[ rss / options / help ]
post ]
[ b / iq / g / zoo ] [ e / news / lab ] [ v / nom / pol / eco / emo / 101 / shed ]
[ art / A / beat / boo / com / fat / job / lit / map / mph / poof / £$€¥ / spo / uhu / uni / x / y ] [ * | sfw | o ]
logo
sheds

Return ] Entire Thread ] Last 50 posts ]

Posting mode: Reply [Last 50 posts]
Reply ]
Subject   (reply to 10933)
Message
File  []
close
horse.jpg
109331093310933
>> ID: e36cd9 No. 10933 Anonymous
1st August 2013
Thursday 6:29 pm

ID: e36cd9
10933 HTTPS
Please make .gs use HTTPS so the three/four letter agencies have it a little more difficult.
46 posts omitted. Last 50 posts shown. Expand all images.
>> ID: 382f43 No. 13402 Anonymous
5th November 2015
Thursday 11:23 am

ID: 382f43
13402 spacer
The Govt making all unencrypted traffic light reading for your local council's IT department is surely the impetus we need to implement this.

IRC supports SSL, so why not allow encryption on .gs?
>> ID: bb677d No. 13403 Anonymous
5th November 2015
Thursday 12:18 pm

ID: bb677d
13403 spacer

tmp_30854-1376560-goeb11292680807.jpg
134031340313403
>>13402
If you've got nothing to hide, you've got nothing to fear, m7.
>> ID: 382f43 No. 13404 Anonymous
5th November 2015
Thursday 1:01 pm

ID: 382f43
13404 spacer
>>13403

Jokes aside, this is a pretty serious invasion of privacy.

Expressing you opinion anonymously is something this site enshrines. We need HTTPS now for that to remain true.
>> ID: 18b6a9 No. 13405 Anonymous
5th November 2015
Thursday 5:26 pm

ID: 18b6a9
13405 spacer
>>13404

We've needed it for years, but the admin team has never been able (or willing?) to provide it. With Let's Encrypt it should now be a relatively straightforward affair - providing the admin team doesn't make a dog's dinner out of it and sets PFS up properly. Providing that is done I'll put myself up for writing a short guide on how to do certificate pinning correctly so that anyone who wants to use this site as securely as possible will be able to.
>> ID: ae830e No. 13406 Anonymous
5th November 2015
Thursday 5:28 pm

ID: ae830e
13406 spacer
>>13405
The Admin team is nonexistent. purple left the website in the hands of one of the teenagers and nothing really will ever get done on this site anymore. It's a shame, it used to be quite fun.
>> ID: 270409 No. 13407 Anonymous
5th November 2015
Thursday 8:20 pm

ID: 270409
13407 spacer
>>13406
Don't be a cock I read every day.

I've actually changed my mind on the issue - >>13402 is right, this latest change in the law does make me very minded to encrypt a lot more.
>> ID: 5b36c0 No. 13408 Anonymous
5th November 2015
Thursday 8:55 pm

ID: 5b36c0
13408 spacer
>>13407

For users:

https://www.eff.org/Https-everywhere

For admins:

https://community.letsencrypt.org/t/beta-program-announcements/1631
>> ID: a8bb14 No. 13409 Anonymous
5th November 2015
Thursday 9:08 pm

ID: a8bb14
13409 spacer
>>13408
Let's Encrypt doesn't support nginx.
>> ID: bc3137 No. 13410 Anonymous
5th November 2015
Thursday 9:38 pm

ID: bc3137
13410 spacer
>>13409
Pound works pretty well for adding an SSL layer and has a fairly low admin overhead.
>> ID: 26307d No. 13411 Anonymous
5th November 2015
Thursday 10:51 pm

ID: 26307d
13411 spacer
>>10933
Surely if someone packet sniffs the entire conversation on https, they would be able to decrypt the traffic?
>> ID: 5b36c0 No. 13412 Anonymous
6th November 2015
Friday 12:56 am

ID: 5b36c0
13412 spacer
>>13411

No. The whole point of HTTPS is that it allows a secure session to be established over an insecure channel. If the client, server and certificate authority are trustworthy then the session is (in theory) perfectly secure.

HTTPS has a vital role to play in reducing the reach of surveillance, which is why Lets Encrypt is such an important project. The NSA and YMCA have spent close to a billion dollars attempting to undermine HTTPS and other cryptosystems, with only shape-shifting reptilianest success. The techies are outpacing the spooks.

https://en.wikipedia.org/wiki/Bullrun_(decryption_program)
>> ID: 2c0227 No. 13413 Anonymous
6th November 2015
Friday 2:11 am

ID: 2c0227
13413 spacer
>>13412
>The techies are outpacing the spooks.

I suspect that we only hear half of what they are capable of. All the typical "black" projects in othe defence sectors (you know, like all the skunkworks stuff) aren't admitted about for years. How long did they keep the stealth bomber a secret for? I imagine it's much the same with whatever vile electronic glass against our wall they are using.
>> ID: d93338 No. 13414 Anonymous
6th November 2015
Friday 9:30 am

ID: d93338
13414 spacer
>>13412
>YMCA have spent close to a billion dollars attempting to undermine HTTPS and other cryptosystems
It was only a matter of time...
>> ID: 39d1fc No. 13540 Anonymous
12th December 2015
Saturday 8:40 pm

ID: 39d1fc
13540 spacer
>>13409

You no longer need to use the Let's Encrypt client as this site allows you to just get the certificate and do the installation and setup manually.

https://gethttpsforfree.com/
>> ID: 270409 No. 13542 Anonymous
13th December 2015
Sunday 10:49 am

ID: 270409
13542 spacer
>>13540
That's interesting. I managed to get on the Lets Encrypt beta list, but there were two issues - they're currently rotating certificates every six to eight weeks, which is boring and they wanted to publish my email address, which is also tedious.
>> ID: 5b8399 No. 13814 Anonymous
27th June 2016
Monday 4:26 am

ID: 5b8399
13814 spacer
>>13542

Any updates on this modlads? It's been another six months. I guess I'll have another dig around and see if things are any easier than they were then, although I'd hope they are.

While I'm here (and because there's no Sheds General thread), I noticed that the geofag for Brazil is 'Nutfag', which while a clever play on Brazil Nuts, isn't really all that funny. I humbly offer up the following alternatives:

Coconut
Dilmafag
HUeHUe
Zikafag
Sextourist

I also look forward to hearing any other suggestions our users may have.

No sage because I want to bump this onto the first page of /shed/
>> ID: 894a44 No. 13815 Anonymous
27th June 2016
Monday 10:46 am

ID: 894a44
13815 spacer
This thread was an amusing read, I think I just avoided it in the past because I don't even know what http means.

What does https do? And what is robots.txt? I've seen the little fucker pop up a lot but I don't know what it is or why it's so named.
>> ID: 5b36c0 No. 13816 Anonymous
27th June 2016
Monday 11:24 am

ID: 5b36c0
13816 spacer
>>13815

HTTP stands for Hyper-Text Transfer Protocol. It's the system used to send webpages and other data from web servers to your computer. The S in HTTPS stands for "secure". HTTPS adds a layer of encryption to HTTP, preventing the data from being intercepted by an eavesdropper. It is essential for things like online shopping and banking, but there is a movement to make it standard on all websites. This movement has been accelerated by the Snowden revelations.

Robots.txt is a standard system for web servers to communicate with automated systems like search engines. It can be used to declare certain files or folders as off-limits to automated systems, or to request that they only access files at a certain rate. It is purely advisory, but systems that ignore the robots.txt can be assumed to be malicious and automatically blocked by a firewall. It's normally used to stop irrelevant things from cluttering up search engine listings, or to stop search engines from battering a server with too many requests.
>> ID: 1fcd65 No. 13817 Anonymous
27th June 2016
Monday 12:00 pm

ID: 1fcd65
13817 spacer

n1 m8 gs wont no wot hit it.jpg
138171381713817
Why bother? There's nothing of security interest here. If Spooks In Specs, Gigantic Crania Hacking Quietly or Mission Impossible 5 decide they'd like a poke around some corner of the domestic internet I strongly doubt even .gs' legendary webmaster could keep them at bay.

I'm not advancing the 'nothing to hide, nothing to fear' trope, just saying it's a bit of a pointless concern. Like investing in a sturdier umbrella to protect against meteorite strikes you don't need it and it wouldn't work if you did. Must say I love the image of some whizzkid locked away in the Doughnut trawling through /iq/ and trying not to snigger.
>> ID: 165961 No. 13818 Anonymous
27th June 2016
Monday 12:17 pm

ID: 165961
13818 spacer
>>13817
>There's nothing of security interest here.
That's the point.
>> ID: 5b36c0 No. 13819 Anonymous
27th June 2016
Monday 1:06 pm

ID: 5b36c0
13819 spacer
>>13817

>Must say I love the image of some whizzkid locked away in the Doughnut trawling through /iq/ and trying not to snigger.

It's not about people, it's about algorithms. HTTPS thwarts the bulk collection and analysis of intercepted data. It forces the spooks to work for their intel, rather than getting an instant picture of who you are, who you know and what you think just by searching for your name in a database.

If you're a target then you're fucked, but good data hygiene can stop you from becoming a target, it can stop you from getting swept up in a dragnet.
>> ID: 1fcd65 No. 13820 Anonymous
27th June 2016
Monday 3:21 pm

ID: 1fcd65
13820 spacer
>>13819
What exactly would I be 'targeted' for?
>> ID: 5b36c0 No. 13821 Anonymous
27th June 2016
Monday 3:44 pm

ID: 5b36c0
13821 spacer
>>13820

Damned near anything that the government considers suspicious. Socialising with the wrong people, visiting the wrong website, signing the wrong petition, travelling to the wrong country, exceeding an arbitrary threshold on some nebulous "risk algorithm" based on your browsing history and the content of your e-mails.

Back in the '70s, my dad had an MI5 file because he was a Student Union rep. Special Branch put me under surveillance because I was involved in the Stop The War Coalition. A photographer friend of mine had a "friendly visit" from SO15 because he was spotted taking photos near the Thames Barrier. Given the scale of their resources today, I expect that GCHQ are monitoring a vast number of people.

I know for a fact that this post has been intercepted and logged by GCHQ, and that the keywords in it will increase the risk score associated with my IP address. I doubt that any human being will ever read it, but I know that it's part of the intelligence profile being constructed about me. If I raise enough red flags, an intelligence analyst will have a good rummage through the collected data to see if I'm a wrong'un.
>> ID: 4ac578 No. 13822 Anonymous
27th June 2016
Monday 3:48 pm

ID: 4ac578
13822 spacer
>>13821
>Back in the '70s, my dad had an MI5 file because he was a Student Union rep. Special Branch put me under surveillance because I was involved in the Stop The War Coalition.
And you know this because...?
>> ID: 165961 No. 13823 Anonymous
27th June 2016
Monday 3:54 pm

ID: 165961
13823 spacer
>>13820
Well for a start you've just posted in an imageboard thread about encryption and GCHQ.

Less facetiously, look at it like this: You lock your door when you leave for work. You're not a criminal, but presumably you're not going to leave a spare key with the police just in case they want to take a look around.
>> ID: 05109d No. 13824 Anonymous
27th June 2016
Monday 4:13 pm

ID: 05109d
13824 spacer
>>13823
This is more like asking your landlord to install an alarm system.
>> ID: 21e20c No. 13825 Anonymous
27th June 2016
Monday 4:18 pm

ID: 21e20c
13825 spacer
>>13823
Jews, Allah, Mohammed, IRA, Republican, Fertiliser, Jet fuel can't melt steel beams.
>> ID: 4ac578 No. 13826 Anonymous
27th June 2016
Monday 4:24 pm

ID: 4ac578
13826 spacer
>>13824
It's actually more like when you stumble home from the pub, pissed, but then get to the door and find you've left your keys on the bar, so you try and climb over the garden fence so you can get to the shed and get a ladder to go through the bedroom window you left open, but you kick over some paint cans and wake up your neighbour, and they ring the rozzers who come and spend an hour questioning you before they leave, and then when you wake up in the morning you find you've shat yourself.
>> ID: 5b36c0 No. 13827 Anonymous
27th June 2016
Monday 4:29 pm

ID: 5b36c0
13827 spacer
>>13822

My father learned of the existence of his file the late 90s, after an investigation and legal challenge by Liberty. If memory serves, the matter was precipitated by the Shayler affair.

My own surveillance was overt, I suspect because it was primarily intended to intimidate me. The officers tasked with monitoring me introduced themselves to my friends, neighbours and colleagues. They were gathering intelligence, but they were also sending a clear message. Overt surveillance is a common tactic in the policing of protest and civil disobedience, the most common form being the Met's use of Forward Intelligence Teams.

https://en.wikipedia.org/wiki/Forward_Intelligence_Team
>> ID: 818452 No. 13828 Anonymous
27th June 2016
Monday 4:31 pm

ID: 818452
13828 spacer
My parents had some overt surveillance too, back in the 70s. It clearly worked because they stopped going to protests and settled down into normal lives and even went as far as to tell me about it as a scare story.
>> ID: e62a57 No. 13829 Anonymous
27th June 2016
Monday 7:09 pm

ID: e62a57
13829 spacer
>>13821
Why the fuck do they care about people protesting war? Where's the security threat there?
>> ID: 5b36c0 No. 13830 Anonymous
27th June 2016
Monday 8:00 pm

ID: 5b36c0
13830 spacer
>>13829

Anything that threatens or inconveniences the government is regarded as a security threat. Environmentalism, animal and human rights, pacifism, you name it. There are a web of secretive organisations whose sole function is to infiltrate and undermine political activist groups.

https://en.wikipedia.org/wiki/National_Public_Order_Intelligence_Unit

The family of Stephen Lawrence were put under surveillance by the Met. An undercover officer was tasked with smearing the family to damage the credibility of their campaign.

https://en.wikipedia.org/wiki/Murder_of_Stephen_Lawrence#Revelations_about_undercover_police_conduct_.282013.29

When the undercover officer Mark Kennedy secretly recorded evidence that would have exonerated six environmental protesters, the Met buried the evidence. Over the course of seven years undercover, Kennedy provided intelligence to the police forces of 22 countries.

https://www.theguardian.com/uk/2011/jun/07/mark-kennedy-police-spy-secret-tapes
https://en.wikipedia.org/wiki/Mark_Kennedy_(police_officer)

There's no ethics here, no honour. They'll do whatever they think they can get away with. Christ knows what SIS get up to under cover of the Official Secrets Act.
>> ID: 165961 No. 13831 Anonymous
27th June 2016
Monday 8:05 pm

ID: 165961
13831 spacer
>>13829
It's an indirect threat. It may prevent action to thwart direct threats elsewhere. See Syria, for example. Protests against engagement persuaded the pollies to prevent us from going in, and the net result was ISIS taking over half the place.[oversimplification]
>> ID: 5e6338 No. 14231 Anonymous
27th July 2017
Thursday 7:29 am

ID: 5e6338
14231 spacer
Hello.

https://doesmysiteneedhttps.com/
>> ID: ec74d0 No. 14232 Anonymous
31st July 2017
Monday 6:12 pm

ID: ec74d0
14232 spacer
Sorry about that lads.
>> ID: cffd41 No. 14280 Anonymous
11th August 2017
Friday 2:00 pm

ID: cffd41
14280 spacer
I'll be setting up LetsEncrypt and HTTPS in advance of the October deadline from the Google Chrome team - at that point, any site that is submitting forms and suchlike will get an insecure content warning, which would be quite boring.
>> ID: 766890 No. 14381 Anonymous
26th December 2017
Tuesday 1:52 am

ID: 766890
14381 spacer
Pardon the necromancy, but LetsEncrypt makes this cost-free as long as you trust certbot (style encryption). If gs these days uses a cdn, then I give up because I don't know what I'm talking about but if it's still single endpoint it should be doable. "Pound" is a great front-end for whatever service does the work. It's all a layer before it hits brian and a layer where filtering would prevent more traffic... as far as I can see should be fine.
>> ID: 766890 No. 14382 Anonymous
26th December 2017
Tuesday 1:56 am

ID: 766890
14382 spacer
>>14381
But of course you know that, so I'm sure there are reasons :(
>> ID: b4d3cf No. 14383 Anonymous
27th December 2017
Wednesday 1:41 am

ID: b4d3cf
14383 spacer
>>14231
I've been looking for this site which I found interesting when it was first posted, so thanks for bumping this thread so I could find it again. I was Googling 'https why' and similar terms and it wasn't coming up.
>> ID: 5c556b No. 14384 Anonymous
27th December 2017
Wednesday 2:18 am

ID: 5c556b
14384 spacer
>>14383
Which website?
>> ID: b4d3cf No. 14385 Anonymous
27th December 2017
Wednesday 4:38 pm

ID: b4d3cf
14385 spacer
>>14384
If we were having this conversation in person this is where I would stare at you until you stopped being a dumbarse.
>> ID: 5c556b No. 14386 Anonymous
28th December 2017
Thursday 1:19 am

ID: 5c556b
14386 spacer
>>14385
Why won't you just link to it, you fucking twat.
>> ID: ec74d0 No. 14387 Anonymous
28th December 2017
Thursday 9:19 am

ID: ec74d0
14387 spacer
>>14386
Why can't you read six posts back?
>> ID: 4c52ec No. 14388 Anonymous
28th December 2017
Thursday 12:19 pm

ID: 4c52ec
14388 spacer
>>14386
>>14231

>>14387
Come on, lad. Let's not make .gs even more autistically insular than it already is.
>> ID: 4260c9 No. 14389 Anonymous
28th December 2017
Thursday 1:39 pm

ID: 4260c9
14389 spacer
>>14388
It's the Christmas cunt-off and is fairly friendly by our standards.

But agree entirely, obvs.
>> ID: 27831a No. 14727 Anonymous
21st September 2018
Friday 1:15 pm

ID: 27831a
14727 spacer
The certificate expired shortly before noon today.
>> ID: 6e8ac3 No. 14787 Anonymous
25th October 2018
Thursday 1:15 am

ID: 6e8ac3
14787 spacer
I just noticed its https now and 😍

Really appreciate the work you did for this.

(A good day to you Sir!)
>> ID: 6e8ac3 No. 14790 Anonymous
25th October 2018
Thursday 10:46 pm

ID: 6e8ac3
14790 spacer
>>14787
Duly noted, I shall contain myself.
>> ID: 33a0e6 No. 14815 Anonymous
20th December 2018
Thursday 1:33 pm

ID: 33a0e6
14815 spacer

cert.png
148151481514815
You know that email that Let's Encrypt sends you to let you know the certificate is going to expire, right? Right?

You know, right? Right?



Right, lads? Right?
>> ID: a0932b No. 14816 Anonymous
20th December 2018
Thursday 1:37 pm

ID: a0932b
14816 spacer
>>14815
We like to let it expire to remind you how secure and private your posts are.

Return ] Entire Thread ] Last 50 posts ]
whiteline

Delete Post []
Password