Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
-
So the new mass surveillance law will be going into effect from the 1st of January.
Of course, since I'm very keen on my security/privacy, I'm going to implement some precautions.
- A few vps's connecting to tor, i2p and VPN provider so that I can always use a secure connection.
- Setup anti tracker/ads/etc etc shit on the VPS's. Probably through DnsMasq and the hosts file.
- Use Tor browser by default. I've tried this for a while now and damn, the tor network has become way faster than only even a year ago! Some pages literally only take a few seconds to load.
- Wipe my laptop, encrypt the harddrive and at least put QubesOS on it together with probably a few other systems.
- Ungoogle my new phone, use it with VPN by default.
- Get rid of all non encrypted communication services. I think that only leaves me with a few account removals because I haven't chatted unencrypted for nearly a fucking year now.
If anyone has any more ideas, please share!42 -
So a friend of mine ran a Tor Exit node at home for a few month.
He upgraded to gigabit so he was able to push 950Mbit/s quite nicely. He has the oldest Tor Relay (11 years) and was the 2nd fastest exit node.
But he was sadly forced to remove the exit policy, because the police and some other government agencies knocked on his door today.30 -
TL;DR they blocked github
I work remotely, that means every once in a while I take my laptop and travel somewhere, work and have fun. This week I am visiting Turkey, they just blocked github 2 days ago... Freaking github... who does that?! and why?!7 -
1. I wish that people start taking back their device ownership. Right to repair is an extremely important thing. Like that Nexus 6P that I've recently repaired by jamming another battery into it, now it's at 110-ish% health according to AccuBattery. And it cost me.. €10 or so? All the while if I wasn't able to get in there, it would've been a €120 paperweight (and that's not even considering the €300-ish (? Someone please fill me in on that) price it retailed at back in 2015 when it was a flagship).
(edit the so many'th: according to https://express.co.uk/life-style/... the base model was apparently £449 at release, haven't been able to verify it though.. point is, a paperweight at such prices would've been quite a bummer, I mean for me it was even one given that it failed a mere few months after purchase for €120.. €40/m for a phone ain't nothing :/)
Right to repair is an extremely important thing, and the ability to do so shouldn't ever be impeded. Users should become able again to service the devices that they own.
2. I wish that people start caring about their privacy again. Google and Facebook and the likes are large companies, but at the end of the day, that's all they are. Large companies. And they're hungry for your data, not because they're selling it, rather because they're collecting it to an extent which they shouldn't. Over at DDG (https://spreadprivacy.com/duckduckg...) they explain a very much viable alternative revenue model pretty well. Additionally, there's several tools which you can use to limit the amount of data that's being collected about you. These include but are not limited to Firefox, NoScript, ad blockers (I personally use uBlock), a trustworthy VPN (ideally one of your own), and Tor.
3. I wish that software would become less inefficient. It really pains me to see that applications with functionality that could be implemented in a couple of MB at most come at a size of several hundreds of MB. 1% efficiency, even the inefficient as fuck tungsten light bulbs weren't that awful!!! Imagine what could be done with all the hardware we have available nowadays, if every piece of software would be around 80% efficient as is a common norm in electronics. Just looking at Linux which is still in many ways convoluted, modern desktops with a couple hundred MB of RAM usage? You've got it! So why can't OS's like Windows (although I have to say, huge improvements have been made there over the last few years) and browsers like Firefox and Chrome be more like that? I really don't understand.
There's several more wishes I have of course, but those are the most important ones.. hopefully I'll be able to see at least one of them come true during my life.10 -
Alright, with all the horrible internet freedom and privacy threatening stuff going around I'm setting up a new tor relay, hopefully 2gb/s.
Already have one running with an average throughput of 2TB/day but another one won't hurt, would it?
Who else runs tor nodes here? :D15 -
Co-worker: I need a proxy to do this task.
Me: Why do you need a proxy?
Co-worker: So all these reviews for the company I'm posting don't look sketchy.
Me: Download the TOR browser.
Co-worker: That's kinda sketchy I don't wanna do that.
So falsifying information about the company is okay, but using a browser to do it anonymously is right out.1 -
Root rents an office.
Among very few other things, the company I'm renting an office from (Regus) provides wifi, but it isn't even bloody secured. There's a captive portal with a lovely (not.) privacy policy saying they're free to monitor your traffic, but they didn't even bother using WEP, which ofc means everyone else out to the fucking parking lot four floors down can monitor my traffic, too.
Good thing I don't work for a company that handles sensitive data! /s But at least I don't have access to it, or any creds that matter.
So, I've been running my phone's connection through a tor vpn and sharing that with my lappy. It works, provides a little bit of security, but it's slow as crap. GET YOUR SHIT TOGETHER, REGUS.
AND WHILE YOU'RE AT IT, CLEAN THE SHIT OUT OF THE FUCKING BATHROOM FFS.
Ugh. $12/day to work in a freaking wind tunnel (thanks, a/c; you're loud as fuck and barely work), hear other people's phone conversations through two freaking walls, pee in a bathroom that perpetually smells like diarrhea, and allow anyone and everyone within a 50+ meter radius to listen to everything my computer says.
Oh, they also 'forgot' to furnish my office, like they promised. Three freaking times. At least I have a table and chair. 🙄
Desk? What desk?
Fucking hell.20 -
- devRant TOR rant! -
There is a recent post that just basically says 'fuck TOR' and it catches unfortunate amount of attention in the wrong way and many people seem to aggree with that, so it's about time I rant about a rant!
First of all, TOR never promised encryption. It's just used as an anonymizer tool which will get your request through its nodes and to the original destination it's supposed to arrive at.
Let's assume you're logging in over an unencrypted connection over TOR and your login information was stolen because of a bad exit node. Is your privacy now under threat? Even then, no! Unless of course you had decided to use your personal information for that login data!
And what does that even have to do with the US government having funded this project even if it's 100%? Are we all conspiracy theorists now?
Let's please stop the spread of bs and fear mongering so that we can talk about actual threats and attack vectors on the TOR network. Because we really don't have any other reliable means to stop a widely implemented censorship.12 -
Here's a follow-up to my New Year's resolutions rant six months ago:
( https://devrant.com/rants/1117379/... )
I've completed (or made significant strides in) 5 of my 7 resolutions:
1) Rid and keep my like free of toxic people. This includes parents.
I have had a serious conversation with everyone who made my life worse and whom I wanted to keep around, outlining my issues with them and my expectations should they want to remain in my life. I happily cut out everyone who refused to change their behavior, including my parents. My life is quieter now, and much nicer.
3) Take care of myself for a change!
I've started this, but with work, a monster, etc. it's been almost prohibitively difficult. Minimal lasting progress despite considerable effort. I will make more time for it and make it happen. (I was down 12 pounds at one point! Though this isn't just about weight.)
4) Stop putting up with things I don't have to.
If I don't like something optional, snip snip!
I no longer wait patiently (fuming) for slow-moving people. If something prevents me from being productive or going about my day, I no longer let it. Carpe diem; calcitrare culus! I have been much more productive and energetic because of this.
5) Actually enjoy things I enjoy.
Okay, this one is very difficult. Whenever I'm not working, I feel like I'm wasting my time. However, I have made a conceited effort every day to take time off and do something that sounds fun. Sometimes that's more work, but usually it's music, a game, a book, exercise, or bed. I'm still working on actually enjoying my time away from work, however, but I'm making progress!
7) Finish de-googling my life.
I no longer use a gmail account (except a work-provided account), nor do I use any of their services unless absolutely necessary (and I do so through TOR). My phone still has Google Play Services; however, I'm working on finding a replacement that I can @Root. (Suggestions welcome!)
------
The two resolutions I haven't yet addressed:
2) Find a well-paying job that isn't also toxic.
My job has gotten less toxic of late, with the boss actually listening and everyone writing up feature requests (with co-sponsors) instead of just dumping them in my lap. I perform an effort analysis on them, and everyone discusses them as a team to determine which actually deserve development time. This is tens of times better than before. I also no longer have to be at the office. In fact, I haven't been there in months -- and don't even remember the alarm codes haha. I may also be getting another developer, though I suspect this is actually a lie.
6) Finally buy a harp. I've wanted one since I was 3 ffs.
I haven't done any research yet on which harp(s) I should buy. Also, I have no idea where I would keep it, so I may defer this until we move, or just get a tiny one (lap-sized and cute!) to practice on. Probably both!
------
It's been six moths, and I'm happy with my progress. 😄9 -
My friend - the admin of the Ancient Tor-relay got a green light from his ISP to activate the Exit policy for his relay again!
Bahnhof is a damn good ISP!7 -
No protesting for me today. Sorry.
if anything happens today however, I will create my own Tor exit node.
And you will be among the first to know about it.
Tor will be the next uncensored web. And I will strive to protect it.
At least that's something I can do from home, regardless of time zones and timing altogether.
I feel like we can't save the internet anymore. But we can create another one.
The darkweb is waiting for you.
It's only the Tor Browser away.18 -
First tor relay is up and running. Works well, all good.
Want a faster one as well (nearly 1gbs) and trying to set it up but the control port won't get its fucking ass up. No clue what's going wrong :/
Probably missing something but idk what.
Grrrrrr.15 -
Android, you fucking cunt!
Battery saving, yes it's an important thing. So first you want applications to display a big-ass notification when they're running in the background. Fair enough, it can be hidden away by the user if they want to.
But now there's a big-ass notification and the applications STILL get force closed?!! If I'm browsing Tor and I have Orbot running, don't you think that I might want to KEEP IT RUNNING?!! Or better yet, if I'm connected to my VPN server and the application is actively using the VPNService API, DON'T YOU THINK THAT THAT SHOULDN'T BE CLOSED?!!!
But yeah, ARTIFICIAL FUCKING INTELLIGENCE is doing some leety-ass fucking battery saving. MY FUCKING ASS CAN DO BETTER BATTERY SAVING!!!15 -
for 2019 I want to be the very best dev
that no one ever was
to code them all will be my test
debugging is my cause
I will travel across the net
searching wide on tor
each singleton to understand
the power of the code
devmons its you and me
you know its our destiny
devmons
you're my best friend
and our firewall will stand
Devmons!13 -
Writing a chat application which works through tor hidden services and nodejs, currently.
It shouldn't be considered secure at all but damn, this is a very fun challenge!4 -
Facebook be like,
"We have a TOR-Hidden-Service, but you have to give us your phone-number and a picture of your face, if you want to use your account for more than two days."1 -
Guy using VPN:
why would anybody use tor unless he hides something?
Me (using Tor):
why would anyone use VPN unless he hides something?
In my opinion there is no difference in using Tor than in using VPN, it's all about privacy. I would consider Tor as an free alternative for your everyday privacy needs, if you can't afford VPN, or am I wrong?22 -
Okay, That right there is pathetic https://thehackernews.com/2019/02/... .
First of all telekom was not able to assure their clients' safety so that some Joe would not access them.
Second of all after a friendly warning and pointing a finger to the exact problem telekom booted the guy out.
Thirdly telekom took a defensive position claiming "naah, we're all good, we don't need security. We'll just report any breaches to police hence no data will be leaked not altered" which I can't decide whether is moronic or idiotic.
Come on boys and girls... If some chap offers a friendly hand by pointing where you've made a mistake - fix the mistake, Not the boy. And for fucks sake, say THANK YOU to the good lad. He could use his findings for his own benefit, to destroy your service or even worse -- sell that knowledge on black market where fuck knows what these twisted minds could have done with it. Instead he came to your door saying "Hey folks, I think you could do better here and there. I am your customes and I'd love you to fix those bugzies, 'ciz I'd like to feel my data is safe with you".
How on earth could corporations be that shortsighted... Behaviour like this is an immediate red flag for me, shouting out loud "we are not safe, do not have any business with us unless you want your data to be leaked or secretly altered".
Yeah, I know, computer misuse act, etc. But there are people who do not give a tiny rat's ass about rules and laws and will find a way to do what they do without a trace back to them. Bad boys with bad intentions and black hoodies behind TOR will not be punished. The good guys, on the other hand, will.
Whre's the fucking logic in that...
P.S. It made me think... why wouldn't they want any security vulns reported to them? Why would they prefer to keep it unsafe? Is it intentional? For some special "clients"? Gosh that stinks6 -
Update:
I disabled every google app on my phone, installed duckduckgo and apptoide an am routing everything through tor... Yay.
are there any hidden googlemapps that still tryna get my data?
Next step : block any google services. How to do that?30 -
So I finished uni three weeks ago. Interview for a my first junior web developer position a week ago.
Received news yesterday that I got the job. It’s been a good couple weeks I’d say.3 -
Ok. so my ISPs port 53 was DDoSed and I couldnt resolve hostnames anymore.
The only app that worked was Telegram because it (thankfully) calls an ip and doesnt use a DN.
The friends at @codrTalk were so kind to resolve like 20 sites for me by hand in order for me too 1) find out what happened 2) find hotfixes 3) download tor
Now, that I downloaded tor, im doing this over tor.
PWEASE @devrantron team and @devRant team
Could you please make it, that devRant get called over ip as opposed to by DN in your apps?
Anyway, thanks to those in codrTalk.13 -
someone posted this saying "tor isn't effective". Tore them a new one and explained how each failure point is only worst-case.
8 -
tired of my tor browser not letting me do my job (still configuring settings, but it's taking too long and i'm getting tired of it), and chrome doesn't show my mouse pointer (which works everywhere else on my machine).
Time to go back to firefox. downloading nightly this time, though. thoughts on it? any default settings I should change for security or to make it better in general?11 -
Maybe this ever tightening straight jacket of surveillance and restrictive legislation is pushing the internet in the right direction. We might end up with a proper free and anonymous interwebz.
Personally, I'll start worrying when they ban the operation of Tor nodes... And that will probably pass easily since regular folk don't know the implications. The smear campaign will be ez mode: just call it a hotbed of pedophilia and criminal activity and push the new laws as something along the lines of Put an End to Naughty Individuals and Scumbags (PENIS) act. Done and done.
I mean... if they can threaten to take away the memes without being stopped then there's nothing they can't do, lol.3 -
My god the wall looks really punchable right now. Let me tell you why.
So I’m working on a data mining project, and I’m trying to get data from google trends. Unfortunately, there have been a lot of roadblocks for what should have been an easy task.
First it won’t give a raw search volume, only relative “interest”.
Fortunately it lets me compare search terms, which would work for my needs however it will only let me compare a few at a time. I need to compare 300.
So my solution is simple: compare all the terms relative to one term. Simple enough, but it would be time consuming so I figured I’d write a program to get the data.
But then I learned that they don’t have an official api. There’s a node module for this very thing based on a python module that reverse engineers the api endpoints. I thought as long as it works I’d use it.
It does work... But then I discovered that google heavily rate limits the endpoints.
So... I figured I’d build a system to route the requests through different tor nodes to get around the rate limit. Good solution right? Well like a slap to the face, after spending way to much time getting requests through tor working, I discovered that THEY FUCKING BLOCKED TOR IPS.
So I gave up, and resigned to wait 5 hours for my program to get the data... 1 comparison at a time... 60s interval between requests. They, of course, don’t tell you the rate limit threshold, so this is more or less a guess (I verified that 30s interval was too short and another person using the module suggested 60s).
Remember when I said the discovery that the blocked tor came like a slap to the face? This came as a sledge hammer to the face: for some reason my program didn’t dump the data at the end. I waited 5 fucking hours to get nothing.
I am so mad right now. I am so fucking mad.4 -
I know Google isn't the worst company in the world. But some of their data tracking just seems a bit odd. Such as keeping audio logs each time you use Google on your phone. Or when it picks up random bits of conversation. Along with them keeping track of where your going, and where you have been. Even if Google maps isn't running.
And one of my all time favorites is when Google Allo was a thing, it used to have access to my camera randomly without actually opening the app. My phone will tell me different logs each time Allo opened the camera without my permission.
I know they need to collect data in order to advance some of their fields of tech. But it just seems a bit intrusive when companies like Google do this.11 -
So I ended up installing Arch Linux as the primary OS in my laptop, and to be honest, I'm not very crazy about it. Because I'm someone who likes an elegant UX, I spent three days and over 50 reboots and 5 reinstalls just trying to get Plymouth to work correctly (in the end, I just said screw it and gave up.) I know, I probably messed something up in the installation or configuration, but I didn't really want to deal with it anymore.
I'm not a big fan of the pacman package manager; I prefer apt. There were several applications I couldn't get to work properly, such as Steam, the Tor Browser, and Wine. All in all, I've basically wasted a week trying to get Arch Linux to work as the daily driver on my laptop, but I guess it's just not the distro for me.
I'm going to give Arch one last shot with the Manjaro distro. I'm hoping that Manjaro's simplified installation and configuration will produce a more usable (in my case) OS, and if not, I'll probably be going back to something Debian-based.
I'm not at all saying Arch is a bad distro. I know many people use it as their daily driver, and I have absolutely no problem with that. I'm not writing this to debate which distro is better, I'm just writing about my experience with it. Arch just may not be the distro for someone like me. At least I gave it a shot, right?10 -
Let me tell you why I feel like a shit right now. I work as sw dev in a country worse than Germany and company I interviewed is located in Germany. So this is kinda big deal for me.
I interviewed with the company last year, interview went really well. They told me during interview that they would return in 2 weeks tops. It took 2 months for them tor return. For some reason, I was not hired for that position. Later I learned that the division i was gonna work defunded/separated. After learning that the guy I interviewed really tried hard to give me good news but failed-therefore had to delay bad news, I was not sad for not being able to be accepted for that position or delayed response.
Fast forward to this year, I interviewed with the same company for a position as subcontractor employee on another company. Interview took just before Coronavirus situation started to blow up(mid March), I had to return to my home country when the borders were closed asap, 2 day after interview. Fast forward to May I got the job offer and contract with a good salary, July as starting date. But I have no Visa and you apply for visa with a valid contract. German embassies work at minimum capacity, no new applications for any type of visa including work/residence visa. After my serious research I found a crack, emailed the embassy and they finally agreed to give me a special appointment on the start of July. The company I interviewed sent me new contract(August starting date) automatically.
On mid July, I told the company that visa might not come soon enough, I might not make it to August to start to job. We both agreed to replan starting date once i got the Visa.
On August 6, my visa came. I informed them asap, and they told me the other company will return in 3 weeks with new starting date. I was like WTF we were waiting for this visa for months, why do you need 3 weeks. Anyways, 3 weeks past and the other company still did not give any new starting date. I really feel like shit right now. Last week I asked to the "my" company if there is a problem with my employment(the other company might change plans after all) and they said only starting date is the problem, don't worry. On 3 occasions, they reassured me there was no problem(no, I was not asking them like paranoiac obsessive person, they were preemptively saying it in some cases). They say other company employees were really asking about when I was coming frequently.
What should one do in such situation. Do I even have legal rights? Maybe I will look back at this post and laugh at my paranoia, but I would you random internet citizens' ideas on this situation. They say lightning does not strike twice to same point but living same disappointment with the same company would really hurt. rant over, mamba out.8 -
An entire platform was removed from Google Play, and may be removed from other markets too, not for something they did, but because of the POLITICAL ALIGNMENT OF A MAJORITY OF ITS USERS.
"the users are evil" you're right, let's ban Tor, Snapchat, Whatsapp, Twitter, Facebook, etc. because they've got a metric fuckton of "evil users" too. Oh. Wait. No, that's not how that works, is it?
https://usatoday.com/story/tech/...57 -
starting to use everything on Incognito, with a VPN, and (thinking) of switching to TOR.
a heck of a privacy that will be, but the cost of the Speed(Bandwidth) will be terrible.14 -
Question to our Tor people.
I operate a middle relay myself and I noticed that Nyx (tor monitoring tool) displays a very different throughput (mb/GB a day) than tor itself.
How does that work?6 -
!rant
I wonder what it feels like to be a programmer in north korea...
1 bug, 1 day gulag?
Just kidding :)
I hope they enjoy stackoverflow & news over TOR.5 -
so... not really a rant because i'm happy to be in the long-term zenlike state where i don't really give a fuck about anything anymore, but...
so today's my birthday (thanks in advance for all the semi-mandatory "cheers" reactions and such)
the agency i do temp jobs through sends money weekly (for the one week back) (which is the main and only reason i use them). they arrive at friday 12:25, so that's when i know to go "check" by withdrawing it, and it's also awesome because it's the best time to provide funds to reward myself (by booze/weed) at the end of the week.
last week, nothing came in. i called them and learned it was due to the contact person in the company i did job in being too late on sending the agency list of people who showed up at the work, i was told it's gonna arrive one week later together with the proper payment for the week-1,so effectively i was one week without any money (literally), but on the next week double was going to arrive, which is nice.
that next week of double was now. i found out that no double arrived, only single-value payment. i called them to ask why.
i was told that what arrived was the late payment, and the dude in company was again late with sending the presence list, so the other payment, for the proper week's work, will be a week late again.
so... that kinda ruined my financial planning tor tge week that's going to happen.
i guess my point (if i have any) is... funny how when someone fucks up, there's nobody for me to be angry at and hold responsible in any way, but when i have delays in my work due to delays upstream, nobody gives a shit about my excuses and it's my fault and i should have compensated, it was my responsibility and duty, and me not doing it (to my own detriment, for someone else) is me failing.
funny how the subjective dynamics of the world always somehow works out in a way where everyone else fucks up and i either have to suck it up and be okay with it otherwise i'm a selfish unreliable entitled asshole, or suck it up and extinguish their fire for them, otherwise i'm a selfish unreliable entitled asshole XD
anyone else noticed this in their life?
how does it work? what is the factor that decides whether you're in the "suck it up" class or the "fuck it, someone else will suck it up" class?
doesn't seem to (just) be the money(flow), i've seen this thing happen even in situations where the money/client dynamics were flowing the opposite way to what would be natural for the shit fall direction.4 -
When there's something about TOR on TV and you say that you know and use it.
Now my parents think that I do illegal stuff.
Thanks TV...5 -
There seems to be a lot of people protesting and coming together in support of net neutrality.
The rant here, where the fuck were all of you during the election? That was the time to come together and do something, now your efforts are futile.
What's worse, I'll wager net neutrality gets overturned and next election the same batch of assholes get voted in.
What can you actually do to solve the problem? Peer to peer internet similar to tor but fast enough to support considerable traffic. Platform needs to be like tor with encrypted decentralized DNS.
Start an ISP. This would also help.
Get cracking, smart people.7 -
Hey Guys
A few Questions I have to decide soon, for tools I never used:
1- How do you guys keep information about several accounts and stuff? Must have some protection to not be easily accessible (started using Google Notepad and Evernote until I find better... don't really like them)
2- Firefox: Is there a way to store groups of open tabs?
Like I have one windows with 6 or 7 tabs for movies (youtube and such), other for general stuff with 5 or 6 tabs, other with Arduino shit, and I'm going to pick Vue soon and another language to build native apps and that will be a lot more tabs, It would be nice to close them all and open them all at will or something.
3 - What Is your favorite browser? I'm using Firefox, but there are so many new good ones... Like Brave browser with Tor incorporated, or Puffin for Android (which uses a VPN with their own server by default)
4 - For windows users, do you have any tools to help with workflow installed? which ones you use and why?
5 - What I'm using: Google Notepad + Evernote to save stuff, Windows 10 and Firefox, (Linux Mint in VM) and I just keep my shortcuts in folders... I don't use the Windows taskbar for a long while since its so full of shit.
6 - How do you do your backups? Right now I'm just putting my code and important stuff in Dropbox.
I'm an old school programmer... Stuck in 1990's Ideas and there is so muchhhh shit these days that I would prefer your opinions then just googling.
Guess that's enough for this post. Thank you guys28 -
Sigh OK, so, my friend we'll call him z has told me he's visiting the deep Web with tor. So I immediately start asking him about what security he uses (which is 3 VPNs tired through each other).
Like no z! You don't go to the deep Web, that's where the bad things happen! 😡8 -
Yesterday a scammer spam me with emails. So I decided to write a code to automate writing emails using SMTP methods for spamming them back... In a while loop...
So today I look at their website (using Tor in VM) the website is gone. Seriously I want to know what happened. Yesterday I visit their site, they are a gambling platform blablabla...but today the site is gone.
http://moneydot.com/
Btw , I'm not a hacker , but I am just an ordinary software engineer (nothing special about me here) who know how a while loop function.14 -
If every car in the city does have a license plate but this one particular car doesn’t, it’s not anonymous, it’s easily determined as “that one car without a license plate”.
If every request does have a source but only the CIA ones don’t, they are not anonymous because “no source huh, it’s CIA”.
For governmental agencies to be anonymous they need everyone else to be anonymous so they can blend in.
So they created a network. This network called Tor.
But no, tOr iS cReTeD bY cOpS sToP bEiNg a ShEeP
(I know that you theoretically can be tracked even if you use tor, my rant is not about this)5 -
Companies really need to re-evaluate what they ask as security questions.
If I know your name and your approximate date of birth (to the month) then, here in the UK at least, I have a very good chance of being able to find out your parents names, your mother's maiden name, your address, your parents address (i.e. probably where you grew up and what school you went to), your parents ages, when they got married, etc. - and all from publicly available info, not illegal crap you find on Tor or social media stalking.
This isn't hard to find if you know where to look - the problem is that people think that it's all private, and behave as such - and companies encourage it. The typical "internet safety courses" don't even touch on it, and even more tech savvy people I know often don't have a clue this is possible.2 -
When you live in a hell hole of a state, you need to use "tor" in order to access dangerous web sites from the dark web such as "medium.com".
I'd like to also take the opportunity to say fuck medium as well.2 -
So my friend wanted a website, and I was kinda busy, so I asked him to find a web host. Five minutes later he comes back asking to use Tor and to make a .onion site. He said they're "secure and all the rave" nowadays. He was shocked to learn that most .onion sites are illegal and that Tor is a web browser to reach those illegal sites. I still make fun on him.5
-
If I exploit ms server 2012 through a wifi hotspot , but logged in to someone else's account (assume it was sniffed) , and I do it using msfconsole connected to the tor with torify command , also I spoof my mac ,
will I stay 100% anonymous ?
If not , what can be done ?42 -
I fucking hate that ISPs just decide to block certain websites!
Sky for example blocks a bunch of things related to Tor. You can't go to the website, and can't even install stuff like tor browser from AUR, because it has tor in the download url. The connections simply time out.
Yes, I can use a VPN to install Tor, I'll probably have to do that. But fuck!!! Many VPN providers' websites are also blocked.
This seems to be common practive. In my previous flat we had Virgin. They blocked the website of all VPN providers they could find, and even kept me from establishing a connection to some of those providers. In that case I could donwload Tor (surprisingly) and then tried a bunch of clients until one of them worked.
It's fucking pretentious, and I don't think I'll find anything about blocking perfectly legal resources in any of their T&Cs.5 -
Package Installer on android needs to show something other than just the progress bar. Even a basic log like windows installers that say, "copying this, extracting this, done..." If it affects the minimalism of the interface, they could try doing what Tor browser does- swipe to see a log. It just feels heartbreaking to wait 5 long minutes for it to process on this tortoise device, and then get, "app not installed." with an OK button. :( Like, whyyyy? There should be a "THAT'S NOT OK" button.
Is there any magisk module for this? Or some other tweak?5 -
Brave Browser.
There’s a reason why brave is generally advised against on privacy subreddits, and even brave wanted it to be removed from privacytools.io to hide negativity.
Brave rewards: There’s many reasons why this is terrible for privacy, a lot dont care since it can be “disabled“ but in reality it isn’t actually disabled:
Despite explicitly opting out of telemetry, every few secs a request to: “variations.brave.com”, “laptop-updates.brave.com” which despite its name isn’t just for updates and fetches affiliates for brave rewards, with pings such as grammarly, softonic, uphold e.g. Despite again explicitly opting out of brave rewards. There’s also “static1.brave.com”
If you’re on Linux curl the static1 link. curl --head
static1.brave.com,
if you want proof of even further telemetry: it lists cloudfare and google, two unnecessary domains, but most importantly telemetry domains.
But say you were to enable it, which most brave users do since it’s the marketing scheme of the browser, it uses uphold:
“To verify your identity, we collect your name, address, phone, email, and other similar information. We may also require you to provide additional Personal Data for verification purposes, including your date of birth, taxpayer or government identification number, or a copy of your government-issued identification
Uphold uses Veriff to verify your identity by determining whether a selfie you take matches the photo in your government-issued identification. Veriff’s facial recognition technology collects information from your photos that may include biometric data, and when you provide your selfie, you will be asked to agree that Veriff may process biometric data and other data (including special categories of data) from the photos you submit and share it with Uphold. Automated processes may be used to make a verification decision.”
Oh sweet telemetry, now I can get rich, by earning a single pound every 2 months, with brave taking a 30 percent cut of all profits, all whilst selling my own data, what a deal.
In addition this request: “brave-core-ext.s3.brave.com” seems to either be some sort of shilling or suspicious behaviour since it fetches 5 extensions and installs them. For all we know this could be a backdoor.
Previously in their privacy policy they shilled for Facebook, they shared data with Facebook, and afterwards they whitelisted Facebook, Twitter, and large company trackers for money in their adblock: Source. Which is quite ironic, since the whole purpose of its adblock is to block.. tracking.
I’d consider the final grain of salt to be its crappy tor implementation imo. Who makes tor but doesn’t change the dns? source It was literally snake oil, all traffic was leaked to your isp, but you were using “tor”. They only realised after backlash as well, which shows how inexperienced some staff were. If they don’t understand something, why implement it as a feature? It causes more harm than good. In fact they still haven’t fixed the extremely unique fingerprint.
There’s many other reasons why a lot of people dislike brave that arent strictly telemetry related. It injecting its own referral links when users purchased cryptocurrency source. Brave promoting what I’d consider a scam on its sponsored backgrounds: etoro where 62% of users lose all their crypto potentially leading to bankruptcy, hence why brave is paid 200 dollars per sign up, because sweet profit. Not only that but it was accused of theft on its bat platform source, but I can’t fully verify this.
In fact there was a fork of brave (without telemetry) a while back, called braver but it was given countless lawsuits by brave, forced to rename, and eventually they gave up out of plain fear. It’s a shame really since open source was designed to encourage the community to participate, not a marketing feature.
Tl;dr: Brave‘s taken the fake privacy approach similar to a lot of other companies (e.g edge), use “privacy“ for marketing but in reality providing a hypocritical service which “blocks tracking” but instead tracks you.15 -
Quickly coming to the terms with the fact that software development inside companies is just the perpetual motion of putting out fires as quickly as possible just so customers can still be ignorant cunts.
-
Unable to access cpanel/whm due to IP changed error.
called HR
me : please connect me to networking team (out sourced)
hr : why ?
me : I have some issue to access cpanel. I contacted to hosting comapny but it is not their fault so may be it's our network issue.
hr : explain me in details.
me : ok
from morning I am trying to access whm because our website is out of bandwidth limit and showing 509 error ,I contacted to hosting comapny but they explained me problem from our side. SO i wanted to talk with network team about this issue because I am not using any proxy or vpn even my tor browser is off too still ip chaged error giving frustation. second reason I am frusted that my public IP and private IP is not chaged.
one more your windows pc freeze 3 times from morning.
do you need in detailed technical reason why I want to talk with them.
hr : no no no *hang up*
after 2 minute *my landline ring*
hr : network engineer on other side.
fair enough2 -
In one session 36 hours. I lost someone close to me and I kinda didn't leave my office for any form of social interaction for three weeks.
-
Article 13 has gone through.
If you have a startup idea, move outside the EU to avoid millions of dollars of copyright fines.
Get the memes, get tor, get vpns, research how people get around the great firewall of china, because the EU just asked china to hold its beer.
I pity whoever's job it is to implement this piece of shit.
12 -
So recently i got a message from aa person asking how to (these are exact words) ,
:break into insta's database using Sqlmap"
I then proceeded to tell them to "f*ck of ya c*nt ".
Afterwords it inspired me to write this rant
annoying classmates:" hahaha GuYS bEtER wAtcH OuT he's GonnaA hack Us"
me: " yea I can program I also do some ethical hacking and cybersecurity "
annoying classmates: "hahaH Bro your a Hacker OhHHhHHOOO BrO CaN yoU hACk inSta FoR mE I NEEd MoRe FolloWeRs "
me:" tf no one that's illegal and two it's waste of my time "
annoying classmates: "BrOooo CaN yoU gEt Me SoMe HacKs fOr CsGo"
me: "can you just please f*ck off , i'm not hacking for you everything you've asked me is extremely unethical and a huge waste of time, Also if you suck so bad at a game you need to cheat I recommend just stopping "
annoying classmates: "DUdE whAt ToolS dO i HVAE to DownLOad To Be A haCkEr"
me: *trying hard not to murder them* " I told you to f*ck off"
being a hackers isn't downloading tools it isn't typing at 90wpm into a terminal with green font its not about games or fame or anything its about coming up with creative solutions to problems , thinking outside the box its about individuality and breaking from the heard , looking at things from a different viewpoint,
it's about endlessly seeking knowledge.
It's about freedom though creation that's what being a hacker originally was. But because of big media and movie company's (and script kiddies) people now confuse hacker with cracker and think of us as jobless fat kids sitting in a dark room in there parents house breaking into bank accounts and buying drugs on the dark web (which people see to think there a hacker just because they can open tor browser. they then proceed to use google to look up "fresh onion links 2020") .
My classmates and really my generation has a huge case of smooth brain. They a think we can just look at someone and hack them they also seem to think using a gratify link to get a persons up is hacking and using the inspect element is hacking and that opening a terminal is hacking ! AHHHHHHHHHHHHHHHHHHHHH"
Anyways ima end this here thanks for reading :)5 -
Having a fantastically shitty day and it’s currently only 08:05.
Last night spent the entire evening moving into my flat and building the colossal amount of Ikea furniture, ended up going sleep around 3am.
Because of my fabulous two and a half hour work commute to work everyday I have to leave my house at 6am. Three hours sleep? Excellent start.
Leave my house at 6am good start, manage to get on my first bus no problem, bus driver being the horrendous cunt he is slams on his brakes because going round a sharp corner at 40 mph when the speed limit is 20mph is a fucking brilliant idea you cunt, consequently it sends my protein shake all over me, my clothes and my laptop. Cheers cunt.
So now it’s half 7 and I’m at the train station & I realise I’ve left my wallet at home. You’ve. Got. To. Be. Fucking. Me.
8 o clock roles over train inductor comes round asking for tickets and the power hungry scrotum drops a £60 fine on me. Cheers. You. Cunt.
So now I’m wondering whether I should just save myself the hassle get off the train at the next stop and jump in front of an incoming train.
Today can suck a fat meaty fiery cock from hell. -
!rant
Does any one of you own a Omnia Turris (https://omnia.turris.cz/en/)?
In our new apartment, we'll have a 1 Gbps fibre connection (not that we would realy need it, but hey!)
However we need a Router that suports Fibre. The service provider suggested a FRITZ!Box 5490.
I thought about getting the Omnia Turris and run https://pi-hole.net as DHPC on it and maybe add a proxy for TOR or install openHAB later on.
So if you own a Omnia Turris or know someone who owns one, would you recommend it? If yes, why? If no why not? Any additional things I should consider?2 -
4am writing an assignment about the ethics of anonymity tools (TOR, VPNs, brown bags to put on your head)
I love the subject – I picked it – but these written assignments for peripheral classes are the most soul sucking part of studying software engineering2 -
How to find dark web?
I guess I need tools like tor and VPN and stuff.
But where do I go as a starting point?20 -
This story happened to everyone, and i am sure that if i search, i will find dozens of similar stories, but the different here is, i tried, i really tried, in a hundred different ways to achieve my goal !
When you are stuck on a problem, let's say, that you have a program, project, website ... and need to achieve something technically weird (or hard) and need some help to save you time on experimentations. The first thing a lot of people do is : Google.com && put search dorks.
But, at a moment, google gets "dirty", you use it so often that he always think to know better then you what you are looking for.
It reminds of "Ted", the movie (for thows who know it) where they asked : "Hey ! Why does google always suggest us to look for black dicks ??"
It is exactly what happened to me, i got results who doesn't have anything to do with what i was looking for !
You can give it a try now : type "semantic web RDF to RDB"
You won't find anything, except results related to : NOSQL DBs, which is totally annoying.
Something else, i once google swift to get some updates, what results did i got ? Taylor Swift ... (musician)
I often get 2 or 3 results from google, which made me thinking that i somewhat reached the end of internet, or that people are so dumb that i will have spend hours trying to figure my solutions, but, before doing that, other solutions had to be tested.
1- TOR : Google tracks his users and uses its algos and bullshits to return results as close as possible to the user's demand (big fail ...) so how about moving to a different country ? DL TOR browser, open, setup, go to US, open google (got us version YAY !) enter my keywords, and, nothing, still nothing, more results for sure, but nothing related to what i was looking for.
2- VM
Pop a VM, launch TOR, use Hidden mode, delet all cookies and stuff (it is a new VM but who knows).
Use keywords (now in UK). Here they are !! my results !!! i finally found some decent results about my keywords !
But, i have the required knowledge to do this kind of stuff, but how about people who rely heavily on google ? they can't change country, clear everything, trick google to think you are a new user, they have almost biased and flawed results. I tried duckduckgo (i love them) but they are not that efficient.
Google says not to anything evil, but they ARE EVIL, miss guiding people, suggesting corrections who have nothing to do with the keywords, or results totally unrelated in any way to the keywords while results exist in other countries ???
Ever since, i don't pay attention to google at all, and started thinking that google's algos are manipulating people, i don't know if it is done on purpose or not, but the result is the same, people have biased results based on their country, on their tag, on their ID, and the recent keywords.
During that period i was cursing google every funcking day, and i am still doing it, too much trackers, too much manipulation, i will end-up enclosing myself in darknet.4 -
There are few things I hate more in software development than writing mappings from shitty SOAP apis to JSON.2
-
Approaching the end of my first week as a junior web dev.
Spent the week writing automatic web suite tasks for an entire e-commerce platform.
Arguable the best way I could have been introduced to the code base 10/10 would recommend. -
Came to the realisation that I wasted three years in uni, today my final grades were released - for those who give a shit I got a first
I was happy till I realised I got my dev position without them even knowing my final grade.3 -
This is not a rant!
Has anyone use whonix before? If you have how is it? Is it better than tails?
For those who don't know what whonix is here's a link.: https://www.whonix.org/1 -
Found myself in a career predicament.
I’m currently working at a tech startup and it really does have the potential to really take off.
But recently the CEO has taken compressed working and remote working off the table for the most part which at this stage in my life is quite important.
Today I was offered a position at a different company with 4/5 days a week with a 10% pay increase.
Now the time has come to make a decision and I really don’t know what to do because I’m pretty sure the worst thing for me to do is make the wrong choice and end up kicking myself in a years time.
Was wondering if any of y’all have had to make a similar choice in your career7 -
Brave Browser introduced tor integration for private tabs. https://twitter.com/brave/status/...
Is security taking a toll when Tor network is accessed through not the actual Tor browser?2 -
Which browser do u use and why???
Chrome
Edge
Firefox
Brave
Opera
♤Lynx
♤Internet Explorer
Tor
Etcetera, Etcetera
Ps. The "♤" spade marks are for the Legends who will leave their mark on the history30 -
-Recently started a new job so I’m new to the infrastructure-
Spent the vast majority of the day trying to SSH into one of my company servers to sort some random bug out on the website & the connection kept being rejected despite the day before it working when passing the .pem key into the SSH along with the ip & my username, nothing new there.
Anyway, everyone’s mad busy so I don’t wanna bother anyone to ask why, so I check confluence, no documentation for SSHING into our scheduler or the code the server I need to access. Never-mind.
Spend another couple hours trying debug it on my own, no luck. Never-mind.
Finally seize my opportunity and ask for help; ‘Oh the server IP changes daily so you need to run a task through our scheduler that you need to SSH into to return the list of IPS and that dynamically changes so that’s how you get the IP’
Oh ok. Why is there no documentation for that again? I mean. Thats generally some pretty important information you’d pass onto your starters.
At least I can say I won’t be making that same mistake again.5 -
I’m done with people who claim they don’t have time to do something.
Constantly hearing people complain they don’t have time to do things, oh fuck off you cunt. You work a nine to five, you get home at half five and you sit at home doing fuck all while you complain that things aren’t going your way.
Doesn’t even have to be about developing, lost count with the amount of people who claim they don’t have time to go the gym. Dickhead, you have a 24 hour gym three minutes away from your house. You could go after work, instead you’ll sit on your ass, eat a load shit and then complain you’ve put on weight.
If you’re doing fuck all to make things happen then you lose the right to complain about your circumstances. Stop blaming other people for your fuck ups because you ‘don’t have time’ to get shit done you absolutely holocaust of a human being.
While I’m at, fuck people who think it’s my soul mission in life to fix their shit, believe it or not I don’t give two flying fucks about your circumstances if you’re doing fuck all to help yourself.
Do me a favour and kindly drink some bleach.13 -
How do you use youtube in china? Asking for a muggle friend in a foreign exchange program. I sent a link to proxysite.com but the lack of response makes me wonder if that was a bad idea without further precaution. I've never configured a VPN before and Tor is a very bad idea here.4
-
I've started to get more into the TOR idea over the last couple of weeks.
I know I'm way to "non protective" of my privacy but changing would mean I'd have to break many habits and stop using things I'm used to.
A couple years back (I guess it was in like 8th grade or so) I had a presentation in German (my first language) for an extra mark. It was about tor. In the process of researching all of it I learned quite a lot about it. All of this knowledge has stuck to me the whole time, unused.
Fast forward to today, I've finally decided to use the couple of bitcoins I have (like 15€ or so) from my home mining experiment to rent a vps for a tor relay. First, I was lucky enough to find a service provider that accepts bitcoin for a 3€. They advertised "Fair use Traffic", later found out, after committing for three months since I was like "yeah... will be fine", in the customer panel there is a graph that shows me that I have used x% of 1.5 TB... I guess the customer support will get an email from me asking what "Fair use" exactly means... But that's fine... Oh... And ipv6 wasn't a thing to be found...
To wrap it up... I've now got a 2 weeks old little tor relay <3
(I didn't wanted to put it on my main vps where I have 200mbit guaranteed at unlimited for 5€ a month since that's where I have my mail server running and a hidden service for my next cloud)1 -
I been casually looking for a new job as a senior software engineer. I have about 7 years of experience, mainly back end, and it seems like everyone has a different way of doing technical interviews. What type of questions would you expect to be asked? I've gotten everything thing from white board code and solutions (expected), technical questions (expected), to code an API from scratch (not hard, but not really a good judge of skills). How do you identify whether a job is a sweatshop vs. a good job?2
-
Installed Kali linux,
Did sudo update,
Upgrade,
Installed packages,
Programmed in VIM,
Found....atom and sublime are a bit better!
Downloaded atom and sublime....
Saw parrot os features...
*Su delete Kali
Apt-get install parrot.....bye bye Kali! -
After several Firefox/Mozilla failures (getting rid of proper addons, supporting censorship) Waterfox looks like a promising alternative. On Windows it runs great, sadly on Kubuntu LTS it does not - binary package only works with quite new std c++ library :-(. Damn it, why can't they distribute all their libraries together like Tor browser does (it's also Firefox based)?2
-
my school blocked tor connections to there website so lol rip me grades IDK if whonix might fix it
IDIOTS!2 -
Now that I learned that Zoom acquired Keybase and didn't yet comment whether they are going to keep the app going, I feel I should switch over to another similar platform.
Anyone has any other E2EE platform that supports, in the least, chats?
And I don't mean stuff like Telegram or WhatsUp. I prefer to steer clear of the giant corporates and their products.
Sure, I can always use TOR and just about any IRC, but that's a tad of a burden. Keybase was nice, easy to use, clean, supported all platforms I needed...2 -
TailsOS is based on keeping you anonymous by using Tor, if that's the case how Tails can protect you if you can install Tor on any other distribution of your choice? I still don't get it9
-
"the fight between tor and regimes that censor the internet is a fight of \"well that's not quite apache so it's tor\""
hear me out here:
then fucking don't be.
Switch it up a little, get creative! No one's gonna expect you to be relaying Tor through like a Minecraft chat or a fucking Doom server or over SFTP or Teamviewer or...
(of course it's not gonna be those protocols but they're already faking Firefox/Apache signatures so do that shit with other protocols)9 -
So there is this idea in my head for creating a anon, add free, chatservice available for tor and normal adresses. Where everything is e2ee and there are multiple channels to join. Can anyone tell me if it already exists?? I basicaly want to go away form google/fb tracking1
-
Why does everyone still keep using tor when everyone knows that tor is in bed with the US gov ?why is deep space like a forbidden thing why don't people educate one another about deep web while learning the internet ?
-
how useful does a program that makes a new tor circuit to the website your on every 10 seconds sound devrant!1
-
My Snowflake Tor extension is automatically off every time I start Chrome. I have to turn it off and on for it to activate.
Works perfectly fine on Firefox though.
😕 -
So I tried to buy some recreational stuff from the deep web, and this is what they have replied—
“We're really sorry about it but we have some problems with shipping to your region. We noticed about problems with customs but we have some friends in your region that will help us to pay $55 customs for your parcel and pass it smoothly. If you agree to continue we can get your additional $55 usd payment to the bitcoin address below.”
Is this a scam?4 -
Question to all Ruby and ToR programmers. What do you hate in Ruby/RoR?
I don't know why Ruby is not Popular and didn't hear about problem with this lang.2
Top Tags
Weekly Rant
View