Anonymity vs Security

Question

Anonymity vs Security

David Cook

So without going into drastic detail I got into a rather ugly debate with a fellow on reddit about cyber security. Needless to say he was all over the place and went from talking about hiding form your ISP all the way to hiding from the NSA. Basically I couldn't get through to the man. I told him there's literally a hundred different setups depending on what you're trying to accomplish. Most people will only need a few things for general security. This is opinionated of course and I'm certainly not the best and brightest. But first you should secure your DNS over a transport layering security protocol (aka TLS). Then download firefox, go to about:config, and make sure security.ssl3.rsa_des_ede3_sha is set to false. You'll also want to make sure that security.tls.version.min is set to 3. After this make sure you enable HTTPS everywhere. Now, as for general purposes, this will suffice for most people. You may also consider using a encrypted email service such as tutanota or protonmail. Although if your doing criminal shit PGP encryption is the only way to go. However, even though your data is encrypted, none of this really does anything for anonymity, hence the secure part minus the anonymous part.

For anonymity, we need to do a few more things. Firstly, heading back to about:config. You'll want to disable geo location, and tell firefox to resist fingerprinting. Also set all telemetry settings to false. You'll also want to make sure Java and Flash are disabled. Then go to "settings" in firefox and make sure firefox never stores any history, always leaves tracking protection on, enable always send out do not track signals, and turn off data collection. You're pretty much set, you could take it a step further and disable webRTC and set up a socks5 proxy to bypass censorship and hide your IP. But honestly you should probably just set up a bridge and use tor for that. Now if someone was looking to do some criminal shit then all bets are off. Something such as ordering drugs off the darknet requires something a little extra.

Assuming you already have a alternate mailing address or PO box under a alternate identity you would probably want to use a burner laptop with tails os at a public wifi spot, or really just anywhere that's not on your own network. When you're done, power down and make sure you DO NOT use this laptop for any other purposes. Again, another setup for an entirely different reason, say you're a whistle blower or something of that nature and you've got sensitive data that people would kill over. Your best bet would probably be to run whonix through qubes os. Needless to say, hiding from your ISPs or protecting your data form rookie hackers is a lot different from saying invisible to the NSA. When it comes to the NSA most people do not need to hide from a entity only collecting metadata that's probably never going to get pulled back up again. However I suppose it's possible to disappear from their detection. But it takes a lot more then some web configurations and security protocols. Do you own a smart phone? Got a social media account? Are you in a criminal database anywhere? If so facial recognition will get you. Do you drive a vehicle that's newer then a 2009 model? Do you own or rent property? If IRS has you then NSA can get you. Does USPS run where you're living? These are all questions you need to ask yourself and these are also all things you would need to get rid of if you expect to even have a shot at flying under the NSA's nose.

January 25, 2018 - 14:37

Juan Hall

Sage

January 25, 2018 - 15:38

William Clark

gb2reddit
You clearly don't have a full understanding of what you are talking about.

January 25, 2018 - 15:52

Leo James

Actually I worked at veracom for two years before transferring to telecommunications. So I got a pretty good idea of how data is encrypted and also how encryption protocols can become compromised and data stolen or destroyed. But maybe it's too much for you to understand.

January 25, 2018 - 17:01

Colton Ross

nigger

January 25, 2018 - 17:03

Lincoln Taylor

triple nigger

January 25, 2018 - 17:48

Matthew Brooks

sage

January 25, 2018 - 17:58

Carter Torres

...

Retard. Not every site supports tls 1.3

January 25, 2018 - 18:02

Jackson Rivera

should have checked that one first

January 25, 2018 - 18:07

Kevin Flores

Anonymity isn't about total opsec. It is about blending in as a one with the sheeps. But for what purpose? If you only do it for anonymity's sake you're doing it wrong.
If you go full mr_r0b0t_pr0 or l337_xXH4x_j3w you're only asking for a death wish.
You don't need premade anonymity tools or crappy hacks like about:config when you can make your own worm and plant them into noobs computers until you have enough botnet network to tunnel your piracy, cp, or national secrets consumption.

January 25, 2018 - 18:48

Easton King

The value of security.tls.version.max set to 3 isn't TLS 1.3. It's
Check your facts before calling people retards.

January 26, 2018 - 12:11

Zachary Hall

that's not even a thing, unless that's what DNSSEC does, I don't know because DNS aint my fuckin business
I shiggiddiggy if this post is unironic

lmfao

January 26, 2018 - 12:25

Brody Miller

I just crosschecked my address bar whether I mistakenly visited /r/Tor or am I indeed on 8ch/tech.

January 26, 2018 - 12:29

Joseph Ortiz

It's like you don't know Palantir. It's like you never heard of deep learning. You're no more a needle in a haystack since A LONG TIME.
They're building profile of the entire population.
You're a fucking retard, and even more of a retard to still propagate the idea that data collection is useless, quickly dropped and only use for terrorism purpose.
IN THIS SYSTEM, WE'RE ALL TERRORISTS.

January 27, 2018 - 17:01

Henry Bailey

Basically, it's using dnscrypt, that only works with dns server that can do the resolution through TLS. It's basically trusting someone else, to not say anything about you.

Unboud is so damn easy to install, I truly don't understand why people don't host their own DNS. It even works through openvpn. You just have to precise 127.0.0.1 in the resolve file of the server (and too in the config file).

DO IT YOURSELF.
Stop giving up your data to stranger. Even if it's still in the clear, it's your data, and you control it. You know exactly what is going on. You don't trust some random "philanthropist" that very gently gives you free dnscrypt server.

January 27, 2018 - 17:04

Ryder Cruz

But you're a criminal. If you're doing criminal activities through the computer of a random guy, you're putting him at risk, with police that is gonna hit his door.
Yeah, it's easier to be user if you steal the credit card of people, like a huge fucking faggot. Like a nigger. You're literally the nigger of the web.

January 27, 2018 - 17:07

Julian Robinson

What a fag lmao

January 27, 2018 - 18:12

Anthony Sanders

Haunting. Seemingly they're just developing the equivalent of Wolfram Alpha for the CIA, but that makes all the data usable.

January 27, 2018 - 18:14

David Moore

I tried Unbound, but it ignored my hosts file.

January 28, 2018 - 00:23

Sebastian Ross

Fuck me, they feel so secure that they're outing themselves now.

January 28, 2018 - 00:29

Owen Edwards

kek.
my_sides.jpg

These Reddit niggers keep turning up here teaching us to suck eggs when they don't yet know chickens exist.

January 28, 2018 - 06:15

1 2 3 Next

Anonymity vs Security

Last threads