this post was submitted on 07 May 2024
737 points (98.2% liked)

Technology

60071 readers
3674 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 

Even if you have encrypted your traffic with a VPN (or the Tor Network), advanced traffic analysis is a growing threat against your privacy. Therefore, we now introduce DAITA.

Through constant packet sizes, random background traffic and data pattern distortion we are taking the first step in our battle against sophisticated traffic analysis.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 190 points 7 months ago (4 children)

The Chinese Great Firewall (GFW) has already been using machine learning to detect "illegal" traffics. The arms race is moving towards the Cyberpunk world where AIs are battling against an AI firewall.

[–] [email protected] 90 points 7 months ago (14 children)

Careful criticizing China you will awake the Tankies.

[–] [email protected] 57 points 7 months ago

Drums, drums in the deep ...

[–] [email protected] 47 points 7 months ago (5 children)

You can conviniently block a whole instance from your account now, it reduces this kind of disagreement a lot.

[–] [email protected] 57 points 7 months ago (34 children)

Should you though?

I get it, it's annoying, but the entire "let's block people with opinions I don't like" is probably the single source of pillerization and increased extremism on the internet.

If I'm not allowed to have a discussion or disagreement with you, and get kicked out instead, I'll just go to places where they will talk with me and where it's chock full of other idiots like me who are much more extreme and in our safety bubble we can all continue not beat the same dead horse and circle jerk and make eachother more extreme because there are no dissenting voices, there are no voices or reason and calm, there are no cooler heads around.

This entire moderation where we simply started dumping people with who we disagree has made the world a.much, much worse place.

Granted, it sucks to have to deal with crazies and extremists, but at least whilst they're in the group we can all keep them grounded in reality.

[–] [email protected] 28 points 7 months ago* (last edited 7 months ago) (4 children)

If I’m not allowed to have a discussion or disagreement with you, and get kicked out instead, I’ll just go to places where they will talk with me

I actually tried to, and if it was possible to have rational and polite discussion, without straw man arguments, dog pilling, personal attacks and finally threats of violence, I would have continued to try. But sadly all of this happen, multiple times.

At some points I considered leaving Lemmy, thinking that this federation as a whole was not safe for debating. But then I started understanding patterns, either it was from the users from a specific instance, or it was communities from a specific instance that turned like that. Overall the pattern seem to be that if the instance mentions extreme political ideologies in its description or if the profiles of its admins do, then debating is not possible.

If they want to stay connected to people to avoid the circle jerk, they have to work on themselves too (ex: learning to debate politely), you can't except us to absorb all the damages to help them avoid radicalization. It's like walking towards a terrorist group with flowers while they are shooting around and expecting them to be inspired by your pacifism.

I do enjoy debating and questioning my own beliefs, but I am not on Lemmy to consume my mental health, so I need to take some actions to protect it.

load more comments (4 replies)
[–] [email protected] 24 points 7 months ago (3 children)

I'm not on the internet or lemmy to make the world a better place, I'm on here to kill time/enjoy myself/learn some things. I dont have the mental space to deal extremists, and particularly extremists that have a world view thats incompatible with itself if taken at face value, and I certainly dont have anything valid that I can learn from tankies, and as such, my block list has gotten quite large, and my general mood has increased because of it

load more comments (3 replies)
[–] [email protected] 15 points 7 months ago (5 children)

I “blocked” hexbear, because a mod didn’t take the time to use their brain, labeled me a “pedophile apologist” and banned me from the entire instance. If they moderate based on “I don’t care what actually happened, I’m mad” then I’m not going to bother interacting with them.

load more comments (5 replies)
[–] [email protected] 10 points 7 months ago (2 children)

I was planning to, but ultimately didn't. I have handed out personal blocks to obvious trolls and a brunch of hexbear users that spammed gifs in every single thread though.

load more comments (2 replies)
[–] [email protected] 8 points 7 months ago (4 children)

This operates under the assumption that there are good decent people on every instance, but instances like Hexbear and Lemmy.ml are inherently corrupt and run by people who want to sow misinformation and chaos to negatively impact western powers. I'm not saying the whole thing is a Chinese operation, but if it were then it would be run exactly the same way it is now.

load more comments (4 replies)
load more comments (29 replies)
load more comments (3 replies)
load more comments (12 replies)
load more comments (3 replies)
[–] [email protected] 104 points 7 months ago (2 children)

That's one of the reasons why I love Mullvad, they actually care about their customers, not just about their bottom line

[–] [email protected] 15 points 7 months ago (2 children)

I wonder how much of a bottom line they actually have given how cheap their service is.

[–] [email protected] 62 points 7 months ago (1 children)

Mullvad is 5 bucks a month and never has promos.

Weigh that against Nord which often has a year for like 15 bucks...

But Mullvad is one of the few that actually seems to care about privacy.

[–] [email protected] 14 points 7 months ago (5 children)

Oh wow, I had no idea Nord could go that cheap. To me €5 a month felt really inexpensive.

load more comments (5 replies)
[–] [email protected] 38 points 7 months ago (1 children)

I'm pretty sure they are profitable, considering they were founded in March of 2009. You can't really run a company without profits for 14 years, right? Just routing network traffic isn't that expensive after all. They are the only ones being honest about it, other VPNs charge way more because they only want to extract money from their customers.

[–] [email protected] 6 points 7 months ago (1 children)

Cheers. Network related stuff isn't my forte so I really have no idea about the costs. I just figured that the moment you start adding a decent amount of users the costs will go up, and €5 seems like a really fair price.

[–] [email protected] 15 points 7 months ago (1 children)

It's actually the other way around, the more users you have the cheaper everything eventually becomes

[–] [email protected] 8 points 7 months ago (1 children)
[–] [email protected] 6 points 7 months ago

Yes, there's no reason this wouldn't apply to a VPN provider. It's also the reason NordVPN or Surfshark is so incredibly cheap.

They have lots of users -> They can pay lots of money for advertising -> They get more users -> Everything becomes cheaper -> They can pay more for advertising

You get the point

[–] [email protected] 6 points 7 months ago (3 children)

If only they didn't bend the knee to the five eyes and drop port forwarding

[–] [email protected] 41 points 7 months ago* (last edited 7 months ago) (2 children)

They got rid of port forwarding to improve the reputation of their IP ranges. That makes it less likely for Mullvad users to get blocked by CDNs like Cloudflare and Akamai when visiting websites. If you want port forwarding, just use AirVPN or rent a VPS and use that. Not sure what you're talking about, but Mullvad is based in Sweden, which is not a part of the five eyes alliance. It's a part of 14 eyes, but Sweden has very strong privacy laws, Mullvad even has an entire page about privacy legislation in Sweden: https://mullvad.net/en/help/swedish-legislation

They also have a page that explains how Sweden being part of the 14 eyes alliance doesn't really affect Mullvad: https://mullvad.net/en/blog/5-9-or-14-eyes-your-vpn-actually-safe

Their office was also raided by prosecutors last year, and they weren't able to seize any customer information, because Mullvad doesn't store anything about their customers: https://mullvad.net/en/blog/mullvad-vpn-was-subject-to-a-search-warrant-customer-data-not-compromised https://mullvad.net/en/blog/update-the-swedish-authorities-answered-our-protocol-request

load more comments (2 replies)
load more comments (2 replies)
[–] [email protected] 53 points 7 months ago (3 children)

Still waiting for Defense Against the AI Dark Arts to drop

[–] [email protected] 12 points 7 months ago
[–] [email protected] 6 points 7 months ago (1 children)
[–] [email protected] 14 points 7 months ago

Harry Potter reference.

load more comments (1 replies)
[–] [email protected] 39 points 7 months ago (8 children)

No port forwarding really kills the utility though - I mainly use the VPN to do port forwarding (e.g. for video games, Plex, etc.) as my ISP is shit.

Like I'm not worried about state-level de-anonymisation, I just want to be able to share services remotely and have a minimum level of anonymity.

[–] [email protected] 34 points 7 months ago (2 children)

Port forwarding removed because hosting threatened to kick mullvad out. Lot of shit hosted through that. No hosting, no vpn, so needed to remove to continue operate.

[–] [email protected] 7 points 7 months ago (4 children)

Port forwarding means torrents. People using a VPN to torrent likely have much more traffic, especially those that seed (which is why they want port forwarding). Not enabling port forwarding means mullvlad can operate at a higher profit to cost ratio, and less risk.

[–] [email protected] 18 points 7 months ago (1 children)
[–] [email protected] 20 points 7 months ago (10 children)

That's what mullvlad say. It's not necessarily the reason why they don't offer port forwarding.

It was always possible for them to continue allowing port forwarding. They could use separate servers for those that want port forwarding, stopping any impact port forwarding had on those customers.

load more comments (10 replies)
load more comments (3 replies)
load more comments (1 replies)
[–] [email protected] 6 points 7 months ago

Someone else pointed out Tailscale; I've had luck with free tier VPS+WireGuard.

I have an Oracle one which has worked well. Downside is I did link my CC, because my account was getting deactivated due to inactivity (even using it as a VPN and nginx proxy for my self hosting wasn't enough to keep it "active"). But I stay below the free allowance, so it doesn't cost.

That said: as far as anonymity goes, it's not the right tool. And I fully appreciate the irony of trying to self-host to get away from large corporations owning my data...and relying on Oracle to do so. But you can get a static IP and VPS for free, so that's something.

load more comments (6 replies)
[–] [email protected] 37 points 7 months ago (16 children)

I love these guys. Let's see if somebody can just bootstrap the FOSS framework directly on TCP to work on the internet without a VPN. Fantastic project

[–] [email protected] 9 points 7 months ago (7 children)

Those words sound cool and mean literally nothing

load more comments (7 replies)
load more comments (15 replies)
[–] [email protected] 27 points 7 months ago (2 children)

How about defense against dhcp option 121 changing the routing table and decloaking all VPN traffic even with your kill switch on? They got a plan for that yet? Just found this today.

https://www.leviathansecurity.com/blog/tunnelvision

[–] [email protected] 13 points 7 months ago (2 children)

Don't you control your dhcp server?

[–] [email protected] 17 points 7 months ago (1 children)

The Option 121 attack is a concern on networks where you don’t.

Exactly where you’d want a VPN. Cafes, hotels, etc.

load more comments (1 replies)
load more comments (1 replies)
[–] [email protected] 21 points 7 months ago

Love they called the defence framework "Maybenot".

[–] [email protected] 18 points 7 months ago

I swear the defense against the dark arts teacher just keeps getting weirder and weirder.

[–] [email protected] 8 points 7 months ago

I can tell you that this exists way before AI, I wish that there was more awareness earlier but it's good that now its starting

load more comments
view more: next ›