Also, read this: https://www.whonix.org/wiki/Speculative_Tor_Attacks

tor (TBB) doesn’t work for everything and most people want something fast and convinient that only takes clicking a few buttons to get working. They will think it is too much work.

I recommend Brave browser which can use tor in private browsing mode but also has a regular browser with encrypted DNS (cloudflare, https strict, and shields) for things like banking, shopping, and online accounts (that might help to have a password manager for).

Also, Tor browser does not have any passthrough for security keys but Brave based on chromium does. Tor browser does not have a password manager.

Firejail should work on a profile for Brave as sandboxing is always helpful. TBB can be sandboxed easily, however.

This “multi-tiered” approach would be better for most people who aren’t just accessing a handful of onionsites that replace or are in opposition to an entirely different set of services than those usually accessed on the conventional internet (online banking, social media, a few publication sites, and a search engine).

Do you mean fallback DNS? As far as I understand that, it is a race condition that doesn’t really matter except for a few ms.

VPNs are shit in my opinion. The NSA understands them too well. Maybe try Yggdrasil or Veilid.

yes, the more layers of security, the better, even if it is just a futile matter of time to consume the time of an ATP.

Ah, that must be it. 2FA is still a very good security feature to have.

But there is nothing only you know that is still useful because a secret must be shared in order to be useful (unless you just have full disk encryption and then when it is unlocked and network connected, it is still vulnerable). In short, admins could change your password since you are not the sole admin of your own server but then you would have to have mass appeal to be “useful”, i.e. popular.

In theory, Tim Cook might have a keybearer who could usurp the throne with all the proprietary OEM crypto keys that only the Company knows, but everyone knows who the CEO is and the keybearer could get in big trouble unless he had an army…

Things can be changed on the server side and the network is not the same as the device: these are technology truths some people refuse to ever understand.

No, nothing shady. Just was notified there was a mistake on the server end. Perhaps tmi to elaborate…

This is what I thought. I keep telling people they don’t exclusively own their passwords / security tokens once they give it to a site.

If I shared encrypted info that I kept encrypted, I guess it would still be mine but no one could then read it.

This is what I thought. I keep telling people they don’t exclusively own their passwords / security tokens once they give it to a site. Salted hashes to obscure the pw don’t even matter since the admin could also bypass that. Tanks for the validation.

What do you think about sites that don’t work with all variety of DNS (not even cloudflare) or proxies or tor or Firefox or Chrome or varied AP or varied devices–in short, all access combinations?

Dead link? Total Information Awareness roving tap castiron?

Can you unblock 404 Media podcasts on Signal and Identity Hacked? Tried both Spotify and Apple Podcasts.

Best still rare even though potentially very user friendly and accessible.