Also, read this: https://www.whonix.org/wiki/Speculative_Tor_Attacks
Also, read this: https://www.whonix.org/wiki/Speculative_Tor_Attacks
tor (TBB) doesn’t work for everything and most people want something fast and convinient that only takes clicking a few buttons to get working. They will think it is too much work.
I recommend Brave browser which can use tor in private browsing mode but also has a regular browser with encrypted DNS (cloudflare, https strict, and shields) for things like banking, shopping, and online accounts (that might help to have a password manager for).
Also, Tor browser does not have any passthrough for security keys but Brave based on chromium does. Tor browser does not have a password manager.
Firejail should work on a profile for Brave as sandboxing is always helpful. TBB can be sandboxed easily, however.
This “multi-tiered” approach would be better for most people who aren’t just accessing a handful of onionsites that replace or are in opposition to an entirely different set of services than those usually accessed on the conventional internet (online banking, social media, a few publication sites, and a search engine).
They made a mistake. As history proves, a big one. But any technical company could. So did the makers of cyclon. Apple or Windows could. The AI could exterminate us all as useless humans with low worth. The values of the current CEO should matter if they translate into real world policies, such as, defending human rights.
Don’t use Discord. That is a major vector for attack. Seen it happen myself.
Even Sandboxed Google Play has problems.
I don’t think there is any equivalent of Graphene for Mac hardware. With Pegasus and Predator software around, phones are very hard to secure.
Rely on tor browser and torrifying where you can with Orbot (Guardian Project).
Instead of Telegram, how about Signal and Briar? We just heard about how Telegram’s executive got hit and may now have to bow to pressure. Signal has kept its design integrity as far as we know.
Minimal apps are better than many to reduce attack surface. Maybe try accessing some of those services on other devices instead of on your personal tracking device.
Also a nickname for Molybdenum which makes Iron stronger like torrifying Signal makes encrypted communication stronger by protecting metadata from interception.
deleted by creator
Silver fox with perfect aim! Bond cannot fail!
yes, the more layers of security, the better, even if it is just a futile matter of time to consume the time of an ATP.
Ah, that must be it. 2FA is still a very good security feature to have.
But there is nothing only you know that is still useful because a secret must be shared in order to be useful (unless you just have full disk encryption and then when it is unlocked and network connected, it is still vulnerable). In short, admins could change your password since you are not the sole admin of your own server but then you would have to have mass appeal to be “useful”, i.e. popular.
In theory, Tim Cook might have a keybearer who could usurp the throne with all the proprietary OEM crypto keys that only the Company knows, but everyone knows who the CEO is and the keybearer could get in big trouble unless he had an army…
Things can be changed on the server side and the network is not the same as the device: these are technology truths some people refuse to ever understand.
No, nothing shady. Just was notified there was a mistake on the server end. Perhaps tmi to elaborate…
This is what I thought. I keep telling people they don’t exclusively own their passwords / security tokens once they give it to a site.
If I shared encrypted info that I kept encrypted, I guess it would still be mine but no one could then read it.
This is what I thought. I keep telling people they don’t exclusively own their passwords / security tokens once they give it to a site. Salted hashes to obscure the pw don’t even matter since the admin could also bypass that. Tanks for the validation.
Do you want to show us what that looks like in assembly, ASCII from machine code? …ha, ha, ha, no!
Depends on the device, I know. Such a pain without the higher level languages.
What would it look like for ARM android touch screens? Just for one character…
But if some characters go missing or are exchanged for others for no discernable reason, then might that be an exploit on a EC or assembly level?
People say a lot of really mean things to people. Sometimes it is primal and cuts to the core. But then they return with a how dare or act like the enmity is only one way. Strange. There should be more rational dialogue and less personal invective. I wonder why people like to focus on the ad hominem because I find the actual game plans (analysis and practice) more interesting. Why did we all get so caught up in identity? Rather than hiding behind identity, we should lead by revealing with positive action.
What do you think about sites that don’t work with all variety of DNS (not even cloudflare) or proxies or tor or Firefox or Chrome or varied AP or varied devices–in short, all access combinations?
Dead link? Total Information Awareness roving tap castiron?
Can you unblock 404 Media podcasts on Signal and Identity Hacked? Tried both Spotify and Apple Podcasts.
Name calling like that should work well with the youth vote. Smart. Politics is just a shit throwing contest. The other side will probably follow suit with terms that fit the demonized adjectives popular among the demographics of their base.
Contrary to the prevailing view that youth are rebellious, they always obey the patriarchy behind the scenes, the merchants of “the cool” dictating the popular image to them. Pretty hard to get milage out of calling a non-white woman creepy or weird. On the other hand, it is kind of a reflexive acceptance when those negative predicates are applied to any male over 20. Agreed. I think dicks of any age are weird and gross myself.
But will their POLICIES improve our lives?
Best still rare even though potentially very user friendly and accessible.
Well understood tech and still damn good math! To think, just because the newest stuff is shinny! Total junk really just for ads and video games full if unknown complications and adverse effects. All a 'furbish needs to be back in top is a good Linux soul!
Qwell, so long as 40 year old gunmen (pigs) are dictating all the fluck, it’s swall OK then, isn’t it?
Unfortunately, Tinder doesn’t work and that is helpful to get in touch with the ladies. That app is too hell bent on location data which GOS handles more privately.
NFC should work, it is just scheduled to be deactivated after 3 months if not used for security reasons.
I think GOS is very user friendly and has many positive privacy and security enhancements. I would like to see if they can surpass sandboxed Google Play and officially support other repositories and updaters like Accrescent. Also, a standard way of securing traffic beyond encrypted DNS would be good such as a tor client like Orbot.
Looking into the Veilid ecosystem might also be a source for further development ideas.