use 2FA (two-factor authentication). Using this means that when you’ve typed in your username and password you’ll be challenged to provide a code from a mobile phone, an authenticator app such as Google Authenticator, or go to another app (particularly if its a Google app), and do that extra second step (hence 2FA) to authenticate you are who you are.
We’re entering the passwordless world. It’s long overdue!
Finally, some other links to help you navigate the digital security world.
Best antivirus: Which? Best Buys and expert buying advice – a review for both PCs and Macs of anti-virus software – of course you could just be relying and using Windows Defender (for Windows) or nothing at all (if on a Mac), both of which are acceptable decisions, which then leads into …
So you’re an unhappy victim of a scam, apart from resolving the problem which was covered in the earlier post, what else should you do, and are there any other scams you should be aware of. Let’s look at the latter first.
Scams are not restricted to your computer, they can be “served” to you by phone or by text as well. [They can also be enacted face-to-face with vulnerable people.] The advice is constant and clear …
Don’t give your details to anyone you don’t know – if in doubt say you’ll ring them back
Don’t click on links in text messages (and emails of course) from people/organisations you can’t verify
Don’t immediately answer a call from an unknown number, or a number withheld, if it’s a genuine call the person at the other end will speak; if they don’t, the connection will be dropped.
Then there’s a UK website “Stop scams” – where you can report a scam by ringing the number 159. It works in exacgtly the same way as 101 (for the police) and 111 (for the NHS).
I would also suggest sharing details of the scam with Which? using their Scam Sharer Tool
By doing this – if you subscribe to their free newsletter – you will help others, and you, become aware of the scams that are current at that time. Here’s an example of what you’ll see delivered to your Inbox.
A couple of useful tools to check the veracity of a caller …
Who called me – a service that returns details of the likelihood, or otherwise, of the caller being a scammer …
It was indeed pleasing to be able to report that the member resolved the problem and it didn’t re-occur – as far as I know – but pop-up scams are a concern and this short post just gives some illustration of what the issue is, plus some advice on how to resolve the problem if you find your machine has been “taken over”.
I like this US video from the FTC (Federal Trade Commission) which explains the issue really well …
Perhaps the most common scam is the Tech Support Scam – which is what the Windows Defender one mentioned above was. The objective of the scammer is to get complete control of your computer by persuading the user they have a problem which can be resolved by you letting them “repair” the problem remotely – so please let them have your userid and password. Quite the opposite of course – the result will be either you’re locked out of your computer whilst the scammer harvests your personal details (bank accounts, etc), or they are going to implant malware so that they can record what you’re doing online, or use your computer as a relay (an intermediary) for other attacks on other services. Not a happy place to be then!
So read this article carefully. It describes in far greater depth and detail what these scams are and how you can remove pop-ups.
A more extensive article which explains how to reduce and remove malware from a Windows PC is provided here.
