Recent searches

No recent searches

Search options

Not available on mastodon.zunda.ninja.
mastodon.zunda.ninja is one of the many independent Mastodon servers you can use to participate in the fediverse.
Zundon is a single user instance as home of @zundan as well as a test bed for changes of the code.

Administered by:

Server stats:

1
active users

mastodon.zunda.ninja: AboutPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.5.0-alpha.1+e46cdd94-ruby-3.4.5

#opsec

0 posts0 participants0 posts today
Jonah Aragon

🚨 Tor Browser opsec discovery: The security level slider cannot be relied upon without a full browser restart: privacyguides.org/articles/202

If you frequently switch between security levels in Tor Browser (or Mullvad Browser!), make sure you are fully restarting the browser every time, otherwise you could still unexpectedly have dangerous JS features enabled!

This requirement is not publicly documented anywhere. Hopefully @torproject will add a prompt to restart after modifying this setting in a future Tor Browser release.

www.privacyguides.org · A Flaw With the Security Level Slider in Tor Browser
More from Jonah Aragon
#Opsec#TorBrowser#Security
Julian Oliver

If you are a US-based organisation working in support of human rights and/or the environment looking to swiftly migrate your server infrastructure and data to safer soil, get in touch.

We have extensive experience helping frontline at-risk orgs find a safer home for their work, on their terms and under their control, with a particular focus on hosting in jurisdictions with robust data-protection laws.

nikau.io

Pass it on.

#infosec#opsec
*
Hazelnoot

💙 Safety tip for fedi users 💙

Hi friends! Hazel here with an important tip for online safety. We have lots of fun here on fedi, but this is still the internet. It's absolutely critical to safeguard your privacy, so no matter how safe it may seem: never share your personal information online!

There are lots of friendly, close-knit communities here, but that doesn't make it safe to post personal details. Bad-faith actors sometimes sneak into communities like ours, looking for vulnerable people to stalk and harass. Fedi, in particular, has a problem of hateful people operating "scrapers" that use bots to scan the federated timeline and capture any information on marginalized people. This gets passed on to dangerous groups like KiwiFarms and used for harassment, doxxing, and other terrible things.

Fortunately, you can protect yourself by limiting what types of personal information you share online. In particular, here are some things that you should never ever reveal:
- Your legal name(s)
- Your birth date
- Your address (even city of residence)
- Photos of your house (especially the exterior)
- Your phone number
- Where you work

There's also some which are a bit less critical, but I still strongly recommend against sharing. If you want to publish one of these, then please consider your risk factors!
- Selfies / other photos showing your face
- Your exact age (and be careful with ranges)
- Where you went to school / college
- Details of businesses / organizations you visit
- Uncommon medical conditions (doctors are frequently hacked)

This may seem restrictive, but I promise you - it's a small price to pay for online safety! There are horrible people out there, and they'd like nothing more than to make us suffer. Let's make sure that doesn't happen!

--
With love from Hazel,
Admin of transfem.social
:heart_pride:​ ​:heart_trans:

#OnlineSafety #PersonalSafety #DigitalSafety #Safety #Privacy #OpSec

en.wikipedia.orgKiwi Farms - Wikipedia
Replied in thread
Kevin Karhan :verified:

@protonprivacy @puppygirlhornypost @vfrmedia

pressing X for doubt Good #OpSec dictates to never ever rely on any provder to cover one's ass...

I just think that you overstate your #privacy claims like all those #VPN companies do to bamboozle #TechIlliterates and I find that insulting to me personally, because I'd rather have honest providers like cock.li and @monocles that will not lie into the face of customers.

But that's #NotLegalAdvice...

I just think that being honest like @tomscott is way better long-term and more beneficial to one's personal #reputation, but that's just me as a #consumer and #TechLiterate.

  • I'm shure as a #PublicCompany (not traded publicly on exchanges !!!) you do have an obligation to maximize profit and share value for your #shareholders - #Switzerland isn't that different in that regard compared to #Germany - so OFC that may not roll with your board of directors.

It's just that previous blunders left a sour taste as like a #postal service or #telco what people communicate and with whom is none of your business unless you're forced to do so for "legitimate reasons" like #ITsec or to comply with duely submitted court orders...

  • Otherwise we'll soon have #regulators and #ConsumerProtection forcing hard advertisement regulation on the entire industry with big ass disclaimers being tagged on because someone made too outrageous claims re: privacy and security...
Twitterthaddeus e. grugq on Twitter“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo https://t.co/Q2aOQJkG4g”
#consumerprotection#regulators
Toni C. 🎗🔻🍉

Així que Espanya va enviar una de les seves ordres xusques a Suïssa (d'aquelles que anomenen terroristes a Tsunami –LOL), Suïssa va requerir a #ProtonMail i això va acabar descobrint la identitat d'una persona (a través del seu mail de recuperacio i un requeriment a Apple), i en la seva detenció.

Aneu amb compte i no doneu per fet que un servei segur/encriptat us converteix en anònims.

(Notícia de fa mínim dos setmanes que pel que sigui no m'havia arribat fins avui)

#opsec
Avoid the Hack! :donor:

Hi infosec.exchange, (and hi again #mastodon + the rest of the #fediverse )

I have successfully infiltrated your server and will load subsequent toots here for the foreseeable future.

(( DETECTED: #introduction ))

I am the same Avoid The Hack from #birdsite and run the website avoidthehack.com

Most of this feed is related to #cybersecurity and #privacy - generally for the individuals, families, and the super small organizations out there. I often focus on the intersection between the two.

Sometimes I post advice. Sometimes I share tools. Sometimes I share articles I have written. Sometimes I share articles featuring Avoid the Hack. Sometimes there is humor and memes.

Stay safe out there.

Avoid the Hack (avoidthehack!)Avoid the Hack | The intersection of cybersecurity and privacyBy avoidthehack!
#security#privacymatters#infosec
Replied in thread
Autonomie und Solidarität

Strategies for Countering Police Access to #DNA Data (Chapter 10)

"#OPSEC is military and intelligence jargon for "operational security" and refers to techniques designed to prevent their people being caught during or after an "operation".
The fact that we have to talk about such things at all when it comes to issues like exercising the fundamental right to freedom of assembly or small acts of civil disobedience is a clear indication of how far the state's mania for security and collection has already developed. It is generally better to invest resources on pushing back the security apparatus than in a technical arms race with state agencies!"

Download: PDF (read, A4 booklet, letter booklet) • TEXT
csrc.link/download/der-polizei

View Online
csrc.link/read/strategies-for-

#Data#Police#Activism
tsk

Since its nearing Beta, I should talk about my pet project: :blobcattoot:🎉Wyng Backup!

What's so great about it?! :blobcatnerd::blobcatthinkingsunglass:

  • Wyng can make lightning fast backups of logical volumes, disk images, or just plain large files... like multiple-terabyte-sized volumes backed up in just seconds! (Your local storage needs snapshot capability for this to work, but backup storage does not!)
  • An ingenious snapshot rotation scheme is used to keep snapshot local space consumption to a tiny fraction of what they normally require (a big drawback of other snapshot-based backup tools).
  • Deduplication is also supported.
  • Improves Opsec: Works even in net-isolated admin environments, like Qubes 'dom0', and there is no trust bestowed on remote or guest systems. There is no mounting of volumes or disk images; all data is handled as just a set of blocks. All encryption & verification operations happen within the local admin environment. Perfect for keeping backups of VMs/containers with various levels of (un)trusted content.
  • Maintenance functions (like pruning old backups) are also very fast, similar to how Time Machine works.

Try the final alpha here: github.com/tasket/wyng-backup/ There is also a full release of the prior version which lacks some features and usability improvements in the new alpha.
#wyng #backup #FOSS #linux #lvm #btrfs #infosec #opsec #QubesOS #vmware #containers

GitHubGitHub - tasket/wyng-backup at 04alpha3Fast Time Machine-like backups for logical volumes & disk images - GitHub - tasket/wyng-backup at 04alpha3
*
Avoid The Hack!

👋🏽 Hi Mastodon

(Redoing #introduction)

I am the same Avoid The Hack from Bird Site

Only news items and updates for avoidthehack.com are cross posted from Bird Site. Everything else is here (and only here) as I’m more active on Mastodon.

Most of this feed is related to #cybersecurity and #privacy. Sometimes I post advice. Sometimes I share articles I have written. Sometimes I share articles featuring Avoid The Hack. Sometimes there are memes.

Avoid the Hack (avoidthehack!)Avoid the Hack | The intersection of cybersecurity and privacyBy avoidthehack!
#security#privacymatters#infosec
The Coffee

I don't have a face or real name here, but does that even matter?

The beauty of the internet is finding random people with similar interests and create healthy discussions, identities are completely irrelevant.

Also #privacy and #opsec but hey, that's an extra ;)

#identity
TrendingLive feeds
About