/tech/ - Technology★

>>784320

Less anime and more gay porn.

>>784316 (OP)

>he follows best open source practices

>his hardware is still compromised at ring -2

enjoy your placebo

>>784334

Yeah, but they won't see what a fap to. It's a win/win

For me, computer privacy is a mix of a hobby, being paranoid and wanting to be ready for the future where lolicon is illegal.

>hurrdurr hardware is compromised

Remember that one guy the FBI wanted? He used TC and they never got his shit.

>>784334

Id rather die on principal than live in submission.

>>784375

Really? Isn't Truecrypt broken?

>>784386

no

>>784386

Your brain is broken

>>784375

Is it true that TC was written by anonymous arms dealer?

>>784430

>anonymous

no

>arms dealer

yes

is this bait?

let's see all the memes you listed:

>keepAss

>ext4

>DNSSEC

>VPN

can't remember what veracrypt is but it's probably a meme as well

>hurr dur nobody can spy on me now that i forwarded all my traffic to some other single IP address

>>784542

You odn't understand what a meme is, do you

>>784730

VPN is a MITMeme

>>784779

You odn't understand what a MITM is, do you

Should I use TrueCrypt or VeraCrypt?

>>784386

not in a way that allows to attack an offline system.

>>784331

>coreboot doesn't disable AMT

get with the times gramps

>>785007

Veracrypt is a better honeypot if you download binaries

Truecrypt trusts the backdoored TPM

compile from source

> setting up dnscrypt

HTTPS GET still goes in plaintext, your VPN provider will see you visiting forums full of inane comments and mark you as suspicious for feds for being too smart and not using google dns like everyone else.

DNSSEC is literally useless unless you are gonna check every domain you visit for compliance manually, because there are maybe 5 or 6% overall, and let me guess, CZ NIC firebox addon? Nice, now you have a non-unique browser fingerprint.

>Keepass

Good luck with rootkits and keyloggers stealing all your passwords, get a hardware password manager and auth token or make one yourself with faggot ducky or arduino.

My next revelation will be that "full disk encryption" is not really full, unless you have an external bootloader no one knows about.

>>785192

you seem to know your shit, tell me about bane, why does he wear a mask?

>>785192

>HTTPS GET still goes in plaintext,

Incorrect.

>>784331

>>784781

Virtually all systems in the world are trivially accessible to US law enforcement and intelligence agencies using methods that are totally impossible detect, you can't even see the traffic on your network. Despite this, they need to develop exploit and hacking tools against Windows and other systems and need to seize servers and need to undermine encryption. If you believe this, you have gone full /tech/.

>>784375

>hurrdurr hardware is compromised

>Remember that one guy the FBI wanted? He used TC and they never got his shit.

he was using old hardware, without INTEL ME

>>785906

They need exploits only for Windows. For linux they just plant backdoors into linux code, as it's open source.

>>789387

>he doesnt know about backdoors at the hardware level

lmao

>>784331

op is still safe against his mom logging into his pc

also against facebook and google spying

maybe or not safe from microsoft

he is safe from his isp

there are other threats to defend against besides the government

>>789396

yes?????????

>>789413

You're wrong. They can't do that.

>>789416

>backdoored hardware cant lie to you

ok

>>789427

Who are you quoting? Backdoor hardware can lie to you. So stop using backdoor hardware.

>>789416

kys

>>784334

>I never get you people who encrypt stuff. You're just asking to be killed in the most horrifying ways possible.

Thinking such people wont kill you anyway because they believe your unencrypted hard drive is a diversion.

>>789387

>>using methods that are totally impossible detect, you can't even see the traffic on your network

<Doesn't know networks originate from DARPA

<Doesn't know who DARPA is

>>784334

>never encrypt anything

>literal nigger comes into house and steals laptop

>takes all money from bank account

<inb4 muh 2fa muh best practices

this thread has taught me i have no chance at all lmao

i'm stlil assuming luks/veracrypt are secure

>>789428

>Backdoor hardware can lie to you.

yes. that is what i wrote.

>So stop using backdoor hardware.

you can't. every piece of hardware is backdoored. prove me wrong

>>789497

your mom is back doored

>>789499

LUL XDXDXDXDXDXDXD

>>789504

also use a back-up battery so they can't isolate your location you via forced brownouts.

>>789506

>you

not sure how that got there

>>789396

this would be interesting, you would have to have compromised routers AND switches synced up to use a hidden vlan. Would be interesting to produce a demo

>>784334

I use it to securely erase data for system re-installs on ssd devices that would otherwise require secure-erase + dd urandom

>>789504

backdoored

>>789506

backdoored. probably even gps

>>789516

enlighten us on how capacitors are back-doored jk im filtering you with the rest of the one-liner non descriptive shitposts

>>789517

>oyyy veyyyy! shut it down!!!

found the damage controlling kike. the holocaust will happen.

>>785163

>implying the Jewtel eepro100/eepro1000 chip on your MB which for the past 20 years is powered when off, has direct access to ram, and receives data from the internet isn't compromised

>>789526

Welcome to ARM computing.

>>789396

They can. For example, let's say you have some data to exfiltrate. You encrypt it so it's unrecognizable from random data then start passively leaking it out in place of random data in protocols. A good candidate are initial TCP sequence numbers which are random for security. Each TCP connection can leak 8 bytes of your data this way.

A TLS connection can leak much more via the "random" session key. You have no way of telling that this is happening without access to the source. Even worse, this could be happening in hardware beyond your sight - imagine if the hardware RNG is feeding these components this data.

So all the NSA needs to do is spy on you browsing redtube or your OS downloading security updates or keeping your clock in sync via NTP and reassemble the data from the "random" protocol components.

>>789533

>ARM

Our ARM boxes have eepro1000 chips. Amusingly, so does China's Loongson-based boards for security. Welcome to being fucked.

>>789517

>>789519

You know if you don't live inside of a faraday cage with no doors or air holes you're backdoored. Prove me wrong.

>>790502

You aren't wrong unfortunetely. Everything is a fucking botnet.

>>790502

How does one test for a GPS in a battery pack?

So what? VC better/more securely TC or i should stay on TC/tcplay any longer?

>>789526

dammit

how do i fix

>>793577

VC

>>793603

Use addin card for NIC

Ethernet hardware being compromised is practically a given. With that, they can cut through any firewall and network without being detected or observable. Their chips do the routing and those magic packets would never be delivered to userspace so you'd never know even if you were running tcpdump. Even if you turn some of the boxes off they could still route through them. You'd have to physically disconnect them.

>>793727

I guess, passive sniffer built around fpga would sense any activity not meant for userspace.

bump

Literally everything in technology is compromised. If you haven't made it from scratch yourself , it's compromised.

>>797776

>make it yourself

>it's full of holes you don't even know about because you're not a one-man security company

>use one from some corporation

>all the holes are plugged except for the giant one they purposefully put there to spy on you

Unpower your computer and use pen and paper. ;)

There is no way to hide with a computer today.

Not only does most CPU's have built in backdoors running with ring-2 access.

Your harddrives firmware also have backdoors impossible for you to do anything about.

But do you really have to hide? The paranoia is probably getting you. No one gives a fuck about your secrets and private shit unless you trying to do something really stupid.

The basics to protect against people trying make money on your identity and such stuff is enough.

>>784316 (OP)

BTFO FBI

>>797881

>Unpower your computer and use pen and paper. ;)

>implying pen and paper aren't human-readable

I have build a computer with hermit crabs under a system I call HCSA(Hermit Crab Switching Algebra). It's a little slower than your everyday CPU, but it is still turing-complete, and I'm even working on porting the Linux kernel over to it.

>>784730

>he doesn't understand the meme meme

>>785192

>your VPN provider

Buy vps and set it up yourself. Why would I let some pajeet on a nsa payroll do it for me?

>>784334

It's only a problem if someone is after some particular data with absolute certainity that you have it. Otherwise nothing stops you making double bottom/hidden partition. Make outer layer look suspicious with kali linux and halfchan in bookmarks, put some l33t hacking books on your reading list and spice it up with mlp r34. Keep your rare spurdo memes in the deepest layers that no one will ever reach.

The downside is inconvenience of accessing and working around it. But it's always about trade-offs

>>789513

And even then /dev/urandom would be pretty much useless because of wear leveling.

Encrypt your shit, people, ==ESPECIALLY SSDs==

>>793663

Which add-in NIC's are safe?

>>784316 (OP)

VeraCrypt is good but isn't it exactly the same as Encfs?

I mean, other than storing directories as bins instead of directories.

>>784320

>Nico-chan

Yeah, that's me.

>>784329

本当にはホモですか。いかた自殺べきですか。