[ home / rules / faq ] [ overboard / sfw / alt ] [ leftypol / siberia / hobby / tech / edu / games / anime / music / draw / AKM ] [ meta / roulette ] [ cytube / git ] [ GET / ref / marx / booru / zine ]

/tech/ - Technology

"Technology reveals the active relation of man to nature" - Karl Marx
Name
Email
Subject
Comment
Flag
File
Embed
Password (For file deletion.)

Join our Matrix Chat <=> IRC: #leftypol on Rizon


File: 1608526010241.jpeg (573.58 KB, 1140x500, cyber_security.jpeg)

 No.2111[View All]

Comrades, we need a thread on privacy. Any decent activist should try ways of staying anonymous on the web and prevent being tracked by governments and corporations.General tips===* Use free software as much as you can.* Use GNU/Linux and keep it up-to-date, to be sure that you don't have unpatched security exploits* Don't use Flash Player, use youtube-dl instead for watching streaming videos online* Do not use Google, use DuckDuckGo or StartPage instead* Use a password manager like Keepass or for GNU/Linux users keepassx. Create new passwords for every site that you visit and use a strong password as a master password. A tip for easy remembering of your master password is to use a sentence. "i fucking love cookies and tits!" with extra capital characters etc. is easier to remember than some random characters and long enough to prevent brute force attacks of any kind.* Use the Tor Browser Bundle if you really want to stay anonymous.Firefox====* Go to Preferences -> History and set History to "Never remember history". * See for additional tweaks: https://github.com/amq/firefox-debloat and https://vikingvpn.com/cybersecurity-wiki/browser-security/guide-hardening-mozilla-firefox-for-privacy-and-securityAdd-ons-----------* Use uBlock Origin for preventing tracking etc. Bonus: use hard-mode to manually whitelist external domains on sites. Don't use uBlock but be sure to use uBlock Origin https://github.com/gorhill/uBlock/wiki/Blocking-mode:-hard-mode* HTTPS Everywhere* DecentralEyes: prevents CDN hosting from tracking you (Google for Jquery etc.)* Self Destructing Cookies: only allow cookies that you choose to allowOS==* Encrypt your hard drive or home partition at least* If you use GNU/Linux, you can try to restrict systemd or syslog from logging. * Use a distribution which takes security seriously. Also, be sure that you don't install a lot of things outside the repository. It will cover most of your needs.Real life tips===* Pay with cash if you canFeel free to provide tips to each other comrades!
170 posts and 20 image replies omitted. Click reply to view.

 No.14549

>>14545
>Is the VPN situation really that bleak?

Ever heard of a popular VPN available to westerners that's not based and controlled in the west?

Also has anyone else noticed disruptions in the popular free western-based VPNs over recent weeks?

 No.14550

>LEFTYPOL.VPN.ORG

>FREE AND PAID VPN ACCOUNTS AVAILABLE WITH SERVER LOCATIONS IN CARACAS, HAVANA, ST PETERSBURG, NICARAGUA, SOLOMON ISLANDS AND A VERY FEW OTHERS.


>FYI WE ARE A CAPITALIST BUSINESS MODEL IDENTICAL TO THE WESTERN FREE VPNS.


1. Why doesn't this exist?
2. What would happen if it did?

 No.14553

>>14550
lets make it exist anon….

 No.14554

>>14553 (me)
though what is their business model? is it limited bandwidth free, to get you to subscribe to paid? Or advertizing? or glow money/grants?

 No.14556

>>14550
>>FYI WE ARE A CAPITALIST BUSINESS MODEL IDENTICAL TO THE WESTERN FREE VPNS.
Why bother trying to make money? A VPS with unlimited bandwidth is not that expensive, but I haven't looked into hosting in those countries. It could be like RiseupVPN.

 No.14557

>>14553
>lets make it exist anon….

I'm available, let's do it. Got any experience in the field, if I can ask?

>Why bother trying to make money? A VPS with unlimited bandwidth is not that expensive, but I haven't looked into hosting in those countries. It could be like RiseupVPN.


The thinking behind using a capitalist business model was that it would provide less of an excuse for the west to ban it, maybe. They would be more likely to ban an overtly communal entity based in those countries, idk. Ebil communism etc

Ofc it could and should be run as some kind of co-operative or whatever.

 No.14558

>>14554

The exact same business model as any of the other popular well known VPNs.

With the unique selling point of locations outside the ~17 eyes countries. That's a pretty big selling point globally, folks.

 No.14559

Does the DPRK offer vps for hire?

 No.14563

We need dedicated servers, not VPS if we're serious about security.

China and Russia have their own glowies and IPs from those countries are quickly put on Western ban lists. LatAm, middle east and Africa are less likely to be spied on or get banned. IMHO the countries for LeftyVPN would be:
Cuba
Nicaragua
Venezuela
Bolivia
Syria
Angola
Bhutan
DPRK
Ghana
Solomon Islands

 No.14567

>>14563
As if Cuba and especially the DPRK wouldn't have be in the same category as China for a VPN. Of all ML, the one on the radar the least I would assume would be Vietnam, yet you didn't even mention them. Bolivia may be a good bet too, but less so than Bolivia I'd say since they're more internally divided and the ones that would host a server rooms in that country would probably be liberals (of the more wealthier strata). Meanwhile I'd expect most of Vietnamese to be generally more patriotic.

 No.14571

>>14563
LeftyVPN, Your Packets are Safe With Us, Comrades :) (tm)

 No.14572

>>14571
also the jurisdiction itself matters less than the concrete fact of how much the host can hold its weight under any kind of institutional pressure. it's why generally ideological service providers like riseup are so trusted even if they're hosted within the US

 No.14573

>>14567

Servers located in every one of the countries mentioned, that are outside the n+1 eyes countries, would be totally owned anyway, no matter what. Same as all the well known western vpns.

So what? There's a massive market of people outside the west who'd like access to some kind of VPN based outside the west.

It would be a great project, surprised it hasn't been done already. There's a lot more value in it than just giving people the illusion of privacy.

 No.14574

>>14572

tbh, I would have no problem allowing a VPN run by Venezuelan government ninjas access to my data. Everyone else has it anyway.

 No.14575

>>14572
>it's why generally ideological service providers like riseup are so trusted
They're not at all "trusted" by anyone other than anarcho-radlibs.
They had their warrant canary not updated for half a year at one point and basically came back like "everything's fine don't worry :)"
You'd have to be seriously stupid to rely on an "anarcho-communist" email service from the US that has existed "without problems" for that amount of time (decades). Their entire team are compromised is the likely possibility.
Actually now that I just quickly Wiki-searched it; the warrant canary event in 2016 actually was a gag order, and they fully cooperated with the FBI. They have since removed any pretense of securing people's data from their updated canary.
https://en.wikipedia.org/wiki/Riseup#Warrant_canary

 No.14577

>>14575
i couldn't care less about your knee-jerk response to anarchists, honestly. they've been much more practically diligent against the US government for decades than your shitty "i'll let 'actually existing socialist' spooks spy on us" service could ever be

 No.14578

>>14577
>I'll enthusiastically rely on the FBI-approved ancom servers, tyvm!!!!
Be my guest LMAO

 No.14579

>>14567
Vietnam cooperates with America on a lot things these days and is Anticommunist like China

 No.14582

>>14579
Clearly the real winner here is Venezuela:
https://en.wikipedia.org/wiki/Copyright_infringement#Existing_and_proposed_laws
https://e.vnexpress.net/news/news/vietnam-boosts-intellectual-property-index-score-4255824.html
>The bottom five economies are Kuwait (49th), followed by Nigeria, Algeria, Pakistan and Venezuela (53rd).

 No.14588

>>14557
idk why i said that in a way implying i could help currently, sorry
i have experience setting up a personal vpn using openvpn and basic general server management shit, but i'm not in a good place to be starting projects right now, i dont have the money for a standalone server, and i have next to 0 web experience which would be needed

i'd be down to try setting shit up since it's been a goal of mine for some time to create some leftist run but not necessarily activisty/hackery web resources like vpn, storage, email, foss social media, etc. Anyways i can't right now, but if you're still interested in a couple months then this could happen. Though finding servers could be hard, and paying for them might be even more difficult.

 No.14589

So is there some obvious reason why there isn't already a venezuelan mullavad?

 No.14590

Why would you use a VPN instead of Tor, except torrenting? For torrenting, why would you use a VPN instead of I2P?
>>14563
There's also a need to host Tor nodes in those countries. Too many Tor nodes are in Germany.

 No.14591

>>14590
Are you talking individual users or leftypol as a whole?
Making leftypol an onion based site would be less feasible for 3 reasons:
1.tor is slower
2.tor only sites are more vulnerable to CP spam
3.most users don't connect via tor

 No.14592

>>14589
Well one obv reason is that the target demographic is usually liberals/proprietarians and so they would definitely not touch anything to do with heckin authoritarian socialist dictatorship Vuvuzuela
>>14590
>Why would you use a VPN instead of Tor, except torrenting?
That's a major reason. Also for a lot of regular stuff that needs login.
>For torrenting, why would you use a VPN instead of I2P?
Because by comparison to "regular" trackers I2P is virtually unknown and barren. But I wish this would change.
>>14591
leftypol.org already has an onion server btw, I'm using it right now:
http://76i2c3hn55fcj5nut3tqlboqqbbh23zvphv7lefk3vftpx6wketlanyd.onion/tech/res/2111.html

 No.14593

>>14590
hey Nym is a project which seeks to solve this problem. It's a paid mixnet that uses a blockchain to pay server providers to incentivize thirdies hosting servers instead of CIA hosting them. It's entering the final stages of deployment to mainnet now, i'd expect it to be ready for mass use in like 6 months but idk they keep promising to release more papers and shit and delay, so who knows. There's not like a browser for it rn…. but yeah anyways it exists and has potential

 No.14594

>>14593
also the threat model they developed it with is with the understanding that an adversary could theoretically see the whole of all internet connections, rather than tor basically hoping this doesnt exist… which works for now but has holes. nymtech dot net for their site

 No.14595

>>14592
>Well one obv reason is that the target demographic is usually liberals/proprietarians and so they would definitely not touch anything to do with heckin authoritarian socialist dictatorship Vuvuzuela

There should be a viable global market for this though, you're maybe looking at this from a western-centric point of view.

Mullavad is a service based in the west, available globally.

So is there some other obvious reason why there isn't already an equivalent to mullavad, except based outside the west? Venezuela was used an example, there are other suitable countries mentioned in the thread.

>>14590
>Why would you use a VPN instead of Tor, except torrenting? For torrenting, why would you use a VPN instead of I2P?

The discussion isn't about Tor, it's about the lack of vpn services that are based outside the west. We don't seem to be able to answer why this is, so far.

>>14588
>>>14557
>idk why i said that in a way implying i could help currently, sorry

hey no need to apologise, we're just kinda shittalking tbh. I think there's something there though, unless I'm missing something.

Again, is there some obvious reason why there isn't already a venezuelan (or similar country) mullavad?

 No.14596

>>14595
>the lack of vpn services that are based outside the west. We don't seem to be able to answer why this is, so far.
Because internet and hosting in these countries >>14563
is unreliable, slow and expensive.

 No.14597

>>14563
>no balkan country

 No.14602

They wanna make Signal illegal in Belgium now. Don't know if Matrix clients stand a chance if this shit really gets implemented https://www.standaard.be/cnt/dmf20220429_94515802

 No.14605

>>14596

Seriously, is that the main obstacle preventing something like a mullavad in those countries?

Isn't every country basically connected to the same internet these days? Like, this operation would be based in the capital city connected to the national backbone or whatever, so why would it be prohibitively unreliable, slow, or expensive? Everything should be cheaper in these countries, I thought.

 No.14608

>>14605
backbone/upstream networks are only as strong as the volume of traffic in downstream networks
Europe has a whole bunch of intra-regional IP routing providers like say Portlane with massive amounts of traffic, so they have higher connectivity on the internet as a whole as a result, as opposed to a country with a smaller amount of traffic coming from its backbone routers

 No.14620

>>14608

appreciate the reply. So it's a lack of connectivity or infrastructure that's the main reason something like mullavad doesn't exist outside the control of the west, in a country mentioned above?

Wouldn't almost anything resembling it, run and controlled outside the west, be an attractive service for many global citizens? Hosting, vpns, vps, whatever.

So it wouldn't have the same connectivity as something based in the west would have, but wouldn't some service be operable on a smaller scale?

 No.14682

>>14620

I want leftypolavad.ve please.

 No.14691

File: 1651955091413.jpg (304.88 KB, 672x936, 1563825542120.jpg)

I want to coreboot my trusty thinkpad but it seems I chose a bad time to do it.
https://www.techradar.com/news/good-luck-getting-a-raspberry-pi-anytime-soon-unless-you-want-to-buy-thousands
Is there anything else I can use to securely flash a motherboard?

 No.14697

>>14691

As someone who tried and failed to coreboot, did you even read the most basic guides you total…comrade :)

The other option to the Pi is a chip flasher. I got the recommended one from alibaba for a few dollars. When it arrived, detailed reading (500 tabs open) revealed that some of these flashers have a manufacturing defect or something that causes them to output the wrong voltage or something.

I took a chance and went ahead. Failure happened when I couldn't actually get the pomona clip to securely attach to the bios chip so that a data connection was made.

It's probably because my sight, just could not see wtf was going on, shits too small. Spent a couple of hours but only got the connection operating one time. Planning on trying again with a magnifying glass.

Can't remember the type of pomona clip chip flasher, now but it's mentioned a couple of times in the most popular guides.

 No.14699

>>14697
Wait I thought you needed a device (like a raspberrypi) and a CH341A Pro with a SOIC-8 clip? Now that I read a bit it seems the CH341A Pro is an alternative to using a raspberrypi.
Lmao I feel retarded now, I do need to RTFM…

 No.14719

>>14699

like I said if you're getting the CH341A make sure it's the exact model that gives the exactly correct voltage for coreboot, there are versions…I got a clip + CH341A kit on ali

 No.14809

>>14595

Nobody else see the value in a mullavad-style service based outside the n+1 eyes countries?

Can't understand why nothing similar exists already, even if only for PR purposes.

 No.14815

>>14809
>government-sponsored VPN service
yeah not sure that'll go over well

 No.14846

>>14815

Can't understand the negativity and discouragement tbh.

Why would it have to be government-sponsored? The popular western vpn + hosting services aren't technically government-sponsored but very government accessible. The service would be as ostensibly distant from local government as any western vpn service.

Are there not many people outside the west, as well as many western leftist types like me, that would pay something for a service based outside the n+1 eyes countries?

 No.14851

What's up with the Tor guard system? Is it trustful?

 No.14928

>>14851
yeah you need to trust the guards somewhat. It relies on statistics or smth to assure you that its a better system than the alternative, which is just random circuits, but if you run anything you want to be secure (like a service accessible over Tor i mean) you have to host your own tor nodes and specify them as guard nodes or you're taking chances

 No.15517

Firefox is pretty much the way to go. Based off of Netscape, probably the most used browser out there so generic against potential fingerprinters, modern and sleek, etc. You probably already have it installed, or have yet to fetch it from your distro's repo, who knows.
There are countless hardening guides out there for Firefox. Generally you want to disable Pocket, WebRTC, telemetry (sending data to Firefox's servers as a sort of feedback) blah blah blah. Take a gander:
https://web.archive.org/web/20181031171622/https://www.privacytools.io/#about_config
https://chrisx.xyz/blog/yet-another-firefox-hardening-guide

Javascript
This will probably be your biggest worry after fucking around in your settings and about:config, as it concerns privacy, unobstructed use, CPU usage, important stuff. There are several add-ons that deal with this. Definitely get LocalCDN. LibreJS deals similarly with essential Javascript code that has restrictive licenses, which might be a worry to varying degrees. Apart from that, uMatrix is fine-grain as hell. uBlock Origin also works alongside all of these as a convenient blacklist for ad-fuckers.
https://www.localcdn.org/
https://www.gnu.org/software/librejs/
https://addons.mozilla.org/en-US/firefox/addon/umatrix/
https://ublockorigin.com/

Proxying
Scroll down to the bottom of General Settings. Click on the button for Network Settings. Check Manual Proxy Configuration and put 127.0.0.1 in SOCKS host and the port whatever your OpenVPN or Wireguard or TOR is running on. For TOR I think it's 9050, look it up idk. Check "Proxy DNS when using SOCKS v5", DNS is easily the biggest weakness and most common cause for slip-ups when proxying.

Search engine
You want something that doesn't collapse because you can't run their precious Javascript and to not instantaneously ping a 3- or 4-letter agency's server farm. Duckduckgo.com is alright, also poke around the instances on searx.space.

 No.15518

>>15517
>Check Manual Proxy Configuration and put 127.0.0.1 in SOCKS host and the port whatever your OpenVPN or Wireguard or TOR is running on.
You can be fingerprinted if you use a custom thing like that. Just use Tor Browser Bundle like most people.

 No.15525

>>15518
But tor explicitly allows for SOCKS5 proxying. In many cases its better than vs not doing it, also TB is extremely limited in functionality for "heavier" web applications, like even Element/matrix with a lot of people / rooms chatting (SOCKS5 proxied Element Desktop is then preferable).
Another similar area is also RSS. Most browsers, including Firefox (and TB) removed support and you're thus forced to use a standalone application. Here again its better to torify the traffic via SOCKS5 proxy than vs not doing it.
Wouldn't you agree?

 No.15526

Firefox keeps on winning (or rather, Chromium keeps on losing).
https://news.itsfoss.com/chrome-extension-tracking/

 No.15529

File: 1655872119655.png (66.35 KB, 1083x410, browser-user-share.png)

>>15526
Sure thing.

 No.15531

>>15525
torsocks doesn't work for all uses and isn't guaranteed to route everything
shell out some time and use whooonix instead

 No.15540

>>15529
Fucking chromebooks


Unique IPs: 11

[Return][Go to top] [Catalog] | [Home][Post a Reply]
Delete Post [ ]
[ home / rules / faq ] [ overboard / sfw / alt ] [ leftypol / siberia / hobby / tech / edu / games / anime / music / draw / AKM ] [ meta / roulette ] [ cytube / git ] [ GET / ref / marx / booru / zine ]