i've been thinking about this a lot. stefan also uses windows, which is strange since it's so hard to hack windows unless you work for microsoft. things i've noted - people supporting libre ecosystems in public have been getting hurt - microsoft and google are doing way more open source stuff than before - i can't get off google. i don't know how. - well-funded efforts have been surrounding people, pretending to be the majority maybe those four items are related to this PS: i actually clicked the 'groups.joogle' link and was like 'wtf why won't this load'. Here's stefan's message from the other list. I don't believe you actually need to open any firewall ports, and the onion approach is quite old but always great to re-engage. I downloaded TBB to try it out but my glibc is too old for the new TBB so i might make it work later, dunno. Pasted message below: Hi all, a while ago I said that I like to set-up a Nym requester for YAMN and Mixmaster users. This requires a paid server from my side and I do not gain nothing from that, while the Nym Network made already a lot of money. I am currently investigating in running an own Tor Hidden Service on my local Windows PC, where users can do the same and then communicate with their friends, without needing to use third party servers, like Remailers, Tor email services etc. This shoud have the advantage that every a.p.a-s user can theoretically run a cheap Raspberry Pi at home 24/7 while having his own .onion URL and no need to purchase a VPS or Domain. I am currently looking around what services one can run on his own server at home. If you visit: wwfokt2ttwfbjfwlei25ue37mkemzgepxtmqb4axgecoculgzbqdwhad.onion you can see that I have there software installed on my local Windows PC which would allow you to exchange messages. There is also client software available for this so that users could via socat send files between each other. I will let run this server a little while until I go to bed so that you get an idea. Please, if you run also .onion sites on the Internet, share what else we can do to have decentralized .onion comms, without no middleman servers, besides the Tor nodes. Regards Stefan spam.tra...@gmail.com (2 hours ago) The software I use under Windows 10: The Tor Expert Bundle. https://www.torproject.org/download/tor/ Configuration tips: https://miloserdov.org/?p=1839 and the Golang server: https://github.com/schollz/cowyo And you need to open your firewall port. Regards Stefan

On 1/9/22, zeynepaydogan wrote:

Stefan, do you really recommend the Tor network here? Google users don't expect privacy, but the Tor network is deceiating people who expect "privacy".The ex Tor developer here might say that the US government is funding the Tor.Don't use smartphone but use Tor? LOL

to add my voice, tor has been one of the most private publicly-accessible digital networks on earth for some time now. if you don't have anything better than it, then please use it, to protect everyone.

he probably won't understand that.Yup, it's scary, but the only smart guy here is “punk” Açık Pzt, Oca 10, 2022 00:46, Punk-BatSoup-Stasi 2.0 yazdı:

On Sun, 9 Jan 2022 16:18:58 -0500 k wrote:

...

to add my voice, tor has been one of the most private publicly-accessible digital networks on earth for some time now.

if you don't have anything better than it, then please use it, to protect everyone.

Nice article here to counter karl's pentagon propaganda.

https://www.mintpressnews.com/the-open-technology-fund-makes-privacy-apps-st...

"Internet freedom, according to the OTF, is explicitly defined in relation to access to U.S. state propaganda arms."

In the words of pentagon criminal dingledine

“We also need to think about a strategy for how to spin this move in terms of Tor’s overall direction. I would guess that we don’t want to loudly declare war on China, since this only harms our goals?” he wrote to the director of OTF parent company USAGM. “But we also don’t want to hide the existence of funding from [USAGM], since ‘they’re getting paid off by the feds and they didn’t tell anyone’ sounds like a bad Slashdot title for a security project. Is it sufficient just to always talk about Iran, or is that not subtle enough?”

On Sun, 9 Jan 2022 17:15:24 -0500 k wrote:

please don't use "nothing at all" instead of tor. this would be a far less private move.

lawl - now karl is literally spamming pentagon tor propagada. Here's the link again for you karl https://www.mintpressnews.com/the-open-technology-fund-makes-privacy-apps-st...

On Sun, Jan 9, 2022 at 10:09 PM zeynepaydogan wrote:

Stefan, do you really recommend the Tor network here? Google users don't expect privacy, but the Tor network is deceiating people who expect "privacy".The ex Tor developer here might say that the US government is funding the Tor.Don't use smartphone but use Tor? LOL

Hi Zeynep, if you are familiar how to edit a torrc, you can then define in their trustworthy nodes from privacy folks and privacy organizations. Or if you know how to run your own VPS server you can then use your own one as a trustworthy node. Nym is not ready yet for production, as an alternative and gives you also not more privacy by design, even if it is a Mixnet and will most like cost you money then (crypto currency) once in production. Regarding smartphones, at least you can run my proposal on your smartphone ... ;-) Best regards Stefan

On Mon, Jan 10, 2022 at 12:19 AM Stefan Claas wrote:

On Mon, Jan 10, 2022 at 12:15 AM Stefan Claas wrote:

...

On Sun, Jan 9, 2022 at 10:09 PM zeynepaydogan wrote:

...

Stefan, do you really recommend the Tor network here? Google users don't expect privacy, but the Tor network is deceiating people who expect "privacy".The ex Tor developer here might say that the US government is funding the Tor.Don't use smartphone but use Tor? LOL

Hi Zeynep,

if you are familiar how to edit a torrc, you can then define in their trustworthy nodes from privacy folks and privacy organizations. Or if you know how to run your own VPS server you can then use your own one as a trustworthy node.

Nym is not ready yet for production, as an alternative and gives you also not more privacy by design, even if it is a Mixnet and will most like cost you money then (crypto currency) once in production.

Regarding smartphones, at least you can run my proposal on your smartphone ... ;-)

And with Tor you can run then also professional Mixnet clients, Like YAMN or Mixmaster and then send those messages to the Bitmessage Network.

How cool is that?

BTW. Here is a list of trustworthy nodes, in German. https://www.privacy-handbuch.de/handbuch_24n.htm#03_01_22 Regards Stefan

Aaaaaaa On Sun, Jan 9, 2022 at 3:20 PM, Stefan Claas wrote:

On Sun, Jan 9, 2022 at 10:09 PM zeynepaydogan wrote:

...

Stefan, do you really recommend the Tor network here?  Google users don't expect privacy, but the Tor network is deceiating people who expect "privacy".The ex Tor developer here might say that the US government is funding the Tor.Don't use smartphone but use Tor? LOL

Hi Zeynep,

if you are familiar how to edit a torrc, you can then define in their trustworthy nodes from privacy folks and privacy organizations. Or if you know how to run your own VPS server you can then use your own one as a trustworthy node.

Nym is not ready yet for production, as an alternative and gives you also not more privacy by design, even if it is a Mixnet and will most like cost you money then (crypto currency) once in production.

Regarding smartphones, at least you can run my proposal on your smartphone ... ;-)__________________

And with Tor you can run then also professional Mixnet clients, Like YAMN or Mixmaster and then send those messages to the Bitmessage Network.

How cool is that?

Jim Bell's comment: Do you recall my suggestion from about 2 years ago that a new anonymity network be built, akin to TOR, but hosted by 1000+ people out of their homes and small businesses?  I mentioned using Raspberry Pi.   The main desirable thing is that unlimited-data Internet be available, which even then was true for 940 Mb/sec $65 month service.  (CenturyLink service).  I believe they are now  offering 100 Mbits/sec for $30/month, which should be plenty for an anonymzation network. I suggested that all nodes be able to act as output nodes, and that to facilitate this, all outputs be subject to mild (or better?) encryption, to ensure than plaintext never appears on any output node.  (To avoid inadvertently providing 'probable cause' to justify a search warrant.) Is somebody ready to talk about this?

hi jim On Sun, Jan 9, 2022, 7:28 PM jim bell wrote:

Aaaaaaa

On Sun, Jan 9, 2022 at 3:20 PM, Stefan Claas wrote:

...

On Sun, Jan 9, 2022 at 10:09 PM zeynepaydogan wrote:

...

Stefan, do you really recommend the Tor network here? Google users

don't expect privacy, but the Tor network is deceiating people who expect "privacy".The ex Tor developer here might say that the US government is funding the Tor.Don't use smartphone but use Tor?

...

...

LOL

Hi Zeynep,

if you are familiar how to edit a torrc, you can then define in their trustworthy nodes from privacy folks and privacy organizations. Or if you know how to run your own VPS server you can then use your own one as a trustworthy node.

Nym is not ready yet for production, as an alternative and gives you also not more privacy by design, even if it is a Mixnet and will most like cost you money then (crypto currency) once in production.

Regarding smartphones, at least you can run my proposal on your smartphone ... ;-)

---

...

And with Tor you can run then also professional Mixnet clients, Like YAMN or Mixmaster and then send those messages to the Bitmessage Network.

...

How cool is that?

Jim Bell's comment:

Do you recall my suggestion from about 2 years ago that a new anonymity network be built, akin to TOR, but hosted by 1000+ people out of their homes and small businesses? I mentioned using Raspberry Pi.

I recall this a little. I was feeling discouraged at the time. Why worry

about hosting when everyone has a device already they are using to email with? Why start a new project rather than forking an old -- unless the old ones are overcomplicated and unweildy.

The main desirable thing is that unlimited-data Internet be available, which even then was true for 940 Mb/sec $65 month service. (CenturyLink service). I believe they are now offering 100 Mbits/sec for $30/month, which should be plenty for an anonymzation network.

I suggested that all nodes be able to act as output nodes, and that to facilitate this

Tor used to function with everyone an exit by default, of course.

, all outputs be subject to mild (or better?) encryption, to ensure than

plaintext never appears on any output node. (To avoid inadvertently providing 'probable cause' to justify a search warrant.)

Good idea. A little similar to tor's exit node filtering for ssl (which is mostly unused I believe).

Is somebody ready to talk about this?

How do my questions land?

On Mon, 10 Jan 2022 00:15:11 +0100 Stefan Claas wrote:

if you are familiar how to edit a torrc, you can then define in their trustworthy nodes

that's a ridiculous comment because you do NOT know which nodes are 'trustworthy' And even if you did, the comment is still wholly misleading because the typical attack against tor is based on 'traffic analysis' based on packet/byte counts and timing. And those data are not 'encrypted'. So you can choose all the 'trustworthy' nodes you want, you are still fucked.

On Mon, 10 Jan 2022 00:49:28 +0100 Stefan Claas wrote:

On Mon, Jan 10, 2022 at 12:40 AM Punk-BatSoup-Stasi 2.0 wrote:

...

that's a ridiculous comment because you do NOT know which nodes are 'trustworthy'

Well, I can only speak for myself, because I know some operators of those nodes and ran in the past my own.

that still means nothing. Notice also that one of the basic ideas behind tor is to use routers in different 'jurisdictions'. The chances that you know 'trustworthy' routers in 3 different countries are...zero.

...

And even if you did, the comment is still wholly misleading because the typical attack against tor is based on 'traffic analysis' based on packet/byte counts and timing. And those data are not 'encrypted'. So you can choose all the 'trustworthy' nodes you want, you are still fucked.

Quote:

MULTI-LAYERED ENCRYPTION

Your traffic is relayed and encrypted three times as it passes over

That has nothing to do with what I said. Encryption does not prevent traffic analysis at all. Those three layers of encryption are stripped off at the end, and if you connect to an http: server for instance, then the server's ISP sees all the plaintext. On the other hand, connections to 'hidden services' are end-to-end encrypted and you know you're talking to the 'right' service because the url is the public key so that's good, but it's a property that's independent of any node selection you can do. So...the 'hidden services' infrastructure does provide end to end encryption and some kind of public key management but that's about it. (I need to take a look again at the details of the DNS system, because it's probably another surveillance/weak point)

On Mon, 10 Jan 2022 16:46:19 +0100 Stefan Claas wrote:

we all come home and exchange (encrypted) messages or files, with whatever

you can use tox, or retroshare to do that, or freenet - off the top of my head. you don't need to use pentagon trash like tor.

it is super simple to use and the Golang software

fuck anything written using a piece of shit language from joogle. Oh wait, Stefan. You are pimping MORE JOOGLE TRASH. You wouldn't be doing it on purpose would you.

JOOGLE URLs can be inserted everywhere.

stop promoting joogle trash Stefan.

Regards Stefan

On Mon, 10 Jan 2022 17:59:00 +0100 Stefan Claas wrote:

On Mon, Jan 10, 2022 at 5:19 PM Punk-BatSoup-Stasi 2.0 wrote:

...

On Mon, 10 Jan 2022 16:46:19 +0100 Stefan Claas wrote:

...

...

it is super simple to use and the Golang software

fuck anything written using a piece of shit language from joogle. Oh wait, Stefan. You are pimping MORE JOOGLE TRASH. You wouldn't be doing it on purpose would you.

...

stop promoting joogle trash Stefan.

Punk, what you probably overlook, Golang

go fuck yourself Stefan.

On Wed, 12 Jan 2022 06:33:28 -0500 k wrote:

i feel a lot of pain when I read insults from punk,

drop your act karl. Nobody believes your posturing.