I want to thank the Parrot-founders and the community for Everything you do!
My main concerns is about Security and Privacy. well, im a “newbie”. But i have learned alot, that i didnt know before…
First of all i want to say, AnonSurf is Great. Thats the best.
BUT then, i wonder: WHY are you using “standard Firefox” ParrotSec? Even the “ParrotSec Firefox”, from the (first installation) ParrotSec 5.0. Had terrible DNS-leaks, (and i guess everything else “insecure” about the standard-firefoxbrowser? OK its installed with the “AnonSurf-proxy”, and that is good. But not enough (because of the “Standard Firefox or ParrotSec Firefox?” is not a “Hardened version”?
right. Else it wouldnt have those terrible DNS-leaks? So, my suggestion? Use LIBREWOLF https://librewolf.net/ as your standard browser in the new version of ParrotSec? Because, Librewolf IS the best / most secure of all the browsers that exists Today Ok.
“LibreWolf uses more than 500 privacy/security/performance settings, patches, LibreWolf-Addons (optional) and is designed to minimize data collection and telemetry as much as possible (updater, crashreporter and Firefox’s integrated addons that don’t respect privacy are removed).”
My next question is about the Firewall. Why isnt a SECURE FIREWALL installed with ParrotSec?? Why isnt a “ParrotSec-Standard Firewall” not installed for MAXIMUM security? This took me some time (as a “newbie” to figure out) when i discovered / learned, that there are about 80 0000 “unprotected open ports”?? (within an “Standard installation of Firewall”), So? a ParrotSec “standard-installed firewall”, leaves you unprotected against 80 0000 Ports?!:S That CAN and will Track and Hack you?.. As i also learned there are some “supercomputers” from IBM?? (for an example) that are installed just to Track you and monitor you and your internet-traffic. i just cant explan, what the HELL is going on when ParrotSec leaves you *unprotected against 80 000 ports?.. :s Anyway. THAT took me some time also to “figure out”; I close ALL PORTS (in both directions), and only leave Port 80 and Port 443 Open, that is the only 2 ports Necessary for internet. What happens, ALSO when you close ALL ports (except 80 and 443) IS that you close ALL “DNS-requests” Because? the “DNS-requests”, is within Another “port”. Ok.
Well? You know this already (hopefully), just want to share my experience.
Now, i have some questions? First, Do you follow the suggestions from “Debian Security”? https://www.debian.org/security/ ? (if Yes? Then the “Debian Security-suggestions/updates”, should also be included in ParrotSEC (Standard installation) when you do a “sudo apt-get update && apt-get upgrade”? (because this is ALSO not included within the “standard installation of ParrotSec”? Why is that?
My last concern Really is about the “IP-adress”. And this has been a long struggle for me to learn,… that “obviously” (for me), it doesnt mattar WHAT i do, to “change my IP adress manually”, (OK “newbie-experience”), for an example, i tried to erase all network settings then manually change them, (when offline), but 2 seconds after i “connect to internet”, Everything i had changed / modifed was erased and changed back to “normal settings”, the IP was changed back to the ISP-adress, (i even tried to change the MULTICAST-settings,… Multicast OFF) etc. but that was Also changed to “multicast ON” (by the ISP)… but, (i Think), this problem is within the Router-settings… BUT i Also think the ParrotSEC, could Figure out a clever script (within the Standard ParrotSec-installation) that also CHANGE the Router-settings (IP-settings), so that the ISP, cannot “modify the IP-settings”?? That would be great? Because all this “question about Privacy” (i think), is Related to simple things? like Learning how to Modify the Router-settings change the IP permanently and setting up a Good FIREWALL with Maximum Security?.. anyway. I guess, this is related to (Proxy), That is something i wish to learn, (but then i wish to know exactly how to modify the Router-settings and the IP), and i also wish to learn everything about SUBNET /Subnet-ports and Subnet proxys (tunneling).As i also discovered you could SET your Router to Tunneling-protocol… (sorry im a “newbie” ok!) xD
Last Question. (perhaps not related to ParrotSec) But what is your suggestions of a “secure email”. If you could give some advice about that? (that has also been a great concern of mine). Because i dont trust most of the email-providers that exist today (that i know of?).
Hope you find my ramblings of some value And, i thank the ParrotSec-founders and the community again, for all the great work!