Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 5 hours ago • 100%
If I say it here I might dox myself. I'd like for it to be a PGP conversation but I'm not quite there yet either (due to personal reasons). Sorry
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 5 hours ago • 100%
Well, you're right. If the provider I have in mind evaporates one day I'll probably have to do that.
MoneroFindmysec 5 hours ago • 100%
Buy a cheap, used laptop with cash and get TAILS on USB. I say that because I know that the Middle East frowns on crypto, especially privacy coins.
Use Bisq/Haveno for local cash-only transfers (Very little paper trail)
Findmysec 10 hours ago • 100%
Clevis and Tang but even that can only really do so much.
Just encrypt storage on-site
Findmysec 1 day ago • 100%
Nice
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 1 day ago • 100%
Just find an unit with unmetered bandwidth, why do you need dedi?
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 1 day ago • 100%
I do seed stuff (I downloaded a TV show of around 40GB last month and I've been seeding it since). It just keeps seeding at full speed till the time they throttle my bandwidth. Last I checked I was over 7 in ratio for that thing, but whatever. It works out because I don't leech much
I will eventually move to a VPS provider who doesn't mind public torrents (I'll pay through XMR). This seems like a much better idea since my needs have diversified and I'd like everything together on one machine to save costs. There's other ways to use your seedbox too (without root access) and seed stuff that people really need/are deprived of (vague description on purpose).
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 1 day ago • 100%
Yes, that's a bit of a problem on the average seedbox. You'd have to modify your torrent to seed on I2P by adding I2P trackers (just a couple of them, nothing much), and then run either BiglyBT or I2PSnark to seed them on I2P. Unfortunately, most seedboxes don't give you root access, neither do they bundle these apps. Qbittorrent doesn't have good support for it yet unfortunately.
If you have an SBC/spare computer at home, would be great if you could attach a hard drive to it, install i2p/i2pd and either of the mentioned torrent clients, and seed from there in the meantime. Qbittorrent has seen community interest in I2P, unfortunately it's just not there yet
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 1 day ago • 100%
The OG I2P program is written in Java, which might show behavior like you mentioned (didn't stop immediately when stopping the service).
Please try I2PD, it's written in C++
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 1 day ago • 100%
I still have one of their ECO boxes but it's not doing much. I haven't torrented anything in the last 2 months I think (didn't find a need to).
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 1 day ago • 100%
Obviously, this doesn't change anything if you're still seeding to the clearnet. All this would do is cross-seed your torrents to the I2P network. I assume you have a suitable torrenting strategy already for the clearnet. If some day you were to abandon the clearnet for I2P, you would no longer need to take the precautions you do now because I2P is inherently private.
Please skim through the documentation for a high-level overview on I2P, and ask here if you don't understand something
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
Which plan? I used to use them too
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 87%
Unless there's a zero-day, no. All traffic is encrypted and it should be impossible to correlate traffic chunks to identities like that
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
I'm assuming your seedbox providers allows you root access to the server? Which provider is this?
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
Yes, because it's P2P, every node acts as a router and thus distributes bandwidth to prevent congestion
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
If only people with the resources would seed
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
It's very easy to set up. Windows now has a slick installer.
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 85%
The point is that logs are generated and then deleted but companies who do not wish to keep such logs (e.g. IP address of client who connects to the VPN). I2P sure to it's design, doesn't even generate such incriminating logs (it might generate other kinds of logs which is a different discussion).
Thanks
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
Unfortunately, Qbittorrent's I2P support is still experimental. Assuming your seedbox provider can let you run BiglyBT or any other client that can cross-seed, all you have to do is add I2P trackers to your torrent file. You can also upload your torrent files to Postman on I2P for them to be registered.
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 85%
VPNs usually do store your IP when you connect to them, even if they delete it later (it is technically impossible to not know the IP address of whoever is connecting to the VPN). And the likes of Mullvad and IVPN do not allow port-forwarding.
I will repeat what I said to the other commenter: please read the documentation. Being a router doesn't mean that traffic and its contents can be linked to your identity. Data is broken down into chunks and encrypted along with metadata being scrambled. Unless there's a zero day I'm unaware of, you are perfectly safe.
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 73%
VPNs log your IP. And Mullvad doesn't allow port-forwarding, which means you can't seed.
Being a node for traffic doesn't mean it can be linked to your identity, because everything is encrypted and metadata is scrambled. TOR node operators take much greater risks because depending on how they have set it up, it can lead to their identity being compromised. It's a small chance but it can happen.
I can't convince you. I only hope that people start seeing the need for it and begin reading the documentation to see its strengths
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 100%
I2P is P2P, TOR is not. That is the gist of the matter
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
Reminder: seeders, please seed on I2P
Findmysec 2 days ago • 88%
A VPN company can easily give up your details to the police who are now actively going after citizens. VPNs are not enough anymore.
Is there a problem with I2P adoption? I'm sensing a massive lack of interest from this thread
Regular users in Sweden are in danger because a corporation needs to fill their pockets. Studios are suing your ISPs to get to you. Use I2P. It will hide your IP address (among the many things it can do), afford you more privacy and allow you to torrent freely, even without a VPN/seedbox. The catch? You'll have to add the I2P trackers to your torrent. I believe I2P is the way forward for piracy and I look forward to it getting bigger than it already is.
Findmysec 3 days ago • 92%
Install Gentoo on her MacBook
Findmysec 5 days ago • 100%
Would you know where I can find a guide to load balance I2P routers?
Findmysec 5 days ago • 100%
Thank you, this is very helpful. I'll read
Findmysec 5 days ago • 100%
Thank you, where can I read a guide on this?
Does Qbittorent support I2P natively? If so, I can probably run it on my seedbox. Never tried it before
Selfhosted
Caddy and forgejo
Findmysec 5 days ago • 100%
Use something that can do TCP, i.e. HAProxy, NGINX or Apache
A lot many individuals run TOR exit nodes, but I never hear about people running their own I2P outproxies. Is it really hard to host, or is there some other reason? I thought that if you could run a TOR exit node I'd think you'd be just fine running an I2P outproxy. Running more outproxies will help in bridging torrents from the clearnet to I2P, which would be a very good move considering the crackdowns on torrents right now. Companies even want to involve civilians into their lawsuits in Sweden now, making the need for privacy/anonymity even more important when torrenting, which I2P provides.
Findmysec 1 week ago • 100%
Thanks
Findmysec 1 week ago • 100%
Nihilist, since you've watched the video can you make another post on the "heuristics" the presenter was talking about? I think the community needs to know how exactly their automated tool discards decoys from the list of transactions to consider.
Findmysec 1 week ago • 100%
In a dystopian world, just owning XMR will soon become grounds for a criminal investigation leading to harassment.
Findmysec 1 week ago • 100%
Alright we should use that then
Findmysec 1 week ago • 100%
I thought AGPL was the more restrictive version of GPL? Which license should we use so that corporates need to pay?
Findmysec 1 week ago • 83%
You must be LTT's chaperone
Findmysec 1 week ago • 94%
Everything needs to be slapped with the AGPL. Fuck corporate America
Findmysec 2 weeks ago • 100%
Gentoo is the epitome of RTFM. It is beyond the Arch install in "complexity".
Selfhosted
What companies do you try to support?
Findmysec 2 weeks ago • 100%
Support Mullvad.
You should have bought the framework after they put more effort into Coreboot.
Pine64 and Fairphone are good companies too
Findmysec 2 weeks ago • 100%
Thanks man. I would much rather give my time than my money for OSS projects, but I have a lot to learn and do not match up the quality of contributions needed in said projects. I'll do what I can.
Findmysec 2 weeks ago • 100%
It definitely makes a difference, and putting money into Wikipedia is a great use of funds. The reason I asked the question is because I'm not well off, but I still like to donate to projects from time to time. This means I have a limited (and strict budget), and was wondering if they need my tenner badly enough to send marketing emails over it. Because I'd like to donate to people who actually really need the money, and Wikipedia will do just fine for some time without my money going to them.
Every now and then I'll get an email from someone higher up in Wikipedia asking for a donation. I don't really mind a tenner but I don't know if it pads the pockets of corporate management or actual contributors. Also, are they really short of money or is this tugging at emotional strings a play at something else? I wish Wikipedia survives but there's a lot of projects I need to donate to and I have a budget.
I've never known so many shutdowns inside 2 weeks as the last two have been. Even websites pirating manga were shut down. What happened? What's with this massive legal wave of shutdowns, and why now?
The title is really vague, so I'll try to clarify my intentions here: I am an ardent supporter of FOSS. It will be greatly beneficial for my life and especially my privacy to self-host such software. Yet, I cannot find much motivation to do so. However, when it comes to hosting software for public use, I can usually give my utmost concentration and dedication. This is not how I want my life to be. I want to be motivated for myself as well as for the community. And if that's not possible, I need to trick my brain into bringing me into that kind of zone for myself. What do I do? What would you do in this situation?
I see *so* many posts and people who run NGINX as their reverse proxy. Why though? There's HAProxy and Apache, with Caddy being a simpler option. If you're starting from scratch, why did you pick/are you picking NGINX over the others?
cross-posted from: https://infosec.pub/post/15386345 > Hi everyone, > > This is my `CONTAINERFILE` for Bind9: > > ``` > FROM debian > > ENV LC_ALL C.UTF-8 > > # Update and upgrade system > RUN apt-get update -y && apt-get upgrade -y && apt-get dist-upgrade -y > > # Install BIND 9 and sudo (for debugging if needed) > RUN apt-get install -y bind9 bind9-dnsutils bind9-libs bind9-utils sudo > > # Configure permissions for BIND directories > RUN mkdir -p /var/cache/bind /var/lib/bind /var/log/bind > RUN chown -R bind:bind /var/cache/bind /var/lib/bind /var/log/bind > RUN chmod 664 /var/cache/bind /var/lib/bind /var/log/bind > RUN chmod -R 664 /var/cache/bind /var/lib/bind /var/log/bind > > # Create and configure log files > RUN touch /var/log/bind/default.log /var/log/bind/update_debug.log /var/log/bind/security_info.log /var/log/bind/bind.log > RUN chown -R bind:bind /var/log/bind > RUN chmod 644 /var/log/bind/*.log > > # Define volumes > VOLUME ["/etc/bind", "/var/cache/bind", "/var/lib/bind", "/var/log/bind"] > > # Set the entrypoint to the named executable > ENTRYPOINT ["/usr/sbin/named"] > > # Set the default command arguments for the named executable > CMD ["-g"] > ``` > > I keep getting this error when I run it with podman: > > ``` > 26-Jul-2024 03:18:21.328 loading configuration from '/etc/bind/named.conf' > 26-Jul-2024 03:18:21.328 directory '/var/cache/bind' is not writable > 26-Jul-2024 03:18:21.332 /etc/bind/named.conf.options:2: parsing failed: permission denied > ``` > > As you can see from the `CONTAINERFILE`, the `bind` user should be able to read and write to `/var/cache/bind` but for some reason it doesn't. > > I have been at this for a while and I'm at my wits end. Your help is appreciated!
cross-posted from: https://infosec.pub/post/15386345 > Hi everyone, > > This is my `CONTAINERFILE` for Bind9: > > ``` > FROM debian > > ENV LC_ALL C.UTF-8 > > # Update and upgrade system > RUN apt-get update -y && apt-get upgrade -y && apt-get dist-upgrade -y > > # Install BIND 9 and sudo (for debugging if needed) > RUN apt-get install -y bind9 bind9-dnsutils bind9-libs bind9-utils sudo > > # Configure permissions for BIND directories > RUN mkdir -p /var/cache/bind /var/lib/bind /var/log/bind > RUN chown -R bind:bind /var/cache/bind /var/lib/bind /var/log/bind > RUN chmod 664 /var/cache/bind /var/lib/bind /var/log/bind > RUN chmod -R 664 /var/cache/bind /var/lib/bind /var/log/bind > > # Create and configure log files > RUN touch /var/log/bind/default.log /var/log/bind/update_debug.log /var/log/bind/security_info.log /var/log/bind/bind.log > RUN chown -R bind:bind /var/log/bind > RUN chmod 644 /var/log/bind/*.log > > # Define volumes > VOLUME ["/etc/bind", "/var/cache/bind", "/var/lib/bind", "/var/log/bind"] > > # Set the entrypoint to the named executable > ENTRYPOINT ["/usr/sbin/named"] > > # Set the default command arguments for the named executable > CMD ["-g"] > ``` > > I keep getting this error when I run it with podman: > > ``` > 26-Jul-2024 03:18:21.328 loading configuration from '/etc/bind/named.conf' > 26-Jul-2024 03:18:21.328 directory '/var/cache/bind' is not writable > 26-Jul-2024 03:18:21.332 /etc/bind/named.conf.options:2: parsing failed: permission denied > ``` > > As you can see from the `CONTAINERFILE`, the `bind` user should be able to read and write to `/var/cache/bind` but for some reason it doesn't. > > I have been at this for a while and I'm at my wits end. Your help is appreciated!
Hi everyone, This is my `CONTAINERFILE` for Bind9: ``` FROM debian ENV LC_ALL C.UTF-8 # Update and upgrade system RUN apt-get update -y && apt-get upgrade -y && apt-get dist-upgrade -y # Install BIND 9 and sudo (for debugging if needed) RUN apt-get install -y bind9 bind9-dnsutils bind9-libs bind9-utils sudo # Configure permissions for BIND directories RUN mkdir -p /var/cache/bind /var/lib/bind /var/log/bind RUN chown -R bind:bind /var/cache/bind /var/lib/bind /var/log/bind RUN chmod 664 /var/cache/bind /var/lib/bind /var/log/bind RUN chmod -R 664 /var/cache/bind /var/lib/bind /var/log/bind # Create and configure log files RUN touch /var/log/bind/default.log /var/log/bind/update_debug.log /var/log/bind/security_info.log /var/log/bind/bind.log RUN chown -R bind:bind /var/log/bind RUN chmod 644 /var/log/bind/*.log # Define volumes VOLUME ["/etc/bind", "/var/cache/bind", "/var/lib/bind", "/var/log/bind"] # Set the entrypoint to the named executable ENTRYPOINT ["/usr/sbin/named"] # Set the default command arguments for the named executable CMD ["-g"] ``` I keep getting this error when I run it with podman: ``` 26-Jul-2024 03:18:21.328 loading configuration from '/etc/bind/named.conf' 26-Jul-2024 03:18:21.328 directory '/var/cache/bind' is not writable 26-Jul-2024 03:18:21.332 /etc/bind/named.conf.options:2: parsing failed: permission denied ``` As you can see from the `CONTAINERFILE`, the `bind` user should be able to read and write to `/var/cache/bind` but for some reason it doesn't. I have been at this for a while and I'm at my wits end. Your help is appreciated!
I've been looking to implement DoH 1. The first idea was to simply follow [this](https://www.isc.org/blogs/bind-implements-doh-2021/) - I do not understand the configuration fully but it looked fine. 2. Then, I decided to use a proxy/Load balancer in front of BIND to deal with HTTPS. However, I came across [PROXYv2](https://www.isc.org/blogs/proxyv2-2024-02/) (which is not even mentioned in the docs, just in a blog post) and the likes of DNSdist. My questions: 1. I can't find a detailed explanation of what I need to do about PROXYv2 - does my Reverse-proxy absolutely need to have it to be able to communicate with my DNS server? 2. Why can't I just have any reverse-proxy that can handle HTTPS and put it in front of my DNS resolver? Does my proxy need to have a specific protocol to be able to talk DNS queries? I am still confused, would really appreciate some help :)
Hi everyone, I've started pushing backups of media important to me (family pictures, video etc) to backblaze with client-side encryption. However, are they a reliable storage provider? I can't help but compare them to something like Amazon who likely has a better chance of maintaining my files but they are so expensive that I don't even bother. What do you think? Yes, I've heard of 3-2-1, however for now I only have backblaze and a local backup. I'm trying not to spend too much on this. Thanks!