Skynet sounds friendly. It needs a friendly looking logo.
jbloggs777
joined 1 year ago
PFS matters where a party hasn't already been compromised. Not so hard.
Read up on perfect forward secrecy and TLS.
And yes, a jurisdiction could compel them to break their security, depending on laws and ability to threaten.
IF TLS is used AND configured optimally on both ends, THEN the in transit message contents should be very secure, in that transient session keys were used.
I would be interested to know how often those two preconditions hold true though.
Of course, this is only one small link in the chain. There aint no magic bullet.
When you have cloud providers growing faster than the region's grid capacity, something has to give ... throttle growth there, or plan for mega growth? I guess it helps that nuclear is green again. 😁
In some countries private law firms chase down infringers on behalf of copyright holders. They then attempt shakedowns with the threat of legal action if you don't pay. They have a financial interest to catch people, and moral compasses vary.
Also, mistakes can happen (you, your family, guests using your wifi, in the courts, in the ISPs, in the law firms, in the tech they are using to identify people). Shit happens.
And if (when) it happens, then you would still have to deal with it, costing you time and money.
Understand the risks and make choices to minimize them if you can.
Apparmor profiles can be applied to an executable - the profile is then (if so configured) inherited by subprocesses. In my case I have a launch script to run lutris in a safe mode. It also changes the effective gid to be matched by some iptables rules (it was easier than creating a new network namespace, which is also possible). The script then checks that the Internet is inaccessible and that reading/writing to secured paths is denied before launching lutris.
Similarly I have a "safe" script to wrap other commands with an apparmor profile that stops most writes to my homedir/reads from some secure locations, which I often use to run scripts/programs from the Internet.
My sudo also requires a password (or a special keyboard combination, thanks to a custom pam configuration).
All that said and done, I'm sure I'll be caught off guard one day.
I can now train a generative voice on my own voice and have it sing along to my own generative music.
A few more tweaks to make it consistently off key and it will be near indistinguishable! I will be able to torture not just my children, but my great-grandchildren, far into the future.
What an age.
I run a particular online windows game in a modded offline mode under Linux in network isolation and with a restricted apparmor profile. So far so good. Logs show no attempts to break out, except for the smoke test I run to ensure the sandbox is working. This is as much because of the random mods I install as the original devs (who could ban my online account).
On Windows, a VM would indeed be safer. GPU passthrough is possible .. I guess easier with Windows using an onboard GPU, then passing a discrete GPU to the VM. You'll lose some performance with a VM regardless, but it's easy to disable networking, back up and restore from a known good state, and burn it to the ground when needed.
Your friends will find you wherever you are and will continue asking you such questions. There is no escape.
If you want fast GPS coordinates, then you give more location hints. Local privacy regulations apply.
English aint Lojban, if you know what I mean.