/tech/ - Technology★

Is there any plausible reason why the 1.1.1.1 hidden service would be worse than any non-hidden service resolver?

>>925499

cloudflare

>>925529

Do you think Cloudflare has an undetectable Tor exploit and uses it to identify people who use their DNS service?

>>925541

that would be too balsy and destroy their company if detected

they are just trying to datamine tor users using their dns, and then sell most popular website data.

that being said i guess it's not terrible, thought i wouldn't ever support cloudflare by pumping data to them. remember they will nuke sites at will that don't conform to their morals and they backdoor ssl connections on half of the internet.

remember default tor dns is just whatever the tor exit node's dns system is, which would be anything.

>>925541

actually thinking about it i'm not sure what the goal is here. what motivation do they have to provide a private dns?

the average goy/lemming will never change their dns settings.

anyone who is familiar with tor and cares about privacy will be highly paranoid and never use cloudflare.

they are targeting a population who wants to be highly private and use tor, yet still use cloudflare botnet for speed(?) tor ping is atleast 300ms so what does it matter if it takes 300+1ms for cloudflare or 300+10ms for default exit node dns, not to mention half of the internet banning tor or giving it infinicaptcha via guess who, cloudjew.

>>925544

>and destroy their company if detected

Nope. Even the snowden leaks didn't destroy government agencies.

>>925549

Cloudflare's reputation would be hurt in a way that far outweighs the gain. Government agencies' reputations aren't very important.

>>925498 (OP)

there are other torified dns services. cloudflare is bad.

>>925544

>destroy their company if detected

this isn't facebook and cambridge analytica we are talking about, most people have a facebook. not many care about this.

even still that scandal didn't kill facebook only cambridge analytica

>>925498 (OP)

what the absolute fuck is this supposed to be? tor already tunnels requests. why would you use a hidden service for DNS resolution?

>>925576

Because a hidden service provides extra protection, because it isn't constrained by clearnet compatibility.

And you could use this to resolve queries for clearnet browsing, which is better than using some non-hidden service resolution service for clearnet browsing queries.

Most Tor exits use Google DNS resolver and don't bother to resolve/cache on their own.

>>925576

>why would you use a hidden service for DNS resolution?

If only there were a section on the linked page called

>Why should I use the Cloudflare hidden resolver?

that could answer that question. Alas.

>>925650

why are they pushing additional workload and money on themselves? running a resolver that fast and supporting capacity costs money. where is the profit for cloudjew, pure advertisement?

remember when they canceled dailystormer, if they had been running a dns at the time they likely would have nuked it there too. not that it's any better than jewgle or your isp, but TorDNS has one important advantage:

Your DNS server hops along with the tor exit nodes your using, there is no single dns resolver your using.

>>925669

>why

>pure advertisement?

Yep. I think they also provide HIBP with free caching, and one of their engineers even worked personally helping get the response times lower and came up with the API for the k-anonymity model.

They're still jewy af, but things like this are done purely to garner goodwill.

>>925669

They were already doing that for private services though, their gatekeeper DNS shit is their DDoS protection and all that. They're just scaling it up for probly ML purposes.

>>925574

Didn't kill facebook YET. It set the stage for the next 20 scandals and potential backlash from the FTC and federal perjury stuff that has not quite hit yet.

>>925650

By doing this you are giving away full control over domain names to them. They then control what ip is associated with what domain name. Think TLS certificates can save you? MITMflare operates a CA trusted by most browsers. They can just issue one to use.

By using MITMflare's DNS resolver you are further promoting a centralized internet.

>>925601

>First paragraph is just what tor already does on its own

>Eliminate the attack vector of individual exit nodes (which only CIAniggers have the resources for)

<by giving control of DNS resolution to a single centralised entity that already controls 90% of clearnet, that has already shutdown sites like TDS, that is currently MITM'ing every site that runs on it

>everything else isn't related to security

The only reason anyone would want to use this is for the extra 10ms gained from having Cloudflare's servers, which is practically pointless when you still have to download 40MB JS payloads for any non-imageboard site.

>click on the link

>Attention Required!

10/10

>>925884

Stop using cucked VPNs. Works fine on my Tor browser.

>>925581

have the DNS "tinkerer" retards gone so far now that they think you should tunnel DNS to "stop people from seeing what you browse" but leave everything else in the clear because it's "good enough"?

>>925601

if only i could read that page but i get

>Attention Required! | Cuckflare

>One more step

>Please complete the security check to access blog.cloudflare.com

>Why do I have to complete a CAPTCHA?

>Completing the CAPTCHA proves you are a human and gives you temporary access to the web property.

>Cannot contact reCAPTCHA. Check your connection and try again.

>refresh page

>you are blocked from using the captcha blah blah

alas

>>925650

because now cuckflare has all your DNS queries which were hidden from before, fucktard. they can just redirect you to lolheistheguywerelookingfor_4535235235.io after you resolve ultraillegalgaycpforterrorists.com and now your clearnet IP goes there. of course why would you be using the clearnet and expecting privacy in the first place...

>>926207

>>925934

>>925669

My guess is selling data to alphabet soups. There's a terrifyingly huge number of poorly configured Tor setups out there just waiting to be gobbled up. Building your business from the ground up to grab as many instances as possible would be a great way to get a few bucks send your way from an anonymous donor.

Remember, AS aren't actually that good, just well funded. They buy most of their exploits and backdoors.

At least they are aware of Tor users now. Mabe this is PR after years of blocking them.

>>926207

Downsides of browsing via Tor:

- Low throughput

- Restricted access to a lot of websites

- High latency on every request

Downsides of resolving via Tor:

- High latency when you first use a domain

>>926346

They promised less captchas for Tor users many years ago. They've been aware for long.

>>925547

The goal is to avoid DNS attacks by rogue exit nodes. You get your DNS response from a known entity (((Cloudflare))) in a way that you can verify it's genuine and untampered with and they can't verify who you are.

>>925544

>that would be too balsy and destroy their company if detected

Haahahhhaahaha. Good joke.

On the off chance you were actually being serious, it found it would be "the Russian's did it!". "Muh Russians!" is the SOP for blame in such cases - see Clinton Email server for further examples.

Tor is literally just another "Normie" thing.

Lookup amazon bookstore and you'll find that one of their best seller is a book about deepweb crap.

>>925561

>Cloudflare's reputation

>Windows and its backdoors, ToS and privacy policy

>Google ToS and privacy policy

>Android

>reputation

chuckle

>>926207

this is also a highly relevant point. forget the security implications of using jewflare, they have been incredibibly hostile to tor in the past. why the change of heart now?

here's a thought that crossed my mind: get cuckjewed with

>>926207

if your using tor and don't use their tor dns, then you don't get cuckjewed.

this would force a lot of tor users to use their dns to avoid getting cloudjew infinicaptcha, and in the meantime allow them to datamine the tor network. if a considerable number of people use the their dns on the tor network, they may very well be able to comprimse it. combine this with the possibility that they start running considerable number of tor exit nodes themselves, and since they are a huge megajew company, their exit nodes won't be shut down for false flagging like others will, resulting in a considerable number of tor exit nodes now being owned directly by cloudjew.

if cloudjew owns a considerable number of the tor entry and/or exit nodes, they can de-anonymize the tor network.

>>926735

>if your using tor and don't use their tor dns, then you don't get cuckjewed.

that was said in the opposite i meant. if you don't use their tor dns, get get the infinicaptcha over tor, if you do use their tor dns over tor, then you no longer get the infinicapthca, as a way to force people to use their dns resolver

>>925547

>not to mention half of the internet banning tor or giving it infinicaptcha via guess who, cloudjew.

Even goatse.cx is now captchahell'd by kikeflare. Fucking hell.

>>925572

name some

>>925884

Try this link:

http://goatse.cx/

>>926757

You're posting on a website, normie, not a gopher either.

>>926794

This ain't no deep web either you homo.

>>926304

Alphabet Inc. is basically Google (https://abc.xyz/).

>>926384

>low throughput

shut the fuck up you don't even know what that means

>Restricted access to a lot of websites

mostly because of cuckflare. otherwise only a few crap sites like walmart.com block you. of course many people use tor in the first place to get around local blocks.

>High latency on every request

If this is a problem your application is broken or you're mistakenly trying to play a 120 tick game which requires 10 ping over tor. You only get a couple hundred ms max (not that (((you))) can notice the difference since you're already a web shotter who's used to 10 second latencies to get page 2 of your clickbait article in the first place)

>Downsides of resolving via Tor:

i agree, using tor for only DNS is near pointless

>>926404

They offered a solution that obviously nobody would use: Add their stupid untested crypto protocol to everyone's stack. Every fucking thing that cancerous company does is completely inane. It's like your standard hipster web shop churning out bullshit but every thing they do so happens to make everything worse for everyone even outside their customer base. They've been inadvertently sabotaging tor for almost a decade now, and have successfully prevented millions of normalfags from using tor.

However, for the last year or so it's been possible to bypass cuckflare by using Tor Browser or something that looks like it. Any firecuck fork can get past it by putting this in about:config:

general.useragent.override;Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0

or just use a user agent switcher plugin for other browsers

>>926617

that's fucking retarded.

>in a way that you can verify it's genuine and untampered with and they can't verify who you are.

sounds like bullshit, but i will read the article later but i'm in public now and i might have to throw the 10lb laptop out the window (as i usually tend to when i read anything by cuckflare)

>>926747

jej. before you could easily bypass cuckflare it used to be somewhat beneficial because 99.9999% of ads would just block you for being a "haxor"

>>926731

the web is literally just another normie thing. tor is a temporary solution to browse the normalfag web until it dies

>>926798

"Deepweb" is any webpage out of scope of web crawlers or general mass attention. Yes, Google indexes and archives our posts right now, but your average Joe won't see them in a lifetime or have a need to do so.

>>926828

>Google indexes and archives our posts right now

Do you have any proof of that? I thought Google pretty much only indexed our front page.

>>926840

For fun I searched the title of this thread on DDG and it was the third link. Tried google but it gave me a broken captcha so can't answer.

>>926883

Hmm, it doesn't show up on searx.

>>926828

The average soccer mom isn't going to see anything outside of facebook & Co. so then you're going to label all non-mainstream sites as deep web? Nah, that's just stupid. There's nothing "deep" about this site or any other that you can directly access with a normal web browser, without jumping through hoops.

It's just the web, nothing of that has changed since the 90's. Those guys just want to sell books to normies about "hidden" and "forbidden" stuff on the web. That's the target audience (who knows only how to use a web browser).

>>926961

Searx always lacked majority of search results other engines would show.

>>925669

>remember when they canceled dailystormer, if they had been running a dns at the time they likely would have nuked it there too.

the big issue with kikeflare DNS no one talks about.

if they become the default DNS without meaningful competition they'll start nuking any site that offends jews.

>muh deepweb

stfu. if you need to put any weight on this term your niggers. it's best to just avoid the term because it's been a buzzword for normalfags since conception

>>927209

nope. they all have different results but i haven't noticed searx missing anything important from Bing or the G. if anything it provides more. for example image search seems not to be censored like it is on the G

Most popular searxes get censored by search engines they aggregate results from, the shittiest results go to startpage. Visiting Google though unpopular proxies makes it better.

>>927251

>image search seems not to be censored like it is on the G

I'm always afraid to use it in front of others. I have to pray to not accidentally poorly word my search and end up with naked 3DPDs showing up.

>>927324

Nice subtle shilling, but Google's the platform which inserts gay porno into nearly every search result whether or not safe search is on.

>>927358

>Nice subtle shilling

Wrong, I just think twice about my query being misinterpreted.

>>927324

yeah searx always shows up with porn even when you search something completely unrelated. then again so does gmail search, but the english web has complained so much about this issue that it's much less likely to happen. if you search anything japanese though you'll get porn or something equally as NSFW

>living in a world where people are forced to pretend it's not normal to accidentally run into porn on the internet

>>925669

>TorDNS has one important advantage:

>Your DNS server hops along with the tor exit nodes your using, there is no single dns resolver your using.

There's both pros and cons to that. For example, it drastically increases the probability of DNS poisoning attacks by evil exit nodes.

>>926818

>sounds like bullshit

You connect to kikeflare's .onion address, which guarantees you're talking to them over a secure encrypted tunnel (as long as their private key isn't compromised). Tor takes care of authentication and encryption. From their side, however you are not identified in any way. Your request is just a random connection from the Tor swarm. Your next connection is in no way linkable with the previous one.

Of course, (((they))) can serve you whatever response they want. Tor doesn't protect you from evil .onion services. It does protect you from evil third parties though. It all depends on your threat model.

>>927365

Give examples of misinterpreted queries. This might be fun :)

>>927868

Replacing the DNS result is a non-issue. They could just as well replace the content directly since its plain text. If your content was encrypted and authenticated it wouldn't matter that someone can change where the DNS points to.

>second reply

I was saying it sounds like bullshit that you could guarantee your DNS is untampered, which as your post says, you can't. Cuckflare can just serve you whatever they want, just like any other DNS service, and since in the future they may control the entire internet, they get a simple way to launch large scale conspiracies (not that they even need DNS to do this since they already control all the content). And that's the literal meaning of "conspiracy", not some American fiction version.

I'm still not sure what we're talking about though. There's absolutely no benefit to using cuckflare for your DNS resolutions over Tor. All that does is causes you to always get MITMd in the same way instead of by different parties. The only real use case I can see is getting around some shitty ISP block that blocks domain names and any DNS server they don't have control over.

>>927869

I can't think of any off the top of my head, but if I search for images of the "Thin Lens Equation", then I get a lot of results of 3DPDs wearing minimal clothing.

>>928358

Go to the settings and disable Bing.

I think Searx requests results without safesearch and Bing assumes that means it wants porn.

>>928358

>>928360

>bing

this

>>925544

>that would be too balsy and destroy their company if detected

Not if it turns out to be a vulnerability used and exploited without the consent or knowledge of (((cloudfare))) by ebil government agencies and terrorists.

Is there any way to filter out cloudlare sites so that the browser is denied connection?

>>928409

>government agencies and terrorists.

same thing.

another glow-in-the-dark tool...

If you use this, you make it easier for foreign US agents to secure their already disguised traffic, and commit espionage from TOR networks by using yourself as a meatshield.

Install I2P.

>>927869

"Lacie321" brings up porn in the text search. first time i've seen this though after searching hundreds of other monitors

>>928360

more like the words you typed so happen to be on some porn page

>>925541

Yes, it's called ATTENTION REQUIRED | CUCKFLARE; ONE MORE STEP ONE MORE STEP ONE MORE STEP; PLEASE CLICK ALL PICTURES OF KEBAB RESTAURANT; OOPS TRY AGAIN; OOPS TRY AGAIN; OOPS TRY AGAIN

>>928430

Yes, use Palemoon or Firefox or Chrome over Tor. You will be blocked from all cuckflare sites. Yes, the block is browser based.