I sometimes only setup #tor #onionservice for services I run on a VPS because this is so awesome 🧅
#OnionService
Due to the Cloudflare issue, you cannot search for “Linux distributions” on The Pirate Bay.
Luckily, The Pirate Bay is also accessible via an onion service. This means that nothing stands in the way of leeching and seeding Linux distributions. Arrrrrr!!! 🏴☠️🏴☠️
http://piratebayo3klnzokct3wt5yyxb2vpebbuyjl7m623iaxmqhsd52coid.onion/
Our onion url is finally live! Enjoy!
http://neodystrpcug565q4t6ufos7pclk4gcf7vj7jdiqzyhqp52vgpgep4ad.onion
#privacy #misskey #tor #fediverse #onionservice
@ginaintheburg as for #BonaFide #OnionService domains, @alecmuffett ¹ and I ² each maintain lists of sites you can visit right now on #Tor.
@torproject @tails_live @tails @cryptoparty@mastodon.earth @cryptoparty@chaos.social
@adisonverlice even if an #MVNO isn't demanding any #KYC whatsoever (i.e. #prepaid are offered OTC in most juristictions) it's NOT "#Anonymous" but merely #pseudonymous as it's trivial for governments to utilize existing and mandtory "#LawfulInterception" appliances to create that #PII chain.
#PhoneNumber <=> #ICCID (#SIMcard) <=> #IMSI (SIM profile) <=> #IMEI (Phone/...).
So if #Anonymity is important, NONE of these details have to be linked somehow even circumstantial.
Bought/paid for the phone/SIM/ a single top-up with ec/CC/PayPal/SEPA/… = busted due to circumstantial connection.
Use the SIM in any device? Consider them circumstantially connected forever: #ICCID <=> #IMEI.
Add to the fact that most places have #CCTV, and assume that they'll keep recordings for the maximum permissible duration if not longer and oftentimes even use questionable cloud services and you get the picture.
- I.e. in Germany the maximum permissible storage duration is 72 hours (if nothing hapoens that warrants a longer storage i.e. burglary/theft/robbery/arson/...) so anonymous top-ups would necessitate paying cash at a place one's not been known at (i.e. some kiosk) and waiting at least >72 hours (and checking on the purchase location) before redeeming the top-up code (i.e. dialing
*104*1234567890123456#)...
So any #privacy-based service should never ever & under no circumstances demand a Phone Number!
Instead any privacy-focussed service should use #OnionServices, host their own #OnionService or at least #DontBlockTor and allow users to use it via @torproject / #Tor to use and signup. (But don't forget circumstantial connections there either!)
Also the less details they want or store and the least traffic they generate the harder it is to correlate traffic & users.
@OhMyGod Remember: ANY "#KYC" in terms of #Messenger| #Apps IS the #IllicitActivity!
Regardless if @matrix or @signalapp , the sheer request, demand or coercion onto #PII like a #PhoneNumber or #eMail-Address is bad.
- If providers like @mullvadnet can do a #VPN without any PII and can offer their Service via @torproject / #Tor and host their Website as #OnionService, then there's no good reason for others not to do the same.
Personally, I'll recommend to switch to some real #E2EE with good #SelfHosting options like @delta / #deltaChat [which uses #PGP/MIME) or @monocles / #monoclesChat (which is based upon #XMPP+#OMEMO and who do host their own servers which are user-financed and can be paid for 100% anonymously.
@artfulmodder last time I checked @signalapp still demanded #PII in.the form of a #PhoneNumber, still peddled the #MobileCoin #Shitcoin #Scam and didn't move out of the #Cyberfacist #USA despite #CloudAct being nothing new!
- Not to mention #Signal is both able and willing to discriminate against users based off said PII. Just because they do it for "#Sanctions #Compliance" diesn't mean they ain't gonna change that nor that @Mer__edith (or anyone else at Signal) could be bribed or threatened to do so.
They are #centralized #SingleVendor & #SingleProvider and are thus a #SinglePointOfFailure per design!
- Unlike @delta (which is #PGP/MIME in a different UI) or #XMPP+#OMEMO (which you can use via @torproject / #Tor and connect to a Server that is an #OnionService.
IMHO "memory tagging" is the least of Signal's problems. To me they stench "#ControlledOpposition" just as hard as #ANØM and incompetence as hard as #EncroChat!
Moving away from the constant upgrade cycle & moving closer to the ideals of #PermaComputing #MalleableSoftware
Design and setup a redundant system of old/used, cheap, low-power devices running ia: #Guix, #Linux, #FreeBSD, #macOS, #HaikuOS, #Plan9Front, #X11, #P9, #NFS, all working together
Become an expert on #MicroControllers #ESP32 #STM32 #RP2040 #MIPS #RiscV
DIY sensors which sing like birds to communicate their status
DIY robots "drones"
Move as much as possible of my computing needs to the #Terminal, #Emacs, #Rio #CLI #TUI #P9
Get an #3DPrinter and learn to use it
Design and build my own portable 8dot #braille terminal & try out if 3x3 or 3x4 dots is also workable.
Design and build my own low-power computers, their OS, and tools
Writing more of my own tools #DIY
#SmallTalk #ObjectPascal #Prolog #Scheme #Racket #CommonLisp #Haskell #Rust #Go #ObjectiveC #Swift
Deploy #LoRa #ReticullumNetwork #RNodes #MeshCore #Meshtastic
Start an #InternetResiliencyClub
Add #Tor, #I2P support by #WebProxy
#SolarPowered #SelfHost over #I2P, #OnionService #Blog #Wiki #Repositories #GopherHole #Darcs #Mercurial
#SelfHost my own #EmailServer, which will only accept email from #KnownServers #CommunityEmail #MutualEmailAcceptance
Share files via #BitTorrent over #I2P
DIY #HomeAutomation
DIY #GardeningAutomation
DIY #GreenHouse
Get a house cat, train the cat, use voice and gestures
Start asking money for advice & technology support
Build/program my own opportunistic and strange cryptocurrency miners #BTC, #XMR, #ZEC, etc #Art
#MakeMoreArt #LearnToDraw #Learn3DModeling #LearnGenerativeArt #LearnToComposeAmbientMusic
#ReCreateJottit #ReCreateInstikiWiki
#WriteMore #PublishMore #Letters, #Essays, #Missives, #Reports, #Treatise
…
@Cappyjax IDGAF about "passion". All I care about is the security of users!
Requiring any #PII like a #PhoneNumber is inacceptable when it comes to #ComSec, #InfoSec & #OpSec, espechally given @signalapp is not only able but entirely willing to restrict service based off said numbers, making their "solution" insecure by design.
- There's a reason why #XMPP+#OMEMO and #PGP/MIME [both each over @torproject / #Tor] is the evidently superior and more secure approach, as being unable to "#KYC" a user is a matter of security...
Espechally since obtaining a phone number anonymously is oftentimes illegal (i.e. #Germany made it illegal starting 07/2017, so using any service that demands a phone numner is out of question)
- And even if one can get an anonymous #SIM (with a phone number) or god forbid #eSIM, (which is at best pseudonymous as tracking down users by virtue of matching ICCID, IMEI & IMSI to location and time) the chances are high that one ends up with recycled phone numbers that have already been used.
Obviously the devs of #Signal and @Mer__edith are well aware of this critical flaw, which is why I consider them to act as "useful idiots" or rather "controlled opposition" as #Signal could've been shutdown trivially by the #US Government or forced into banning users based off their #PhoneNumbers (they may call this "#sanctions #compliance" given they added a #Shitcoin - Wallet into Signal!)...
- All the "but #Metadata" #FUD turns into #MarketingLies once put under the looking glass and examined against the risk of state-sponsored / -endordsed / -supported attackers.
Whereas with @monocles / #monoclesChat, @gajim / #gajim and @delta / #deltaChat and @thunderbird / #Thunderbird respectably I can not only use Tor, but do #SelfHosting for the entire #communications infrastructure (i.e. using an #OnionService = only reachable via Tor) and get the advantages of a self-routing, self-authenticating & battle-hardened against censorship proxy network that can't be shutdown!
- And if you think this is too tinfoilhatted, then consider yourself privilegued enough of having your mere existance not being criminalized by the government under threat of public execution!
https://ilga.org/wp-content/uploads/2024/02/ILGA_World_map_sexual_orientation_laws_December2019.pdf
https://infosec.space/@kkarhan/114697690127511140
I'm right now between blogs…
I will set up a new blog soon... self-hosted w/o revealing my ip-addres, which means this time it will be an #I2P site and maybe a #OnionService
¯\_(ツ)_/¯ DNS + domain names are a huge scam in which I do not want to participate
I wish #i2p, #tor, & #reticulum were broadly supported by F/L/OSS OSes & by all web browsers… it's sufficient to open the designated tool when you click on it but having a (local) proxy redirect the request correctly would be better
@lukeshu So I guess #Anubis has an explicit exception to handle #Lynx and will instead rely on rate-limits and other static means to detect #scrapers and handle with #UserAgent #abuse cases, like #fail2ban-style autobanning of violating IPs...
- This makes sense for a #WAF like Anubis and would've been the only viable option I'm aware of.
I wounder if anyone has tried using Anubis on @torproject / #Tor to protect #OnionService|s since that would be a reasonable application for it as well.
#Tor is mainly known for the anonymity it provides, but the #onionservice is also awesome for easy networking and #encryption I just made my #yacy instance accessible via a .onion-addresse in about 10 Minutes.
@torproject is awesome! @orbiterlab
🇬🇧 Braydmedia Glitch is now available via #Tor as an #Onionservice
Normal URL: https://glitch.braydmedia.de
Onion: http://4c3uahsne52rrat6jwwpfmkptpgpds6gc756kajdkihchovargfkvfad.onion
@ranjit yes!
- And I'd love to copy that for a machine that checks #OnionService availability on @torproject / #Tor...
@woffs @stefanmuelller wenn die von @tazgetroete ist werd' ich die in meine Liste an #OnionService|s packen...
@stefanmuelller @tazgetroete was ich hoffe: #taz macht nen #OnionService auf und verweigert sich #Schutzgelderpressern wie #ClownFlare weiterhin!
@debby that assumes @protonprivacy actually cares about #Privacy, which they evidently don't, cuz otherwise they'd never even #log or #request any #PII to begin with and instead offer their Services via @torproject / #Tor as #OnionService…
- Not to mention they fuck around with customers' #eMails, thus having prevented people from contributing to the #LKML in the past...
To me this isn't a big loss, but a conditionless surrender in favour of better competitiors like @monocles and even @Stuxhost for that matter...
Still no #VPN fan but @airvpn / #AirVPN at least has a purpose given they have an #OnionService at: http://airvpn3epnw2fnsbx5x2ppzjs6vxtdarldas7wjyqvhscj7x43fxylqd.onion
- Circumvent #DontBlockTor-blockades and provide an alternative @torproject #ExitNode...
@pixelcode @taylan Your nonchalant "So what?" gets people publicly murdered by the state in many juristictions...
- Which is why there is no substitute to teaching proper #TechLiteracy ffs!
If things were so easy as in "JuSt UsE sIgNaL!" then @signalapp would be shut down.
- Or do you really think that in a world where multi-year long sting ops like #ANØM / #OperationIronside / #OperationTrøjanShield get greenlit that @Mer__edith would risk dying of old age in jail for non-paying users?
If you do think so then you should really get some professional help, cuz you seem rather lost...
- #Signal doesn't even bother to have an #OnionService, much less to provide means to use their service without self-doxxing with a #PhoneNumber, which at best is pseudonymous and requires money to attain and maintain...
It's #centralization is an absolute nightmare and mist be deemed as criminally neglectful!
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst