737

Even if you have encrypted your traffic with a VPN (or the Tor Network), advanced traffic analysis is a growing threat against your privacy. Therefore, we now introduce DAITA.

Through constant packet sizes, random background traffic and data pattern distortion we are taking the first step in our battle against sophisticated traffic analysis.

top 50 comments
sorted by: hot top controversial new old
[-] Phoenix3875@lemmy.world 190 points 7 months ago

The Chinese Great Firewall (GFW) has already been using machine learning to detect "illegal" traffics. The arms race is moving towards the Cyberpunk world where AIs are battling against an AI firewall.

[-] possiblylinux127@lemmy.zip 90 points 7 months ago

Careful criticizing China you will awake the Tankies.

[-] No_Eponym@lemmy.ca 57 points 7 months ago

Drums, drums in the deep ...

[-] oce@jlai.lu 47 points 7 months ago

You can conviniently block a whole instance from your account now, it reduces this kind of disagreement a lot.

[-] phoenixz@lemmy.ca 57 points 7 months ago

Should you though?

I get it, it's annoying, but the entire "let's block people with opinions I don't like" is probably the single source of pillerization and increased extremism on the internet.

If I'm not allowed to have a discussion or disagreement with you, and get kicked out instead, I'll just go to places where they will talk with me and where it's chock full of other idiots like me who are much more extreme and in our safety bubble we can all continue not beat the same dead horse and circle jerk and make eachother more extreme because there are no dissenting voices, there are no voices or reason and calm, there are no cooler heads around.

This entire moderation where we simply started dumping people with who we disagree has made the world a.much, much worse place.

Granted, it sucks to have to deal with crazies and extremists, but at least whilst they're in the group we can all keep them grounded in reality.

[-] oce@jlai.lu 28 points 7 months ago* (last edited 7 months ago)

If I’m not allowed to have a discussion or disagreement with you, and get kicked out instead, I’ll just go to places where they will talk with me

I actually tried to, and if it was possible to have rational and polite discussion, without straw man arguments, dog pilling, personal attacks and finally threats of violence, I would have continued to try. But sadly all of this happen, multiple times.

At some points I considered leaving Lemmy, thinking that this federation as a whole was not safe for debating. But then I started understanding patterns, either it was from the users from a specific instance, or it was communities from a specific instance that turned like that. Overall the pattern seem to be that if the instance mentions extreme political ideologies in its description or if the profiles of its admins do, then debating is not possible.

If they want to stay connected to people to avoid the circle jerk, they have to work on themselves too (ex: learning to debate politely), you can't except us to absorb all the damages to help them avoid radicalization. It's like walking towards a terrorist group with flowers while they are shooting around and expecting them to be inspired by your pacifism.

I do enjoy debating and questioning my own beliefs, but I am not on Lemmy to consume my mental health, so I need to take some actions to protect it.

load more comments (4 replies)
[-] Kedly@lemm.ee 24 points 7 months ago

I'm not on the internet or lemmy to make the world a better place, I'm on here to kill time/enjoy myself/learn some things. I dont have the mental space to deal extremists, and particularly extremists that have a world view thats incompatible with itself if taken at face value, and I certainly dont have anything valid that I can learn from tankies, and as such, my block list has gotten quite large, and my general mood has increased because of it

load more comments (3 replies)
[-] KairuByte@lemmy.dbzer0.com 15 points 7 months ago

I “blocked” hexbear, because a mod didn’t take the time to use their brain, labeled me a “pedophile apologist” and banned me from the entire instance. If they moderate based on “I don’t care what actually happened, I’m mad” then I’m not going to bother interacting with them.

load more comments (5 replies)
[-] Cavemanfreak@lemm.ee 10 points 7 months ago

I was planning to, but ultimately didn't. I have handed out personal blocks to obvious trolls and a brunch of hexbear users that spammed gifs in every single thread though.

load more comments (2 replies)
[-] FiniteBanjo@lemmy.today 8 points 7 months ago

This operates under the assumption that there are good decent people on every instance, but instances like Hexbear and Lemmy.ml are inherently corrupt and run by people who want to sow misinformation and chaos to negatively impact western powers. I'm not saying the whole thing is a Chinese operation, but if it were then it would be run exactly the same way it is now.

load more comments (4 replies)
load more comments (29 replies)
load more comments (3 replies)
load more comments (12 replies)
load more comments (3 replies)
[-] impure9435@kbin.run 104 points 7 months ago

That's one of the reasons why I love Mullvad, they actually care about their customers, not just about their bottom line

[-] dojan@lemmy.world 15 points 7 months ago

I wonder how much of a bottom line they actually have given how cheap their service is.

[-] Linkerbaan@lemmy.world 62 points 7 months ago

Mullvad is 5 bucks a month and never has promos.

Weigh that against Nord which often has a year for like 15 bucks...

But Mullvad is one of the few that actually seems to care about privacy.

[-] dojan@lemmy.world 14 points 7 months ago

Oh wow, I had no idea Nord could go that cheap. To me €5 a month felt really inexpensive.

[-] jet@hackertalks.com 6 points 7 months ago

I feel like every week someone on Lemmy says they would use mullvad except it's too expensive. It's refreshing to see somebody say oh yeah that's fine.

load more comments (4 replies)
[-] impure9435@kbin.run 38 points 7 months ago

I'm pretty sure they are profitable, considering they were founded in March of 2009. You can't really run a company without profits for 14 years, right? Just routing network traffic isn't that expensive after all. They are the only ones being honest about it, other VPNs charge way more because they only want to extract money from their customers.

load more comments (4 replies)
[-] DoucheBagMcSwag@lemmy.dbzer0.com 6 points 7 months ago

If only they didn't bend the knee to the five eyes and drop port forwarding

[-] impure9435@kbin.run 41 points 7 months ago* (last edited 7 months ago)

They got rid of port forwarding to improve the reputation of their IP ranges. That makes it less likely for Mullvad users to get blocked by CDNs like Cloudflare and Akamai when visiting websites. If you want port forwarding, just use AirVPN or rent a VPS and use that. Not sure what you're talking about, but Mullvad is based in Sweden, which is not a part of the five eyes alliance. It's a part of 14 eyes, but Sweden has very strong privacy laws, Mullvad even has an entire page about privacy legislation in Sweden: https://mullvad.net/en/help/swedish-legislation

They also have a page that explains how Sweden being part of the 14 eyes alliance doesn't really affect Mullvad: https://mullvad.net/en/blog/5-9-or-14-eyes-your-vpn-actually-safe

Their office was also raided by prosecutors last year, and they weren't able to seize any customer information, because Mullvad doesn't store anything about their customers: https://mullvad.net/en/blog/mullvad-vpn-was-subject-to-a-search-warrant-customer-data-not-compromised https://mullvad.net/en/blog/update-the-swedish-authorities-answered-our-protocol-request

load more comments (2 replies)
load more comments (2 replies)
[-] AFLYINTOASTER@lemmy.world 53 points 7 months ago

Still waiting for Defense Against the AI Dark Arts to drop

[-] nivenkos@lemmy.world 39 points 7 months ago

No port forwarding really kills the utility though - I mainly use the VPN to do port forwarding (e.g. for video games, Plex, etc.) as my ISP is shit.

Like I'm not worried about state-level de-anonymisation, I just want to be able to share services remotely and have a minimum level of anonymity.

[-] far_university1990@feddit.de 34 points 7 months ago

Port forwarding removed because hosting threatened to kick mullvad out. Lot of shit hosted through that. No hosting, no vpn, so needed to remove to continue operate.

[-] ForgotAboutDre@lemmy.world 7 points 7 months ago

Port forwarding means torrents. People using a VPN to torrent likely have much more traffic, especially those that seed (which is why they want port forwarding). Not enabling port forwarding means mullvlad can operate at a higher profit to cost ratio, and less risk.

[-] far_university1990@feddit.de 18 points 7 months ago
[-] ForgotAboutDre@lemmy.world 20 points 7 months ago

That's what mullvlad say. It's not necessarily the reason why they don't offer port forwarding.

It was always possible for them to continue allowing port forwarding. They could use separate servers for those that want port forwarding, stopping any impact port forwarding had on those customers.

load more comments (10 replies)
load more comments (3 replies)
load more comments (1 replies)
[-] qjkxbmwvz@startrek.website 6 points 7 months ago

Someone else pointed out Tailscale; I've had luck with free tier VPS+WireGuard.

I have an Oracle one which has worked well. Downside is I did link my CC, because my account was getting deactivated due to inactivity (even using it as a VPN and nginx proxy for my self hosting wasn't enough to keep it "active"). But I stay below the free allowance, so it doesn't cost.

That said: as far as anonymity goes, it's not the right tool. And I fully appreciate the irony of trying to self-host to get away from large corporations owning my data...and relying on Oracle to do so. But you can get a static IP and VPS for free, so that's something.

load more comments (6 replies)
[-] MigratingtoLemmy@lemmy.world 37 points 7 months ago

I love these guys. Let's see if somebody can just bootstrap the FOSS framework directly on TCP to work on the internet without a VPN. Fantastic project

[-] potatopotato@sh.itjust.works 9 points 7 months ago

Those words sound cool and mean literally nothing

load more comments (7 replies)
load more comments (15 replies)
[-] pyrosis@lemmy.world 27 points 7 months ago

How about defense against dhcp option 121 changing the routing table and decloaking all VPN traffic even with your kill switch on? They got a plan for that yet? Just found this today.

https://www.leviathansecurity.com/blog/tunnelvision

[-] SpaceCadet@feddit.nl 13 points 7 months ago

Don't you control your dhcp server?

[-] thatsnothowyoudoit@lemmy.ca 17 points 7 months ago

The Option 121 attack is a concern on networks where you don’t.

Exactly where you’d want a VPN. Cafes, hotels, etc.

load more comments (1 replies)
load more comments (1 replies)
[-] Sunny@slrpnk.net 21 points 7 months ago

Love they called the defence framework "Maybenot".

[-] linearchaos@lemmy.world 18 points 7 months ago

I swear the defense against the dark arts teacher just keeps getting weirder and weirder.

[-] MTK@lemmy.world 8 points 7 months ago

I can tell you that this exists way before AI, I wish that there was more awareness earlier but it's good that now its starting

So it's like a VPN-busta-busta?

What if they have a VPN-busta-busta-busta though?

load more comments (1 replies)
load more comments
view more: next ›
this post was submitted on 07 May 2024
737 points (98.2% liked)

Technology

60130 readers
2751 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS