2023 Security Check-up Reminder

[AnOminous]

Reminder that ProtonMail does not respect your privacy and also probably glows.

Reminder that they'd be shut down if they just ignored a government subpoena and probably thrown in prison too. If Null got a National Security Letter or something of the same ilk he'd have to obey it too.

 

[TitchBitties]

you can't hack my accounts if I keep forgetting all my passwords DUMB BISH

This but unironically. I just change my passwords every few months or if I get prompted to login because I inevitably forgot it

 

[Persepolis]

I've been meaning to switch over from past to chudbuds. Glad I never did now. Apathy and laziness wins again lmao

 

[Day of the Cope]

Reminder that they'd be shut down if they just ignored a government subpoena and probably thrown in prison too. If Null got a National Security Letter or something of the same ilk he'd have to obey it too.

You seemed to miss the point where ProtonMail has outright lied about not logging IP addresses. Once a company that bills itself as being privacy focused is exposed for lying about such claims, there's no reason to trust them for any reason.

 

[Generic Retard]

Hygene check?

Well I wash my hands before browsing Kiwifarms and often need a shower after. Do we need to start wearing condoms again?

Depends on how you are planning to use it:

 

[Weebburner]

You seemed to miss the point where ProtonMail has outright lied about not logging IP addresses. Once a company that bills itself as being privacy focused is exposed for lying about such claims, there's no reason to trust them for any reason.

hoh pretty much, im still on the believe that most VPN are just glownigger honeypot like nordvpn and shit. I mean if i was a glownigger thats what id do. Put my budget in setting up a popular vpn. You can even pay youtuber of certain leaning to hit your target groups to spread it. Take all that info and keep monitoring until you get a hit.

 

[Matt Damon]

hoh pretty much, im still on the believe that most VPN are just glownigger honeypot like nordvpn and shit. I mean if i was a glownigger thats what id do. Put my budget in setting up a popular vpn. You can even pay youtuber of certain leaning to hit your target groups to spread it. Take all that info and keep monitoring until you get a hit.

If you're going to be doing things that glowniggers are going to take enough notice of to track you through layers of security and obfuscation, keep that shit offline in the first place.

 

[Day of the Cope]

hoh pretty much, im still on the believe that most VPN are just glownigger honeypot like nordvpn and shit. I mean if i was a glownigger thats what id do. Put my budget in setting up a popular vpn. You can even pay youtuber of certain leaning to hit your target groups to spread it. Take all that info and keep monitoring until you get a hit.

Pretty much any VPN that can only be bought with a credit card is completely useless for anything beyond getting around geoblocked content and maybe torrenting to avoid getting pissy letters.

 

[TV's Adam West]

The lesson?
Never play minecraft.

 

[Fake Steve Franssen]

> she

 

[Matt Damon]

> she

Saw tits, can confirm.

 

[Homer Simpson]

I used different emails and usernames for KF, twitter, and Fedi. Even if I used chudbuds, they wouldn't have any association between the 3. It's not hard.

Also, don't DM people. Just do everything out in the open so there is no gay ops.

 

[AnOminous]

You seemed to miss the point where ProtonMail has outright lied about not logging IP addresses. Once a company that bills itself as being privacy focused is exposed for lying about such claims, there's no reason to trust them for any reason.

They can not log IPs if they like. Iirc, what they actually did was pursuant to the letter, the next time the guy logged in, they handed over that IP address.

Similarly, the Farms logs IP addresses for various necessary purposes but with a short expiration date (I believe Null said seven days). But if he got an NSL, even if he no longer had any logs for the person, he'd still have to turn over the IP the next time they logged in.

This is something non-negotiable that you do or die unless you're in a jurisdiction that doesn't care and that the other country can't reach, or you're operating on the dark web and they can't compromise your server (which they probably can without even breaking tor).

If you're operating anywhere on the clearnet anywhere in the world and your threat profile includes glowies, expect to get found. Commercial VPNs and email providers are not going to cut it. Tor might, but even it won't protect you from your own stupidity or glowies with national security level resources.

Personally I wouldn't use Proton for an email for a site like this or anything similarly dodgy. Cock.li is pretty good but even they'd have to cooperate with law enforcement since the guy who runs it is a known person.

Pretty much any VPN that can only be bought with a credit card is completely useless for anything beyond getting around geoblocked content and maybe torrenting to avoid getting pissy letters.

It's probably good for most lolcow attacks too, or some jerkoff lolsuit attempter. Maybe not against someone like our good friend who took down chudbuds.

 

[Looney Troons]

Some honest advice, learn the basics of OSINT and dox yourself. It’s fucking easy to do and you should be leveraging free online tools to get yourself unlisted from sites like Radaris, etc. that do nothing but aggregate data to annoy.

Personal favorites:
OSINT Framework - kind of outdated, but still a very good step one to look up usernames, email addresses, phone numbers, etc. on clear. There’s a wealth of tools here which will mostly be beyond your scope, but still neat to have. Not mobile friendly.

IntelTechniques - similar to above, but mobile friendly and features some search engines outside of clear.

As an additional bonus, since it’s highly relevant with the topic, one thing I really hate is when one of these stupid credit card companies give you a canned statement that your credentials were discovered in a recent database breach, but give absolutely 0 information alongside of it that helps you. Just another product to shill.

Snusbase - hear me out before reaming me if you know anything about this subject. Snusbase is pretty quick to get access to the majority of database breaches, and is super easy to use. Yes, it is a paid service (its cheap for the value, imo), but it is easy to use, mobile friendly, and can save your results/help create reports for you. Snus also, conveniently, will attempt to crack sha-1 on the site whereas free sites will give you the ol’ asterisk treatment and make you go elsewhere. Only a minor inconvenience, but still.

Edit: Snusbase contains breach information from as early as 2004, I’ve found. This is how absolute fucking morons like OrsonZedd got popped - even on this forum. He was using the same username and password for everything for at least twenty years, probably longer.

 

[Involuntary Celebrity]

@Involuntary Celebrity
factorio server when??

i found a server host that takes bitcoinz so the answer is never because nobody wants to play

 

[RotPockets]

Pretty much any VPN that can only be bought with a credit card is completely useless for anything beyond getting around geoblocked content and maybe torrenting to avoid getting pissy letters.

That’s all I use it for, and currently to access KiwiFarms since I was getting an error.

 

[Paladin Derich]

How could you be so retarded downloading random mods from the Internet? I mean, I seen people accidentally pressing phishing links, and I can see how people fall for it, but I assume adults are smart enough to not download random stuff from the Internet.

I trust humanity too much.

P.S. always separate your work from your personal computer!!!

I knew she was retarded when she abused her admin rights to alter people's profiles for violating "no ralph november". It made sense for users that streamed, but she fucked with non-streamers who were just replying to their own circle of friends. She had no business opening a fediverse site in the first place.

 

[Spilled Spaghett]

I've been using 1Password for a few years now and I've been happy with it. Every account has a unique password and 2fa where possible. Remember the biggest defense isn't any kind of software or service, it's yourself. Don't share you dick pics online. Don't download random files unless it's from someone you absolutely trust. Keep all your incredibly sensitive and private information stored separately from your computer. Invest in a flash drive. Don't tell people where you live, where you work, where you go to school, etc. I know sometimes you gotta pick your battles, but at least take some basic steps.

 

[Ultrapenguin]

If you're going to be doing things that glowniggers are going to take enough notice of to track you through layers of security and obfuscation, keep that shit offline in the first place.

Yeah idk, all this talk makes me really hope a lot of users are just being paranoid and obsessive, and not that they're actually doing anything that serious that warrants having security schemes that use ancient pagan blood rights and the position of the planets' alignment to encrypt all their passwords and communication in alien hieroglyphs or whatever the hell some people here suggest.

Perhaps what's really scary isn't getting compromised, but instead realizing you were never interesting or subversive enough for anyone to care to begin with?

 

[TheBigZee]

A VPN only raises the bar to prove your identity. If being linked to your posts on kiwifarms is going to be so personally devastating, you're effectively a political dissident.

https://ssd.eff.org/