this post was submitted on 26 Apr 2024
289 points (85.9% liked)

Technology

59377 readers
4020 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 
  • Deloitte confirms PIA's no-log claims, with servers running on RAM-only system for maximum privacy.
  • Independent audit verifies PIA's infrastructure is not vulnerable to third-party exploitation, ensuring online activity remains private.
  • PIA offers full transparency with open-source apps and regular third-party audits, proving its commitment to data protection.
you are viewing a single comment's thread
view the rest of the comments
[–] henfredemars@infosec.pub 32 points 6 months ago (1 children)

Biggest problem is that it’s free. That means you’ve got very little bandwidth that’s usable since it’s being supplied out of generosity for no direct compensation that could be reinvested into the network. There’s just too many users and not enough bandwidth.

And because it actually works, it’s very difficult or impossible to police how it’s used. That means your precious bits are just as important as the 100,000 spam emails that another user is trying to send with the service.

Finally, you might not want to use it because you’re sharing the same exit nodes with many other users. This means services tend to block those IP addresses outright, limiting what you can use it for, and if you leak and identify such as your name maybe you don’t want that tied to an IP address that actual terrorists might have used.

I write this as someone who owns a bunch of official Tor merchandise.

[–] db2@lemmy.world 17 points 6 months ago (1 children)

Spam emails are about the tamest dark part of the dark web though...

[–] henfredemars@infosec.pub 10 points 6 months ago (1 children)

I’m trying to be nice for the general public that could be reading this post. But yes, there’s a lot of bad stuff out there, and VPN service providers aren’t just getting paid to invest in tons of bandwidth, but they are also doing some policing of their service. They just don’t talk about it. It’s bad for business. And yes, you can police a service without technically logging any data.

[–] db2@lemmy.world 3 points 6 months ago (2 children)

What is "official tor merchandise" btw?

[–] Zorque@kbin.social 25 points 6 months ago (1 children)
[–] db2@lemmy.world 0 points 6 months ago
[–] henfredemars@infosec.pub 10 points 6 months ago

They sell things! I’ve bought mostly graphic clothing at funding events. You’ll find some presence at big hacker conventions. You could sometimes get a few goodies if you operate large nodes or provide significant contributions in other ways.