Privacy

30859 readers

1194 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS

How secure is Tor network? (lemy.lol)

submitted 11 months ago* (last edited 11 months ago) by iso@lemy.lol to c/privacy@lemmy.ml

48 comments fedilink hide all child comments

For example, I downloaded Tor network and using it for illegal activities. Can my govt track me? Can US govt track me? I know it encrypts something but if I remember correct, FBI was able to find some Tor users before.

Note: illegal activities was for example. I'm not going to do anything illegal. I'm just planning to serve my instance with a onion address.

you are viewing a single comment's thread
view the rest of the comments

[–] iso@lemy.lol -2 points 11 months ago (1 children)

What I meant with Signal fiasco is, they didn’t published server code for a year and the fact that they’re a US establishment. It’s not looking that bad but I’m not going to trust them anymore.

[–] jet@hackertalks.com 17 points 11 months ago* (last edited 11 months ago) (1 children)

ToR was started by the US Navy and still gets funding from the navy every year. ToR is a tool used by the US for spooks and spook assets globally. The only reason it was made public was to generate enough noise to hide the spook talk.

So applying your logic means you shouldn't use ToR either.

[–] iso@lemy.lol 1 points 11 months ago (1 children)

Hmm, maybe you’re right. But still its not like they didn’t released the source code for a year.

[–] jet@hackertalks.com 8 points 11 months ago (1 children)

https://github.com/signalapp/Signal-Server

Its there now, but you never know what they are really running on their servers. In end to end networks, you should never trust the network, only the clients.

I think you need to take time and model out your threats, the EFF has tools to help you do this, then choose the tools that match best.

[–] iso@lemy.lol 1 points 11 months ago (1 children)

You’re right. Thats why I like Matrix more than Signal now.

Also I’m not looking for a security method to escape from a specific target. It’s all curiosity about general security.

[–] jet@hackertalks.com 9 points 11 months ago (1 children)

matrix leaks metadata to the servers much worse then signal, just FYI. Hating how a team runs is different then then risk profile of the product.

Don't like emotions cloud your decision making

[–] iso@lemy.lol 1 points 11 months ago (1 children)

I'm not hating. I just like keeping my half encrypted data on my own server instead of fully encrypted on someone else's server.

[–] zwekihoyy@lemmy.ml 3 points 11 months ago

well, your own server and every other server you've ever connected to.