Let’s set up your browser. I’m using Firefox but all of this can be translated pretty cleanly to Chrome. Notice, I didn’t say Internet Explorer, Safari, Opera, or anything else. I don’t suggest any of those browsers. I actually suggest you don’t use them. But, I’ve already told you that.
First things first, you can check out what I’ve already talked about from one of my first posts, The Basics of Web Browser Security. I talk about using Adblock Plus, Disconnect, and HTTPS Everywhere in the post. I also briefly talk about what they do. At the end of the post I said I’d have a dedicated post to LastPass, well this is going to be it.
LastPass is my password manager of choice. This is the only tool I’ve found that truly links convenience and security. The philosophy behind LastPass is that you’ll have one master password that protects your password vault. This is the last password you’ll ever need to remember. I talk about passwords in Password Security which should help you out on creating your master password. That master password needs to be something long and secure. Perhaps a 6-character password from the excel spreadsheet? That equates to at least 30 characters of actual password.
Your next step is setting up dual authentication. They have a pretty nice grid option for you if you don’t have a yubikey or something similar. I use the grid. LastPass will generate a unique grid for you with random characters. Every time you log in, after you put your password in, it will give request the character at 4 separate coordinates.
Now we have our browser set up. This is important as most of the tools we’ll be using are through the browser. These plugins and modifications have improved our security and we will leverage that to improve our work flow.
What plugins or browser hacks do you use?