Trusting encryption online

Email
Comment *
File	Select/drop/paste files here
Password	(Randomized for file and post deletion; you may also set your own.)
* = required field	[▶ Show post options & limits] Confused? See the FAQ.

Flag
Oekaki	Show oekaki applet (replaces files and can be used instead)
Options	Do not bump (you can also write sage in the email field) Spoiler images (this replaces the thumbnails of your images with question marks)
Allowed file types:jpg, jpeg, gif, png, webm, mp4, pdf Max filesize is 16 MB. Max image dimensions are 15000 x 15000. You may upload 3 per post.

File (hide): 96675e4a4e62c38⋯.gif (2.71 MB, 429x592, 429:592, 96675e4a4e62c38ae35cb67822….gif) (h) (u)

▶Trusting encryption online Anonymous 11/27/18 (Tue) 16:33:19 No.1002072>>1002073 >>1002098 [Watch Thread][Show All Posts]

Explain to me in simple brainletspeak how come you feel confident trusting HTTPS and Tor and whatever else is encrypted on the net.

If you don't own all the cables and the switches all the way from your house to the server, what guarantee do you have your network encryption isn't MITM'd all of the time?

▶Anonymous 11/27/18 (Tue) 16:40:16 No.1002073>>1002538

>>1002072 (OP)

>what guarantee do you have your network encryption isn't MITM'd all of the time?

Certificate authorities exist although it can't be a guarantee that you won't be fed bad certs, atleast it is a safeguard.

▶Anonymous 11/27/18 (Tue) 17:44:52 No.1002091>>1002434

Good question. You don't, it's about minimizing the risk.

▶Anonymous 11/27/18 (Tue) 17:51:45 No.1002092>>1002093 >>1002334

I know Tor is completely compromised or ineffective, yet I continue using it because I feel more secure.

I wish browsers were offline-first and aggressively caches every single resource then asks me whether I want to re-visit the X hour old page or update it.

▶Anonymous 11/27/18 (Tue) 17:57:33 No.1002093>>1002094 >>1002434

>>1002092

It gives feds a big headache and the way it works they usually have to spend too much time to make it worth it. Unless you're an actual big-shot making millions.

Nothing is preventing you from with precursing tor with non disclosing VPN service as well.

▶Anonymous 11/27/18 (Tue) 18:04:35 No.1002094>>1002097 >>1002099

>>1002093

The bigger problem with Tor is how often it is blocked or otherwise made inconvenient to use by anonymity-hating webdevs.

▶Anonymous 11/27/18 (Tue) 18:14:54 No.1002097

>>1002094

Yeah it is, but that's just a (((Coincidence)))

https://www.youtube.com/watch?v=uYg_0Imrnr4

▶Anonymous 11/27/18 (Tue) 18:24:38 No.1002098

>>1002072 (OP)

>how come you feel confident trusting HTTPS and Tor and whatever else is encrypted on the net

Because the extent of my trust in HTTPS and Tor and whatever else is "it prevents skiddie MITM."

▶Anonymous 11/27/18 (Tue) 18:35:16 No.1002099>>1002100

>>1002094

>webdevs

global active adversaries including but not limited to Cloudflare, Google

▶Anonymous 11/27/18 (Tue) 18:43:01 No.1002100

>>1002099

That too. But it's often the webdevs themselves who disable tor believeing it's the "thing that spammers and pedos use".

▶Anonymous 11/28/18 (Wed) 16:41:51 No.1002334

>>1002092

>I know Tor is completely compromised or ineffective

One would think the Torproject would stop if that were true. Do you have actual reasons to ~~believe~~ know Tor (the network? the browser?) is busted or are you just paranoid?

▶Anonymous 11/28/18 (Wed) 22:16:22 No.1002434

>Tor

my adversaries do not include government agencies. for this, Tor is reasonably safe

>HTTPS

i don't have much alternative for many necessary sites

>>1002091

>>1002093

these

▶Anonymous 11/29/18 (Thu) 06:04:57 No.1002538

>>1002073

Certificate authorities only prevent your local coffee shop owner from MITM'ing you. All of SSL is designed around the CAs as the core weakness, which enables ezpz MITM by nation states. In the US, the CALEA act compels the backdoor to SSL/HTTPS. since like 1995. Verisign, the first CA, was selling 'CALEA compliance' to MITM SSL since like 1996.

Seriously, it's useless.

▶Anonymous 11/29/18 (Thu) 12:50:25 No.1002591>>1002592

I wonder about some smaller or darker nets. Darker than I2P. Let's say non-internets.

I wonder how far USA agencies a

▶Anonymous 11/29/18 (Thu) 12:52:38 No.1002592

>>1002591 (i didn't even press enter)

re into networks such as Cuba's, or smaller meshnets. it's probably insignificant to infiltrate and not going to happen incidentally, so there is a good chance most of them are free of all North American surveillance and botnet

/tech/ - Technology★

General

WebM

Theme

User JS

Do not paste code here unless you absolutely trust the source or have read it yourself!

Favorites

Customize Formatting

Filters