Hosting a Tor Hidden Service Decently

Posted on Tue 03 January 2017 in Security • Tagged with tor, anonymity, hidden-service, onion, opsec, sysadmin

Background music ideas: (something... rap-rave?, deathcore, and... something else electropunkish)

These days people may need to publish stuff anonymously. Since many people fuck that up and I'm …


Continue reading

Google Public DNS

Posted on Thu 10 November 2016 in Security • Tagged with google-public-dns, privacy

I'm sure we all have heard the worst and the best about Google Public DNS, so here's why I like it and why I recommend it to anyone who doesn't know how to do otherwise.

Why use it

  • It doesn't lie about NXDOMAINS. OpenDNS used to do it, a few …


Continue reading

The anonymity of a VPN service

Posted on Mon 07 November 2016 in Security • Tagged with vpn, anonymity

Now I manage a VPN provider and know a few others' internal workings, let's destroy some myths.
No VPN will provide you perfect anonymity. Nothing will. Do not use a VPN for anonymity.

Anonymity

In any transport of information, it will go through multiple points where the information and metadata …


Continue reading

Hosting your own mail server for security

Posted on Sun 25 September 2016 in Security • Tagged with mail, uptime

Here's some tips from a security-focused system administrator.

If you're an experienced sysadmin ready to embrace Murphy's law:

Go ahead, you already know what to do and what to expect. Good luck!

If you're the average user and don't know much about servers:

Why host your own mail server:

  • The …


Continue reading

Tor Browser considered harmful

Posted on Fri 16 September 2016 in Security • Tagged with tor, anonymity

Since people often ask me about anonymity and Tor, I'd like to write something more complete than a few tweets. It's a nice time with @movrcx's last overhyped 0day and bullshit conspiracy too.
Don't trust titles. It's great software but not enough for correct anonymity.
By the way, ioerror was …


Continue reading