[ home / overboard ] [ spam ] [ soy / qa / raid / r ] [ int / pol ] [ a / an / asp / biz / mtv / r9k / tech / v / sude / x ] [ q / news / chive / rules / pass / bans / status ] [ wiki / booru / irc ]

A banner for soyjak.party

/tech/ - Soyence and Technology

Download more RAM for your Mac here
Catalog
Email
Subject
Comment
File
Password (For file deletion.)

File: 1775856952678q.png 📥︎ (245.82 KB, 345x439) ImgOps

 â„–33764[Quote]

'teens how good is my opsec?
<reddit space
My threat model is advertising companies and general mass surveillance.
<preddit space
I use linux, firefox with arkenfox userjs + ublock, mullvad, use cock.li as my mail + tempmail for websites i will only visit once. replaced about 99% of saas niggerslop with open source alternatives and talk to my friends using signal, use different usernames on all websites i register to
<
dont know what else i can improve

 â„–33765[Quote]

>>33764 (OP)
It's appropriate

 â„–33766[Quote]

>>33764 (OP)
It's appropriate

 â„–33771[Quote]

signal has metadata, uses a phone number as kyc, not good
use xmpp over i2p and/or tor, email too. pgp keys can be verified over a channel you can be sure is too hard to tamper with, e.g. a call on signal
mass surveillance is extremely pervasive; you need to do more than use certain services
you must compartmentalize and obfuscate your identities, add layers, use generic usernames and passwords, alternate your typing patterns to avoid stylometric fingerprinting, alternate timing
web browsers are fundamentally broken; use html only and try to find a well understood open source browser. probably something downstream of firefox, since the base has a lot of stuff built in it shouldn't have. userscripts aren't enough to get rid of it all. fingerprinting is virtually inevitable with javascript enabled, which is why you should avoid it
you should consider the vulnerabilities in your systems; sandbox and virtualize things where you can so no automated malware can get through as easy. obsessively minimize the contents of your system, understand them
build software from source because the maintainer who builds and signs it could one day be compromised, audit changes, replace the firmware on your system with something you can audit. also, if you have to use an intel cpu, obliterate ime. it is very dangerous. coreboot is a good supplier of mostly open source firmware, in the build script you can configure it to exclude proprietary blobs. arm isn't actually open despite what they portray it as; trustzone is just another ephemeral backdoor into your system.
don't even register for any websites. host everything yourself. run barely anything on your system.
also btw use throwaway emails and constantly cycle pgp keys so it's harder to track based on where what's been seen.
>

 â„–33773[Quote]

>>33771
ive been using xmpp for communication on tor but getting everybody i know to switch to it is a pain which is why i have signal made with a temp number

the one thing i do not understand is why would pgp be used (except for communication over xmpp), email just doesnt seem secure enough for actual private communication and ive never had a reason to talk to someone over email and not over any other service

in the thread i forgot to mention i have noscript installed too but
> try to find a well understood open source browser. probably something downstream of firefox, since the base has a lot of stuff built in it shouldn't have.
do you mean librewolf or something similar?

with the open source firmware, i will try to do that on my system but i couldnt find any information on obliterating AMD PSP, since that also seems like a backdoor

>alternate your typing patterns to avoid stylometric fingerprinting, alternate timing

this seems very difficult and ive thought about creating a project for this where i just feed my text to a local LLM to rewrite it and since there are masses of LLMs currently botting things it would be more difficult to track someone like this

 â„–33774[Quote]

Use JShelter aswell. However you wont be able to access cuckflare websites and this site if its active in them, Just know how dataminey they are

 â„–33776[Quote]

.

 â„–33777[Quote]

>>33773
yes, getting people to switch to anything that's not designed to be incredibly convenient is difficult, because people are used to everything just working from countless years of being babied by microsoft and whatever else
pgp is generally a backup. it's good for signing messages, which proves your identity, and it works practically anywhere. if something happens e.g your chat servers blow up, you can still figure out where everyone else went and be sure it's them
i hear librewolf is not perfect, but it seems alright to me. look into things first
ime is considered to be much more dangerous than psp since it's known to have complete control over your system and access to the internet. should be obvious but basically just makes it a constantly remotely accessible backdoor
yes, llm paraphrasing could work. it's a funny idea, i've also considered that. try using ollama with an uncensored model from huggingface, easy to set up and use. ollama's basically just a web server - they have a python wrapper for the rest api ollama uses, has tool support too. great fun to make stupid stuff with but there's probably more serious solutions than ollama



[Return][Catalog][Go to top][Post a Reply]
Delete Post [ ]
[ home / overboard ] [ spam ] [ soy / qa / raid / r ] [ int / pol ] [ a / an / asp / biz / mtv / r9k / tech / v / sude / x ] [ q / news / chive / rules / pass / bans / status ] [ wiki / booru / irc ]