https://www.rt.com/viral/382080-nightskies-cia-infiltrate-iphone/ >WikiLeaks has revealed the CIA’s alleged ability to infiltrate and control iPhones through a tool called NightSkies, which is physically installed onto factory fresh iPhones and allows the CIA to monitor and download files from targets’ phones undetected. Good night sweet prince His company is finished
>>4197 Because they don't understand.
>>4198 That's not even an excuse, nothing is stopping them from learning.
>>4200 Yes there is. It's normally right in their fucking faces.
Ther to lazy to care
>>4198 they are understand but they not do
can we do a keyword search inside all these doc. from vault7 ? are they avlbl to us ?
its the first day of spring , BTW
https://wikileaks.org/tpp-ip3/WikiLeaks-TPP-IP-Chapter/WikiLeaks-TPP-IP-Chapter-051015.pdf?t=dXNlcmlkPTU0MjUyMDgxLGVtYWlsaWQ9MTAwMzA= Last week, WikiLeaks released the final text of the TPP’s intellectual property rights chapter and it is absolutely terrifying. These are just a few of its most dangerous pieces: >Compel ISPs to take down websites without any sort of court order, just like SOPA. (Appendix Section I) >Extend the US’s copyright regime to require copyrights stand for life plus 70 years, preventing anyone from using works that belong in the public domain. (Article QQ.G.6) >Criminalize whistleblowing by extending trade secrets laws without any mandatory exemptions for whistleblowers or investigative journalists. (QQ.H.8) >End anonymity online by forcing every domain name to be associated with a real name and address. (Article QQ.C.12) >Make it illegal to unlock, modify, or generally tinker with a device you own. (Article QQ.G.10) >Export the US’s broken copyright policies to the rest of the world without expanding any of the free speech protections, like fair use. (Article QQ.G.17)
>>3083 holy shit
Trump killed TPP
>wikileaks Y'all co'ws thet lied tawk a boot givan awee freedom. You can all blame yourselves. Submitted. Going out of your way to justify bullshit that sets up others as the good guys. Don't like it. Don't spread it. Don't say it is a part of you or what you like. Govt is shit. A herd of parasites that confine others in order for themselves to seem superior to themselves. It has nothing to do with anything good. Exploitation is the same thing. Journalists are the same thing. Exceptions are precious, largely comprised of hope. Like little characters, mass produced and thrown away. They deserve better and they are the truth, Something good. Maintaining that isn't a witch hunt, it's an effort for what is joined to such to be nice, proving that truth and making it important. The wrong thing is obvious, abundant. Shouldn't matter and is nothing against what does. Traitors try to remove beauty, put it up again. They do it to make it seem as if from them. Like all religion. Those who comply to avoid being victimised further such. If you want to talk about something by bad, because your faggot ass wants to be on the winning team, remember what little had faith in you and do something for them instead they might like to be a part of. If the bad guys appeal to you as a good guy you should see that as true and do what you can so their attempt at existence isn't hopeless.
>With Windows 10, Microsoft Blatantly Disregards User Choice and Privacy: A Deep Dive https://www.eff.org/deeplinks/2016/08/windows-10-microsoft-blatantly-disregards-user-choice-and-privacy-deep-dive
No, use Linux.
>>4100 windows 7 and 8 use the same telemetry bullshit that 10 does so don't think you're safe there look at Spybot AntiBeacon
>>4101 I would use linux but I have a couple of games I play that haven't transfered platforms yet
>>4103 Dualboot or use wine then.
>>4105 I'm gonna duel boot on an ssd no worries, any good ssd recomendations?
A new backdoor has been found recently that allows hackers to possess your system files and send them back to a linux-based server. FFMPEG which a popular codec has some backdoors so beware when opening video files from your media player since it can be backdoored to let them get access to your data. The backdoor can affect most operating systems including linux, mac, and windows. More detailed descriptions can be found here on those 2 links >http://news.softpedia.com/news/zero-day-ffmpeg-vulnerability-lets-anyone-steal-files-from-remote-machines-498880.shtml >https://news.ycombinator.com/item?id=10893301
Why are there still websites that arent using HTTPS when Let's Encrypt is handing out SSL certificates for free? Is there any valid reason for still using HTTP?
You can use OpenSSL of any number of third party Certs for free. The root authorities like Thawte and Godaddy are already trusted. The upkeep to prevent fraudulent use of SSL is why these premium certificates are so expensive. If you dont want to spend the $1-400 on a premium third paty cert, you can ALWAYS set up your own certificate authority and dump the ass loads of time into installing testing and troubleshooting on remote systems. Its not that hard, really, but when you look into the time investment it s generally cheaper to go with the third party cert.
>>3972 >>3973 >these premium certificates are so expensive. >it s generally cheaper to go with the third party cert. so i understand we are not paying for certificates themselves,we pay for a "name" that is trusted by users. the more popular the c.a the more expensive it gets
>>3959 >https://spdycheck.org/ according to this MC is not using spdy is this why MC is so slow with HTTPS?
Certificate authorities offer a false sense of security and don't really stop MITM attacks. The only way to use it effectively is to diligently check the certificate every time, and that can be done using a self-signed certificate. That is bad enough without SSL being found broken constantly. In the name of screen door security you should still use it, but was implemented with the "everything must work because if not the e-commerce is in danger and blah blah blah" directive so in essence it was designed broken. The reason to use it is to ensure you are at least not the low-hanging fruit.
>>3959 >>3967 The https version use the protocol HTTP2, which means that all images can be downloaded in parallel wherese http1.1 download images one after the other (that is why images appears rows by rows in https version and one by one in http version). So it is faster. I think this test is stupid, because they are showing difference between http2 and http1.1, not really the advantage of SSL in matter of speed
/nsa/ admin, sorry it's been so long, I am now working on the new sticky along with links and info, it should be done very soon
Fucking epic facebook cover picture bro :^)
>>4003 it's not bad , it's just against the KISS philosophy in *unix , programs should do only one thing and do it well. a good example of the previous statement is how people often make backups by chaining and piping multiple commands together : tar + bz2/xz + ssh systemd is not following the same guideline, it has replaced the init process (the first process executed after the bootloader fully loads the kernel) and it keeps growing each day replacing and merging many processes into one, this can cause problems bc when it crashes you have a higher chance of getting a kernel panic and having to force restart losing data. for a regular linux user this is nothing to be concerned about ,systemd really works and the OS distribution surely tested it before packaging it.
does systemd do anything new, useful, and easier than already existing FOSS software?
>>4008 yes, it can cause rape
>>4008 systemd was adopted because it wasn't as buggy and didn't have as many problems as the alternatives. These days the problem is that systemd is taking over; function creep galore. The systemd/linux joke is becoming more accurate by the day. Also they aren't as good as they once were, letting major bugs go unfixed for too long (even device-breaking) and responding to critics by saying their critics just hate women.
>In celebration of Data Privacy Day, SpiderOak today announced Semaphor, a new workplace collaboration tool for teams and businesses that care about privacy >Semaphor will be available on all major operating systems as an open source applicatio So, is this the new TOX, but that will actually have day to day development to it and will actually be a secure chat room option? https://spideroak.com/articles/press-release-semaphor-to-give-team-collaboration-privacy As a tool for privacy collaboration, I suppose this will even have a secure webcams system.
>>3638 no idea. But if it's open source, you can make your own that is RMS approved
>>3640 No, that's not how it works. If you tried to relicense that code, especially with the GPL since you have to make the source available, you would be sued into nonexistence.
New semaphor video https://vimeo.com/158374271
Will it be available for linux or just Windows, OSX, Android(inb4 thats linux) and iOS?
>>4074 spiderOakOne is available for Linux, so semaphor will too most likely
Hello this is /nsa/ admin I wanted to make this thread due to the voiced concern that the sticky is out of date (and it is) People can post in this thread any information that they think would be relevant or useful and I will consider it, then add it to the new sticky image. I will leave this thread up until the new year, anything decent that has been suggested since then I will introduce permanently to the sticky.
>>3765 old things
>>3341 The points in the other sticky should still hold, personal security and privacy are things we should value, we should also keep information accurate.
yo the sticky image is 403'd god knows how long its been
im quite sure /nsa/ admin has abandoned us
>>4054 >>4034 sorry it's been a while I'm working on a new one but it's going to be a while longer
https://www.rt.com/op-edge/345470-nsa-leaks-snowden-whistleblower/ >Thanks to Edward Snowden’s revelations, the US government can no longer directly collect everything that we communicate with each other electronically, Tom Devine, legal director at the Government Accountability Project, told RT America’s Manila Chan.
>go on IRC >find interesting guy >ask if he has OTR >says no >explain it to him >"if you have to go to such lengths to hide what you want to say, I think I don't want to hear it" This is 2016, this is what the Internet has become.
>>4011 >interesting guy >does't enjoy privacy I don't think so
Why is someone possibly IRCOP banning users right and left in #masterchan?
>>4075 seems to be the case. Everyone who tries to join #masterchan gets automatically banned
Can someone find a new Tor friendly MC IRC?
How to send emails? Where to create a email box which won't be controlled by your nearest intelligence agency? What email providers you suggest? If paid, I would need to buy bitcoins and then to wash them. Should I have separate mailbox for each project/aspect? Separate has many pros but it had to be free ones than paid (otherwise would need 20 paid mailboxes). Should I use mailbox through TOR? Even if I send mails using my real name? Or is SSL enough?
No clue I can't help you so sorry I used to use some kind of TOR e-mail a long time ago to send and swap cp back and forth but had to delete it and do away with it since the feds took that site over Now I just use my work e-mail for everything and said "fuck it"
>>4063 >protonmail.ch >darkmail >tormail etc etc
Would any of you fags happen to know how to run nmap through the Whonix Gateway? When you scan an IP, it results in like 100+ open ports and a latency less than 1 second. This obviously makes no sense. The only thing I can think of is that the scan actually hits the whonix gateway instead of the target. My inability to figure this out is seriously eating away at me. Having to route nmap through tor manually, with proxychains, fucking sucks and over time you're almost guaranteed to eventually fuck up a command and have a leak.
>>3899 not even sure what you are talking about, but have a bump
No idea but now considering playing around with Whonix.
>>3899 rtfm or use a recent version of nmap, it now natively supports scanning over proxies
>>4017 I am using the latest version. It's not a general problem related to proxies. I can proxy chain just fine. The problem only occurs when trying to scan through the whonix gateway. I'm currently just dealing with it by sending the scan in a VPN tunnel through tor; Tor -> VPN
reviving /nsa/ in 1..2..3
>>3996 That its a pretty fucking useless IRC if I value my privacy.
>>4001 All this tells me is that you're an idiot, so answer the question.
Sweet someone made one on oftc.
>>4010 Yes, a long time ago.