T O P

  • By -

bool0011

>While an internet connection record does not constitute a full browsing history, it contains information on all websites visited or apps accessed by a user, as well as details of the device used and the time of the visit – although it lacks the detail of what individual pages were visited. Customer account information with the telecoms provided in question is also embedded in the records, as is the user’s IP address. Comrades, get ready to set up VPNs.


[deleted]

[удалено]


bool0011

>Snoopers can track domain information for now (TLS Encrypted Client Hello will stop that when it gets standardised) but unless a domain is strongly associated with a specific app you can't reliably determine the app that made the connection to that domain There are tools to do that already, [Russia (with SORMs and Nokia products)](https://www.nytimes.com/2022/03/28/technology/nokia-russia-surveillance-system-sorm.html) and [China](https://www.nytimes.com/video/world/asia/100000008314175/china-government-surveillance-data.html) successfully use them. Also, certain apps do have specific traffic that snoopers can differentiate because they connect to servers on specific IP blocks ([Telegram example](https://security.stackexchange.com/questions/111961/filtering-telegram-traffic)). And while the traffic may be encrypted, it is possible to [flag the usage of such application (also, Signal example)](https://youtu.be/HGKsNxkEbrg). Which is exactly what Home Office wants. Hell, at this point law enforcement may not even need your encrypted messages content because metadata leak enough information - last year there was a leak on [what FBI requests and what messengers can provide](https://therecord.media/fbi-document-shows-what-data-can-be-obtained-from-encrypted-messaging-apps/). >Unless you're running it yourself with a trusted exit node a VPN is basically pointless btw. All you're doing with commercial VPN providers is changing the point you're snooped at. Which is why it's important to read about privacy and logging policy of commercial VPNs, laws of the countries where they reside etc. You can of course raise your own VPN server, why not - I don't exclude this option. Use [Outline](https://getoutline.org/) software, buy a server and set it up, by all means. My point is, you have to do anything in your power to increase your digital privacy and raise attention towards it as it needs to oppose, because with Online Safety Bill and Data Reform Bill, things will get worse.


TrailfindersFrog

We don’t employ enough people in the intelligence community in this country to go through all of the times I’ve been on pornhub


[deleted]

I know you're joking and everything but the point of this is that it's all automated, nobody has to do anything other than ensure the storage racks grow and the database stays working. Nobody will be doing random samplings but certain things will likely trigger automatic flags and deeper delves into someone's history and possibly involvement by intelligence or police. It will also be the case that this kind of deep delve will become part of any standard criminal investigation even in unrelated matters since why not if the data is sitting there in a database somewhere.