Thread replies: 219
Thread images: 20
Thread images: 20
Anonymous
New android version steals your entire connection 2017-08-22 05:01:16 Post No. 138614795
[Report] Image search: [Google]
New android version steals your entire connection 2017-08-22 05:01:16 Post No. 138614795
[Report] Image search: [Google]
File: 1485705903400.png (25KB, 375x169px) Image search:
[Google]
25KB, 375x169px
New android version steals your entire connection
Anonymous
2017-08-22 05:01:16
Post No. 138614795
[Report]
reminder that Android 8.0 (Oreo) rerouts your entire network to (((Google)))
https://www.android.com/versions/oreo-8-0/
>>
>>138614795
shut up goy
>>
>>138614795
google has been syncing wifi passwords for a while now m8
>>
>>138614795
Every time you geniuses use a VPN, you're simply introducing another middle-man into the picture. Better hope that middle man is more trustworthy than your ISP.
>>
>>138615156
>wifi passwords
I'm talking about your entire connection to everything, going to google first before it gets to the destination.
learn what vpn is
>>138615239
who are you talking to? I'm here posting AGAINST the forced google vpn
>>
>>138615397
I know what a vpn is I just don't care
>>
>>138615239
>implying I don't have a corporately registered VPS to run the first VPN layer through.
How new are you fucks?
>>
>>138615484
sure you do. which is why you brought up unrelated wifi passwords?
>>
>>138615397
>who are you talking to?
The opponents in my head who I frequently destroy in debates.
>>
>>138615593
you're the retard claiming google is going to route all your traffic through its servers instead of specific sensitive information lmao
>>
Who cares, Google, CIA and others have no power here. I should be on the lookout for them FSB wankers though.
>>
>>138614795
google is literal CIA spyware, why are you using any of their products, srs newfag?
>>
man I wish my phone would get updated too I want that multitasking
>>
File: 1482027253466.png (29KB, 416x276px) Image search:
[Google]
29KB, 416x276px
>>138615711
lol
>still doesn't understand what a VPN is
retard
>>
>>138615748
>implying google doesn't give your data to FSB
>>
>>138614795
Who cares. What are they going to do with the data? Sell your forum posting habits to Coke so they can develop and market Coke: weeb edition?
>>
>>138615931
explicitly stated in the post you're responding to what a vpn is
now are you going to qualify your assertion that google is going to route all your traffic via their servers or keep being a dumb cunt?
>>
>>138615931
thats a VPS not a VPN you uneducated fag Server != Network
>>
>>138616033
you do realize that android has been spyware for years right? they sync all your data with their servers. everytime you unlock your phone it pings googles servers.
>>
File: maxresdefault.jpg (90KB, 1280x720px) Image search:
[Google]
90KB, 1280x720px
>>138614795
>(Oreo)
>>
>>138616188
When did I assert they don't?
>>
>>138616274
>you're the retard claiming google is going to route all your traffic through its servers instead of specific sensitive information lmao
>>
File: disgust.jpg (83KB, 684x856px) Image search:
[Google]
83KB, 684x856px
>>138616362
>all
>>
File: IMG_3155.gif (51KB, 640x538px) Image search:
[Google]
51KB, 640x538px
>>138615711
Holy shit you are fucking ignorant. You clearly have no idea what a VPN is. When you use a VPN, ALL of your traffic is tunneled through a remotely controlled server, and in this case, controlled by google. Please shut the fuck up and stop acting like you have any idea what you're talking about.
t. cyber security specialist for NIST
>>
File: IMG_4063.jpg (41KB, 480x357px) Image search:
[Google]
41KB, 480x357px
Looks like nobody is going to call me an ifag anymore
>>
>>138616448
Right... is android Orea routing all your traffic through a remotely controlled server?
>>
>>138616572
when it uses the VPN? yes retard, that's how a VPN works.
>>
>>138616448
> claim you know shit about computers
> work for NIST, a known compromised CIA op, designed to specifically implement insecure practices into modern computing, undermining all security
> kek
>>
>>138616572
Yes, because that's what a VPN is you fucking moron. How about you google some things before spouting bullshit you obviously know nothing about?
>>
>>138616448
Well... That depends if you're using a split-tunnel or full-tunnel VPN. But yes, in this case it is a full-tunnel.
>>
File: 1502833672314.jpg (131KB, 960x960px) Image search:
[Google]
131KB, 960x960px
>>138614795
Why don't you simply disable WiFi assistant in your settings?
>>
>>138616572
yes you moron, whenever you use the internet Google can access all content you are transmitting,
run tcpdump, whatever you see they can see
>>
>>138616682
I know what a VPN is dumb cunt, your assertion that orea uses on constantly is just inane.
>>
>>138614906
>filename
>>
Goolag is up to its old botnet tricks yet again. When will people learn not to use their shit?
>>
File: 1489259078027.jpg (339KB, 1171x684px) Image search:
[Google]
339KB, 1171x684px
>>138616760
>trusting google to turn shit off when you want it to
https://www.thesun.co.uk/tech/4295350/did-you-know-google-has-been-secretly-recording-you-heres-how-to-find-the-creepy-audio-files-that-are-monitoring-your-conversations-every-day/
>>
>>138616839
but it does. if you connect online using any means (WiFi, cellular) it will establish a VPN connection to Google. look it up.
>>
>>138616903
Thanks.
>>
>>138616839
When did I ever assert that it uses one constantly? I simply stated that your traffic gets routed through a remote server when you're on a VPN, because that's what happens when you use a VPN. At no point did I say anything about how frequently the VPN is on or used.
>>
>>138614795
This thread is stupid.
>>
>>138616664
>my job requires qualifications and certifications that it takes years to study for and earn
>yes, i must know nothing about computers
>>
Reminder that android is open source and that you don't have to use google play services.
https://source.android.com
Please point out the parts where it steals your data.
>>
>>138617020
I was speaking to OP about this, it is his assertion, then you chimed in like a smart ass with "LOL U DONT NO WHAT A VPN IS" instead of actually paying attention to the conversation.
If you have no other point than to explain what a VPN is, cheers cunt, mission accomplished.
>>
>>138616944
That artical a shit. Goto settings and disable that feature as well and it won't record shit. I have all that shit disabled on my mobile, and I check frequently because its programed to turn back on when you agree to and do certain things
>>
>>138617212
>just make your own android dude
kys
>>
>>138617217
Me =/= OP, I'm sorry that your autism disabled you from being able to differentiate poster IDs.
>>
>>138617330
>Me =/= OP
another useful proposition, thanks
>>
>>138617316
>Wah, gib me gib me gib me
>Wah i don't know what custom roms are
>wah google is forcing me to update
>>
>>138617184
all NIST qualifications are invalid, considering most modern crypto algorithms are broken. Elliptic curve cryptography is proven vulnerable if you have bad RNG (most do), same with DSA. AES is backdoored by the hardware (AES-NI). Your NIST specs recommend these algorithms. Tell me why?
>>
>>138616819
Hummmmm... Nope. If your phone initiates a secure connection (SSL or HTTPS), which is pretty standard these days, google won't be able to see what's in those packets unless they install a root CA on your phone or have a CA key to decrypt traffic.
Though, they can indeed see the "metadata" of the connection, ie source and destination IPs, ports and protocols
>>
>>138617477
>custom roms
shit
>update
doesn't matter going forward they're all gonna run it
>>
>>138615993
find 4chan users, and unperson them on internet
>>
>>138617562
>HTTPS
>secure
hahahaha do you live under a rock?
>>
>>138615711
A vpn sends everything you retarded fuck
>>
>>138614795
Nigga it'sa VPN designed to allow you to connect to public wifi without worrying about people hacking your shit. If you don't like it you can turn it off.
>>
>>138617562
exactly you dumb leaf, who the fuck do you think issues certificates? who runs your android phone. Google does.
>>
File: 1502920490118.jpg (298KB, 908x446px) Image search:
[Google]
298KB, 908x446px
>>138615239
>Better hope that middle man is more trustworthy than your ISP.
My ISP is a local duopoly that treats everyone like shit because they have the wires in place and the only other option is their twin; Take your pick between former telephone provider or former cable provider.
My VPN is competing on a global market and anyone can switch at anytime.
>>
File: 1501806003085.gif (468KB, 148x148px) Image search:
[Google]
468KB, 148x148px
Don't extrapolate from things you don't understand. Sure this is a botnet, but this works by securing open/ public networks that are unencrypted.
In this case, googles botnet is a hell of alot better than your trap porn being transmitted unencrypted on your companies public WiFi.
If you're here and you don't have you're own private VPN server, then you're the kind of normie retard that will benefit from this.
>>
File: hf_120682_employer.jpg (31KB, 450x270px) Image search:
[Google]
31KB, 450x270px
To those still not understanding what this means. It means:
1. Google can now control what you get and what not. AKA: Censor
2. Google can now record all your internet actions
3. Google can now manipulate the traffic. Not only the "News" you now NOT get but the "News" they want you to believe.
>>
>>138617846
you sound like a negroid. no wonder you don't understand shit about technology.
>>
You guys, you misunderstood what VPN is.
VPN = virtual PRIVATE network
basically, all andriod users are inside the PRIVATE network of Googlag.
It is literally the matrix shit.
>>
>>138617947
>you sound like a negroid
no argument left to make retard? stop making WRONG statements and getting BTFO
>>
>>138617947
How is he wrong though?
>>
>>138617316
thats what youre actually supposed to do, its simple as fuck. plus you get rid of google spying on you.
>>
>>138615764
Compared to what Apple? Lol... Srs though what is an alternative?
>>
ITT : some google employees trying to brainwash us.
Literally, google now is the most evil company in the human history.
What are we going to do about it?
>>
>>138618102
>plus you get rid of google spying on you.
have you ever read CIA leaks? backdoors are in chips (Intel AMT plus others) and routers, and phones, and everything pretty much. AMT works outside of OS.
>>
>>138618069
jesus fuck, how don't you understand what a VPN is.
a VPN protects you against your ISP, but it simply reroutes your traffic to a middleman. google can literally control all traffic you see. including dropping any or all connections. its that simple.
>>
>>138618102
>get rid of google spying on you
More like you challenge google to find new ways to spy on you. Thats what they want
>>
>>138618319
>a VPN protects you
only if the VPN is to be trusted. retard
>>
>>138617253
>it won't record shit
:^)
>>
>>138618171
Convince the US government to label them a public utility and prevent them from continuing their evil ways. Break the monopoly apart if needed.
>>
>>138618054
show me one post where i was 'BTFO'
>>138618251
true but you can temporarily disable Intel AMT. you cant disable TrustZone.
>>
>>138617928
Wrong in every way
>>
who here flip phone + unregistered pocket android master race
>sturdy as fuck
>reliable
>phone is a phone
>battery lasts a week
>touch typing while watching where Im walking
>not a slave to mobile internet
>>
>>138618360
read the rest of my post you fucking moron.
i said google spies on you.
>>
Why not just turn it off?
If your argument is that they're forcing this option on people without telling them, it's pretty easy to tell when you're being routed through a VPN. It's the dumb masses fault for not being aware enough to protect themselves from jewish tricks
>>
>>138618535
>you can temporarily disable Intel AMT.
lamoooooooooo only if you use a custom bios like libreboot, which is unfinished and not supported on most hardware
>>
>>
>>138618164
>>>/g/62035284
>>
>>138618506
never going to happen. fat americans believe censorship is ok if its against the 'fascists'. they don't even understand manufacturers are ripping them off by rebranding tech every gen.
>>
Easy way to range ban all phone posters then
>>
>>138618506
that's not how do you it in all the movies where big evil corporation controls everything.
>>
>>138617988
No this is really nothing. Google wants your information that it can actually sell, they get everything they need from chrome.
Google aren't doing deep packet inspection here. They are pretty tight on end to end encryption because a failure on their part means a quick end to their company if private data leaks.
Google is rather mining meta-data but it gets everything it could gather from the VPN service, from chrome users anyway (the same frameworks integrate with android without chrome).
Don't chase false leads, many of legitimate things to hold google to the fire for, this is not one.
>>
>>138618745
the google vpn will be banned instantly. otherwise people will post cheese pizza
>>
>>138618647
its still possible, if youre willing to go far enough.
>>
ITT: Dumbasses, its easy as fuck to check site ssl signature to know the connection is from them
>>
File: limpet.jpg (6KB, 400x226px) Image search:
[Google]
6KB, 400x226px
>>138618385
>:^)
It won't. Google knows how to watch its dealings and knows that 99% of the population has know idea wtf theyre doing when they use their services and those people dont care either.
So google leaves the option to turn off the spy shit so nobody can bring a lawsuit.
Do you unironically believe they'd risk anything to know what some faggoty basement dwelling weeb is doing in its spare time? Google is pulling in unheard of amounts of data, theyll do fine without yours.
>>
>>138618907
libreboot will just open other gaping holes
>trusting in some fucking freetards to be competent
those people never ever finish anything
>>
>>138614795
Listen faggots!
A simple question: does this enforce VPN to google all the time?
>>
>>138619054
who hands out the certificates? :^)
>>
>>138618780
you still think Google is content with regular evil methods just the sake of money.
they are way beyond that.
>>
>>138615748
google would keep a database of racists and give them up to the government to have us all put to death
whether or not that will actually happen is a totally different question obviously, but if you dont believe this, you are fucking naive, eric schmidt is a scum sucking commie faggot who wants nothing more than total world domination, and subversion of the will of mankind
>>
>>138618647
Its pretty simple to block outbound AMT ports. I think you're confusing AMT with Intel ME
>>
>>138618737
i dont use google nor microsoft spyware.
>>
>>138617557
The fact that you think cyber security purely involves cryptography already tells me that this conversation is going to go nowhere if I engage. Learn what cyber security is, then come back.
>>
>>138618600
They dont allow the nokia 3310 in the US
>>
>>138619116
VeriSign mostly you dumbfuck
>>
>>138617637
HTTPS is just HTTP over SSL/TLS you moron.
Are you saying Google can decrypt TLS messages on the fly without the CA key?
Even if they exploit the protocol or implementation bugs, most of them are time based, and require access to either source or destination servers.
Regardless, Google already own your phone and its SSL implementation. They don't need to eavesdrop the connection/traffic. It's a lot simpler to just snoop thru your phone anyways.
>>
>>138619081
Not if you disable
>>
>>138614795
Good thing I only use android for mobile waifu games.
>>
>>138619081
probably only if you use open wifi networks. but no one knows yet until tested. google can't be trusted. see: >>138616944
>>138619156
yeah I meant intel ME
>>
>>138615239
>In the UK that is unironically true
t. now has to use a VPN to torrent GoT from PirateGoy
>>
ok guys, false flag.
I googled and read every link related to the matter. and there is nothing wrong with it. They are just trying to build a better internet for all of us.
>>
>>138618581
Shut up you lying jewgle shill!
>>
>>138619054
no. first off TLS is compromised. second certificates can only be trusted if you trust the source.
>>
File: 1502787390875.webm (277KB, 480x360px) Image search:
[Google]
277KB, 480x360px
>>138619258
Pics of mobile waifus or gtfo
>>
>>138614795
>There are still people on this website that think just because you are going through a VPN means your IP is covered up.
>There are still people who believe that they can be safe using the internet
If you are posting or lurking here you are compromised.
If you have a smart phone you been compromised location wise.
Using the internet compromises you instantly.
>>
>>138619121
I'm saying that all the information they can possibly gather from this VPN service is readily available to them already.
I'm completely aware that they're a Marxist pseudo government that needs immediate removal. But from a technical perspective this isnt significant.
>>
>>138617637
Please explain how SSL/TLS is insecure. I'd love to hear.
>>
>>138619328
Technology is your friend and allows us the communication advantage that we currently own over the libtards.
>>
>>138619337
>TLS is compromised
Nope
>second certificates can only be trusted if you trust the source.
Yeah, that's why you check and install only the certificates you trus, duh
>>
>>138619337
>TLS is compromised
this
>>
>>138619221
and theyre not compromised you fuck?
they share all certs with NSA read the snowden leaks. that was 10 years ago btw. plus a root CA can undermine all of that (which android does)
>>
>>138617857
You're trying way too hard to seem like you know what you're talking about. Just let the adults talk.
>>
>>138619326
kys shill.
>>
>>138619222
It's safer not to do the dirty work on your phone; rather, do it on their remote servers.
now, ok, you think you can trust the public keys. or can you? it is your phone that told you you can trust it.
>>
>>138619438
Its not inherently secure,
Outdated ciphers and poor implementations of the protocol (t. Heartbleed) pose real security threats
>>
>>138619676
he's obviously making a joke post you idiot.
>>
>>138614795
JFC. I don't want Apple or Google ANYTHING.
What are my options?
>>
>>138619576
>and theyre not compromised you fuck?
Why are you asking you stupid fuck, learn2encrypted communications first then come back with some proof first, retard.
>plus a root CA
It wouldn't change the site signature at all, inform yourself please, stop posting fucking retard
>>
>>138619627
youre somehow the adult? TLS is compromised proven. Google controls android proven. Root CA undermines all your sec, proven. Google can use metadata to track you proven.
Where am I wrong?
>>
>>138617857
Point being is that if they manage to install a root certificate in your phone, they don't need to snoop the VPN traffic, as they can decrypt any SSL traffic anyways, going thru the VPN or not, by setting simple a MITM proxy on the phone itself. That's easier and cheaper for them as the cost of decryption falls on your phone and not on their servers.
>>
>>138619576
there is no fucking way NSA does not have the keys.
>>
>>138619467
>being censored, banned and kicked off various platforms for speaking against cultural marxism is and advantage
>when they kill us we win
spotted the canadian doing a vacation in usa
>>
>he connects to open wifi
how fucking dumb do u gotta b
>>
>>138619817
TLS is COMPROMISED you moron. read up on the algos used and their vulnerabilities.
>>
>>138619815
>What are my options?
end internet subscription and throw away all electronics
>>
>>138619704
Heartbleed was only a problem in servers that specifically used OpenSSL, not to mention that that was years ago. Any present-day evidence that suggests it's insecure?
>>
>>138619960
It would show a different site signature you fucking retard, please, PLEASE stop posting you dumbass
>>
>>138619865
>Point being is that if they manage to install a root certificate in your phone, they don't need to snoop the VPN traffic
no. its of massive use due to real time data collection.
>>
>>138619438
It is centralized system for validating public keys. You have built-in Certificate Authority keys on every device that uses TLS/SSL. These keys are used to sign all other TLS certificates. Basically, if any owner of the CA key that you have installed decides to MITM your connection, it could produce a "fake" cerificate without you being able to notice it, since you trust all your CAs. Crypto itself is secure, but the key validation is centralized and flawed.
>>
>>138620063
no it wouldnt you fuck. im not talking about installing root CAs(although they already do that)
im telling you its possible to decrypt messages encrypted with any algo used with TLS. you encrypt something and Google can real time decrypt it.
>>
>>138619200
>oh dear by the time i can think of something to say you made a 2nd point,...I KNOW!, ill just disregard everything said up to this point.give up, and slowly walk away from the conversation
>>
AYO HOL UP
*logs in to windows*
YOUS SAYING
*opens chrome*
WAIT HOL UP
*reads new mails on gmail account*
SO YOU WUZ TELLIN
*googles sexual fetishes*
THEY BE WUT
*makes political comment on facebook*
DA KIKES BE LIKE
*uses porn sites*
YA MEAN
*watches youtube video*
DAYUM
*patiently waits for the ad to finish*
SHITS CRAY
*makes an interracial cuck post on /pol/*
THEY BE SPYING ON ME AND SHEIT???!!!
>>
>>138619828
>TLS is compromised proven
[citation needed]
>>
>>138620234
Nope, they don't, and you haven't posted any source or proof whatsoever.
FUCK OFF RETARD
>>
>>138619433
the more attack vectors, the better for the bad guy
>>
>>138620059
insecure and old algorithms. not to mention all of them are vulnerable to quantum comp. which google and NSA already have access to.
TLS uses extensively SHA 256 which is outdated and shouldnt be used, theyre going to announce a hash collision this year btw.
>>
>>138617253
>You: "Please don't record me google"
>Google: "Yeah sure, okay Goy. You got it!"
>>
>>138620324
>>138620262
>>138620234
>>138620117
>>138620114
>>138620063
>>138619960
>>138619932
It's clear that all of us are only disagreeing on futile points. Can we all just agree that Google is bad and using their VPN is bad and be done with this?
>>
>>138619901
Are we not communicating here and now on this board via communication?
Their censored websites are making them retarded and will make it for us easier to defeat them. How do you think Trump won? P lefties were soo brainwashed by their sites they were easily defeated
>>
>>138616421
get out of my swamp!!!!
>>
>>138619697
I don't believe for a minute the likes of verisign are sharing it's CA private keys with Google, though the NSA is a different story.
>>
>>138620059
Hence a problem in the implementation of SSL, its not the first nor the last.
If I purposely configure my nginx server to accept poor cyphers for example, breaking the encryption is trivial.
The point is simply that SSL/TLS is a chain, strong as it's weakest link.
>>
My note4 will be the last android device I use. I might just go back to flip phone to be honest.
>>
>>138620550
Thats exactly it. And its that simple.
I think you dont realize that a thread like this is designed to show us that a "rogue" google can certainly spy on us, but day to day google wont spyon us if we opt out.
>>
>>138616944
I hate google, but I went to the link in that article, and I've never been there before, and it has nothing recorded about me other than youtube history.
>>
File: retards.jpg (50KB, 750x600px) Image search:
[Google]
50KB, 750x600px
>>138620481
That's not proof whatsoever, please refrain from posting unless you get some evidence of your claims anon
>>
>>138620309
look at every single algorithm TLS uses.
anything from hashing to encryption/signing
EVERYSINGLEONE has numerous vulnerabilities. not to mention they dont use full keysizes due to 'speed'. most vulnerabilities are caused by improper RNG. not enough entropy = algo inherently broken.
similar to how SHA-1 was considered ((good enough)) until BOOM, researches found a collision.
screenshot this.
in 1 year they're going to find a sha-256 collision. then in 2 years theyre going to crash AES-128. they can already do this today
>>
>>138620117
In the 90s Feds was fighting really hard to make crypto illegal. And then suddenly they dropped it.
>>
>>138620427
More attack vectors over unencrypted wifi traffic? Not to say google plans to ONLY secure unencrypted traffic, but assuming that to be true then this is a net security benefit.
>>
>>138620904
You're saying it is insecure "NOW" and then you're saying it will be insecure in "1 year", then "2"?
Please just stick to >>138620906
>>
Worst part is free market won't do its job probably and people will think that's useful.
>>
>>138617253
>>138619074
you 2 ever heard of the issue with the 0 and 1 in the first win10 "upgrade", something about always staying on 1 even if you (((checked))) the 0 for do not track/do not send reports to m$
>>
>>138617893
Correct. If this bothers you or you have your own VPN solution, don't use it.
On balance this is a good thing for their users. And I really hate Google.
>>
>>138619337
>TLS
On what level and what fucking proof? No fucking vague and ambiguous, "I just know, bro" answers. Give direct technical docs or bug submissions or anything of that sort.
>>
>>138621037
no you autist.
ITS INSECURE NOW. they will post PROOF IN 2 YEARS TIME. they can already break everything today. when the first public stories come out regarding anything, assume its already been used in practice for the past 5 years at least.
look there are already tons of vulnerabilities regarding TLS. it should have been dropped years ago. the entire scheme is bad. from the algos to how its implemented.
>>
>>138620673
no, but I mean the phone doesn't need the private keys. In end-to-end crypto, you are not the end, the phone is the end, and the phone is google.
>>
>>138616944
I don't even sign in to chrome and there is no history connected to my account. I did review the history and it was watch ive watched on youtube (i am signed in there) and my manual searches, that was it.
>>
File: proofs.png (124KB, 382x491px) Image search:
[Google]
124KB, 382x491px
>>138621270
Its like talking to literal toddlers
>>
>>138620703
dont. flip phones are compromised since the feds record ALL phone calls in and out of the US. flips have 0 crypto so you cant protect yourself.
>>
>>138618171
Literally, nothing.
>>
>>138620703
Dumbphones are exactly that: dumb. The workarounds have been effective for decades now.
At least whit a smartphone you can get root and fix the thing--somewhat.
>>
>>138620920
/pol/ by default is unencrypted. How careless am I. The good guy Google automatically encrypts and routes it through their VPN, I feel so safe now.
the argument is -- your traffic can be snooped by middleman; so let Google snoop it instead.
>>
>>138621421
i gave you tons of 'proofs' already, you toddler.
>>
>>138619326
I kekd a little. Have a (you).
>>
>>138621421
Mixed up terminology. TLS is a set of encryption methods, some of these have known security vulnerabilities.
Typically the TLS spec is updated enough to keep on top of KNOWN security vulnerabilities. The problem in general is devices and software are rarely up to date with the TLS spec.
>>
>>138622157
Every crypto algo is broken, even post-quantum ones and one time pad. Here is my proof: .
>>
File: hqdefault.jpg (14KB, 480x360px) Image search:
[Google]
14KB, 480x360px
>>138614906
>filenames can now consist entirely of emojis
emoji file ending when?
>>
File: imagination.jpg (32KB, 584x412px) Image search:
[Google]
32KB, 584x412px
>>138621421
Who needs proofs when I have something better?
>>
>>138621319
Yep. that's what I mentioned in one of my posts
>>
>>138619978
Extremely tempted to do that honestly.
>FUCK THIS GAY EARTH
>>
>>138622082
You're misunderstanding the layer that this is operating.
Android 8s VPN is transport layer, not application layer.
Even if /pol/ is using http, so long as /pol/ is tunneled along the proposed encryptedVPN, the outcome is the same for the security issue this is aimed to solve. Specially me sniffing your companies WiFi traffic.
>>
>>138622381
relatively true. the problem is many of the currently included algos have theoretical vulnerabilities if paired with a predictable seed. there are better algos which dont do this, but they arent included in the spec.
furthermore tech companies have been mass shilling for elliptic curve crypto, most of which have numerous potential vulns.
>>
>>138622920
also, NSA dropped elliptic curve based crypto back in around 2013 IIRC. quite telling.
>>
>>138623078
>furthermore tech companies have been mass shilling for elliptic curve crypto, most of which have numerous potential vulns.
Well it wouldn't be promoted if it didn't have some kind of benefit at all, as that would be entirely malicious as opposed to sleazy.
>>
>>138622710
1: Rent a VPS
2: install openvpn server
3: Route all devices through this VPN server
>>
>>138614795
>((((VPN))))
google stealing your data
>>
>>138614795
>2017
>still uses Jewdroid
When will they learn.
>>
>>138622710
I ended my home's internet sub. only got it on my phone now (unlimited 4g).
I'm hoping it will make me pirate less tv/movies so I waste less time since I'd have to tether my phone to my pc to download (and that's an extra step).
who knows if it'll work
>>
>>138623223
Thats because it was autistic from its inception. We have much better handshake algorithms
>>
>>138614795
Haha, Jewgle is getting bolder.
>>
>>138623339
> rent a VPS
theres your problem. renting a VPS from any company will likely get you a backdoored instance. you should purchase the physical hardware to be secure.
>>
>>138622920
the choice is whether some imaginary rouge hacker possibly snooping my posts on /pol/
or whether google VPN server definitely knowing what I am posting on /pol/
In the name of security the industry has done a lot of shady stuff. but really what's the last time Man-In-the-Middle attack has happened? It is a boogie man.
>>
i hope they enjoy my shitty furry yiff RPs
>>
I remember when there were contractors on /g/ denouncing that the USA had a vast array of spy networks and anons calling them schizo tin foilers. Even early there was project echelon, and of course it was a "conspiracy theory". Flashback now and microsoft openly spy on us and the NSA was real all along, just negated until the very last second. People are such good goys...
>>
>>
>>138623507
We need to balance practicality here. Its the best way for normies to gain the most privacy with the least effort and possibility of fuckups.
>>
>>138622082
Google Captcha captures everything you do on polo, way beyond you can even imagine. Every click, scroll, tap, swipe is recorded on every single website with captcha. A snapshot of the entire page you are on is created, and finally it reads the google cookies out of your browser to personally identify you
Google/Facebook/Amazon KNOW so much it is frightening to even think about
Don't believe me?!?!?!? Just read the terms & conditions, if you dare...
>>
>>138623582
My point is theres no reason to assume that a VPN is going to give them information they couldn't have gathered their existing platforms.
>>
>>138623972
wrong.
they can now get info when you use other people's services/platforms
>>
>>138623485
the problem is all companies are massively shilling for it, cloudflare, google, apple etc.
there have been numerous papers published on potential vulns EC crypto has. yet these companies are pushing for it to be everywhere due to better 'performance' and speed.
https://www.youtube.com/watch?v=BLGFriOKz6U
^^ heres what ((iOS security)) looks like.
massively overcomplicated system.
listen to what he says at 39:30 regarding the FBI. in the Q&A section he backpaddles at least 10 times with no appropriate answers.
then after all this ((security)) you get this
https://www.youtube.com/watch?v=IXglwbyMydM
simple bypass, after they received pressure from the FBI to implement a backdoor.
now to everyone proving me wrong, tell me how Google wont use their VPN services to fuck you in the ass ?
>>
>>138623776
google recaptcha can be
A) bypassed
b) disabled, and enabled only when you post.
>>
>>138624151
Have you seen the scope of googles frameworks for android? They have this already.
Look into the microg project BTW, everyone should be using it on their android device.
>>
>>138623972
the VPN route provides a perfect cover up story - they are providing a value-added service, meanwhile they will totally not looking at your traffic on their server, pinky swear.
This is much better than doing shit secretly on your phone.
>>
>>138623740
true. although if you attract enough heat a VPS wont really save you, unless you rented it via anonymous methods. if the feds come knocking the server owners will through you under the bus without a second thought.
>>
>>138616839
>your assertion that orea uses on constantly is just inane.
THIS IS WHAT A VPN IS YOU FUCKING FAGGOT SHILL
>>
>>138624263
EC vulnerabilities dont matter here. The VPN has encryption between you and google. They don't need to break the encryption because its decrypted at their end by design.
They are fucking you over, my point is, they don't need to waste the bandwidth on a VPN services when they already have the facilities to fuck you over.
I make this point to highlight the CURRENT privacy issues.
>>
>>138624425
who do you honestly think is doing either of those things
>>
>>138624906
this is true, although with every gen they keep pushing for more intrusive spy methods.
with the last few mobile OS iterations, apple and google have pushed for text to speech features on by default, auto translation facilities, all content stored in the cloud, 'AI' chatbots/assistants, iris scanners, face detection.
every gen they do this. i wouldn't be surprised if in a few years they add blood detection as a method of logging into your phone.
>>
>>138625284
honestly? no one.
the point is it can still be done.
what google is doing cannot be easily reversed or fixed without spending months reverse engineering or simply reinstalling your entire phone OS. that's the point. at this point if you want a secure phone you have to put it in a faraday pouch.
>>
I've been seriously thinking about switching to iphone
I know apple does the same shit but I can't stand googles sleazy shit
>>138625499
your fingerprint is as good as your blood
>>
>>138625499
Look into the microg project
https://microg.org/
Tldr, it's a reverse engineered, open source implementation of googles proprietary frameworks for android, and it works really well.
Android + microg let's you de-jewgle your phone without the loss of the useful features
>>
>>138625752
>your fingerprint is as good as your blood
https://www.youtube.com/watch?v=YJg02ivYzSs
>>
>>138625752
true, but you can easily find fake silicon fingerprints to spoof detection. finding fake human blood is much more difficult.
>>
>>138625752
buy a phone thats offically compatible with lineage OS and install micro-g as explained above.
Maintain the functionality of a proper smartphone and your privacy
>>
File: 1499944838410.jpg (11KB, 251x242px) Image search:
[Google]
11KB, 251x242px
>>138614795
>company routes your data through their servers while on open and public connections so dumbasses can't phish themselves or get intercepted
>this is bad because muh joos
>>
>>138626442
Trumpcucks are hopelessly stupid and reactionary. They deserve gas chambers.
>>
>>138626178
i havent looked into compatibility, but lineage OS doesnt support all phones, which may be a problem for some people.
>>
>>138626442
not at all what the topic is about. reading comprehension is 0/10
>>
I've downgraded to 4.4.4 months ago. That "lollipop" shit was clanky as fuck and candy names were plain creepy
>>
What phones do spooks use
>>
>>138625712
you know it's funny a while back John Mcafee was on infowars of all places saying basically every smartphone in the world is a bug. At the time I thought he was maybe a bit frazzled but now I see it's actually way worse than that. They really are the most god-tier snooping machines imaginable
>>
>>138626939
define spooks.
>>
>>138624906
This
>>
>>138626939
Blackberrys
>>
>>138614795
>connecting though some random hackers laptop is OK
>connecting through Google is bad
t. /pol/
Don't use open WiFi if you're paranoid.
If you must connect to open WiFi this is the safest solution so far.
>>
>>138615584
>VPS
how paranoid are you fucks
Thread posts: 219
Thread images: 20
Thread images: 20