Cloudflare has been leaking secrets

YOU BEST BE BEHIND A VPN SONNY

tl;dr
If you haven't been using basic OpSec online (local password vault, VPN, moderately hardened browser, etc.) and you visited a cloudfare "protected" site. There is a chance that your traffic has been scraped due to a memory bug a lot like heartbleed. Nothing that anyone on a fine Cambodian knitting forum should be concerned about of course. This is just another one of those subtle hints reminding everyone that you have to be serious about your personal online security.


Wonder if Jim knows

Source:
archive.fo/vVpjT
bugs.chromium.org/p/project-zero/issues/detail?id=1139
archive.fo/9NVXr

Other urls found in this thread:

tails.boum.org/
stratusly.com/cloudflare-continues-take-internet/
gateway.glop.me/ipfs/QmUVPQKnJ1Xgyizw9XmcD5uBeFXr3DFbRJgVsFuCRNs4Kh/order.png
news.ycombinator.com/item?id=13718752
lastpass.com/
doesitusecloudflare.com/
webcache.googleusercontent.com/search?q=cache:VlVylT…
news.ycombinator.com/item?id=13720781
nytimes.com/2016/10/20/us/harold-martin-nsa.html?_r=0
youtube.com/watch?v=IPvJ78629ek
cryptome.org/2017/02/martin-0033.pdf
washingtonpost.com/world/national-security/prosecutors-to-seek-indictment-against-former-nsa-contractor-as-early-as-this-week/2017/02/06/362a22ca-ec83-11e6-9662-6eedf1627882_story.html
github.com/pirate/sites-using-cloudflare
thatoneprivacysite.net/vpn-comparison-chart/
blog.zorinaq.###com/my-experience-with-the-great-firewall-of-china/
furryporn.bigdicks/myprofile.php?username=amazingautist&password=dogdicks
whonix.org
xyzVPN.com.
big.boobies.com
mileswmathis.com/irving.pdf
en.wikipedia.org/wiki/Wi-Fi_Direct
en.wikipedia.org/wiki/Wireless_ad_hoc_network
linuxfromscratch.org/
github.com/pirate/sites-using-cloudflare/blob/master/README.md
web.site/
doma.io/2017/02/24/list-of-affected-cloudbleed-domains.html
web.archive.org/web/20170224022728/https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
amazon.com
ssldecoder.org/?host=8ch.net:104.20.43.57&port=443&fastcheck=0
tf.uni-kiel.de/matwis/amat/elmat_en/kap_5/illustr/i5_2_4.html
archive.is/rwLx
youtube.com/watch?v=vXk6Uhq74nU
schneier.com/blog/archives/2015/04/truecrypt_secur.html
chip.de/downloads/TrueCrypt_13015067.html
gnunet.org/concepts
gnunet.org/compare
trisquel.info/
librecore.info/
tehnoetic.com/laptops
wiki.voidlinux.eu/Main_Page
mikegerwitz.com/about/githubbub
esr.ibiblio.org/?p=6918
media.ccc.de/v/33c3-8414-corporate_surveillance_digital_tracking_big_data_privacy
youtube.com/watch?v=sFBOQzSk14c
twitter.com/AnonBabble

nigger unless you own the internet and isp's then you're fucked an yways

fuck off kike

does Cloudfare even have a competitor?

Use TAILS

tails.boum.org/

Unless you can recommend something more trustworthy. Tails is a acceptable choice, despite its origins and dubious personnel issues.

The CIA does not abide competition.

(checked)
Wonder if this has anything to do with the reauthorization on my Android phone today.

he is right tho, ISPs monitor every bit of traffic that goes through your network and are more than willing to share every single bit of it with gov and other agencies with no resistance.

We're all fucked anyway. If you're not on a list already you're doing it wrong.

...

pretty much this. Come kill me I don't care.

Who needs NSA mormon data closets when you have cloudflare!
"I'm finding private messages from major dating sites, full messages from a well-known chat service, online password manager data, frames from adult video sites, hotel bookings. We're talking full https requests, client IP addresses, full responses, cookies, passwords, keys, data, everything."

10% of web traffic is cloudflare.
stratusly.com/cloudflare-continues-take-internet/

this is why you opsec it up cuck

why are you so triggered by what I said? Nobody is saying not to opsec, but don't pretend you are safe just because you don't use a kike platform.

this. the point is to flood their shitty list. if cia niggers are watching me they're hilariously wasting their time and money

What are you worried about if you've got nothing to hide, goy?

Good thing cianiggers are about to get purged, eh tor poster?


Pretty much. I was put on a list long before I ever found Holla Forums.

I think OP's point is, no one is safe, period and opsec is really the only thing that can be done. Yet another fucking wakeup call.


Carrier Pidgeons

Government's about to find a shitton of doujins and 3D aryan women on my drive.

Are you hacking into a MIC company network or browsing a Vietnamese frog drawing discussion imageboard?

tl;dr you know fuck all about opsec nigger.

So whats the damage? Are my passwords not safe or is it just browsing history?

Happened to my android too. Must be a (((coincidence))).

all these shills ITT

Only faggots would speak negatively towards opsec or anyone proposing opsec

Okay now I'm fucking spooked. I had to reauthorize shit too.

(checked)
Won't know for a couple of days but always safer than sorry. Is anyone else having to reauthenticate on the major services? (((Chrome))) yes I know, what I surf "normie" sites on to leave a purposeful footprint made me reauthenticate all accounts tonight as well as my phone.

I stopped using VPNs when Rule 41 passed and using them could get you put on a watchlist.
What the fuck is there left to do? I don't really care about my IP anyway might as well start namefagging with it :^)

Blame the cuckchan rapefugees that feel the need to post when they have nothing of value to say.
4cuck has been banning en masse again for whatever reason. Hopefully it will pass.

There's anons here who aren't already on a watchlist somewhere?

Same here. Anons I'm worried about going to sleep tonight now.

Related thread on Holla Forums:
>>>Holla Forums715751

So as long as we didn't send any personal info we're good? That's the impression I'm getting.

Everyone's likely on several - I just doubt that they will leave me alone and probably use any excuse to v& me like some spammer(liek doggore - which is illegal in my area) using the same VPN as me.

Oh look it even has a logo

I have 2 factor auth on the 2 accounts i really care about. what do you mean by reauthenticate? Does it mean relogging in? its a good thing im super paranoid about browsing the web. I might not be infected

people can fuck with your router if it's a piece of shit.
ex: something distributed by Verizon a few years ago.


this

don't worry user you could probably take on whatever nerds they send. i'd sleep with a sharpened twig if i were you though

More like an AR15 and 1500 rounds.

sent as in sent and received data
as in input/output

Right, I haven't sent or received shit so I guess I'm good.

If a site you use is a customer of cloudflare, I would consider that password to be public information and should be changed.

tl;dr sites that use cloudflare were spitting out way more info than they should have been because of some piss poor attempt at email obfuscation


zayo bandwidth, nice. I have to use VPNs in order to work, and I use different VPNs for personal shit either way. If that gets me put on any lists I have a viable cover.

...

Yeah, chrome and android both gave me the little red triangle saying "Need to Reauthenticate" or some such nonsense. Means they wiped the tokens their side and needed a fresh password entry THANKS OAUTH! since mine were stale. Probably preventative on their side since, you know, Google. With two step you should be groovy.

they're nerds user, you could spraypaint a banana grey and they would most assuredly give you their wallets

How do i know if its cloudflare?

you have never clicked "log in" on a site backed by kikeflare? Become technologically literate.
They don't just mean "i sent you an email with my password in it"
they mean data sent to any server running kikeflare. any data.

This is a good start https: // www.cloudflare. com/case-studies/

I go here, I listen to RLM on jewtube. and I go on tweetdeck because fuck normal twitter. That's about it.

attention anons


EXTRA

EXTRA EXTRA

trends.builtwith.com/websitelist/CloudFlare

Is it safe to visit cloudflare sites now?

plus you can use Tails

and/or Tor

Shit, I didn't realize that site requires an account.
My bad.

That's the trick, 10% or so of the internet runs through the fuckers. You really don't.


If you visit a website you "send" data requesting the site, you then "receive" data from that request. If you have a password on any site that is hosted on Cloudflare as said, you should consider it public now.

In other words if you visited hotshit.org which is hosted / or passed through on cloudflare- or pulls any cloudflare CDN info, it is likely that your IP address, any postings you made, any hot hentai you downloaded, etc. was scraped up by baidu bot or bing.

Is the leaks limited to just cloudflare websites? Or are they able to access non cloudflare websites?

I mean passwords. Can they get not CF passwords.

TOR is jew'd lad - just shell out the cash for a decent VPN.
privacytools.io explains how to pick one.

Disclosure is just about Cloudflare so just affects them and their customers it looks like.

This is the Trump administration closing all the sloppy backdoors that can be used by China to fuck the US over. Look at his cyber executive order.
gateway.glop.me/ipfs/QmUVPQKnJ1Xgyizw9XmcD5uBeFXr3DFbRJgVsFuCRNs4Kh/order.png

SHA1 was also announced today and given 90 days.

Does builtwith . com use CloudFlare?

When I've browsed with tails cloudflare sites have thrown portal pages with captchas at me. If you really want to check that might work. Or maybe there's an easier way ..?

Ah shit nigger you on a list naow.

VPN > Tor > a different VPN

Most of the Tor unmasking is either timing attacks (which this doesn't solve, need extra noise on the line) or when a computer/browser gets malware and connects to clear net.

For a little bit of added security, run VMs on your laptop, dispose of the VMs regularly or revert to previous snapshot.

Good point.
no idea

h8chan won't let me post with a vpn, wtf.

I've assumed I'm on a list for years now. My background check was fine when I bought my AR so I can't be too high on their watchlist. Sage for offtopic.

If i havent used a CF website in a while, am i fine?

Or just use Tails

mass adoption when?

If this were true I would feel so much better about this shit. I want to believe but I'm a skeptic.

Qubes is slightly more secure but also slightly more complex than TAILS

Wow reading the comments from Hackernews…

Read the whole event log.
If you were behind Cloudflare and it was proxying sensitive data (the contents of HTTP POSTs, &c), they've potentially been spraying it into caches all across the Internet; it was so bad that Tavis found it by accident just looking through Google search results.
The crazy thing here is that the Project Zero people were joking last night about a disclosure that was going to keep everyone at work late today. And, this morning, Google announced the SHA-1 collision, which everyone (including the insiders who leaked that the SHA-1 collision was coming) thought was the big announcement.
Nope. A SHA-1 collision, it turns out, is the minor security news of the day.
This is approximately as bad as it ever gets. A significant number of companies probably need to compose customer notifications; it's, at this point, very difficult to rule out unauthorized disclosure of anything that traversed Cloudflare.

>It is far from over, too! Google Cache still has loads of sensitive information, a link away! Look at this, click on the downward arrow, "Cached": google.com/search?q="CF-Host-Origin-IP:" "author…
(And then, in Google Cache, "view source", search for "authorization".) (Various combinations of HTTP headers to search for yield more results.)

Source:
news.ycombinator.com/item?id=13718752

apologies for the abortion on the greentext, it looks like fucking reddit on that board

wew

You can determine which sites use cloudflare with curl (with the -I, capital i, flag). e.g.: curl -I lastpass.com/

...

yc is reddit for silicon valley kikes.

If it's not encrypted coming out of your modem you might as well just email it to NSA.

This really is as bad as it gets, isn't it?

...

doesitusecloudflare.com/

INCLUDING THIS WEBSITE


Glad I found it then. Kinda like reading the Protocals of the Elders of Zion… but for (((nerds))).

...

Oh holy fuck! HAHAHAHA
>'m also seeing a ton from cn-dc1.uber.com with oauth, cookies and even geolocation info. webcache.googleusercontent.com/search?q=cache:VlVylT…
reply

...

All right, i changed the only password that would be bad to lose that doesnt have 2 factor auth. I think im safe. GL with the rest of you though. It seems bad.

Yup, it's bad.

You're using one right now.

Fuck.

10% of all internet traffic, user. All in the wild now.

I knew Discord was bad, but this is kind of fucked since Cloudfare is on a ton of websites.

Exactly. Did Holla Forums wake up the codemonkey yet?

These comments. Yeah, best be changing those passwords lads. This looks like it is actually fundamentally worse than Heartbleed.

news.ycombinator.com/item?id=13720781

fug

...

how come (((msm))) isn't reporting on this yet?

Do i only need to change passwords on CF websites or everywhere?

If I uninstall discord right now, is it already too late?

How does it feel that you not only walked into a goon honeypot but all your shit got leaked anyway

they will, tech sites are showing it

You are literally hacked by Russians right now, your next post isn't even written by you.

chodemonkey is knee deep in flip ladybois now lad.

Feels pretty shitty that Russia's looking at my doujins right now.

Здравствуйте… err… Haallo fellow nahdzi

...

The one thing discord has going for it is it being a better skype essentally.

TOP KEK
nah you're boned. this is exactly why we told you faggots not to use that shit.
also >tfw you'll be playing this in less than 12 hours

Here's my question

Does the update servers for various Linux distros run on cloudflare? Ports for Unix?
Could this leak people's auth passwords for updating?

I don't care if it sent robot hookers to give free blowjobs, if you use a goon service you deserve the cyber-aids that you get from it.

Nobody told me not to use it. I was told it was better than Skype, and I figured it was true because of Microshit.

except for everyone here that sagebombs any threads regarding discord and tells anyone who discusses discord to kill themself.

Somehow I missed those.

This is why. Skype is definitly worse than discord. Is there even a program that does what discord does but without the aids?

What? Some password fuckery has happened on my android too…

Supposedly it was "fixed" so the damage is already done. The problem is it was spraying all the data out so the bots / crawlers / page cachers / etc. could grab all the goodies.

Pic attached pretty much sums it up. If they were on the stock market they aren't we would be talking about a company killing blow from this; but instead these fuckers will keep siphoning off the backs of the internet with their "security". I hate cloudflare, makes Tor nearly unusableand their captchas can kiss my fucking ass

Yeah I'm gonna go with the assumption it's still not fixed.

not anyone's fault but your own - lurk moar.

>>>/sudo/21576
But don't expect codemonkey to give a shit. It's not a front page feature nor bui spamming Holla Forums so he'll ignore it.

Did I say it was anyone else's fault?

Wise choice, guess I won't have to hide the stupid 'POL' discord threads anymore.


Dunno what he could really do, possible the mods and BO's credentials got leaked though. Hmmmmm

No, can never be reminded to lurk moar enough though.

Some people tried to post about this here and it got slid to death. This is all part of the giant TAO leak that has heart attack in it.

nytimes.com/2016/10/20/us/harold-martin-nsa.html?_r=0

This is nothing compared to what will be revealed in the next few weeks

I heard Tox is better alternative instead of discord.

Wew.
Has the fire been started?

Stop using cloudflare? It's not like it's really mitigated any DDOS attacks against the site, since every time there is one it still goes down.

Wouldn't it be funny if the NSA homebase was "Cloudflare" protected and Equation group just grabbed the tools off of Baidu or VKontakt webcrawler data.

Yeah we know. Holla Forums should be fine due to the nature of image boards.
Ill make a note for mod.php users suggesting them to change their passwords.

So their service has access to he client's encryption keys etc. Am I reading that right. I guess they'd have to. That's lovely. Shady as fuck. The whole problem is likely the result of their data sniffing activities. Or collateral damage from third party penetration into cf's data vaults.

I have read a few articles about him before, he seemed to be an incompetent autist and somewhere it was claimed that while working at TAO he was only making their burner accounts, bitch work. Who knows?

Same here. Urgh. Who is responsible, would be my question. Does anyone know?

It has since been fixed, but some old passwords may have been grabbed.

...

I live in the bay area you fucking fags. If you're afraid to express your views IRL, you are a pussy bitch and not a man

youtube.com/watch?v=IPvJ78629ek
cryptome.org/2017/02/martin-0033.pdf
www.theverge.com/2017/2/8/14555238/nsa-leak-indictment-harold-thomas-martin-20-charges
washingtonpost.com/world/national-security/prosecutors-to-seek-indictment-against-former-nsa-contractor-as-early-as-this-week/2017/02/06/362a22ca-ec83-11e6-9662-6eedf1627882_story.html
nytimes.com/2016/10/20/us/harold-martin-nsa.html?_r=0

user, some of us are in positions where opening our mouths could result in the loss of our jobs. You wouldn't know because you talk like you don't have one.

So pretty much everyones fucked? This is some hilarious shit. Many kek's will be had in the ensuing chaos. Glad I saw this coming and switched back to nix entirely quite some time ago. I know i'm far from 100% safe, but I'll take my odds and honestly don't give a shit if (((they))) know that I frequent a tanzanian book binding forum for my main news source.
This namefagging nigger get's it. Don't think I fucking ever bro saw discord being discussed without a rain of shit coming down afterwards on whoever mentioned that jewy pot o' honey. And I may be old but I'm relatively new around here, and honestly I should still be lurking, got like 9 more months to put in. Been a fun ride so far. Posted a bit during the peak of election season ofc, but seriously faggots lurking is better for you. Have some humility, it will catalyze the rate at which you may truly understand and swallow dem pills. 4 realz.

I came here to check these trips. Shadilay

List of sites:

github.com/pirate/sites-using-cloudflare

(check'd)

Is this a general Holla Forums thread nao?
Can i ask questions about opsec?

Checked.

hear me roar

its not reddit spacing if its meme arrows faggot. I'm a project manager for a construction company. Its all redpills from the top down.

Get a real job.

...

I don't know whether to be smug or terrified they'll come here…

reported.

>>>/gore/

There's an executive order in place to deal with it. See The problem is that some of the backdoors are in place at the algorithmic level. That means that unless you write your own encryption, any encrypted file or computer can be accessed. The other big problem is that the hardware backdoors are put in during manufacturing and all manufacturing of hardware is done in China. This is the real reason the IC is having an internal war right now. The US got too sloppy with the backdoors to spy on their own citizens and now every country has access all their information.

If you have encrypted data you want to protect, encrypt it again using LibreSSL or GPG2 after you modify the data in way that corrupts it and only you know how to fix.

In other words, literally open files with a hex editor and replace all 'A's with 'Z's for example

it's reddit spacing especially if it's greentext. you don't know what >reddit spacing means.

...

So many of you guys seem to have a lot of faith in vpns. I don't share that.

SORRY DESU!!!

This.
How do you vet a VPN provider?

...

Seriously, did anybody not expect something like this?
Halfchan /g/ called it from the beginning.
Web and browser developers care more for implementing new features than security hardening or clean code. Which is why Javascript has always been such a mess, and why php is so popular.

...

Is it bad opsec
opsec to transfer my files from my android to a pc?

(checked)
SATAN LIKES ANIMU AND CONFIRMS WAGESLAVES ARE SLAVES==

(self checked)
Whoops
SATAN LIKES ANIMU AND CONFIRMS WAGESLAVES ARE SLAVES

(checked)


Word of mouth, research and prayer. Lurk boards like this, Holla Forums, etc. I'm satisfied with mine expressvpn, but it costs shekels. See what their terms are, if they have a warrant canary. If you can hop to it through work or a university (to obfuscate the front end feed back to you). Unless you are about to get droned and are on a list to aloha snackbar though, it is unlikely that you need the hop in my humble opinion

I do polposting and normieposting on different devices, on different networks, with different software, on different languages. The polposting networks can't be traced back to me.

Am I safe?

I work at a gym. What do you do?

thatoneprivacysite.net/vpn-comparison-chart/

...

...

Normalfags ruin everything.

'private internet access', allegedly started/run by Swedish pirate party. Accepts bitcoin and gift cards (which you can buy with cash at shops). Never use a credit card, never use real name/address, use a separate email account from personal stuff.

Linux distros are autistic about CRCs and certificates. You can spoof the update server with modified packages, sure, but the package manager will throw a hissy fit and refuse to install them.

Pay them.

Here's a link to an article, not about vpns, but including references to expressvpn, in the comments too. inb4 it's in China. The Chinese tolerate some vpns. Why? Because they get access one way or another. If the Chinese are doing it do you think that we're any more secure over here? I don't.

blog.zorinaq.###com/my-experience-with-the-great-firewall-of-china/

What types and countries do they accept?

This good advice. Pirate Party or anything non-NATO is good. Pay with a cryptocurrency.

No idea user, you'll have to investigate. Pretty cheap though too, something like $6 USD a month

Shit….you know I'd read about that hardware shit from china being integrated into certain military tech and it costing us a shitload of money a few years ago….been out of the industry for a while so I never really focused much thought on the idea other than a few kek's and laughs. (much less patriotic a few years ago) Anyway that is scary as fuck though…..wew. I didn't realize
applied to possibly almost every piece of hardware created in the last 10+ years….I was just thinking of us anons and maybe some normies….not the military. wew, well hopefully the god emperor will lead us to victory over those red fucks. Damn user….I'm tripping a bit right now.


I'd like to have a beer with you. Getting into construction myself up north in wa, it's nice to be able to throw salutes and openly condem jews. I was gonna agree with this user and make a dinosaur joke, but your ID checks out with the double dubs bro. Ya'll neet's with your waifus need to have a little more fucking respect for "wagecuck" anons like me and 448099. We may not create and distribute memes as effectively as ya'll, but we build shit with our hands that keeps your heads dry. It's a bell curve user, you should know this better then any if you're truly redpilled. We may be superficially different but we are all one and the same in the end fighting for a shared vision of the 1488 future.

Ahhh, I feel slightly smug at my well placed purchasing decision.

How would you call it?

I'm asking about the update servers. If a distro's update server is on cloudflare.

Could someone's root password get leaked during an update

I would call it killing yourself.

wtf I hate National Socialism now

Anything you write to flash media you can considered compromised. That includes every USB drive, cell phone, or SSD with the one caveat is that you trust it was encrypted before it was transferred to the flash media. Due to wear leveling, data can still be dumped from those devices, even if you "delete" or overwrite it. You can't DoD overwrite data on SSDs, because the area on the physical disk may have been removed due to wear leveling and the controller isn't allowing you to overwrite that part of the disk anymore, so it is still there.
In your case, if from Android -> PC, your android files can be read later should anyone ever be in possession of your phone.


Sort of off topic, but either ask here or create a thread somewhere and link it.

just ignore the bickering

kys

So should i not transfer it? Is there any way i can do it without fucking my security up more?
And does that mean it would still be on the phone if i did or deleted it?

Please no.

It's Holla Forums's kike BO so it gets a pass.

No. Unless his computer sent it over the network, but why would that happen?
The root password for a server could be, if there was a remote login over http to the server, or for stuff like phpmyadmin. But unless the signing keys for the packages were in the server (they aren't, package maintainers sign them in their own computers before upload), it wouldn't work to compromise the clients. Only exception would be the install media images, ISOs and such, it would be easy to detect, but would fool those who didn't check the hashes. Or if the site serving the hashes was compromised, and you didn't check the signature file for those.
I wonder, does any distro use the bitcoin blockchain for publishing the hashes for the official install media? Seems like it would be a good idea.

In other words, you haven't a better name or are trolling. Gotcha.

You have to go back
>>>/facebook/

Read an article about that when I got serious about security. LVM crypto with a strong key is a seemingly option from what I understand if 1. If the drive is fresh and 2. if you later reformat the drive using a different crypto key. The data is still "there" just encrypted and buried. Phones are worthless when it comes to security. Have no idea how well my android's encryption is, but I don't fucking trust it as far as I can throw it.


THANK YOU
One of the sites I use to obfuscate was behind CF and I would have never known it. Rest of the password protected sites were chummy though I hopeunless the CDN was grabbing shit and spraying it as well

pia is a US based honeypot++

this. only use non five-eyes VPNs and nothing put out by some sketchy liberal political organization that might try and threat-index the bad goys

Your ISP cannot see what sites you visit when using a VPN. With only https, they can't even see the page content you are loading, only the domain. Maybe my 8ch traffic is Holla Forums, but it could be /christian/. They're none the wiser.

Is it really? I thought it was owned by Swedish guy, pic related (founded Swedish Pirate Party). Is he controlled op?

From android (flash media) to PC, not if the pc is storing it encrypted. Either way, if someone gets a hold of your phone, that data is theirs for the taking. No real risk. Is it something that could put you in jail for a lot of years? Then keep it off of your phone and your home computer.

Proofs?
What's a better alternative if true?

quads of proofs

(checked)

checked
I recommend nordpvn

What do you think?

okay so root password is just so package manager can have privilege. not any type of update server auth

thank you
I'm obviously a beginner

incorrect, they can see the full request, but POST type data and the page contents are encrypted. They have access to every url you go to. For instance, if your super secret page uses GET data (just http way of moving data, get puts it in the url, so it isn't a secret) furryporn.bigdicks/myprofile.php?username=amazingautist&password=dogdicks then they have everything in the url. The full http request is visible, just not the page data. You can verify this yourself with wireshark.

With a VPN however, that then shifts your VPN provider having access to all of your HTTP/s requests. VPN usage and what you're doing online is often leaked via DNS. Meaning you run all of your requests through your VPN for web pages, but to figure out the IP for furryporn.bigdicks, you use your ISPs DNS or ask it over clear net, they (can) have a log of that.

No its just Holla Forums related shit like memes. I was just wondering if it would be secure to do.
Even if i deleted it all? So what, am i suppose to hammer that shit?

Self-checked.

What are you doing namefaggot? Are you high?

Still no proof pia is a honeypot.

Mt. Gox .. this good for bitcoins.

Doesn't facebook and twitter and almost every major social media and/or e-mail server rely on cloudflare?

Are you tell me I can hack into anyone's faceberg, twitter, etc. account? As in, I could hack into Hillary's twitter account and shitpost into oblivion?

Everyone was at one time user very few will admit it though Here's an otter.

If you want to make sure no one else can ever get that data off of that phone, yes, physical destruction. It sounds extreme, but it is the only way unless the information written to it was encrypted when it was being written. After that, you can just lose the encryption key and it is as good as gone (as long as you use a really long fucking pass phrase and don't re-use it anywhere else). If I were you, I wouldn't worry about it.

Whonix.

whonix.org

VPNs are almost meaningless, they've cracked down on them hard and ALL international North American traffic goes through the Long Lines Building in New York. It gives you a fuckhuge fingerprint and you'll pop up in databases, seeing who uses a VPNs is a lot easier than going through content; they'll know where to look. If you don't have a job/class that might require a VPN, you'll be watched very closely.

The best practice is to assume the internet is public and everything you do is in a database somewhere, avoiding attention is the key.

...

root password is so you can install the downloaded .deb files to the proper places.

You could do it all manually if you were super autist about it.
wget example.com/yourfile.deb
dpkg -i yourfile.deb

Of course apt-get is more secure, and unless you want to break your shit just use the "package manager"


Is it android? It runs on linux.
That means you can dd over the drive or shred the whole thing or do just about anything you want with it.

But yes, physical destruction is your best bet and stop watching CP you giganigger.


I recommend Linux From Scratch tbh. Failing that kali linux, linux mint, etc.

Honestly I am getting so fucking disgusted with everything nowadays I'm going to build my own computer from ICs and run my own assembly language. Fuck it.

You don't know what you're talking about. SSL operates at a lower level than HTTP.

What's that kike-on-a-stick prophecy about everyone knowing everyone's sins in the end times or some such shit?

To add on, the best way to circumvent DNS leaking is to (at the router level) set your DNS to one that is not ISP specific and non-five eyes. That way the only thing the ISP sees is that you connected a VPN tunnel to xyzVPN.com. I can't remember how to config in windows but in linux you set it at the /network/interfaces (or if you have a decent firewall at the perimeter- set it there). Pic related is my favorite DNS. Advantages are when something goes titsup at say 8.8.8.8 (Google) it takes awhile for the DNS poison attack to propagate; also when Google decides it is #FakeNews your ISP is going to agree. If you have one that won't censor- your good. Like a vpn, no logging as well.

Not shilling them but DNS is dime a dozen do some searching, these are dns.watch IP's.

At that point you might get a Z80 based computer or something from that era.

but it is proof of the pirate party(their supposed owners) either being cucks(who would sell userdata) or controlled(also would)
eat shit and die kike
read the thread.

None of those things prove it is a honeypot. If that is all of the (((evidence))) you have, you should be ashamed of yourself for screaming "honeypot".

I've used more than one VPN service that has about the same pricing, and also several with server pools as diverse.

Proof it is US based?

(checked)
Even if it is, they're still probably capable of reading, even the most autistic measures aren't a guarantee when encryption algorithms have been compromised in the past.

Just don't do things that can be held against with something connected to the entire fucking world and that passes through dozens of unaccountable middlemen. That goes double for cellphones.

This is user is high AF.

How exactly, and how does it threaten me, a user who pays anonymously with cryptocurrency and uses whatever WiFi networks I come across?

Do… do you even know what a VPN is for? I'm not even going to bother responding point by point to the rest of your post, you're full of shit.

No, they do not. The request is sent after the TLS connection has been established.

I'll just do it anyway since folders of smugs are not even near pizza tier shit. Also could
you redpill a retard like me on how i can encrypt shit?

Its literally just pdfs,webms and waifus.
I thought if i transfer it, some data from the phone would be attached to my shit. which is bad.

I was wrong, the length of the URL, and the domain are visible, also the length of the page. Both the page length and url length can be approximate.

Cellphones now have always-on microphones and transmit your position constantly to towers. Your meta-data being sent to the towers is also being scanned continuously by third parties (law enforcement) by nearby IMSI scanners (this allows them to see who you are spending time with physically and where).

If you care about privacy you should not even own a device with a GSM or LTE antenna.

Why is Holla Forums so shit at tech

You can run your own VPN on a $5/month linux VPS in any country you please, and generate your own TLS keys, if you like.

Commercial VPNs do provide some plausible deniability, as long as you pay with gift cards or cryptocurrency.

So the more i read the more i see that Holla Forums truly is retarded. Kali is a pen testing distro that is no different than most others. It exists merely as a tool. Mint is kiddies first distro. How can you possibly be this fucking retarded

That guy is completely correct, stop larping.


No worries.

Sometimes people are in ceritan circumstances which forces them to use a shitty mobile.
Anyway once i move my shit will there be any backtracks?

b-but mint looks good to me.

(checked)
This user is correct though overly-triggered.

The best distro for newbs I would say is a Debian Gnome 3 install. It's pretty much braindead to install now (could probably just keep pressing enter), everything tends to work fine, and the Gnome 3 desktop environment is pretty normie friendly.

We should be more encouraging of people moving away from Windows, but I agree Mint is absolute trash.

If you want to be opsec ultimate, you need to go full OpenBSD, btw.

Cryptocurrency is still not safe unless you purchase face to face and even then, the majority of anons are tok retardsd to figure out how to keep it "hidden" before getting rid of it.

Hosting your own vps is the same issue for anons as they just dont know how. Also its even more stupid than just signing ul thru a company as its literally JUST you using that device. Not to mention you still have to trust the host of said server unless you go set your own up somewhere. But lets be real here, how many anons have anything that any letter agency is going to care about.

PIA is owned by London Trust Media, their HQ is in Denver, CO.

Is void linux any good?

exactly this
sorry for the shitty "diagram" this is the magic of a vpn.

Local —TLS-→ tun/vpn –?→ end-site
[ISP can see] [ ISP cannot see ]
1.1.1.1 (your IP with ISP) then changes to 2.2.2.2. Etc. Etc.

All of your packets are tunneled over to the VPN, all of them. The only thing the ISP sees is that you have a connection to https:supersecret.vpn and traffic is going through it.


None when you move the files over, just know that there are traces of them on your phone Mint has issues, but Debian as recommends is incompatable with some newer hardware due to being on Kernel 3.x but one thing about linux, everyone has an opinion and they are all right.

Using a VPN provider will not make you anonymous. But it will give you a better privacy. A VPN is not a tool for illegal activities. Don't rely on a "no log" policy. Do you disagree with that statement?


There's quite a few ways. First off, does your device have a dynamic MAC address? Most mobile devices don't.

...

Ping the site to get its IP, then try connecting to that IP in your browser.

You are forgetting currency that you mined yourself from X IP address, and currency sent to your wallet for transactions / donations that have no way of being tied to your personal identity. If someone is buying cryptocurrency with a credit card they're retarded, that goes (I hope) without saying user.

No, it's not more stupid, because if you pay for the VPS with cryptocurrency there is no way to trace that VPS back to you even if (((they))) subpoena the provider you chose in Khazakstan.

To be clear, I have no illusions about evading the NSA / ayy lmao. I care only about local law enforcement.

Thanks op!

Another note apparently archive.fo went full kike and isn't allowing vpns to acesses it

the
curl -I big.boobies.com
worked a charm too.

Never tried it. Install Debian testing and then 'apt-get install virtualbox' and try Void Linux in Virtualbox.

>>>Holla Forums
You're not special. Did you fall for the gentoo meme, think yourself as l337 and decide to berate others? Let me guess, you configured i3 and now you're an authority… give me a break.

If i encrypted my files would there be no traces now, right?
Also What if i installed a new OS on the phone? would it still be there?

Nigga are you high AF? I'm on Kernel 4.9.0-1 right now.

Here is what you do user. Transfer your files off your phone for backup, then delete the files on your phone. Download an app that wipes the "free space" on your phone, there are a few in the store. This writes zeroes to the flash RAM on your phone (the "hard disk").

Then do a factory wipe of the phone, then do another empty space wipe with the same app.

That's about as good as you can do. I always destroy my old phones, personally.

90% of people aren't on linux

But they should be

I of course have a script that changes my MAC on command.

They can make a log of my random MAC addresses, the random IPs I used to connect, and the IPs I connect to. All they can see are encrypted connections to other hosts.

In my country, posting anything critical of Islam is "an illegal activity", and you bet I use a VPN to do so.

It's all about not being the low hanging fruit, user.

nah dude I need windows 10 for my flash online-pornography-players and video games like DOOM™

And I mean 2016 DOOM™ not that outdated misogynist filth that inspired every school shooter ever

This is kinda a long answer and I'll try not to geek out but ish. If you move the files to an encrypted drive, you are golden with the files then. They are encrypted on the target, and were written encrypted. No problem. But there will still be traces on your phone unless your phone was encrypted before the files were put on. It is a different discussion but when a file is "deleted" all it says to the controller is "this space is free", it doesn't really change the contents- at all. Back in the good old DOS days you could actually find the files on the HDD prefaced with a ? if I remember correctly. On a HDD that's cool because when the head overwrites everything (with secure deleting it overwrites everything with 0 a few times first), but SSD are a problem because of the way the chips are configured.

So on an SSD your data may look like this:
| P O | R N | I S | B A | D M | M K |
and the way the controller writes later (after delete, italic are ignored blocks by the controller):
| P O | B O | B S | B A | …

if it is encrypted on writ (originally) your data looks like this:
| 4 x | w * | ! 3 | b 9 |
and after it looks like this:
| 4 ! | V 2 | b 3 | a Z |

So there is a trace, usually enough, for the big guys to piece together what was there. That's why you want to encrypt everything all the time. and porn is badmmmmkay If it is a burner phone, and the files are that confidential, move them to an encrypted store, go after it with a hammer then take the pieces and leave them in etching material for a few days.

well fug. that's gonna take a while for a tech iliterate fag like me to do but if it means more security it's worth it, right?
Also is all the info on these steps online?

Honestly I don't care.
The shit programs they come out with nowadays are ridiculous memory hogs. I remember when 512M of RAM was decent enough to run games like stronghold ffs. Nowadays everything is so fucking bloated you can't even open up a web browser without using 1/4 of a Gig.

I am sick to death of these shitty H1B programmers who come over and just throw dogshit ontop of pre-existing programs bloating everything up, wasting bandwidth, and shitting up the world.

A computer does not need 8GB of RAM to be useful. There is absolutely zero fucking reason for that shit. Modern OS's a shit. Modern hardware is 'optimized' for these shitty Os's and is also a shit. Everything is fucked.
ASHES AND ECHOS


Use an SD card; save it to card, move card to computer, copy files. Not that difficult m8.


And? I'm giving out recommendations, anyone who is a paranoid schizo on Holla Forums is going to want the tools it has anyway whether for hacking or just because they want to use wireshark.
Nobody cares faggot. Use whatever the fuck you want to use.


Best distro for newbs is mint if they're coming from windows 7 or ubuntu if they like faggy looking desktops

Newfags won't be able to figure out how to even download debian.

Mint wasn't always as bad as it is now; it's starting to fill up with bloatware to accommodate retards who keep spamming the IRC help chat asking how to get their off-brand chink graphics card to work.

It's about as bad as ubuntu was in 2014 or so. I'll give it another few months before I switch to my own.


They could MITM it if they wanted to. It's not that difficult.


This.

I'm no expert, but I know a retard when I see one.

There is nothing wrong with using a VPN; you should be using a VPN. In fact you should be making your own portable VPNs out of raspberry pi's or chink knock off orange pi's and dropping them in coffee shops around the world.


Huh. latest update I got was a couple weeks ago to 4.4.0-62


No. Just use the command line functions. Android is a linux distro. Google is just a bunch of faggots who thought using Java instead of C or C# would be "better", but the kernel is still there and so is /dev/zero and /dev/random

Just use the adb shell

>ASHES AND ECHOS

*Flash ROM

That ID.
WEW

Whonix is good. Whonix + Qubes is better.

Lol youre recommending a pen testing distro to normies. You have absolutely no idea how tech works apparently. Why not just recommend jewbuntu if youre going to be this retarded

Preaching to the choir, amigo.

Actually we're both wrong, it's NAND flash.

Daily reminder a quick fix for temporary, quality anonymity is a single visit to a public WiFi hot spot while using a randomized MAC address and browser user agent on a computer dedicated to this sole task provided you are not seen by security cameras or wear a disguise. Sure it's inconvenient to go out somewhere for a onetime thing, but what else are you going to do when it really matters?

I had to do it as well. Couldn't figure out why.

Also Hotwheels tried to avoid Cloudflare for Holla Forums but NiggerSquad DDOS was too much for anything else.

…might smash it now that i think of it tbh.
Since phones aren't good for portable shitposting it seems. What about making one of those mini raspberry pi things? Is that safe?

But what about muh traces of data? Do you think that is irrelevant for a fag like me?

Both Ubuntu and Mint are based on Debian, just with added bloat, shitware, and literal spyware.

Downloading and flashing/burning Debian is no more difficult than Ubuntu or Mint. It is a fucking ISO file. If they are using Unetbootin, it's in the dropdown menu with the rest.

Give me one single reason to recommend Mint over Debian to absolutely anybody. If you say "Cinnamon Desktop Environment" you're retarded, because Debian now comes in Cinnamon flavour.

There is absolutely no excuse for recommending Ubuntu, under any circumstances. It has actual spyware in it and is the most Jewish Linux ever created. Fuck you for even recommending it at all you filthy kike.

Go be autistic somewhere else.

as long as you discharge any static first

I looked into it and this user is correct. For some reason I thought pia was based in Sweden. Technically this is a 5 eyes jurisdiction, so yeah, you can find a better provider for sure.

Shit.
I meant is it secure to use.

I know a debianfag. He told everyone how it was great for his haxxing but one day he said it was shit and started using…ubuntu. Idk what was wrong with him. I think he was a mud so that could be the problem.

Bad idea that will fuck your data permanently. Unless you also record the file offset of every modified 'A', it is unknown which 'Z's must be translated back to 'A's in the reverse operation.

Probably was a scam artist now that i think of it since he enjoyed putting viruses on white kids pc's "fur deh lulz xD"

Do explain Whonix + Qubes?

What if you don't have one of those?
Can i just "encrypt" it or do i need to buy another drive now?

or even


Kali linux is debian based and runs off of a USB stick. It's essentially tails only you can actually do things with it beyond shitposting on an imageboard,

$10 says you don't know what an ALU is.


Oh what the fuck ever, it's all shit you nigger. If you aren't making it yourself you have no idea what is and isn't on your system.


No.


I think you're overly paranoid and nobody give a shit about your shitposting on an imageboard.

Until they make it illegal.


Bottom line is you're going to have to try it to find out what you like.

Debian or a debian based distro like ubuntu and mint is always recommended for newfags to get used to linux.

Any of them are going to be more secure than windows shit.

As for the raspi thing; you're in full control over it, so it'd be as secure as you make it.

www.qubes-os.org

The Qubes devs can explain better than I, but the crux of it is, the Qubes system is partitioned into multiple virtual machines to sandbox potentially insecure drivers. Qubes has built in support for Whonix out of the box.

Thanks user.

You recommended two inferior operating systems that are nothing more than modifications of Debian. I asked for your reasoning in recommending them over their base OS, and you admit you have none.

We're talking about a good first Linux OS, not building your own OS like Terry Davis to evade the CIA niggers.

Thanks for the lulz, kid. Keep cucking away on Ubuntu, nothing personnel.

You're welcome, Hitler.

I'll be honest, Mint was my first Linux OS after windows 7&10 went spyware. I've since moved on to Arch, after trying Ubuntu and a few other distributions. But Mint took my cherry, and I am grateful for their assistance. Though I would never use that OS again, I would feel comfortable recommending it to a newbie.

Can vouch for qubes.

So this means that 10% of the entire internet has been completely and utterly compromised?

Could this be Deep State fuckery?

Alright then. I'll just do this for now and maybe later will do the complex route or just smash it.
Also, is there any real difference between mint and debian cinnamon? Is mint more aestheticly pleasing and better for newbs like me?

This thread makes me want to become tech literate.

What the fuck can I do besides shitpost on Holla Forums and /g/ and absorb it all via osmosis?

Mint feels and behaves more like that familiar desktop you grew up with in Windows. Debian requires a bit more experience though anyone with a browser and search engine can figure just about anything out. The Mint installer is also very refined and easy to use. I do not know what the Debian installer is like.

Everyone has to start somewhere.

qubes is legit


Debian is a good starter OS in my opinion. They can follow the endless Ubuntu tutorials with little difference and it doesn't have the same shitware


It also has a random number generator that only takes a package and a config file in order to use.


The encryption thing is usually very operating system specific if you are doing full disk encryption (LUKS vs encrypted ZFS vs whatever windows uses, lol don't use BitLocker). If you're on windows, go ask some fags on a message board who focus on that shit, something like TrueCrypt might be worth looking at, but it has been abandoned. However no one knows if it has been successfully broken.

False. Debian Cinnamon looks and functions identically to Mint Cinnamon. And Cinnamon isn't even that good.

It's been some time since I last played with debian. Perhaps it's easier to use now.

Personally I always liked xfce the best.

I'm not as tech literate compared to some of the anons here but this may help you as it has helped me.

h ttps://www.privacytools.io/

...

10% of the internet and probably 90% of most widely used sites

Carrier Pidgeon internet confirmed best internet.

So what does encryption do that's good anyway?
What if i'm dual booting?
Also Can't i just pop in a encrypted drive and it'll work magically instead of trying to encrypt it myself?

Do you really have to ask at this point?

Mint is easier to use and setup. Debian requires command line knowledge which newfags don't have, which they'll get over time as they spam linuxmint-help for help

Ultimately any large provider of web services is a client or a customer of the intelligence services. That's what Prism revelation was all about. I hope no one forgot that.

Your VPN provider can be compromised in exactly the same way Cloudflare can. If they exist in the material universe, the CIA and NSA can get to them. Research your preferred services carefully and try to assess risks yourself.

It'd be nice to make a decentralized p2p wifi network.

Encryption is only important in a few scenarios. If your computer is ever stolen (by cops or someone else) your information stored is untouchable. If you use an SSD, well you can't really wipe those and be 100% certain that all of your data is off of those because of how flash memory works, so only write encrypted data to them. Flash includes usb thumb drives/ sd cards/ memory in portable devices like your phone. Don't store shit on those that could incriminate you. A lot of this is paranoia, aka OPSEC. If you're doing illegal shit, don't store it on flash memory unless it is encrypted. Encryption only really helps when you need to prevent someone from stealing your shit (while it is powered off, if it is powered on, your key is stored in memory, so you're fucked).

I use encryption because when a drive fails I can just toss it in the trash. No one is getting their hands on my data. Also if someone steals my shit, they don't have access to anything on my computers. Sorry for the rambling, I'm heading to bed soon.

2FA won't protect your password.

AND since this is uninitialized memory we're dealing with, it probably contains things like function calls and probably database queries i.e.

select 2FAToken from users where name = "John Smith";

and

send2FACode(2FAToken, 24378);

I know, I know, these would be executed on the servers on which the services you are requesting are hosted. BUT what happens if they send these queries to other cloudfare-protected servers to be executed, via load balancing servers or similar technology? Suddenly niggers have access to your 2FAToken which can be spoofed or modified via SQL injection (which is a separate attack from just using this bug in cloudflare but still a possibility). Now your 2FA is useless.

the most famous holocaust denier is jewish mileswmathis.com/irving.pdf
and recently
all of the most public holohoax and history revisionists have changed their opinions

Fucking plebs

With more recent advancements in wi-fi that's actually a thing. You can host things on private servers connected only to your network and not to the outside world and still access them as long as you're in range of your network. Set up your own DNS and you'll have a more secure mockery of the internet that (((they))) can't see into.
en.wikipedia.org/wiki/Wi-Fi_Direct

This is pretty much true but here is a good trick. Say you are running an unencrypted OS and delete a bunch of files (didn't even shred them). You can write a file of zeroes to the disk until the process exits because the disk become full:

dd if=/dev/zero of=zero.foo

If you want to you, you could use /dev/random, but it will take a lot longer.

I recommend setting up full disk encryption when install Debian, that way it asks for a password at boot, and even the OS files are encrypted.

Honestly if we ever created a decentralized imageboard that operated on a different system that didn't require mods we'd be in a much better situation.

I find it sad that imageboards haven't really improved beyond functionality since 2003. There's been no real breakthroughs.

Are you refering to those expensive SSD's for pc? Can't they be encrypted like hdd?
So where is all the data stored?
This sounds like the cloud or some shit tbh from a retards perspective.

it's an image board what the fuck kinds of features do you want? facebook integration?

I just think it's bullshit people have a monopoly on what is essentially a very big LAN network.


It'd be nice if you didn't have to go through your ISP which tracks your, cloudflare which tracks you and leaks your information, and then onto some shitty datacenter which tracks and markets to you after being passed around through a hundred or so other datacenters just to get to Holla Forums to shitpost.

He does have a point about the decentralization, though. And it's not like we don't have bittorrent to handle the decentralized transfer of info. It'd just be a matter of encrypting it at the client level before blasting it out to the other peers.

We do have overchan/nntpchan
It runs on tor, but it's bretty dead.

Honestly I want a way to apply our hurtbox to large complex projects like vidya, animation, film, ect…

Honestly I feel like the ideas and benefits of anonymous communication and communities is a largely untapped goldmine and can be taken so much farther than it has.

Sorry, I'm leaving out a lot of information. If a drive fails, I restore from a backup, but I run most of my shit in RAID 1, so if a disk fails, I plug in a new one and make it copy over the data from the existing drive, so I don't even have to power the mother fucker off if shit breaks (for the most part, swap partitions are a bitch unless you use a RAID controller).

I am talking specifically about full disk encryption, meaning your entire hard drive, operating system and all is encrypted. Other types of encryption are file encryption, and transportation encryption (TLS, like https stuff). If you are just looking for file encryption (are you hacking the FBI? probably don't have a lot to worry about), then file encryption is probably up your ally. jewgle/duckduckgo "windows file encryption" or "macos file encryption", to find something that is suitable for you, and learn how to use it. I can't really recommend any for a noob, I use full disk or command line pgp/aes sort of shit. Good luck, maybe someone else can help steer you toward something that works for you

How to handle things that get added to the blockchain though, especially with an image board (CP, etc)? You can't really delete it from my understanding. That would then be a really risky thing to run on your computer.

Yeah, tor is too slow and has a bad reputation already. Are there any chans on i2p that you know of?

Ok, that explained some of it a little better.
Thanks.

That's not a problem with imageboards though. That's a problem with the Internet. So many people fell for the Internet meme that they didn't pay attention to the problems with it. It's several fucking layers of unsecured technologies stacked on top of each other like a pile of shit. If you want an imageboard like the one you described, it would have to be so off the grid you wouldn't even access it through a web browser. Hell one might even exist. You just haven't heard about it because it's off the grid and no one wants to invite outsiders who could potentially leak info outside the P2P imageboard network.

Is Linux Mint safe to use? (autistic answers appreciated, "its ubuntu so its shit" not so much)

meant for

I totally agree with the decentralization thing. It's just that it's not an issue with imageboards themselves.

I also agree with this.


if it uses true peer-to-peer data sharing then yeah you can't delete it. However, if you construct an ad-hoc network using Wi-Fi Direct or similar technology, you no longer use true peer-to-peer file sharing and instead have locally, off-the-grid hosted pages and images, which can be deleted and added like any normal imageboard.
en.wikipedia.org/wiki/Wireless_ad_hoc_network

It uses the Linux kernel with a desktop environment and shell specific to Linux Mint. Since Linux Mint is not a canonical project, the shell and DE are not subject to the privacy leaks Ubuntu has (I THINK). So if I had to guess without looking into all the programs packaged with Linux Mint, I'd say it's safer than Ubuntu but not as safe as building your own Linux distro from scratch, which isn't really that hard.
linuxfromscratch.org/

Alright thanks, then I'll use both Mint and Debian for the time being and have Windows 7 on the side. Is 7 safe to just grab an iso of or has that been pozzed too somehow?

OH SHIT NIGGER!
IM ON LIVE IP

7 was never "safe". It collects and sends data to Microsoft, like all Microsoft OSes. That being said, it's pretty much the only option for vidya gaems til games for Linux start becoming more widespread.

APPARENTLY I'M FROM SWEDEN

what is the IP it's probably better we use that now.

Honesty is a virtue.

Another distro which is nice for general use (and newbie friendly) is OpenSUSE. They seem to have a pretty attentive security team as well.

if all of us use the same IP, 0.0.0.0, then all our packets will smell the same to the NSA internet sniffers. And we can plot to take over the world in privacy.

...

...

Non-English guy here, i looked through the thread but im still unsure what its all about.

Could someone please tell me, in a simple way, what the problem is and how it affects a "normal" person from Not-The-USA?

All of our processors are pozzed up with that intel Management Engine and the AMD equivalent anyway, don't forget that. A literal extra core running a little OS designed to spy on you.

This, please explain for non Burgers.

that's right, trust the binary from example.com goy

The problem is that your password, your private personal information, etc. on 90% of the sites you use are now compromised and public knowledge. It doesn't matter that you're outside of the US; you don't use a different Internet than we do.

...

Passwords related to websites, like Amazon? And what kind of personal information are u talking about? Im mostly concerned about my shopping accounts, are they gonna be fine if i change the password now?

There is only 3 or 4 sites where I have a password and none have my personal information. Is there a list where I can see which sites exactly have been compromised?

i doubt cloudfare even knows and if they do, you'll be the last to know

These are not all buttflare sites
github.com/pirate/sites-using-cloudflare/blob/master/README.md

I lke to blank disks similarly with

dd if=/dev/zero of=/dev/sda

etc. The problem with flash is that there are other ways for data to remain. I don't remember the details, but I think areas that are flagged as unreliable and no longer to be used can still contain information, or partial information. But zeroing every writable address is probably good enough for most scenarios.

When i threw away some old hard drives I mangled the platters with metal shears. Physical destruction win if you don't want to use it again.

Yes
anything you've sent: name, home address, credit card numbers, date of birth, social security number, etc.
You'll be fine for now. But the damage is probably already done. RIP your private info.


this list here


Just to be safe I'd change every password on every site I care about. It's a good thing to do every now and again, anyway.

Thanks.

Let's assume I am using linux, firefox with a couple of cool addons. Also to start computer I have to Log password for Motherboard OS, file encryption and then user loggin, how fucked am I?

Also not a degenerate, most incriminating shiet is Hitler LARPing as Human

Websites that you go to sometimes use a service called cloudflare. They use it for DDOS protection, so when you go to their site, you're actually going to it THROUGH cloudflare. Well cloudflare fucked up something serious causing a memory leak, this means any data going into, or out of those sites may have been leaked to anyone visiting ANY cloudflare protected site. This data would include plain text login information, credit card info, real nasty shit.

Right now, there isn't a comprehensive list of all cloudflare sites that were compromised with this bug, so it is safer to assume any site using cloudflare has leaked info. It may have gone unnoticed, it may have been record, no one really knows yet. So, safe money is changing your passwords that you use on any site that is hosted on cloudflare.

Which sites run on cloudflare? Good question, there isn't a comprehensive list. You can check yourself from the command line looking for cloudflare headers via curl -I web.site/ otherwise stand by for a list. Popular ones include fitbit, uber, and discord.

Oh HELL yes, ddbro appears on the scene.

Use it all the time, for all sorts of things. Did you know it's such an old Unix app that the name 'dd' is unknown in origin and meaning? It's basically an ancient spell you can drag up from the deepest catacombs from some old dusty Unix tome.

I read the same. For some disks the manufacturer provides a low level format utility or boot disk image. There's no way of knowing what those actually do, however, if anything.

Yeah, and if you sell it, just sell to some random pleb on craigslist or something, or destroy it physically if you're paranoid. Or just do what I do and use them until they fail. :^)

This is the way to go. Actually pretty much as soon as you open the HDD casing, let alone touch the disks/accidentally scrape the drive heads across the platters, your data is as good as gone. They could do a clean room rebuild, but still it wouldn't be a good scene.

I've taken to keeping the platters as small mirrors. They're platinum coated if I recall, and they have a very vivid reflection quality that I can't easily describe.

May your dds always target the right device!

I never send any private info, if you mean like chatrooms and such. Or is my account information like credit card number fucked now, because they are stored in these websites?

Honestly it looks like it more of a problem for faceberg user type of people as far as i understand.

Also, thanks.

none of this shit matters.

if you used any site using cloudfare your vulnerable (logins, page requests, etc).

But it's only stuff related to Cloudflare-using sites? Or am I "infected" because I visited sites that use CF?

it's not the storage that's the problem, it's shit sent to or received by the site using cloudfare

cloudfare is one giant MiTM


doma.io/2017/02/24/list-of-affected-cloudbleed-domains.html

this seems to be a good list

If you have recently sent the information to the website, such as when you initially sign up, then yes that information is potentially out there right now in some cache.

The fuckery of this is that now if you go to change it, that will be out there too until this is fixed.

The entire world is about to be digitally ass raped. I wonder if this is how the US dollar will collapse.

Cloudfare has already fixed it. It should have been as simple as using calloc() instead of malloc() for a C program or otherwise nameOfVariable = 0; for already-allocated memory

cloudfare says they fixed it
web.archive.org/web/20170224022728/https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/


and it only took them 7 hours, all of you goyim should use cloudfare, they are expert

>You can check yourself from the command line looking for cloudflare headers via curl -I web.site/
You'll have to explain that one. Sorry for being a fucking noob.

So let's say I want to check wether Amazon.com is compromised: I first open the command prompt, then I type
curl -I amazon.com
and press enter

What kind of implications does this have on btc?

I was going to buy some btc and altcoin but all the btc markets are cloudflare.

if you shop online ever, you are affected. When you shop online, you must provide mailing address, name, and credit card info. If you sent this info to a site that used cloudflare (again, probably 90% or more of commonly used sites and virtually every shopping site), you are affected.


again, not a hard fix. See


it doesn't work with Windows command prompt normally. You will need to use a shell (command interpreter/command prompt) on a machine using a Linux distribution.


That's actually a really good question. If you have virtual wallets (coinbase and exchange account wallets) you'll want to change the passwords for those. Other than that I don't think BTC will be affected.

I am too retarded and lazy to even read the OP, so thanks for correcting me. kek

Oh ok, thanks.

Well, luckily i didnt put in any accounting data in the last 2 months at least. My shekels should be safe, i can reverse any transfer of money anyway.


Good to know but these fuckers should be held accountable.

Do Onion sites use cloudflare too? Has there been any compromise?

No problem. There's a list of affected sites here:

Again, just to be safe, I'd change passwords on all sites I regularly use and care about.

Sekrit shit on a separate machine, encrypted linux partition, vpn on startup set to kill any unprotected connection, pay for vpn with bitcoin while on another connection with user agent spoofed, encrypted VMs used for anything bad goy and deleted after.

Umatrix the three dots in a line next to on/off lets you spoof user agent, referrer and force https.

Learn to change MAC address and do it often.

Wait how public in particular are we talking?

noice

tfw i have a THICC stack of ancient patters ready for target practice

Public as in 1337 H4XX0R5 have it and can do whatever the fuck they want with it. If they so choose, they can upload a file to dropbox or some shit and release it on twitter, making all the information easily accessible to the entire world.

more obvious command on linux

dig website.com NS | grep cloudflare

example:
dig 8ch.net NS | grep cloudflare

result:
8ch.net. 8285 IN NS ben.ns.cloudflare.com.
8ch.net. 8285 IN NS isla.ns.cloudflare.com.

What hue are they? Grey, blue, amber?

try giving a shiny one to a qt gf as a makeup mirror for her purse. surprisingly impressive to most

Gee, who ever thought putting a man in the middle, who can thus at leisure read everything you post in plaintext even if you think you are encrypted, would be bad?

I hope they get sued out the ass. I hate CIAflare invading fucking everything so god damn much.

Probably not given Pepe cemented us as stormfront with frogs. I'm not bothered as I'm not important enough to fuck with, and I'm not dangerous unless they crack down on shitposting.
I like to think my assigned stalkers are growing to love touhou, anime and hentai.

No. It is clearnet only


Sorta. Some re-brand or use their own DNS servers + C NAME

.onion sites don't use cloudfare

tor defeats cloudfare's jewry and data mining, which is why you have to work for free everytime you go to a cloudfare site over tor instead

It's not about whether you're on a list or not, it's how many and what for and how many institutions have access to them, whether they're whitewashed or not and how the gov want you to be treated via info they share.

that's the shit about cloudfare

https ====> cloudfare -→ site

it isn't:

https===| |====>site
cloudjew
=

cloudjew has to be the ones to decrypt that way they can datamine

Mh thanks.
So while I cant do shit against someone showing my stuff around the chance of it happening for any other reason then to extract money is probably low.
I would guess that a lot of lowtier criminals would try to grab some random passwords as long as its not changed know to steal some money.

So if I change all my Passwords like from paypal asap I cannot be harmed except if someone would want to for personal reasons which shouldnt be the case.

also notice
ssldecoder.org/?host=8ch.net:104.20.43.57&port=443&fastcheck=0

Name………..: ssl419558.cloudflaressl.com

Cloudjew own's 8ch.net's SSL cert, not 8ch

Yep. Kikeflare just snips out the user keys and forwards its own keys for whatever connections they want to spy on, which by default seems to be everyone always.

the same can be said about every fucking piece of technology in the modern web as well, from the OS to the shell to the servers running Python, Perl, etc. scripts, to the HTTP protocol itself, to ISPs, routers, modern web browsers, etc. None of it was purpose-built for security, and any compromised layer acts as an outwardly-accessible entry point to gain access to anything communicated through it.

sounds pretty accurate, yes.

unsuprisingly none of the real jewish institutions seem affected, they don't use cloudfare

amazon, paypal, banks, I haven't found anything major besides maybe coinbase that was affected

discord but w/e fuck discord

The difference is it's perfectly possible to scan your own connection and see there is no unknown data being sent. It's literally impossible to be safe over kikeflare.

don't worry nothing was leaked on it's way TOO cloudjew goyim

ÇHECKED'
grey. I've never seen a blue or amber HDD platter before

I'll have to remember that if I ever drop out of my mage apprenticeship.
broken substrate can be ridiculously sharp and jagged depending on it's crystalline orientation. I'd package it in something safe, like plexiglass but not shit, before handing them out as portable mirrors.

Oh fascinating, I've actually tried bending some platters with pliers before and they were very tough metal of some kind, couldn't break them. There must be different materials of platters, and different coatings. The only amber platters I ever saw were from very old drive from the 80s and early 90s (shucked e-waste around a warehouse one summer).

I have been meaning to fill up a few old HDDs with folders full of copy pasted pepes, to troll law enforcement if my shit is ever seized (the rest is all encrypted)

Are you talking about real life or is this some kind of sick fever dream shit

Btw decentralized internet alternative when?

This. Fuck them.

Need I say more than pic related, user?

http:// www.parl.gc.ca/Parliamentarians/en/members/Iqra-Khalid%2888849%29/Motions?sessionId=152&documentId=8661986

from kikepedia
maybe they're safer than I thought. I've only dealt with silicon substrate, my mistake user.
tf.uni-kiel.de/matwis/amat/elmat_en/kap_5/illustr/i5_2_4.html
archive.is/rwLx
youtube.com/watch?v=vXk6Uhq74nU

eh, ignore the goytube link. have a webm of it

MAC addressed only matter PtP between devices. Your MAC gets dropped at the router… You really don't know what you're talking about.
Just because an encryption method has been "hacked" or broken, doesn't mean it can be done within seconds on any new connection. That's retarded if you know anything about how ESP and IPSec work. Each frame has data for padding, and it would take too much time to break through random traffic. You would need specific targets and focus just on them, not thousands of different people sending random traffic to all different sites.

mac will matter on public networks.

Of course it does, but remind me again how they're going to trace your activity back if you're using an encrypted tunnel? Re-read my post.

IP->ISP(NSA)->NSA->VPN(NSA)->NSA->SITE

there's a reason all hardened linux distros compile from source rather than distribute binaries that require we trust they didn't add onto the source before compiling.

h ttps://bugs.chromium.org/p/project-zero/issues/detail?id=1139

Apparently it's fixed now

could be related?

Holy shit you're a fucking moron HAHAHAHA!!!!!

You scripts
built into you browser should consist of the following.

Script killer
Cookie detsruction script
Addblocker
And of course a VPN
You should have a good software on your firewall and you should be in shadow mode
You should also make use of your hardware router and its features to further block negative traffic.
Setting a few devices on your network and leaving them open as honeypots is a good way to capture traffic logs
modify your router user and pass every week
This is basic shit…get them

CDN is a form of large scale tracking as well

Meh, by this time they already know every detail about my life

Is it ok to get one of those pre made linux livecds or usbs online?

Could you give us a breakdown why he's bullshitting? I heard that ISPs with 'socket access' could compromise any connections made over the network, but I could be very wrong on this of course. I understand that randomly brute forcing traffic would be a pain but if they had an automated method of compromising the handshake process wouldn't it make it a lot simpler?

...

but which is the 1010 and which is the 1111?

Wow you really couldn't figure it out? kek

100 on the left.
111 on the right.

The other options offered are good but you can also check certificate on sites that are working with SSL. Because for Cloudflare to provide their service they need to be an SSL/TLS man-in-the-middle, they have their own certificate facing toward the end user. Here's the cert for Holla Forums as an example.

The fact that Cloudflare removes SSL and gets to see all traffic plaintext is the real concern even moreso than what OP is showing (although that's a great story that helps get this into public awareness). Cloudflare literally "does it for free" and gets just about nothing out of providing this anti-DOS service other than the ability to spy on lots of people. It looks a little bit like a protection racket where you pay in privacy, or else get forced off the internet.

...

Honest question here. Now this is for the Americans here, I know you Europoors might actually get fucked. Say the NSA/FBI knows about your nazi posting. So what. What do you think is going to happen? Do you think you're going to get v& for saying mean things about brown people and jews? Do you think the alphabet agencies are going to publish a list of everyone who's ever participated in a nigger thread on Tibetan tap dancing image boards? What exactly is the risk regarding this? I think you're trying to inflate the risk you're taking in order to add to the edge and excitement of what you're doing. Its feigned paranoia about a danger that doesn't exist to add drama to being a Holla Forumsack.

wut

I have multiple personas on here and spew loads of bullshit. They can either pick and choose what they want from it to characterize me however they like or they have to admit I've said a lot self-contradictory shit and just having all my posts from here doesn't mean they actually know me.

schneier.com/blog/archives/2015/04/truecrypt_secur.html

Believe it or not: it's so secure the US government took it down. Just get a legit copy of version 7.1a!
exe from a German server(make sur to click on manual installation to not download their shitty downloader/installer): chip.de/downloads/TrueCrypt_13015067.html
then you should have TrueCrypt_Setup_7.1a.exe

and remember that every file that touched a hard drive is recoverable unless you overwrite the space 6 times with random data

nothing to hide nothing to fear xD amirite fellow alt right nazi skinhead member of the organization known as "polocks" ;)
Remember to kill all those jews at 7 o clock if you are a top nazi!!!1
Www.therightstuff.biz

and DON'T SAVE THE PASSWORD, use a long secure 20 character password.

Funny, I have a shoebox of floppies for that exact purpose

¡Viva España camarada!

No. you still (for now) have basic 1st amendment rights. the Jews might change this in the future, but there's nothing they can realistically do to you.

How long does a typical hdd last for nowadays?

When is it not Deep State fuckery? Everything bad that happened in the last 50 years has had the Deep State involved.

Was the deep state involved with the fall of cuckchan and hwndu?

When their overrunning your country, you should have every right to convey those feelings anyway possible. The only thing these intel agencies are looking for is if your planning attacks on said immigrants. Most of the immigrants are cash cows for your leaders anyways and they will always protect their assets from being removed.

Getting followed by spooks is never fun. Even if things are technically legal it won't stop them from fucking with you if you're one of their targets. So far, it's the biggest risk about being a bit too politically inclined and speaking loudly about how the CIA are a bunch of crooked pedo enabling drug dealers..

Yes go-erm-guys it's just the deep state illuminati NWO globalists behind it all! Certainly not us jews, oy vey, we dindu nuffin!

Jews are part of the deep state, retard.

Was anyone really not aware cloudflare is the NSA.

They use a decentralized neurotic hand-rubbing based protocol for transfer of information shekel fragments.

If the intelligence community wants to shut it down they will do so at the platform level, not the individual level.

In the U.S. posting hate speech is not a crime, although incitement to violence is. In all individual cases, proving the identity of a poster and building a chain of criminal evidence against them for a successful prosecution would be costly. It would also introduce legal problems with evidence collected by exralegal means. It would also publicly reveal classified data collection methods.

It's much simpler to simply shut the platform down. There are a number of ways to accomplish this. Holla Forums ownership could be prosecuted for CP in the Philippines yes Jim closed down boards but people still post it and old evidence is still evidence. More likely 8ch's US ISP could be convinced to simply drop them as a customer. As could the next host they go to. And the next. Two to three weeks of outage and the platform will never recover.

What is the list anons are worried about being on? So I'm on a list now.. what comes next? Are there any repercussions to being on the list?

Gambler's illusion. You consider multiple possibilities, and when one is proven right you believe you were right all along. If you chose an advantageous course you congratulate yourself on your wisdom. If you chose a detrimental course you curse yourself for not following your instincts.

In case of war or civil unrest, there is. Depending on which list you are might determine if you end up in a FEMA camp, in a secret offshore prison or simply taken out preemptively.

Lists help the enemy gather data and form strategy, which should not be underestimated, information asymmetry is the biggest advantage you can have in any type of war, physical or otherwise. Other than that lists are worth shit if they aren't followed up on with force, which is why I don't really give a fuck about being on lists, I am not going to be cowed into submission by the mere possibility of some numale intern at ZOG *gasp* writing my name down! If any CIAniggers of FEMA agents want to round us up and take the guns I wish a nigga would, I fucking beg any kike to come try and fuck with me.

Authentication is hash-based and dynamic. They would need your actual credentials, not just the intercepted hash. Man in the middle attacks would prove fruitless even if they did decrypt your traffic and attempt to use it later.

Is it better to connect my phone to the computer to save files or save my files on a sd card and insert then save?
Any difference?

I probably am at the potential terrorists list of my country, long before finding the chans, the police dindu nuffin about me, there are bigger fish to fry.

Either way you're fucked simply using your cellphone, although I wouldn't ever connect a phone on a computer that I wish to keep relatively safe. Smartphones are basically tools you pay for to get spied on.

Being on the 8/pol/ list should put you in the very lowest risk category, as imageboard users are the least likely to accomplish anything in life.

I feel pretty safe.

I know what a hard drive is but what does the hard disk do, anyone care to explain?

So SD card it is.

Proofs? You don't seem the lying kind.
my dad works at nintendo btw.

...

Like the government gives a fuck, the moment they need to revive the ghost, they will.
The moors have been both a curse and a blessing, we all know about the curse, but the blessing wa that they took the attention away from here.

give me your address. If you're able to post something the next day after tomorrow, then I obviously lied.

725 5th Ave, New York, NY 10022, USA
Fuck me up, i dare you.

nice try FBI

Haha, too scared kid? You aint see nothing yet.
Heil hitler.

if you're not on this level, get off the internet forever

test

Fug.

just tell how high are you

Yea, I joined Ebay and Paypal in like 2007. The stuff I bought on there definitely got me on something. Back then it was more wild. Salvia, potassium nitrate, LaVey's satanic bible etc.

The shit programs they come out with nowadays are ridiculous memory hogs. I remember when 512M of RAM was decent enough to run games like stronghold ffs. Nowadays everything is so fucking bloated you can't even open up a web browser without using 1/4 of a Gig.
I am sick to death of these shitty H1B programmers who come over and just throw dogshit ontop of pre-existing programs bloating everything up, wasting bandwidth, and shitting up the world.
A computer does not need 8GB of RAM to be useful. There is absolutely zero fucking reason for that shit. Modern OS's a shit. Modern hardware is 'optimized' for these shitty Os's and is also a shit. Everything is fucked.

Same, it's not just Windows, it's everything. iOS, etc. And it's not just pajeets, it's also women who can barely write 100 lines of code without posting a picture to their shitty $ocial $media. Normalfags were the cancer that killed computing.

Now that Trump wants to limit immigration, those hook-nosed faggots in SF are shitting bricks about losing 3/4 of their """""programmers""""".

On a side note, I tried Windows 10 a couple of months ago due to a system failure and needed a new OS. I rage formatted the next day and am using W7 SP1. I honestly think I could get by on XP if my current installion dies. I only play UT2004 and use old Adobe CS6 software, not the (((Creative Cloud))) bullshit.

It's apparently been "fixed" since then so you're probably fine.

Non encrypted data is not safe, regardless the media or means of deletion/encryption later.


If something is at stake, your or friends, families, property, health, freedom or life, it is much much cheaper to destroy the compromising media.

I would not trust electronic media with real secrets, encrypted or not.


To destroy media with corrosive substance needs much stronger agents, extremely dangerous and unhealthy acids, hydrofluoric acid. Takes to much time and produces dangerous waste.

Destruction of Media

Don't simply whack it with a hammer.
Chances are that the device is broken but media can be still read.

Disasemble the device until you are able to access the all the chips and platter/disks.
On rotary disks one needs to destroy the magnetic/optical disk. Drilling holes into it is OK, particularly if it is platters made of glas, which will shatter. Wear eye, face and breathing protection, gloves. On metal platter the best way is to sand away the magnetic layer. On optical disk do the same with the optical layer, which is in the plastic not the metal reflector. Don't breath in the dust.

It's prudent to destroy any chip your data might have contact, even those on your hard disk/CD

To destroy chips a bench press drill is handy. Drill holes in it. Remember the chip/silicon might be much smaller than the case, there might be more then one in a housing. Use drills fit to drill in hard metal/ceramics.
The British way to destroy chips is using an angle grinder and grinding down the chip until nothing is left on the board. Be careful, the chip is not simply ripped from the board and internally undamaged.
Of course always wear eye, face and breathing protection, gloves.

Memory, SD, SIM cards might be cut into pieces with an strong scissors, be careful to hit the silicon.

A high temperature furnace can be used to destroy any media, if you have access to the furnace of a steelwork just dump it into it.

there are to many of us and most of us are insignificant enough for it not to matter that much

One thing that I don't fully understand is this: Due to the nature of this breach, does that mean that my password, or the sites I have visited or the things I have done on them, are easily findable via a google search if someone knows my IP address?

Does this mean now that people can link me across IP addresses if I had used a VPN if they can find my password or some other piece of identifying information?

How fucked am I? I use the internet is a pretty paranoid way already but I post bare-ip here sometimes, I log into some normie sites here and there like plebbit and kiketube and goyim-mail.

And as well I do keep some stuff hosted on mega.nz, how skeptical should I be of it now?

Hi, FBI-kun. Tell me why are you such a huge faggot who doesn't know what an exit node is?

GAS YOURSELF KIKE
>>>/cuckchan/

go away

Rule number one. Treat your ISP like a stalker. If you use a VPN, they only know what the data amount your up/downloading is, not what it is. If you post to chans bare-assed, barring some sort of liberal dumbfuckery where a law is passed, they can and will send your information to the authorities. Goes double if they suspect you uploading copyrighted or illegal material to known doxbins like dropbox, volafile, and mega.

Even if you're Joe Nobody, make them fucking work for your information. Don't make it easy. You should also have dead emails you use to sign up for torrents and or other shit you don't want getting back to you. Basic OPsec.

No. You have no idea who did what to the drive. Download the ISO you want to install and do it yourself, it isn't very difficult. It might take a few tries but it is worth the effort. You can burn ISOs in windows using just the OS. I think MacOS can do the same but you will have to ask some macfag. Otherwise to make a usb drive on windows use unetbootin, for mac, ask a mac fag.

If you're in the ZOG, unless you are into cp, islamic terrorism, or the usual shit this is going to have no impact on you. People come here to try and measure dicks with who knows more Holla Forums shit, and 80% of the time none of the posters know a fucking thing. Unless this is your job or you are outside the ZOG, this isn't going to be your problem.
t. someone who has seen a lot of similar shit before

addendum- as always, "ZOG" is universal but THE ZOG is the US gubment.

(and even if you're outside the ZOG, this is a case of "everyone is fucked so no one is." The Jew you are worried might fire you for posting here is worried his wife will find out about the rent boys he is fucking and so on up the ladder.)

There was a thread on Holla Forums a long time ago after the DDoSing and Holla Forums started using CloudFlare which said that it was under government control, a FBI honeypot if I remember correctly. Either way, isn't CloudFlare based in the USA? They'd have to abide by USA spying laws without disclosing it to customers or users.

If this wasn't government spying, they could've been selling data through this security hole and being a security hole they'd have plausible deniability. No criminal charges will be brought against CloudFlare for this, I'm sure. None of the articles I've read seem to mention it, but this could also include credit/debit card, banking routing/account numbers, name, birth date, address, social security number, security questions, and anything else you've sent to a site through CloudFlare.

The github list of sites is not comprehensive though.

Yes.

Reverse proxy is a nice way to say Man-In-The-Middle, a form of network snooping. They offer a free service out of the goodness of their hearts, all you have to do is let them spy on all of your traffic.

If you're a goy that walks the Earth, then the elite jew pigs already have you on the extermination list. Whether or not you are anonymous just changes how far or down you are on the list.

You can't argue with these quads goyim.

(checked)
Also fuck, this is annoying.

Low level Jews are just past those who are anonymous :^)

Nice quads.

Wait, so what does this mean? Does that mean my IP address is linked to all those racist things I've said on Holla Forums?

wew maybe 6 million jews with a list 6 billion people long

Yes

MOVEON IS ON THE LIST OF COMPROMISED SITES, SOMEONE CATCH SOROS
MOVEON IS ON THE LIST OF COMPROMISED SITES, SOMEONE CATCH SOROS
MOVEON IS ON THE LIST OF COMPROMISED SITES, SOMEONE CATCH SOROS

Merchant.jpg
Use tails faggot
tails.boum.org/

Either way even with tor this doesn't change shit…
Well except if you don't go into cloudflare hosted/protected services witch always ask you to enter a captcha if you use tor.

Sounds like someone needs to switch to *nix


Low. Energy.

blame hosting providers for not having proper methods of dealing with DDOS and instead just going the cheap route of having the intel agencies (((handle))) it

Yeah, my VPN is banned from archive.is/fo now as well due to this.

Can you screenshot the banned message please?

Gnunet has a much better censor resistance and anonymous design than ipfs
gnunet.org/concepts


gnunet.org/compare

Unless you are either very wealthy or have some sort of job with a security clearance, highly unlikely that you personally would be targeted.
I'm autistic about my OPSEC simply because I don't like the Jews to be able to access my shit at will, and I'm always on VPN, but even if not, you can believe everyone has something to hide on the internet.
when one site like (((Ashley Madison))) gets hit, that's a big MSM story. As massive as this is, what do the Jews print? EVERYONE IS FUCKED, STOP USING THE INTERNET AND STOP BUYING SHIT???

As far as a VPN, this a decent way to vet (you can find guides by true autists if you jewggle/duckduckgo around):
-Not located within "5 eyes."(Us, UK, Aus, NZ, Canada)
-Does not keep logs
-takes payment via Starbucks or other giftcards
-have gone to court to protect the data of pedos. If they will go to court to protect pedos, they will protect you for "hate speech" or whatever else
-No DNS leaks. Depending on your provider and skill level, this can be a major pain in the fucking ass you will have to spend a weekend fucking around with your router and software

These are just the basics. Good opsec will make you feel more secure, esp. if you live outside the ZOG and can get banged up for "hate speech." I don't think much is going to come of this one, simply because it's so huge…your Jew boss or the SJW are going to be so worried about covering their own ass, I doubt much time to deal with low-level people who post here.

You can make a pouch out of foil for your cell phone. It will block your location and block imsi catchers.
Of course when you take your phone out to use it your current location will be known.
If needed Vysk makes a case that blocks your microphone with white noise.
Anyone know if/ how long the microphone can record and saves convos when your phone's in foil?

You can make a pouch out of foil for your cell phone. It will block your location and block imsi catchers.
Of course when you take your phone out to use it your current location will be known.
If needed Vysk makes a case that blocks your microphone with white noise.

Anyone know if/ how long the microphone can record and saves convos when your phone's in foil?

Anyone try tunnel bear?

Alphabet agencies are like niggers, they don't care about laws or morality. Assess the risk involved before exposing yourself needlessly to either group.

You can make a pouch out of foil for your cell phone. It will block your location and block imsi catchers. Of course when you take your phone out to use it your current location will be known. If needed Vysk makes a case that blocks your microphone with white noise. Anyone know if/ how long the microphone can record and saves convos when your phone's in foil?

You can make a pouch out of foil for your cell phone. It will block your location and block imsi catchers. Of course when you take your phone out to use it your current location will be known. If needed Vysk makes a case that blocks your microphone with white noise.

Anyone know if/ how long the microphone can record and saves convos when your phone's in foil?

Jesus wept my man, stop posting this so many times!

Think it's best we follow Holla Forums's example and fuck off to endchan for the time being - use their onions or i2p in case it really is some epin goon honeypot

You can make a pouch out of foil for your cell phone. It will block your location and block imsi catchers.
Of course when you take your phone out to use it your current location will be known.
Vysk makes a case that blocks your microphone with white noise, but it's expensive.
Anyone know if/ how long the microphone can record and saves convos when your phone's in foil?

It has already started happening in Canada. Guy was literally v& for posting sarcastically about muslims (three weeks ago).

no escape goyim

The user/passes/logs for all discord conversations are sitting in caches that you can google right now.

DNC/CTR/ShareBlue use discord

How is no one talking about this?

assume phone has 8gb storage.
128kbps audio file = 16KB/s audio file
8GB = 8,000,000KB
8,000,000KB / 16KB/s = 500,000s
500,000s=8,333 minutes
8,333 minutes = 138.88 hours
138.88 hours = 5.78 days

Should clarify that the guy was posting on Twitter, not image boards.

Holy fuck you retarded kike gtfo. Tin foil doesnt work anyways youre literally a retarded faggot

Up that shit on mega, I need it to start a weeb persona.

Then you just get kiked by either being the guy who stands out so much because of his configuration and obscure software rather than being one in a sea of millions or you've finally gone boss mode but the psychic jew then remote views you because you didn't put up etheric protections over your whole house that cover you both in the past and in the future and in the present.

We knew about this shit for years, the faggot moloch kikes DDoS sites that become too popular and offer Cloudflare as a "cheap solution". Frederick had to use it since every other "DDos" protection service is retardedly overpriced, they really wanted to fuck this site over.

Does anybody here really think their life is gonna change because of this leak? Finding everybody who ever said "nigger" or something similar here would be such a monumental challenge that I doubt anybody would care enough to take it up.

Also, is there even any proof that Holla Forums was one of the affected sites?

Wrap your phone in tin foil and try to call it then.

I've had the police show up at my door three times now because of posts on here.

The global admins are working with (((them))).

NVM this cloudleak shit, check the gooks and race traitors who run Holla Forums.

Story time user. What did the cops say to you each time?

They were just like "we're checking up on you buddy, don't let things get you down, someone was concerned about your wellbeing and your potential to commit suicide". They were really nice white cops every time, sometimes two men, sometimes two women, and they were redpilled.

Are you Yuropean? What did they ask you?

well that was nice of them

Are you posting from your home connection? Learn2computer man.

Are you US or UK?

In one case it was because of (((Skype))) other times it's just the global admins on Holla Forums stalking my posts and knowing who I am.

I have some threads on /sudo/ right now in which I'm being persecuted by globals trolling me. They gave away one of my boards I put like a hundred hours into with custom CSS, board pages, etc. and let some antifa vandal have it who proceeded to post my dox everywhere. The globals are complacent.

>>>/sudo/21456


Neither.

Country? I'm not surprised you aren't from US though.

I'm from Honorary America.

Are you Canadian? The nice cops sound Canadian. And I know Canada is a big welfare state.

im a new fag should i not be using google chrome?

This. THe internet is not safe at all and everything is designed with a backdoor.

STILL better than fucking TWC

...

Yeah, I have been doing the basic of the basic but now that I have the feeling things that I don't even know about can break at random times and leak my info I am planning to step it up a notch.

I'm starting to write my own operating system. Literally everything has backdoors on it. Every word we type could be keylogged. We need to over the years quickly start creating our own technology. It will be extremely difficult but it is necessary.

Actually, not just technology. Our own food supply, transport, banks, etc. We have a few years before Big Brother is complete reality.

Why write an entire fucking operating system when you could just join the Temple OS guy or join a linux project and subvert it?

Make yourself useful and infiltrate the Linux Mint project and make damned sure it's secure.

Otherwise you're going to make some shit OS nobody ever uses.

Don't fucking recreate the wheel - basic programmer wisdom.

You should check out OpenBSD. There is plenty of *nix software that can easily be personally verified to be free of backdoors.

You know what would be really cool? A third party audit of the Linux kernel. There are other kernels too, such as the BSD kernel, and GNU Hurd.

Check out coreboot/libreboot for open source BIOS/EFI, limited hardware compatibility, but there some nice thinkpads that can run it.

Search online for open source hardware projects. There are a shit load of open source ARM computer board projects, some of which are decently capable computers that can run Linux and a desktop environment for general computing (and are very low energy use to boot).

Lots of stuff going on out there like this, actually. Would love anons to organize third-party audits of important software such as kernels, encryption tools (similar to the Truecrypt audit), etc. etc.

Nobody on Holla Forums will even do any of that shit. There's always a hundred, maybe a thousand "idea guys" for everyone that actually gets down to looking at and editing the code.

(trips!)


(trips!)

(trips!)

(Quads!)

(trips!)

(trips!)

(trips!)


(Quads!)

KEK WILLS THESE DIGITS OF JEWISH DESTRUCTION

I'm a long term OpenBSD user and I have one suggestion against it: unless you're ready to upgrade every six months and having to go through the process then you're not doing yourself any favors running it. They're on a 6 month release cycle and the upgrade process is always slightly different. It's not that difficult, but if you don't keep your system clean and do everything the OpenBSD way, you are gonna have a bad time. Also if you need any bleeding edge software or anything not in ports, expect to be doing a lot of work (or making packages yourself).

CHECKED

Hey, would you look at the time.

Linux scarcely gets the auditing it should. A lot of that is because people are doing it for free and don't have the time/resource to do proper audits. This aspect needs more funding from the Corporations and Agencies that are using it. Some actually already do contribute to this.

IMO, a good feature that should be added into Gitlab, SJWHub, BitBucket, etc, should be audits by users per commit. So, for each commit, several people can "vouch" for the code as safe before merging into master. Anything merged without audit should raise a red flag.

Would help rat out the backdoor weasels too. If they "vouch" for a backdoor'd or otherwise insecure commit, it taints their credibility in the FOSS/GNU/Linux/Stallman community. If it's a blatant backdoor, it would be "very painful" for CIA niggers.

As a side note, Holla Forums should support FOSS a bit more for Decentralized and Federated services. Some aspects of GNUSocial are becoming almost normalfag friendly (Quitter.se, for example) and should advocate moving to platforms like these instead of trying to find other centralized alternatives which will likely be Nose'd eventually.

Currently only experimented with it a bit on a spare laptop I had kicking around. I was able to pretty quickly get a wm running and a web browser, which is bretty neat I guess. Really like the ZFS & encryption you can enable at install time now (full OS/disk encryption iirc?). ZFS is what we will be using on our space ships in 200 years.

I'm a bit of a weirdo. I have everything organized in a home directory (with crons backing up important OS config files etc.), and I reinstall my OS every few months, sometimes a lot more often. Pretty much every time I'm forced to install some stupid binary or sketchy .deb for whatever purpose, signals the beginning of a new install cycle for me, but it's super fast to just reinstall the few packages I need, and replace my home dir.

What I'm saying is beyond aptitude upgrade almost every day, I cleanly reinstall (generally Debian) on a weirdly regular basis. It's partially a type of paranoia and partially Unix neet OCD. (Because I use full disk encryption each time, and because of the way LUKS works, that means my old data is forever lost the moment the partition header is overwritten).

I no longer spend much effort configuring window managers or desktop environments, I just have zsh and vim set up the way I want and I am happy. My OS usage has become utilitarian, I no longer tweak shit, I rarely even bother to change the default OS desktop background anymore. I'm too lazy and too busy with other things (like shitposting amirite?).

I've begun running instances of Debian and other Unixes or whathaveyou in virtualbox for web browsing, and just deleting it every so often and copying an older version etc. (Like frogmaster Elliot Alderson in mr robot).

I guess I would be fine with reinstalling OpenBSd for general purpose browsing and such every 6 months, I just haven't felt triggered enough yet to make the permanent switch. The only reason I use Debian is because it has so much software ready to go from the maintained repositories, isn't fully ZOG pozzed AFAIK (but honestly it probably is), and I'm used to it.

Just rambling. We should really make some basic opsec memes and have a thread dedicated to this to educate the other Holla Forumslacks.

user you'd probably increase the quality of Holla Forums by a factor of 10 if you posted there regularly. There's no law against crossboarding, and it's actually encouraged.

You never learned the first lesson. If your internet identity is burned, you drop it utterly. If you keep coming back to the same e-identity, you're a dumbass.

Interesting, I should visit more boards in general just to see what's around. I'll check it out later, thx. I think some 1488 themed opsec memes are absolutely in order too though. I will see what I can do.


This is a fucking awesome idea.

Check date +%s -d 2017-03-07
It's gonna be a beautiful day.

Same, I work with a few hundred servers/vms, I made myself familiar with the tools that work most places and in their default configuration. I don't care to install crap on every machine unless I have to, which makes scripting a bit of a challenge, but then you're not maintaining different versions and shit.

I haven't used ZFS on OpenBSD (does it work?), but I have used it elsewhere, and I like it way more than LVM. I have however run into a few edge cases on machines with giant datasets (~500TB).

I like this idea

Temple OS is written as Ring-0 only, without networking,

I use the Private Internet Access VPN suite. Is that enough or am I getting party vanned by our newfound friends at cloudflare?

ISPs don't monitor traffic for shit. They certainly keep a record of your traffic for many, many months, which they'll gladly hand over if asked to by law enforcement. But unless there's someone investigating you, no, there isn't a guy sitting at a desk watching every website you visit, every file you download or upload and everything you post to the internet just to report if they see something they don't like. Fuck, they don't even do random monitoring.

Mind you, if someone in a position of power doesn't like what you said on the internet, you can bet your ass they can track you down.

...

Here's a shitty diagram

Shove that blackpill up your ass, Shlomo.

cloudjew totally doesn't save those Passwords,CC, etc too

Good goy.

Name fagging is one of the most deadly sins. I will personally hang you when the day comes. Now stop being a nigger.

dick cock sex

So sick of this pozzed internet. Its all botnet down to the silicon. Why couldn't I be born in a simpler time before all this jew shit.

this thread has convinced me that if i ever get into a solid financial situation the first thing im doing is hiring an ocd paranoid neet to secure my shit up full time

Might have to be a bit careful here if you're using an SSD. Even if you over-write the partition headers, it's likely you're actually writing to another physical location on the SSD, so the old header will probably remain somewhere else.

Remember goys… TOR is JIDF-only… you must give your ₪₪₪'s to us VPN providers because of the six million!!!

I just use a old notebook with a linux distro based in ubuntu but very lightweight in LXDE 64 Bits with all .deb packages easy to download in synaptic or click in .deb

O download this linux and i configure the browser and extensions, i let the firefox to visit websites like this (When i don't use proxy) and google chrome for normie fun things tht i don't care for google spy myself since i don't log and i don't go for the same websites in google chrome, i have different behavior in firefox and other behavior in google chrome, but i try to configure both to have the maximum of privacy possible even without proxy, i go in about:config and i install and configure some extensions for https, no referer, no https referrer, no script, button to turn on or off the referer, button to turn on or off the flash, configure noscript, avoid to be tracked (But without proxy and with personal extensions and whitelist on noscript become easier to be tracked)

I configure this linux, change wallpaper, install all video editors that i use (Linux have all that i need) and for pictures i only use gimp

I also download and configure tor browser and i put in a hidden foloder in linux, i configure the about:config, disable some things, referrer, localization, and disable the "allow global dangerous script" in noscript to the extension who comes in tor browser block all javascripts by default (This broken many websites and comments but you still can browse and read some websites) never download nothng in tor browser, never install other extensions, never maximize the tor browser, never create whitelist in noscript within of tor browser, configure everything and is easy and fast since i already know what i need to change in about:config and noscript to block javascript, i don't go for no website before i create my .iso linux

After all browsers, programs, editors, proxy, wallpaper everything is edited in my lightweight linux 64 bits based in ubuntu/debian but in the right size to not make the iso become higher than 2,6 GB (But could be 3,2 but you would have less temporary space in your memory ram)

I download the program pinguybuilder.deb and i install it, but before i use the ubuntu tweak cleaner, then i use the administrator bleachbit cleaner,

and i restart the computer, then i go to synaptic package manager and i install ubiquity gtk (Because this always automatic removed, and without this i can't install the linux that i created to edit again) then after i install the ubiquity gtk searching for this in synaptic package manager, i close the synaptic, and i clean the linux again with the administrator bleachbit and i close the bleach bit, and i open the pinguybuilder and i click to create backup of the whole .iso (This will create a original live cd, live usb, lve DVD of your linux with all your configuration)

After the pinguybuilder end to create the .iso of the linux i copy this .iso to some flash usb, and i put this .iso on the desktop of my windows and i format my flash usb and then i open the program called "rufus" and i burn this .iso in my flash drive, after this end, i also burn this .iso in a dvd to be safe for future if i need to edit this .iso again.

(I don't have nothing sensitive not even memes in this .iso so i don't wipe gunttman) I delete the linux.iso and shut down my windows, then i go for some old notebook without hard disk and i put my flash usb in this and i wait the linux start (In my linux distro the wifi works fine)

The i can browse websites like this with maximum privacy and even if i die for natural things like die for some criminal or for a car in future nobody never will know that i visited a website like this, since this notebook don't have hard disk and i'm browsing the internet in a live USB linux, (But i don't make nothing ilegal, i only make these things for privacy of nobody of my family know the websites i visit like this because i don't want my family visting or clicking in a website like this because is not good the pictures and things who sometimes have here)

But even in a notebook without hard disk if you're paranoic could happens the cold boot attack to try to recover something from your memory ram, if you're paranoic you could go to the memtest and let the memtest dor 5 minutes working.

But i just shutdown my notebook most of times since i don't need to be this paranoic since I'm not making nothing ilegal, i only want privacy of the rest of my family

I have 3 browsers in the same linux, one is for normie things with other kind of behavior and never using the same websites, and other browser is all configured to visit websites like this with the most privacy possible even without proxy, but i try to let the configurations different in all browsers to avoid be tracked, I have different behaviors and i visit different websites, chrome for normie and fun things and the firefox to visit website like this more configurated for privacy

Never make nothing illegal even in configurated proxy, i dont want to see user/pol/ here having problems for their life because of my comment.

It's very rare to i use proxy here but i wanted my linux with these 3 browsers if needed in some momment.

...

The solution seems pretty fucking obvious you faggots. We build out own internet using Tesla stratosphere currents and modified ham radio receivers. Prove me wrong.

Tits & dubs of truth (checked).

This settles it. Tesla stratosphere to ham radio controlled pidgeons – shitposting like you wouldn't believe.

either way you're at risk. That's why we have github and md5 checksums.

If you're super autistic about it:
1: Make your own hardware
2: Write your own assembly langauge
3: Write your own compiler
4: Write your own OS
5: Write everything else on your own.

You'd be bretty much immune to any non-targeted hacking attempts if you did it ALL on your own


Would you like the Rothschild's address?
>>>/baphomet/ will help you out if you're not full of shit

Me too. Compiling is a PITA though, takes too fucking long, There used to be a Natsoc linux distro out there, but it was discontinued
. We should probably start a new one.

It helps to learn what is actually going on in your computer so you can tell the bullshit "zomg h4xxordzz killed my dog" stories from the "you're fucked" realities that get 2 minutes of coverage.

Besides, as much as I like mint it is becoming too bloated. You want a secure distro not a 'we wanna be the next windows/mac' distro.

And you know, it's much easier to add on features as you go than it is to remove them. That's part of the reason we have bloatware.


I might make my own kernel, with blackjack, and hookers.

As far as encryption tools those are easy as shit to write, hell you could use bc and a terminal to encrypt if you wanted to. The real auditing for those is crypto-cracking.

Fuck, are you me?


m8 it's not like windblows where they use the same encryption keys. Linux generates its' own keys each and every time you install it


capped for all eternity.


kek

Only problem is it's illegal to encrypt radio traffic over ham afaik.

itt: braindead Holla Forums users pretend to know anything about network security

So you'd rather put your time and effort into a distro people won't use?

We should be subverting the fuck out of Mint and Ubuntu.

You can't protect your data, this is just to bait people into thinking they can secure their data to build a list of everyone that thinks they're safe and has the knowledge to do so.

...

Shitflare, protecting ISIS sites since 2015
This is actually from an actual ISIS account, cheering that they let the kikes host their shit

Exactly: trisquel.info/

100% libre.

Wow, who knew?

We got freedom of speech and farting here, so if I want I can go up to the King and call him a damn Swede, but I would ofc not do such a horrible thing to my Ruler.

But for you in the hate speech/fart countries, I get your shit.

It's a needle in the haystack though, anyways what will a couple of shitpost do really?

HEY

RED TEXT REMINDER

ARCHIVE """" IS """" IN FACT
A DATA CONSENSUS GATHERING
SITE. ALL VERSIONS OF IT
COLLECT COOKIES FOR DATA
ANALYSIS AND HEADER INFO.
OF LAST KNOWN SITE. ITS
PURPOSE IS TREND ANALYSIS
ON A WHOLE. IF YOU SEE
SOMEONE USING ARCHIVE
THEY ARE EITHER WORKING
FOR A SEC-OPERATIONS
COMPANY/MILITARY/ENTITY
AND OR ARE A USEFUL IDIOT.
THEY LITERALLY HAVE NO IDEA
HOW CDN IS WORKING TO REPLACE
DECENTRALIZED DATA AND ROLL
IT INTO A CENTRALIZED DATA SOURCE
WHERE ANY COMPANY WILLING TO
PAY A FEE CAN ACCESS. THUS THEY
CAN SEE WHERE THERE TARGET
GROUPS ARE COMING FROM AND
GOING…AS WELL AS INDIVIDUALS.

STOP FUCKING USING ARCHIVE

Good point
I trust the icelander's though but you never know

The thing is…
I don't give a fuck!
It's diff here you know, you cannot be anonymous here, everyone knows who I am…

Go to the town here and ask
oh yeah the computer guy, he fixed my PC many times, he lives up there now, here is hsi address

It's different from you

But now I must run and buy the beers for dem programs, fucking commie shit, beer sales stop in 30 min

Libre OS won't protect from a BIOS backdoor. Intel ME is a nasty kind of shit. What everyone needs is relatively recent hardware capable of running deblobbed coreboot/libreboot.

Can I get those mobos at the same place I buy my unicorns?

Thinkpad X200/T400/T500, an Atheros WiFi card (ar5b95 is fine), a matching SOIC clip, some wires and a Raspberry Pi, all from Ebay. Enough for the most of the serious business.

Like computer fall for the brazzo meme, so I use it.

I don't give a shit. I have a network of other puters that are not online, this is just an old shitbox.

But I understand you faggots who live in countries where you can get the language police on your door etc and other things we don't mention

young man, I see that on Feb 21th you wrote Nigger on the internet
I am afraid you have to come with us


Sad shit

They will come get you. Eventually you niggers that think you are safe will come to the realization that the blue revolution won't stop. Its not a game. Its not an internet joke. They are lining up against you.


……………….
……………….

What are you trying to type?

Varg isn't a NatSoc. More like a tribal primitivist.

Not saying it would. But a Libre OS is a start especially with Libre hardware.

wireless can be snooped, that is part of how they convicted that hippy Jeremy Hammond. wired>wireless

I do recommend those laptops though. I have several, always buy a fresh battery, new drive and max out the RAM, ~$110-120 USD total. The chargers are dirt cheap too.

Yeah, I looked into those a few years ago. They would make good shitposting machines, but I do actual computing often enough to make them seem as old and busted as they actually are. I've actually considered getting a graphics card just so I can crunch numbers faster with it.

oh shi-

Tuesday March 7th = end of globalism

Please Jesus shoot me in the fucking head already.

No
It's TOMORROW

Indeed, nut it protects you from mandatory backdoor that are surely in nin-free/libre blobs.

Indeed but recent hardware seems to be impossible.
Since the tranny libreboot guy has gone crazy (how surprising) and that price from minifree went skyhigh for his hormonal treatment there is less hope…. for now since librecore forked.
librecore.info/

For now I stick with these
tehnoetic.com/laptops

The hassle of this is why I haven't done the whole VPN thing.

I'm scanning this thread and not seeing anything about free VPNs

Hey guys. I own a website and I used Cloudflare.

I turned it completely off except for DNS. My DNS still goes through their nameservers. Is this ok?

It's not chacheing pages like it would if you have their "speed enhancing" bullshit turned on.

That prevents them from jewing you via MiTM, but they can always redirect your traffic at will by responding to DNS queries with different results if asked to by (((someone)))

Holy shit. That short, dark fuck.
Are there any white people on Holla Forums?

The fucking coasts in this country, man. Shitskins. Shitskins everywhere.

I forget to say that is not possible to comment here in 8ch with the referrer and referer disabled so if you can't comment in 8ch.net because of something in your firefox maybe could be this.

8ch force you to enable referer and referrer to comment, i have a shortcut button in the bar of my firefox to automatically enable and disable referer, but i need to go to about:config to put my referrer in true for comment here, and in false for more privacy when browsing without comment

In other websites i can post without enable referer and referrer.

It's one of the most lightweight 64 bits distro with the .deb packages to easy install the majority of programs that i prefer.

Best way to zero drives is Secure ATA erase. Zeros out the drive, SMART data and even tries to zero bad sectors. Secure erase on SSDs is fast enough a few dozen runs takes 4 minutes with a bash script.

Globalism is over.
BEWARE THE IDES OF MARCH, KIKES>

As long as the battery lasts.
Consider that for voice 8kbps is sufficient, and that modern smartphones have GBs of storage.

By shooting yourself in the back of the head twelve times.

Yes. Make use of the documentation. wiki.voidlinux.eu/Main_Page

hm

Are you retarded or are you just a silly Pooh Bear that's looking for pots of honey? For fuck's sakes, stop taking candy from strangers. How many times are you going to have to get Jewed before you learn your lesson?

What?

FREE SERVICE MEANS THAT YOU PAY WITH YOUR DATA.
Is this really so hard to understand? FFS
http:// about.mattermost.com/download/

You need to start supporting the development of Ring right the fuck now. https:// ring.cx/

what about tox

tox is ok, just use a VPN/TOR anyway and watch out for MITM payloads, meaning, verify that the person you are speaking to is sending a file and have him tell you the size of the file. I had a few attempts where randomly a 600mb file was requested to be downloaded, and the other person had no idea what the fuck it was.

If you use a VPN don't forget to have some kind of firewall. Many types of VPN basically put you on the internet as if you put your computer in the DMZ or basically unfirewalled. When I connect to my VPN my firewall sees a massive amount of shit it has to block, not that I have any services open on those ports but hackers target the IPs associated with VPNs hardcore because they see it as a good opportunity (you never know who is going to connect a machine to the VPN that has some exploitable service open). Most often I see attempts at bitcoin-qt or something and of course SSH but I just basically wanted to mention that if you use a VPN you should secure your computer because you may be putting it on the internet without a dedicated firewall as you would normally have on your basic home connection.

void is a meme
Beginner - Ubuntu
Intermediate - Arch
Expert - Gentoo

more like:

1) Normal
2) no weekends
3) no life

Bit of an understatement.

meh you can make scripts to compile OS's to your liking. also for newbies there's Manjaro to play with just to get the gist of things.

Are these X/T*00 laptops free of the Intel Management Engine? Are they good shitposting machines? (Need one, have desktop only)

…both of which you can use on Linux.

do you even need to run it multiple times on SSD? They're just flip-flops, there's no magnetic resonance like HDD have.

For those I just use:
dd if=/dev/zero of=/dev/[drive name here]

you should always secure your computer anyway. Shit, even your ISP's provided router can be fucking comp'd it give access to God knows what.

"Void is a meme" is a meme. It's one of the few good distros that doesn't make use of systemd. If you want to enjoy the D, go for it, but some of us aren't into D. Polite sage.

Arch is actually harder than Gentoo these days, and Arch comes with systemDicks. SystemDicks is the default on Gentoo, but it literally only takes adding "-systemd" in package.use or in your use flags to switch to OpenRC. The only downside of Gentoo is finding something else to do while you wait for it to compile.
Void is decent. When I first tried it I had an issue with a few broken packages, but lately I've been hearing good things. Runit is a great init system.

I'd rate:
Beginner - Trisquel or Mint if you like dicks
Intermediate - Devuan
Expert - Gentoo
Wizard - LFS


Yes. They are safe.

How 2 find these.jpg

*rubs hands*

Anybody know why archive.is (and the other related domains) block many VPNs from viewing archived articles? Doesn't make a lot of sense to me. I'm trusting that place less and less as time goes on.

Post a pastebin, what the fuck are you waiting on user?

Same reason why the kikes spam 8ch with commercial VPN services, so anons can't access or post. They are that desperate.

Doesn't make any sense to prevent viewing an archived page. Creating a new archive, yes

DDOS, I'm assuming. They had a million captchas turned on before. I'm not sure why the VPNs are blocked entirely now.

I imagine cuckflare isn't fond of VPN users because it makes their data collecting slightly less reliable. They are still in a great position to check cookies and profile all of the websites users. Many people would pay top dollar to have access to that data.

I've heard that enterprise flash is a way of making DDOS less effective. True Y/N?

I tried Crunchbang before it dissolved and it was good, but as of now it's only good for web browsing for the end user. It used less than 100MB of memory idling, compared to Window 7's >1GB. WINE is a pain, and I need muh proprietary software like UT2004, PS, AI, Pr, and others

pic related was on a random computer in my basement, dual athlon

*nix and a windows VM, user.

Alpine and Void use even less. I remember being somewhere around 40MB idle after boot into openbox-session, conky, stalonetray

hand rubbing intensifies
It's like "How to get filthy rich with a raspi and a screwdriver set". The stock laptop costs no more than 120$, some chink SPI programmer, wires and a SOIC-16 clip (fits SOIC-8 too) - ~20$ combined. The flashing process is literally typing just 4 commands.

Github devs are probably datamining and are helping SJWs
mikegerwitz.com/about/githubbub

You should also read this user
esr.ibiblio.org/?p=6918
Eric Raymond is totally based when it comes to SJWs.

Also the github kikes are helping permissive licensing like MIT ord BSD thus effectively blocking users from changing their OS or software on phones like android.

Imo the only reasons that more people use the MIT or BSD is because companies are shilling devs to use it without understanding it.
Since data-mining is THE actual tendency it makes sense that companies doesn't want a license that permits users to get rid of it.
See more about datamining
media.ccc.de/v/33c3-8414-corporate_surveillance_digital_tracking_big_data_privacy


Do you know what's actually happening with sha1 ?
MD5 and sha1 are too weak now.
Even if Sha1 isn't completely broken.
Use Sha512 or WHIRPOOL for you archives.
To go even further you can use the "whirlpooldeep" software that can make recursive hashes of all your files for your future archives that will also have a hashes.

(checked)
See the websites that are referenced and hit by the cloudflare vulnerability
github.com/pirate/sites-using-cloudflare

Protect freedom anons, the jew slavers are going to fall one day.

Praise kek

I'm sick of Windows at this point, but it's a necessary evil. Even my normalfag friends are complaining about W10 blue screens, brought to you by pajeet and female programmers.

As for Mac, it's used by teenage girls and low-t cucks; a user base not worth saving. You need to buy a $3 app from the Mac app store just to remove scrolling acceleration.

The minifree maintainer is Francis Rowe he went full retard/sjw by going against the FSF saying that they where firing Trans people because they were trans without proof of any sort.
Well he was already retarded when he decided to go thought hormonal treatment without any medical consultation.
It's in his head, like most trannies.
youtube.com/watch?v=sFBOQzSk14c


Intel ME is removed from these laptops thanks to replacement of the bios to libreboot.
Just use tails to do whatever you want user.
tails.boum.org/

But learn how to verify hashes and GPG signatures to be safe.

They are more than capable of browsing any websites, especially if you use a GNU/linux distribution.

At least the money isn't going to some Transgender abomination.
Plus if you want and have enough energy to learn you can do it yourself documentation is available.

Openbox is a window manager

The only system that I can imagine that won't be fucked by government/corporation via DMCA or other is when somekind of archive will only use gnunet.

Alpine appears to use Xfce and Void appears to use Cinnamon, Enlightenment, MATE, and Xfce. Enlightenment seems to be advertised as a WM, but has the functionality of a DE.

You don't have to use one of the flavors for Alpine or Void that include a DE. Especially if you're trying to enjoy the customizability and lightness you would probably avoid those. Those are for lazy asses that would probably not want to use either of those distro anyways or for use as live distro on portable media.

ok

OpenRC is king.

fbi r haxoring me )-:

tbh I'm not convinced much of this is really stopping the FBI from haxoring anyone. What you're trying to do is make yourself more secure from our enemies that are non-state actors. Corporations and the leftist groups that have started to parasitize them are trawling through the internet to find and profile people like us.

The alphabet agencies could come grab us anytime they like. Your shitty $3/month VPN, TOR browser (which has been infiltrated) and Linux distro aren't going to stop the NSA. If you use them properly, they might stop some faggot from doxxing you though.

The NSA have quantum computers and things we couldn't believe.

All encryption is broken. They are literally using ayy lmao tech.

I wonder if large corporations like Google also have similar tech, if only on a smaller scale or with less sophistication.

but how often does it get security updates? It's easy to h8 on major distros but with less eyes on it, and less security contractors/companies using it, I would imagine something very funky can be left on there for quite a while before discovered/updated.

Can you imagine the robotic tech they have that we will probably not see until the shit really hits the fan and the air drop 10k terminators somewhere?

So why are they so fucking eager to put backdoor into everything everywhere if security is so hopeless? The only reason why (((they))) are looking into deploying hardware back-doors is because more people are turning to FOSS.

Shiieett, I thought only CERN had that level of technology. Those inter-dimensional alien god alters are extremely spooky.

Just hack in to the ayy lmao quantum computer terminals, then. The password is probably something like "guest"

It's the ayy lmaos that can read all our shit.

enjoy your nightmares

Jesus Christ. So all of a sudden they have new battery tech and these things are basically silent? It wasn't long ago that "big dog" was running with some kind of combustion engine.

The speed at which those things can move is terrifying. These robots could easily tear a human limb from limb, or instantly crush a man's head with a swift blow. That one creature's head that could also grasp cups etc., is clearly capable of crushing human skulls with that pincer maw.

In my mind there is one ray of hope with regards to apocalyptic robotics: EMPs. As far as I know, there is no good way to shield electronics from a solid EMP blast. I think in a SHTF scenario one could probably build an EMP weapon in one's garage that could seriously annihilate electronics at a reasonable distance (say 6 - 12 feet?).

yea totally, EMP surge is your best bet. funny how nothing in this word is impervious.

Remember: they recently used a robot with C4 strapped to it to take out that black shooter a while back. Once they start weaponizing those quick dog robots in a similar fashion, we're breddy fucked.

Burgers should demand that they be allowed to own terminator robos and exo skeletons as part of your 2nd amendment rights.

Also, in this video, at the end the robot disobeys, physically threatens, and appears to frighten the man on the couch, then it scurries off and plays dead. Meanwhile the Chinese probably have similar robots gathering random humans to have their organs harvested.

I couldn't believe that when I read it. Crazy times

Time to invest in some self-improvement radio frequency and antenna design theory. Forget the EMP surge, you'll be better off jamming every frequency you can constantly so they can't even get a control signal to the thing – bonus points for also rendering their communications totally useless too.

Remember: AI doesn't exist yet. Those things are all glorified remote-control cars.

inb4
signal exclusion zones
:))

If you're at the point where they're sending robots strapped with C4 after you, government broadcast regulations aren't really something you ought to be capitulating to.

Excellent idea, this would also crash most consumer camera drones too I bet.

I recall that a US drone was stolen by Iran years ago. Apparently they spoofed a GPS signal and it caused the drone to get confused and land because it thought the mission was over or something.

That's a funny way of saying splashed down in the desert like a bug on a windscreen.
They got ahold of it, yea, but it was heavily damaged.

and this is why I use tor

Mullvad. $in mail vpn.

thats not what I meant.

I guess I should imply the use of setting up exclusion zones in you area of operation if you are a given 5thgen force.

You do know that "exclusion zones" are legal constructs and not physical ones, right?

What does this mean?

It means you should kill yourself.

...

...

This, though whoever owns the factory pumping these things out will be the one in control. These aren't things you can build in your garage.

Thanks, have this existential crisis in return.

this video is 7 years old

TONY STARK BUILT THIS IN A CAVE!!!

WITH ABOX OF SCRAPS!

I knew that shit was cancer but goddamn

RefControl. It lets you enable referrers on a per site basis. You can also use it to forge referrers if you need to. By default I have all sites blocked, and I enabled referrers for Holla Forums

Thanks, I'm using "Toggle Referer" to change referer for 0 or 2, and about:config to change the "referrer" for true and false.

I will test this RefControl.

More like NASA.
Once, back around 2010 or so, I randomly found this blog post from a guy saying he was a contractor for NASA, and that NASA had quantum radio. It was on a Mars rover. Normally the rover would send low res preview pics, and if NASA saw something interesting, they'd have it radio back the high res version. One day he was looking around on the network and found a folder with some weird medium resolution pics and through a series of events and more snooping, figured out they were images sent FTL using quantum technology. At one point he set up a mitm attack to intercept copies of the pictures as they came in. It was a fascinating read. Knowing the fucked up shit I know about NASA, I think its probably true.

There are three factions within NASA: The magicians, the masons, and the nazis. Only the nazis are on our side, and I'm convinced there are very few if any left.

polite sage for kinda off topic

I just want to clarify that the mitm attack was on the computer network, he was not mitm-ing the quantum radio. That can't be done, and even if it could, he wouldn't have known how to do it.

From what I can tell, the US Navy is the one that holds and develops all of the reverse engineered craft, but the military industrial complex as a whole has had technology disseminated to it (as well as some academia). It would make sense that NASA had all sorts of toys to play with.

Ever read Orson Scott Card's Ender's series? Quantum radio sounds like the ansible communications system in those books (faster than light, instantaneous). In the end they find a way to merge their consciousness into the ansible galactic/universal Internet, and I believe he has an AI waifu in the nets as well.

Anyhow, it seems plausible. I did see an user explain once how quantum entanglement can't be used to send information, something about time travel problems. But I don't buy it that there isn't some way to do it. Ffs we just measured gravity waves for the first time and we don't even understand the implications of this, as the EM spectrum is the only way we've been able to "look at" our universe until now.

If you wouldn't mind elaborating and providing some sources about the magicians / masons / nazis NASA thing, I'd be curious to have a look. Never heard of this before.

This is why you make your passwords >128 bits, and use a different one for each account!

Nothing 12ga steel slug can't fix, though.

I just use blur, it's a firefox add-on

he does not look happy

Foil is unreliable.Use fine copper mesh for a true Faraday cage.

How does the soda can get punctured?

I wish there was a youtube channel dedicated to researching combat versus robots/machines. Would love to see one of those robo doges sprint across a field while a few guys spray it down with .556, slow motion analysis of targeting limbs versus sensors etc.

I imagine a decent net could fuck up one of those robot dogs too. As soon as two of the legs are tangled its running subprocesses would probably shit themselves. The electronics in those things must be worth millions, too. It would be fun to harvest them and start reprogramming them.

PEOPLE WHO ARE JEW AWARE NUMBER IN 10mlns, IF NOT 100mlns. FACT
They can't simply take all of us and put in jails, normies will start questioning things

THE MORE YOU ARE PROTECTED THE MORE YOU ARE WANTED TO BE MONITORED. FACT
Not saying that it's safer to be naked on the internet, but this is certainly food for thought. If your "defence" is breakable then you'd rather be naked (against intelligence that is, not the public of course)

IF YOU WERE DOING QUESTIONABLE THINGS BEFORE INFOSEC, INTELLIGENCE IS INTERESTED IN YOU ANYWAY. FACT
Because intelligence will forget about you if you were reading about jews everyday and stopped the day you bought a VPN, yeah, totally

The basic logic is: be fully protected or not protected at all, babby protection will only backfire

See

stopped reading there.

So you stopped reading at the end. Good job.

For anyone else that is curious. The magicians are students of Crowley and practice Thelema or are members of cults such as O.T.O. The most prominent of the magicians was Jack Parsons, who liked to pal around with L. Ron Hubbard, and even tried to conceive a moonchild at one point. Its an interesting story. Google it. While JPL officially stands for Jet Propulsion Laboratory, it was named that instead of Rocket Propulsions Laboratory, so that it would have the same acronym as Jack Parsons Laboratory.

The masons are… masons. They cram their rituals and symbolism into just about everything NASA does, particularly planning events so that certain stars align with various 'sacred sites' on Earth as well as throughout the solar system.

The magicians and the masons both worship Osiris, Isis, and Horus, particularly Osiris. They often use his parallels in other mythologies in their rituals and symbolism. Its the reason the Apollo missions were named after Apollo, and originally had the constellations of Orion on their mission patches. Its also the reason you see the 'vector' used so often. It is an A for Asar.

The nazis are just that. The nazi scientists brought over from Germany after the war as part of operation paperclip. This includes Von Braun. Witnesses claim that Von Braun still wore his death's head pin everyday on his suit hidden behind behind his lapel.

yeah I warned all my normies about this, but they all be like, "pfssst I don't go to any of those sites…/they goes back to fuckbook".

whatever I did my job

nobody seems to mention browser signatures - torbrowser on highest setting is the only setting I've seen that even remotely helps

the shit about the magicians is true

Not just NASA:

h ttp://www.huffingtonpost.com/entry/cern-devil-worship-sacrifice-video_us_57b6856ce4b00d9c3a16cd67

must be monday

A quick post to get the unlucky 666 post count away. Seldom do I use a VPN. When it gets to the point that a Human Relations Council is rounding up people for browsing Holla Forums, I hope to be innawoods.

Yea that's right Carlos keep making jokes. Be sure to entertain the van-man as he takes your welfare-vacuuming ass back over the border.

Here you go.

lmgtfy.com/?q=%22CF-Host-Origin-IP%3A%22%2B%22authorization%3A%22

pic related

ITT:

Pretty good.

Soon shitposting will be considered a felony.

Learn what that word means before you start spouting shit, ADL.

I use vpn to get the kike lawyers off when torrenting. Any further expectiation of privacy is ridiculous, they can time data packet entry and exit portals and figure it out easy, echelon/prism/whatever you want to call it last 20 years has expanded to have quite the capability.
Hi NSA/CIA ISIS loving cuck professional perves.

Can confirm also saw this and it was true. Quantum stuff always came in many minutes before the normal light speed shit.

...

ban assault bananas

No.


What is the Correspondence Principle?
What is Quantum Decoherence?
What is the No-Communication Theorem?
Do you not even realize that quantum networks still rely on lasers to communicate?

Mass Effect was not a documentary. Polite sage.