Viewing a single comment thread. View all comments

syster OP wrote

What I mean with?

They can do something about: inform the users.

This: Generally educate users about OpSec.

Like:

Dear user, we can inject keys and we can log your IP. If that brings a risk to you, do this and that.

5

syster OP wrote

more than 3000 closed pages in the DW in the past by law,

what is it you are referring to?

I read claims that agencies like NSA can maybe decrypt sometimes SSL and that some patterns can be gained from analyzing PGP encrypted text. But then there is Double Ratchet Algorithm and similar, and it doesn't seem reasonable that anyone can decrypt it.

4

Zerush wrote

Don't underestimate the possibilities of state agencies against cybercrime. To remember, the onion network and the encryption techniques, together with TOR are creations of the US defense and the NSA and they have enough tools to control it, this and it is independent of the personnel that infiltrated participates and moves through these networks.

As someone said, there are drug lords, mercenaries, arms dealers and 14-year-old girls from the FBI.

I already said on another occasion, there are good reason why the mafias continue to use paper notes to communicate, because communications over the network are never secure.

4

syster OP wrote

and they have enough tools to control it,

nope they don't. In order to believe some single entity could control the Tor network, you need to believe that some power holds some hegemony. Just take China and Russia for example. They follow their own interest, and will make their own decisions. Sometimes they will be align to US politics sometimes they oppose it. They want to hand over to the US the power to spy on everyone running Tor? I don't believe that.

Snowden used Tor to leak NSA files. The NSA only learned about it after it went public.

If I remember correct, Chelsea Manning also used Tor, and the agency did not know who it was, until Chelsea Manning admitted this themselves.

The sate want us to believe they have omnipresent power, to make us afraid, to make us believe it's hopeless, to make us believe it's pointless to even try having private spaces online.

If you think it's pointless to even try to protect privacy, you won't start to educate yourself how to gain it. And that's in the interest of those agencies in question. This narrative is part of their power.

5

Zerush wrote

No, I don't think that is pointless to protect the privacy, but I think that it is only possible to avoid the surveillance to a certain level, 100% privacy don't exist in the same moment when we connect to the internet. With our humble PCs, the possibilities of protecting privacy are always limited to patching the biggest holes with the current tracking technologies that exist and that are used by the big companies, which are now even starting to use Quantum computers (Google, Facebook, IBM, also secret services in several countries). Privacy protection.......? Also a difference if you a simple user or if you are targeted by the secret services, that you have a good privacy in the onion don't guaranted that also Snowden has a good privacy in the onion if he is the target object of the secret service.

That they have the ability to track and monitor a user does not mean that they do so with a billion users, when there is no need for it. That they do not know what you do in the DW, if you are not a person wanted for a crime, it is understood.

3

Zerush wrote (edited )

"Dear user, we don't inyet keys and don't log your IP, but we have to do it if there is a court order to do so." Something like this exists in any TOS and PP of any service or app, but this nobody ever bothers to read when registering.

The one of Mozilla https://i.imgur.com/A4zMEGo.png

3