ProtonMail Explains Why It Shared a User's IP Address With
Police
Even a secure email service can't ignore a legally binding
order from Swiss authorities.
ProtonMail Explains Why It Shared a User's IP Address
With Police Even a secure email service can't ignore a
legally binding order from Swiss authorities.
Right, really the ONLY secure way to do email is to either
A) build your own secure email server and run it at home on
a physical box. or B) no email at all...
Right, really the ONLY secure way to do email is to either
A) build your own secure email server and run it at home on
a physical box.
or B) no email at all...
Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".
Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".
So the IP address of your mail server and the registrar's
domain record points directly to your home address? Not
sure if that helps ;-)
And meta data is still leaky through the other participants
mail servers.
Even the link to the onion address is easy to find on their
website. But I think it's mostly a problem of understanding
all the technical details of 'security', anonymity,
surveillance and the network. Protonmail advertises secure
encrypted email and something something privacy (swiss
law). Activist thinks their safe.
I wouldn't use e-mail on the open internet in this context.
Use FTN netmail over Tor! ;-) Or some app made for this use
case like Briar.
Ogg wrote (2021-09-07):
Right, really the ONLY secure way to do email is to either
A) build your own secure email server and run it at home on
a physical box.
So the IP address of your mail server and the registrar's domain record poin directly to your home address? Not sure if that helps ;-)
Also broadband IPs don't work for mail reliably.
And meta data is still leaky through the other participants mail servers.
or B) no email at all...
Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".
Even the link to the onion address is easy to find on their website. But I think it's mostly a problem of understanding all the technical details of 'security', anonymity, surveillance and the network. Protonmail advertises secure encrypted email and something something privacy (swiss law). Activist thinks their safe.
I wouldn't use e-mail on the open internet in this context.
Use FTN netmail over Tor! ;-) Or some app made for this use case like Briar.
Protonmail's response concludes with a reminder/suggestion that
using Tor and the Onion links to Protonmail would avoid the
"problem".
it makes me wonder how many supeanas have already been issued to Protonmail, and the people who run the signal app. i dont trust any of them. its like having a single point of failure. that failure being litigation from corprat controlled gov agencies. I know that proton is used alot for people who a re insiders that are wanting to come forward from the black OPS UFO programs. however i think the proton / signal systems are already compromised. if not by legal means, then by NSA hacking.
Thanks
- Gamecube Buddy
telnet --<{bbs.hive32.com:23333}>--
Use FTN netmail over Tor! ;-) Or some app made for this use
case like Briar.
Never heard of Briar. Sounds very much like Matrix/Element.
But how can such a thing still work with a "broken internet" as
it claims it can?
Re: re: protonmail shares IP address leading to arrest
By: gcubebuddy to Ogg on Wed Sep 08 2021 07:03 am
I don't think there are technical means to read the conversations going
on within a Signal group unless the adecuate decryption keys are in your posession.
While this is likely accurate, if you have a nation state that wants access to your Signal conversations, they just need to compromise one of the participants' phones and install a screen scraper. It's not easy,
but there's always more than one way to skin a horse.
Right, really the ONLY secure way to do email is to either A) build your own secure email server and run it at home on a physical box. or B) no email at all...
Right, really the ONLY secure way to do email is to either A) build y own secure email server and run it at home on a physical box. or B) n email at all...
one day I'd like to try to do that.. I even got port 25 opened up at home with the blessing of my ISP... but then it seemed to be hard to do or I recall some saying don't go there, there be dragons :)
I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was
the least fun of all. I gave up. Most of the headaches were that
updates to the mail packages often break your current configuration.
Good luck if you try to do it. The overwhelming joylessness of it is something I remember well. I like having my own web server, for
something I remember well. I like having my own web server, for
instance. Gopher. This board only I use.
Right, really the ONLY secure way to do email is to either A) build y own secure email
server and run it at home on a physical box. or B) n email at all...
one day I'd like to try to do that.. I even got port 25 opened up at home with the blessing
my ISP... but then it seemed to be hard to do or I recall some saying don't go there, there
dragons :)
I tried to do this for a time. Of all of the servers I have ever experimented with or run
seriously, by far, running a mail server was the least fun of all. I gave up. Most of the
headaches were that updates to the mail packages often break your current configuration. Wherea
with most things I can roll over my configuration file to a new version, the mail servers I were
using broke...a lot. And certain mail server config files border on absurd, in terms of
complexity. First it was Postfix, and now I run exim4 to mail me system alerts from my various
Debian and Ubuntu systems, but it uses Google as a smarthost because I cannot be bothered.
Good luck if you try to do it. The overwhelming joylessness of it is something I remember well.
like having my own web server, for instance. Gopher. This board only I use.
Mail servers though, are a chore.
one day I'd like to try to do that.. I even got port 25 opened up at home
Mail servers though, are a chore.
one day I'd like to try to do that.. I even got port 25 opened up at
Its a bit of a handful the first time or two around the block, but its
not really difficult to get a server, I usually use postfix, up and running. The one thing I have trouble getting right is the SSL nd of things. Not sure why... just never seems to work properly. Otherwise, Postfix, Dovecot, and something else I'm having a mental blank with
just pretty much install and work.
my mx to a new server, but with patience, it does work. Just note
though that your ISP probably have an agreement with the 5 eyes and
they are probably doing SSL offload somewhere, so I pretty much
consider everything I do on the net (even on my own servers) as
I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was
the least fun of all.
I gave up. Most of the headaches were that updates to the mail packages often break your current configuration. Whereas with most things I can roll over my configuration file to a new version, the mail servers I
were using broke...a lot. And certain mail server config files border
on absurd, in terms of complexity. First it was Postfix, and now I run exim4 to mail me system alerts
I tried to do this for a time. Of all of the servers I have ever experimented with or run seriously, by far, running a mail server was
the least fun of all. I gave up.
better each time. I am currently shuddering thinking about moving my mx
to a new server, but with patience, it does work. Just note though that your ISP probably have an agreement with the 5 eyes and they are
probably doing SSL offload somewhere, so I pretty much consider
everything I do on the net (even on my own servers) as clear-text, postcard status. There is very little that can't be seen by the authorities unless you are in a country that is non 5-eyes and truly supports the privacy of the indiivdual. New Zealand is definitely not
one of them, which is a sad fact because I'm proud of NZ for so many
other things politically. Just my 2c.
Al
gcubebuddy wrote to Greenlfc <=-
oooh wow ya interesting.... i had no thought about screen captureing
it.
DustCouncil wrote to Avon <=-
Good luck if you try to do it. The overwhelming joylessness of it is something I remember well. I like having my own web server, for
instance. Gopher. This board only I use.
Mail servers though, are a chore.
Interesting, I always found web servers, nominally Apache a bigger pain for being difficult to upgrade
migrate. It seemed things were forever broken during that process while mail was for the most part fi
and forget. Might depend on your user volume and client spread though.
Spec
*** THE READER V4.50 [freeware]
What would make Apache a difficult beast to upgrade?
What would make Apache a difficult beast to upgrade?
You're right, its usually the ancillary stuff.. the PHP and what have you that break everything. I tend to leave the WWW server right alone unless I'm for whatever reason doing a complete
server upgrade from scratch. But I find if you upgrade Apache then all the modules get upgraded and break things.
Between whats current, whats deprecated, and what gets left out along the way it seems to be impossible to just pick up your data and move it to a new system or reliably upgrade any of the
modules without issues. In my experience.
More than possibly related to my poor coding on said platforms too. A lot of the stuff I use to drive http://pineapple.zapto.org, most being php and mysql is already deprecated not looking
forward to having to rebuild that at some point in the future... easier to leave it alone.
Spec
*** THE READER V4.50 [freeware]
It sounds like you are integrating your web applications very deeply with Apache, if changes to Apache modules are such deal breakers.
PHP and Database migrations suck though. Specially if you use certain webapps which break compatibility with your current setup during
a
freaking point release. Because everybody knows moving from WebApp 2.1.1 to WebApp 2.1.1.1 is supposed to require you to move to the
nest major Mariadb and PHP releases. Ieeeaaaarghrhrhr
As already mentioned mysql is going maria, which thus far I haven't had any joy getting to run/work with. The mysql access I'm using in
PHP is already obsolete..what do you do? Same thing as if I met a green monster in a dark alley... leave it alone and let it ripen. I
can't see myself working up the enthusiasm to reinvent the wheel for another go.
What's wrong with MySql or Maria - I've toggled between the two with little problems. And given that I pretty much use it exclusively in docker, a database gets thrown around hosts all the time, and auto upgraded as the base image is updated upstream.
What version of PHP have you been using? I think (IIRC) the mysql module for PHP did change many years ago (ie: a new method was used in place of
install maria on the above mentioned system... it was blowing
raspberries at me while eventually just going back to MySql just worked.
As an aside, last time I did an "upgrade" I was left with a non-bootable system. Whatever it did, the new kernel wouldn't load.. and you'd have to manually load the original kernel.
install maria on the above mentioned system... it was blowing
raspberries at me while eventually just going back to MySql just worked.
Hmmm can't type the character, but is anyone else seeing random "i" inserted into Spec's messages?
What distribution do you use?
Those are softCR's that you are seeing. They were quite popular in another time and place and sometimes still show up at different times.
Tres strange. I thought I had them disabled. Oddly they play havoc here
Still this one can serve as a testicle to see if they've been sorted or
Hmmm can't type the character, but is anyone else seeing random "i" inserted into Spec's messages?
Tres strange. I thought I had them disabled. Oddly they play havoc
here when they come back in. The quoted lines get <cr>s instead of
regular line wrap.
I wonder if its actually being caused by editing multiple lines.. that
is, if I run off the end of an existing line then delete it and rewrite something over the end again. It keeps both maybe? Ponder... will have
a look.
Still this one can serve as a testicle to see if they've been sorted or not. Doesn't look like editing over length lines had any effect on previous messages although the soft crs ended up in strange places.
PHP and Database migrations suck though. Specially if you use certain webapps which break compatibility with your current setup during a freaking point release. Because everybody knows moving from WebApp 2.1.1 WebApp 2.1.1.1 is supposed to require you to move to the nest major Maria and PHP releases. Ieeeaaaarghrhrhr
I think you might have a had a bad run with PHP apps?
Tres strange. I thought I had them disabled. Oddly they play havoc
Here's how this message looked on this end:
zeroes, just before the drives that store it are sank into a pool
of boric acid. The same pool of acid where the developer of such
Spectre wrote to Al <=-
Those are softCR's that you are seeing. They were quite popular in another time and place and sometimes still show up at different times.
Tres strange. I thought I had them disabled. Oddly they play havoc
here when they come back in. The quoted lines get <cr>s instead of
regular line wrap.
I wonder if its actually being caused by editing multiple lines.. that
is, if I run off the end of an existing line then delete it and rewrite something over the end again. It keeps both maybe? Ponder... will have
a look.
It's probably being added by your editor. IceEdit has an option in the
Its a bit of a handful the first time or two around the block, but its
not really difficult to get a server, I usually use postfix, up and running. The one thing I have trouble getting right is the SSL nd of things. Not sure why... just never seems to work properly. Otherwise, Postfix, Dovecot, and something else I'm having a mental blank with just pretty much install and work.
I have set up qmail, sendmail+m4 and laterally postfix with dovecot more times than I cae to admit. Everyt time was a pain in the ass but I got better each time. I am currently shuddering thinking about moving my mx
to a new server, but with patience, it does work. Just note though that your ISP probably have an agreement with the 5 eyes and they are
probably doing SSL offload somewhere, so I pretty much consider
everything I do on the net (even on my own servers) as clear-text, postcard status. There is very little that can't be seen by the authorities unless you are in a country that is non 5-eyes and truly supports the privacy of the indiivdual. New Zealand is definitely not
one of them, which is a sad fact because I'm proud of NZ for so many
other things politically. Just my 2c.
said "i cna neither confirm or deny that." i then asked him, "In your
time at teh NSA, did you ever see any evidance of a SuperSoldger serum?" he said "No - that was not my department." so i said "So you are saying, there WAS a department for that?" he said "NOOOOOO - thats not what i said.... Why are you so interested in that?" i said, "Dude! i totally
want to be like Captain America!" lol
Sysop: | Shaun Ewing |
---|---|
Location: | Blue Mountains, Australia |
Users: | 193 |
Nodes: | 16 (0 / 16) |
Uptime: | 136:26:25 |
Calls: | 142 |
Files: | 187,815 |
Messages: | 323,998 |