BaroqueInMind

Opnsense > pfsense

The fact that I have to go through a fucking purchase page, even though pfsense is free (for now), is sketch as hell. First step in their inevitable enshittification.

Opnsense is funded by European non-profits, and is has a better UI

Why would a post on a .org domain blog site about blocking AI bots be relevant to my VPN?

Im not a cloudflare dick rider, so if you have a suggestion for a better service with commensurate features, im all ears.

Yep. Why do you ask?

Not a bot. Both of you can go fuck yourselves with an ENTIRE can of bear mace.

I’m getting a 404 error, using Cloudflare DNS, who ironically has the best commercial clanker protection in the world, otherwise half the world’s internet wouldn’t use them

This page isn’t loading for me.

I hide it behind Cloudflare. I assume that since most of the world pays them for domain security, and if Cloudflare goes down so does half the internet, I thought to try them out. Best decision I’ve made. They blocked substantial DDoS attempts on my IP, a fuck ton of malicious web scrapers that attempt CVEs, and they also allow me to have very specific users access to my domain using complex allow lists, zero-trust, and DNS over HTTPS.

Build your own using a mini PC that is capable of having multiple ethernet adapters , or any old laptop or PC that has multiple ethernet ports or multiple wifi modems, and install OPNsense or pfSense as the primary OS and essentially own your own network.

Extremely privileged of you to think that one can simply live a routine life thinking they are safe, while immigrants in the US aren’t breaking the law and still getting rounded up into concentration camps.

China doesn’t have laws enshrined in its constitution to protect immigrants like the US does (yet the Executive Branch barely give a fuck about the law), so they (China) can do whatever they fuck they want. Not defending anyone, just illuminating it since I am ignorant af

I like skepticism, it’s healthy. I like it when everyone questions and doubts in order to find the truth. It can go too far sometimes and you get anti-vax morons and flat-earth dipshits, so there’s a level of curiosity that, once it becomes unhealthy or unusual or the answer is clearly out in the open/conspicuously apparent, should be punished.

China blocks newer TLS and forces a TLS downgrade of a version they have decryption capabilities of - https://www.f5.com/labs/articles/threat-intelligence/the-2021-tls-telemetry-report

More info - https://gfw.report/publications/usenixsecurity23/en/

More - https://www.scmp.com/news/china/politics/article/2167240/chinese-police-get-power-inspect-internet-service-providers

Chinese cryptography law mandates packet inspection and supervison of all foreign telemetry - https://link.springer.com/chapter/10.1007/978-3-031-11252-2_4
https://en.m.wikipedia.org/wiki/Cryptography_law

If you are truly skeptical of one of the world’s largest cyber threat actors with an enormous economy and large population of cyber security experts is or isnt capable of trivially decrypting TLS, I don’t know how else I can convince you that they are capable.

People posting here don’t realize that CN gov IDs and allows certain traffic to get rerouted through a certain VLAN so they can do DPI and record every packet through a beefy expensive tap device to analyze the telemetry later, and potentially build a case against you. If they so choose. And they likely have the capability to trivially decrypt TLS.

Don’t bring in any tech, don’t access your personal net back home, don’t expect any level of actual privacy or good intentions. Just do your business and keep your digital digital persona minimal while there.

How?