you dont have to be a dev in this #techworld. plenty of fun stuff to do just compiling other peoples code 🌐

strfry-web 👀

I am fully aware of that, and most definitively not a novice.

But the last time I dealt with this in a proper, non-theoretical way, was when Metasploit Framework was "the thing to use" - which it really isn't anymore, as far as I can tell.

So, I want to seek the proper alternatives. I have untill thursday to learn them, which is enough time to cover the basics, and probably more than enough for what I need.

This class assignment is rather basic, but I do want to deliver something - so, this is a great opportunity to learn those tools! ^^

#asknostr So this is a bit of a long one.

TL;DR: "Hacking" tools recommendations?

In the scope of data safety ("Datenschutz") class, my class is told to run around the school and discover things that they shouldn't be able to in regards to data safety and privacy. Since I am almost blind and running around like a numpty isn't exactly my kinda beer, I was instead told to "sit in a room with a laptop ;)"

So, I need tooling. The typical Parrot/Kali and nmap are a no-brainer. But what other tools do you know of that I could throw at this school network? The only restriction: I can NOT interfere with the daily activity. Sniffing and such is totally legit, but I can not bring it down - however, I _can_ bring it under my control.

Best-case scenario for me would be to just present the domain admin creds to my teacher. No further comment, just the creds. xD But it ain't that easy, let alone that easy to pull off within 90 minutes.

So, throw me some of that "good stuff" you know of. =)

Something fishy going on. I asked "Gemini" (some Google AI assistant thing) a basic question, "Who is the speaker of the House?" Says it can't answer that. Say what?

Thinking of starting a linux meme campaign to attract more stoic men and women to set themselves free with FOSS.

What say you nostr?

#asknostr

Multi-sig addresses are just longer. But it's still a normal receive address.

The trick is the sending. It takes up more block space to send because it requires more signatures. 😉

chatgpt is down! help!

how am I gonna fix my linux problems if it's down!

#chatgpt

#linux

They don't want you to know about:

Socks5 Proxies vs VPNs:

These hushed elite secrets are more relevant now than ever.

Did you know that, LinkedIn makes more money off selling user data, then they do from paid job ads?

Or even worse, Twitter's valuation collapsed after Elon Musk's takeover, but then yet according to Fidelity, it got a rebound from Musk's training his AI startup on your data.

It should not surprise you then that both LinkedIn and Twitter, restrict many VPNs for new sign-ups. And more and more websites and services are banning Tor. How can you succeed with privacy under these conditions? In this note, I'll use Nostr's uncensored nature to teach you this critical knowledge, while it still works...

~~~

VPNs

When we think of VPNs, we usually think of protocols like WireGuard. WireGuard has public/private encryption keys, and the traffic is encrypted.

One potential issue with WireGuard is it's typically linked to a Datacenter. These datacenter IPs are then blocked by websites that often want to purposefully find out the identity of their users.

~~~

Socks5 Proxy

Socks5 Proxies simply forward the traffic to make requests from a new destination WITHOUT encryption. This typically is done only in a browser, but it could work in the command line or any app.

Many users wonder what the purpose of a Socks5 Proxy is, if there is no encryption. There are many use-cases.

Some websites may block VPNs coming from Datacenters. Socks5 Proxies are can be used to make the traffic appear to be coming from a residential home.

Speed

Since encryption slows down a VPN, a proxy is more lightweight, and thus faster than WireGuard.

Firewalls

Also WireGuard may have issues with residential firewalls, that socks5 helps avoid.

~~~

Tor Block

Another issue is some websites may block Tor. Tor exit IPs are published and known by all participants.

WireGuard + Tor = Fail

Since WireGuard uses UDP packets, it can't be used in front of Tor. Tor uses TCP only.

OpenVPN Slow

While OpenVPN, on port 443 (with TCP), in theory COULD be used in front of Tor. In reality, this is unbearably slow. Because you're doing 3 hops of Tor AND THEN a 4th encrypted hop on an external network.

To get around the speed issue, most users looking to hide Tor use, instead use Socks5 Proxies. These are fast because it has no encryption, but the ISP can't see anything because you're using Tor first.

Tor Exit Sees

The only one who the user isn't hiding from is the Tor exit. Tor exits still can't see through SSL/TLS or httpS website encryption. In other words, Tor exits can see WHAT domains you visit, but not your username, password, or what data you DO on those websites.

No Sudo

A huge advantage of Proxies is that they don't require sudo. They can just work in just the browser.

Simplified Privacy

Our Datacenter proxies exit the same servers and IP addresses as our WireGuard users. So the website won't know if you're using Tor or a VPN. I hope we make it financially through beta testing, to begin offering residential proxies as well.

Now do both me and humanity a favor, and slam the repost to aid our Nostr bros.

How do I zap specifically a note, and not just generally the user? I tried to zap a note and my sats went somewhere, but I don’t see myself in the list of those who zapped the note. I also see no history of zaps in settings giving any clues. I clicked on the user, then zapped from that screen, but it looks like it didn’t attach to the note. Any help is appreciated #asknostr

Really now? "Among Us" is an assassin game? Mainstream mierda at their best.

I’m always torn on the importance of email encryption. Is it necessary? If you’re doing really private conversations, should they not be relegated to signal? Or should we all be using something like Proton or Tuta?

#privacy #security

RIP #Bitcoin. I guess I'll see you plebs next time around a year from now back at $69k. 😆

Today I have opened gossip again, and Private chats loaded immediately, including previous ones. At this point I am unsure what exactly was broken and how can I help you to reproduce this issue, sorry.

Yes you are right, NIP-17 (which uses NIP-44 and NIP-59).

When gossip starts it does two long-lived subscriptions related to this:

INBOX: on all "READ" relays, it subscribes to all feed-displayable event kinds (including NIP-04 DMs) with 'p' tags to you.

GIFTWRAPS: on all "INBOX" and "DM relays, it subscribes to giftwraps with 'p' tags to you (which contain your NIP-17 DMs).

In both cases, it only loads one chunk, which is by default the first 35 events going back in time. Then you have to press LOAD MORE to look back further.

I don't have a guess as to what is going wrong yet. I may have to read more of my code and think about it harder.