204 entries in 0.753s
trinque: trying the
vpn thing is cheap, could be done easily while you still have coffers to try something else
trinque: but average derp can install a
vpn client by clicking on something.
trinque: if I can go briefly upstack, the proposal from me is to try things.
vpn is just the first thing that came to mind.
mircea_popescu: you're allowing yourself to be misdirected. just get the peopel looking for the item called "
vpn" in empire universe on a rk or w/e the actual item is
mircea_popescu: most people buying a
vpn spent 5-10 bucks a month on 12 cents or so worth of usage
trinque: there's a thread right this moment on one of the heathen pits on which
vpn should I use
snsabot: Logged on 2019-08-25 13:20:14 BingoBoingo:
http://p.bvulpes.com/pastes/wyswl/?raw=true << Their list of gateways shows what one would come to expect from shitgnomes. Clustered around places where USG already clusters their stuff, which... is probably the only way to build a
VPN service that offers speed. This means UCI, sucking off the enemy, or a sad indefensible inbetween.
BingoBoingo:
http://p.bvulpes.com/pastes/wyswl/?raw=true << Their list of gateways shows what one would come to expect from shitgnomes. Clustered around places where USG already clusters their stuff, which... is probably the only way to build a
VPN service that offers speed. This means UCI, sucking off the enemy, or a sad indefensible inbetween.
snsabot: Logged on 2019-08-25 00:08:42 asciilifeform: trinque: that being said, mircea_popescu's 'uci' is prolly closest thing to 'sane
vpn'. but not exactly in scope of piz, we dun have a fleet of 1e6 pwned boxen or anyffin of the kind.
mircea_popescu is rater on alf's side re
vpn product notion ; though this may be borne of ignorance, i don't think i ever bought one.
snsabot: Logged on 2019-08-24 23:57:09 trinque: I'm not addressing whether he actually needs a
VPN, but how hard is it to take p crypto and make a
VPN?
trinque: I'm curious whether there's a market for the
VPN item. gets the republican network layer paid for, if so.
trinque: I'm not addressing whether he actually needs a
VPN, but how hard is it to take p crypto and make a
VPN?
trinque: my dear old dad never once asked me whether he needed a server, but he has asked me whether he should have a
VPN nocredit: my problem is that i don't have a static ip at my premises, so at home it's a pain with the myip parameter. I was trying with a pico vps to bypass this by set up a private
vpn, but as now i'm stuck
brazilish: wix is the AS that host the
VPN, the city is not petropolis (indeed, a very good city)
pete_dushenski: couldn't find this in the logs (so apologies if it's a repost) but holy shit is usg.btc scraping the bottom of the barrel if fatso karpeles is being resurrected as "cto" of privateinternetaccess (
vpn)
http://archive.is/XusOQ mircea_popescu: "It turns out that this strength might actually be a weakness for some. A small commercial
VPN provider approached me recently about the fact they could see the allowed IPs mapping easily with WireGuard, whereas with OpenVPN it was hidden deep inside a process they didn't know how to debug. "Great," I thought. Not so fast. They were concerned that when compelled to retrieve this kind of information, they would no longer be ab
mircea_popescu: if you know enough of computers to set up a
vpn switcher, you might as well join douchebag in his multi-mn security venture to come, neh ?
spool: sorry im back, mircea_popescu, i use a random
vpn switcher because im banned on 4chan at home
RagnarDanneskjol: I am just busywith work, often reading the logs in several weeks behind and doing extensive requisite study to actually keep up with you boys. I'm happy to commit some time when it avails.... I've even gone and upset the boss now because I didn't have enough time to train ornamental candidates on
VPN/irc stuff
shinohai:
vpn doesn't have ability to run znc obviously
a111: Logged on 2017-12-30 19:53 jawbone2: I would like to run the bitcoin node and a small webserver. My ISP would require a much more expensive business account to open port 80. A
VPN with a static IP on the other end would allow me to get around this limitation.
jawbone2: I would like to run the bitcoin node and a small webserver. My ISP would require a much more expensive business account to open port 80. A
VPN with a static IP on the other end would allow me to get around this limitation.
☟︎ jawbone2: I would like to set up a full republican node. I have the hardware and the instructions from the bitcoin foundation are pretty clear. I would like to know if you have any recommendations for a
VPN service with port forwarding of course.
phf: major reason i gave up ios is because getting a working connection proxy requires a full blown
vpn going
a111: Logged on 2017-11-22 11:41 RagnarDanneskjol: mircea_popescu I may have someone worth inviting to chan for interview in the coming days. Most of the folks I know over there are primarily oral translators, so having to look around a bit. Just got back yesterday - BJ is a real shithole but the people are adorable, lots of good duck. FYI - '
VPN AC' (Romanian) seems to be the only one working well/consistently behind the firewall (I've used many) and
RagnarDanneskjol: mircea_popescu I may have someone worth inviting to chan for interview in the coming days. Most of the folks I know over there are primarily oral translators, so having to look around a bit. Just got back yesterday - BJ is a real shithole but the people are adorable, lots of good duck. FYI - '
VPN AC' (Romanian) seems to be the only one working well/consistently behind the firewall (I've used many) and
☟︎ a111: Logged on 2017-10-25 16:13 asciilifeform: meanwhile, in heningerlandia,
http://archive.is/iA4rk >> 'Traffic from any
VPN using FortiOS 4.3.0 to FortiOS 4.3.18 can be decrypted by a passive network adversary...' etc
CompanionCube hasn't used tincd as a
VPN-to-the-internet, only as a virtual LAN equivalent.
phf: i suspect back in the day it allowed vendors to optimize for usage patterns. "unlimited traffic
vpn" vs running it on a tightly metered box
ben_vulpes: has the stones to "make a
vpn" whatever that means to the average bu tard, but not to make a key and get in the wot
mircea_popescu: yes ; but doesn't use sshtunnel. more
vpn-ish sort of architecture.
ben_vulpes: in other radiation damage, $client calls up, "hey latest chrome doesn't work with $app from inside the muni
vpn" "...can you swing a
vpn or shall i get on a plane?"
thestringpuller: asciilifeform: weird heathen survey connects on my
VPN machine but not from my local network?
a111: Logged on 2016-07-12 01:29 pete_dushenski: "The Russian Government has passed a new law that mandates that every provider must log all Russian internet traffic for up to a year. We believe that due to the enforcement regime surrounding this new law, some of our Russian Servers (RU) were recently seized by Russian Authorities, without notice or any type of due process. We think it’s because we are the most outspoken and only verified no-log
VPN p
pete_dushenski: "The Russian Government has passed a new law that mandates that every provider must log all Russian internet traffic for up to a year. We believe that due to the enforcement regime surrounding this new law, some of our Russian Servers (RU) were recently seized by Russian Authorities, without notice or any type of due process. We think it’s because we are the most outspoken and only verified no-log
VPN p
☟︎ BingoBoingo: ration of
VPN and PKI services. The company CRYPTO-PRO adapts crypto CryptoPro SSP, are widely used, in particular, for the authorization of electronic signatures in the documents. Adaptation also tested cryptographic USB-tokens Rutoken S and Rutoken electronic signature for secure two-factor authentication in computer systems and storage of key information."
maqp: Sure it has it has it's problems. But the only alternative is secure-by-policy
VPN mats: looks like garza hostname belongs to a
vpn assbot: Logged on 17-01-2016 21:18:20; phf: (what the hell happened to linux ecosystem? 5-th tutorial on "openvpn on linux" is basically "make sure you have file a, file b and file c. now click open in open-gnome-
vpn-assistant..")
phf: (what the hell happened to linux ecosystem? 5-th tutorial on "openvpn on linux" is basically "make sure you have file a, file b and file c. now click open in open-gnome-
vpn-assistant..")
☟︎ ascii_field: 'During a recent internal code review, Juniper discovered unauthorized code in ScreenOS that could allow a knowledgeable attacker to gain administrative access to NetScreen® devices and to decrypt
VPN connections.'
pete_dushenski: not like
vpn's are good for much but working around paywalls and geo-locationtardation anyways.
pete_dushenski: " The vulnerability relies on the fact that a direct route exists between the
VPN client and server. If the client accesses a forwarded port on the
VPN server that is maliciously set up by an attacker, the client will use the direct route using the user's default route, bypassing the
VPN entirely."
pete_dushenski: e-mail from private internet access : ""Dear Valued Customer, On November 17, we were privately notified of an IP address leak vulnerability affecting the port forwarding feature of our service. Essentially, anyone connecting to a forwarded port on any of our
VPN gateways could have their real IP address leaked to an attacker specifically targeting a PIA user."
mircea_popescu: "PGP is not as important as people think. As long as both parties use an encrypted email (and connect with a
VPN, TOR, TAILS, whatever) you're fine. This is because if they get access to the webmail all information is decrypted either using automatic PGP decryption (eg: Countermail) or locally on their computer (somewhere this information is going to be stored)."
trinque: your IP already connected, not much point in using a
vpn... lol
ascii_field: mircea_popescu once alluded to a dirty ad-hoc implementation of this by chinese operators, where nodes had
vpn links to one another
ascii_field: 'The fix for this issue seemed to be modifying the file verification process to only allow a signed file which also has in its version information the original filename of vpndownloader.exe. This, along with the name change makes it clear you only want to execute the
VPN Downloader application. However the code doesn’t limit the location of the executable file, so one exploitation vector is DLL planting. The downloade
shinohai: heh I get "under maintenance" page on my direct ip, and endless load from
vpn mircea_popescu: or they could just rent
vpn access like anyone ever since forever.
funkenstein_:
vpn is slow over there but works as you'd expect
nubbins`: this
vpn doles out a paltry 17mbit/s
decimation: yet somehow it's the defacto standard for '
vpn'
mircea_popescu: but people who actually care about 0tx are currently in practice and are in theory much better served by just keeping
vpn links to actual main nodes.