The caller wants to know if backing up data to DropBox is secure? He's worried that backup companies have access to his sensitive data. Leo says he can encrypt the data, and he alone has the keys to that. So if he loses it, he's out of luck. DropBox will accept secure encrypted data. If he's looking for a cloud-based encryption backup option, SpiderOak is an option, though it's a bit clunky. VeraCrypt is another.
Australia has recently passed a bill that would require companies like Signal and 1Password to provide the government with user messages and data upon request. Many companies that offer encrypted communications, however, don't have access to that information themselves because it uses end-to-end encryption. But now that sort of encryption technology is illegal in Australia without a 'back door' being put in. If there is a back door, then access to that data isn't just available to the government, it could be available to any hacker as well.
Parliament in Australia is pushing through an anti-encryption law that will make it not only illegal to use encrypted communications, but will also give law enforcement and other government authorities the power to use malware to crack an encrypted network. Leo says it will endanger the security of anyone using an online service and obvious violates an individual's privacy rights. Russia has a similar law, as does England.
John is worried about security on his new Windows laptop. Leo says to follow the archonym "UPDATE":
Leo says whenever he's on communal Wi-Fi, as he will be on the cruise, a hotel, or a coffee shop, everyone's on the same network. Nowadays, places like these are getting better about making it more secure, and it isn't as risky as it used to be. But there is a potential risk that someone else on that network could snoop on him. Whenever he's using email, shopping on Amazon, or banking, all of that traffic is already encrypted. Leo thinks using a VPN on cruise ship Wi-Fi would probably slow his connection down to a point where he wouldn't be able to stream content online.
When you get a new router, there are a few things you can do to make sure it's set up securely.
The first thing you'll do is connect it to your computer and check the manual to find out how to configure it.
Once it's connected to your computer, you'll use the browser to navigate to a special address as instructed in the manual. It should be something like 192.168.1.1. This will take you to the login screen for the router.
Does Richard have to create a VPN to set up his DNS settings? Leo says no. DNS is essentially the phone book that the internet uses to look your address up. You don't use a VPN for that. VPNs are for encrypted net traffic. OpenDNS is the best DNS that Leo likes. CloudFlare is another. Quad Nine. Google even has a secure DNS. All are great if you're concerned about privacy, as it allows you to filter traffic at the router level. Log into your router, look for the DNS settings, and input the DNS address of your DNS server.
Andrew misses FDisk in MSDOS. He liked typing from the command line. Leo says that FDisk still exists in Windows, and when he deletes a partition with it, the data isn't lost, it just loses the structure of partition information. If he wants to erase all the data, Leo recommends Darik's Boot and Nuke (DBAN). It erases the data, overwrites the hard drive, erases it and overwrites it again. Seven times. So there's no way the data can be recovered.
Dan is having an issue where on his MacBook the cursor jumps while he's typing. He can't even write an email. It'll even start a command. Leo suspects it's a problem with the trackpad. He should try cleaning it first. Sometimes "schmutz" can cause phantom touches. The palm rejection software in the OS may have been disabled. The worst case scenario is that the trackpad is failing. Since the laptop is about a year old, he could take it into the Apple Store and have them take a look at it.
Tim uses Time Machine for his backup, but the backup fails intermittently. His Synology NAS is citing improper credentials as the cause. Leo says that encryption certificates need to be renewed from time to time, and if he's encrypting his data on backup, that could be the issue.
There is a post on Synology forums about this: Time Machine, Making it Work. Learn from my Suffering. There are some steps that can help.