Jump to content
Not connected, Your IP: 18.210.24.208

cm0s

Members2
  • Content Count

    303
  • Joined

    ...
  • Last visited

    ...
  • Days Won

    9

Reputation Activity

  1. Like
    cm0s reacted to LZ1 in My review on FN, we should all help AirVPN get noticed   ...
    Hello!
     
    That's nice of you .
     
    It's hard to reach the top of most review lists, when you don't do bribes lol . Hence why PIA is everywhere - Got to wonder if that's a coincidence ^^. 
     
    Jokes aside:
     
    Taking a skeptical point of view, one could argue that Air isn't necessarily all that interested in being at the top of every list, seeing as while that means more revenue potentially, it also potentially means more complete novices. Novices which, if coupled with a lack of patience, can become quite the nuisance for Air and people on the forum and thereby leave as angry customers; perhaps ones who'll then actively try to discredit Air, wherever they go, because they couldn't get Eddie to run on their toaster and get a reliable connection to Nigeria, if you know what I'm saying haha. Unreasonable requests.
     
    Because remember, Air is quite technical. Or at least quite open about being so. Which means a lot less information is hidden or abstracted from its users; unlike perhaps most other VPNs. This can overwhelm people .It should be said however, that Air already enjoys a very positive reputation and as such will naturally reach those users who are perhaps already in tune with Airs views and methods; uncompromising security, no overselling or absurd marketing fluff and lots of technical features to explore, provided one has the patience and curiosity. Thank you for the links however. I might add my own review eventually.
     
    I've seen reviews where Air basically gets 10/10, but isn't listed as number 1 on the list. Sometimes the reason is a lack of protocols such as PPTP and such. Other times user hostility is mentioned, in the sense that Air is very complicated to get into for technical novices (which I then sought to remedy). Still other reasons used to include a lack of country servers or device allowances; where other services would allow 5 devices per account, Air would allow 3 or less. Where other services would have servers literally everywhere, Air would seem limited in comparison. So, provided that the reviewers don't go beyond the veil of marketing, it's really not so surprising if Air gets short changed. I mean, which service do you choose: the one with 1000 servers or the one with 200? It's obvious......... Until you discover that the ones with 1000 servers all over the world, are mostly using Fake GeoIPs lol. But unless you take a closer look into what service you're buying, you might not discover these things. Or worse, you might not care. So why should Air care for such customers in return? All I'm trying to say is, don't despair if Air doesn't appear at the top of the chart, because in the end, quality shines through, but Air can't be everything to everyone, as I see it ^__^.
     
    Air can try its best to secure its service and provide you with a default level of high-security, but it can't fix stupid .
  2. Like
    cm0s reacted to Casper31 in Oldie but a goodie   ...
    Thanks for this link.
    Gr,Casper
  3. Like
    cm0s reacted to routeninja in Oldie but a goodie   ...
    Completely agree!
     
    It is just like he said in the video, I often find myself self-censoring and being super concerned every time I want to send a file or a message to a friend. I have to have it encrypted or use a non-standard program that has encryption. It's not a problem for me, it's just getting my connections to use them as well. It should not be that way...
  4. Like
    cm0s got a reaction from Casper31 in Oldie but a goodie   ...
    if ya look at life in general, whether a fish or critter on land, everything has a 'den' or 'home' a place to 'hide' or go to for safety
    without that, life wouldn't not be able to survive, at all
    without 'privacy' critters wouldn't have a safe spot to eat, feed their young etc
     
    ya look at any animal in captivity, no matter how well kept, and it hurts the heart
    they have no privacy, at all
     
    if ya were to ask me the biggest threat to mankind besides an asteroid i'd say lack of privacy
  5. Like
    cm0s got a reaction from Casper31 in Oldie but a goodie   ...
    if ya look at life in general, whether a fish or critter on land, everything has a 'den' or 'home' a place to 'hide' or go to for safety
    without that, life wouldn't not be able to survive, at all
    without 'privacy' critters wouldn't have a safe spot to eat, feed their young etc
     
    ya look at any animal in captivity, no matter how well kept, and it hurts the heart
    they have no privacy, at all
     
    if ya were to ask me the biggest threat to mankind besides an asteroid i'd say lack of privacy
  6. Like
    cm0s got a reaction from LZ1 in Fake News   ...
    what LZ1 said totally nailed it
    i love my country man but yup like the rest of the
    world she's got problems
    when i was a kid, if you saw something on the news or
    in a newspaper you could pretty much bank on it
    not always but most of the time
    i literally do not know what to trust any more with the
    news basically stopped watching it
     
    the other side of the coin on it too is i'm exhausted from
    just seeing continuous bad news on folks
    i know bad news sells, i get that but in the end i don't like
    the way it started to have me look at the world or people
     
    add to the fact most of it is celebrity junk today
    look, attagirl for the kardashians man, glad they made uber
    money, doin well, good to see some gals haven some biz power
    for a change, but holy shit man, every day on google news
    all ya see
    'kim farted at 5 0 clock, kanye in distress' or something equivalent
     
    to be really blunt about it (LOVE the 420 slang) i trust folks out of
    the states basically 'street level' or 'net level' whatever you want to call it
    than anything else
     
    i can't stand 99% of what's on tv don't even have tv
    once in a while i'll grab a torrent like pbs nova or frontline etc
     
    it just seems it is more show biz today than anything else
    it wears ya down too, too much info, xyz person in a scandal
    really? like no shit
     
    i'm not a bieber fan but he's another good example
    look, at that age, you gave me a few million dollars and world wide fame
    yeah, lets just say some interesting things will most likely occur
     
    just seems like it's always tearing people down
     
    people do a lot of good, they never make the news either
     
    heck i didn't even know about the fake news thing with fakebook
    till after the election, think i read it somewhere online
     
    well, i got lots of BS myself man so if someone needs an author for fake news
    and you pay well, hey, keep me in mind
    i can come up with any kind of lie you want as long as your check clears lol
     
    thanx for topic
     
     
    cheerz
  7. Like
    cm0s got a reaction from LZ1 in Fake News   ...
    what LZ1 said totally nailed it
    i love my country man but yup like the rest of the
    world she's got problems
    when i was a kid, if you saw something on the news or
    in a newspaper you could pretty much bank on it
    not always but most of the time
    i literally do not know what to trust any more with the
    news basically stopped watching it
     
    the other side of the coin on it too is i'm exhausted from
    just seeing continuous bad news on folks
    i know bad news sells, i get that but in the end i don't like
    the way it started to have me look at the world or people
     
    add to the fact most of it is celebrity junk today
    look, attagirl for the kardashians man, glad they made uber
    money, doin well, good to see some gals haven some biz power
    for a change, but holy shit man, every day on google news
    all ya see
    'kim farted at 5 0 clock, kanye in distress' or something equivalent
     
    to be really blunt about it (LOVE the 420 slang) i trust folks out of
    the states basically 'street level' or 'net level' whatever you want to call it
    than anything else
     
    i can't stand 99% of what's on tv don't even have tv
    once in a while i'll grab a torrent like pbs nova or frontline etc
     
    it just seems it is more show biz today than anything else
    it wears ya down too, too much info, xyz person in a scandal
    really? like no shit
     
    i'm not a bieber fan but he's another good example
    look, at that age, you gave me a few million dollars and world wide fame
    yeah, lets just say some interesting things will most likely occur
     
    just seems like it's always tearing people down
     
    people do a lot of good, they never make the news either
     
    heck i didn't even know about the fake news thing with fakebook
    till after the election, think i read it somewhere online
     
    well, i got lots of BS myself man so if someone needs an author for fake news
    and you pay well, hey, keep me in mind
    i can come up with any kind of lie you want as long as your check clears lol
     
    thanx for topic
     
     
    cheerz
  8. Like
    cm0s reacted to cm0s in ZCASH - Genuinely Anonymous Altcoin   ...
    i remember when bitcoin came out, put it this way, if i'd purchased a couple grand of it at that time...
  9. Like
    cm0s reacted to cm0s in ZCASH - Genuinely Anonymous Altcoin   ...
    i remember when bitcoin came out, put it this way, if i'd purchased a couple grand of it at that time...
  10. Like
    cm0s got a reaction from giganerd in ZCASH - Genuinely Anonymous Altcoin   ...
    group hug
  11. Like
    cm0s got a reaction from giganerd in ZCASH - Genuinely Anonymous Altcoin   ...
    group hug
  12. Like
    cm0s got a reaction from Kepler_452b in ZCASH - Genuinely Anonymous Altcoin   ...
    i'll find someone that reads manuals...
  13. Like
    cm0s got a reaction from Kepler_452b in ZCASH - Genuinely Anonymous Altcoin   ...
    i'll find someone that reads manuals...
  14. Like
    cm0s reacted to grok in Apple releases extremely critical security update, quietly.   ...
    The general rule is: the bigger the corporate interest -- the less they can be trusted. But that's only a general rule.
     
    Which makes Apple, Microsoft, Google and Oracle the Four Horsemen of The Apocalypse, I would think.

     
     
    -- grok.
  15. Like
    cm0s got a reaction from FromtheWalls in A review on another site   ...
    fyi:
    i think the 'review bandit' took one of my bananas
     
     
    cheerz
  16. Like
    cm0s got a reaction from kraecker in General questions abour AirVPN and using it over TOR   ...
    what LZ1 said

     
    cheerz
  17. Like
    cm0s got a reaction from kraecker in General questions abour AirVPN and using it over TOR   ...
    what LZ1 said

     
    cheerz
  18. Like
    cm0s got a reaction from RidersoftheStorm in transmission bt with airvpn on bodhi linux   ...
    set your local to static shut off any dhcp server etc on your router
     
    the one device most folks don't config is actually mohr important than the boxes
     
    themselves and that is the router
     
    what you connect to and through is sum pretty impohtunt facterd
  19. Like
    cm0s got a reaction from mrgrey in WebRTC-Leaks not shown by ipleak.net   ...
    what zhang888 said
  20. Like
    cm0s reacted to zhang888 in [Request] Tips for watching sports streams   ...
    If you are an active content consumer, I would recommend subscribing to a premium provider such as Netflix, Hulu etc, whatever fits your needs more.
    For a small monthly fee you will benefit from a large amount of content, with well maintained CDN networks that can ensure high quality streaming that
    in most cases would only be limited by your network connection speed.
     
    You can get some content free, but this will usually involve installing special "hacks" or closed source junk like all those Popcorn clones, and the quality
    will mostly depend how popular that particular content is.
    Some of the money you pay for premium also goes to the content distributers, and this is important since you won't have any ads in the middle.
     
     
    Offtopic:
    I think this is the real answer against piracy, not DMCA laws. During many years I never found myself paying for content, just because I never found
    the need or the prices were too high. But with this, it's like a flat-rate internet plan to stream all you can, with some perks like no junk or almost zero
    risk of getting spyware from installing a yet another streaming app with it's own plugins.
  21. Like
    cm0s reacted to giganerd in Windows 10: Helper software for editing privacy-related settings   ...
    Whenever I read something about Windows 10, be it a news article or a forum post, I also read the word "privacy nightmare". It refers to excessive data collection practices by Microsoft's new operating system. Some of these can't even be disabled by going the usual way using built-in settings.
    Luckily, these are the forums of a VPN provider where you can find guides on what to look out for when you want to forcibly shut down the unnecessary "spying". And I wanted to contribute to this by introducing software which helps with this task.
     
    O&O ShutUp10
    Focused on privacy settings Must be installed: No Icons after every setting warn you about possible risks Shows you what exactly is changed Convenient search if you look for a specific setting DoNotSpy10
    Focused on disabling services like Cortana, sensors, telemetry, and others Must be installed: Yes traffic light coloring of settings indicates possible impact on the system shows brief explanations for every setting free download is ad-supported W10Privacy
    Focused on privacy settings and all pre-installed apps Must be installed: No More detailed toggles, like just preventing OneDrive's sync feature instead of disabling/uninstalling it as a whole traffic light coloring of every setting indicates possible impact on the system hovering over a setting shows some info on what is done when toggled Maybe we should not ditch the OS but ditch the name: Microsoft Privacy Nightmare, or PN. Microsoft PN. Would really be a witty step after the last creative developer left Microsoft sometime after the Vista release. If you ask me, they instead hired devs who get an instant erection seeing so much data.... from just one Win10 installation.
  22. Like
    cm0s reacted to cm0s in Windows 10: Helper software for editing privacy-related settings   ...
    Bill has 90 billion tax free reasons why he luvz your credz
     
    wwwwwwwweeeeeeeeeeeeeeee........
  23. Like
    cm0s reacted to hackers2016 in Any Recommendations on a Good Ant-Malware Program   ...
    if you are on windows 7 BitDefender total security if you are on windows 8,8.1 or 10 low level format on your HDDs and go back to windows 7 or better get any LINUX
  24. Like
    cm0s got a reaction from Kepler_452b in Tor or not Tor   ...
    use as many layers as ya can
     
    cheerz
  25. Like
    cm0s got a reaction from OmniNegro in nginx naxsi with tor service stealth mode   ...
    note: 060417
    a tor onion service set to stealth mode is
    NOT listed in the tor directory and in order
    for a visitor to access the site they need the 'key' as
    explained below added to their torrc or torrc file in the
    tor browser bundle
    this means your site is not tied to any
    gen'd hidden service addy and you have full control of the
    traffic, basically a 'closed' site member only
    you can not even access the site from the server itself
    without the 'key' added to the torrc file
    to me, this is one of the best fucken ways to host a site
    #
    # nginx/naxsi | tor website
    # stealth mode
    # 022517_edit | arch linux
    # -----
    tor hidden service stealth mode
    nginx config on arch linux
    # -----
    darknet info: en.wikipedia dot org/wiki/Darknet
    tor stealth info: whonix dot org/wiki/Hidden_Services
    deep web info: en.wikipedia dot org/wiki/Deep_Web
    tor info: en.wikipedia dot org/wiki/Tor_%28anonymity_network%29
    stunnel: en.wikipedia dot org/wiki/Stunnel
    openvpn: en.wikipedia dot org/wiki/OpenVPN
    airvpn ssl: airvpn dot org/ssl/
    nginx info: en.wikipedia dot org/wiki/Nginx
    web app firewall: en.wikipedia dot org/wiki/Web_application_firewall
    naxsi: proteansec dot com/application-security/naxsi/
    duz/dontz: hongkiat dot com/blog/do-donts-tor-network
    crenshaw: youtube dot com/watch?v=eQ2OZKitRwc
    # -----
    gen the tor hidden service name...
    # netctl stop eth0
    # ip link set eth0 down
    # cp /etc/tor/torrc /etc/tor/torrcbkup
    # nano /etc/tor/torrc
    at the end add this shit:
    # -----
    ##hidden service site in stealth mode
    HiddenServiceDir /var/lib/tor/
    # HiddenServicePort 80 127.0.0.1:80
    HiddenSErvicePort 443 127.0.0.1:443
    HiddenServiceAuthorizeClient stealth SUMFUKGROUP
    # -----

    fire up shit...
    # netctl start eth0
    # /usr/bin/tor -f /etc/tor/torrc

    give couple secs then stop tor...
    # kill $(ps aux | grep '/usr/bin/tor' | awk '{print $2}')

    snag the hostname...
    # cat /var/lib/tor/hostname
    you'll get sumthin like this:
    c6yn3YERSITEk3o7.onion u8fAQVZixxxx/kbqTJkzHR # client: SUMFUKGROUP

    the hostname is to be placed in anyone on tor at the bottom of their
    torrc file, in the browser bundle usually located:
    /browser/TorBrowser/Data/Tor/torrc
    gets added as such:
    HidServAuth c6yn3YERSITEk3o7.onion u8fAQVZixxxx/kbqTJkzHR

    on the box running the nginx server you do not need to add it to your
    /etc/tor/torrc config file but if you are running tor regular without
    the tbb on another box you do need to add it to your torrc so your
    'torified' browser can access the site via the tor network

    harden the hosts file: h0stz
    harden the .httaccess: htaxx

    to config AUR
    scroll down to 'packer' section run those commands then...
    # cd /home/build
    # sudo -u nobody packer -S nginx-mainline-waf
    example config for tor hidden service/naxsi:
    #
    # ----- nginx config -----##

    user www-data;
    worker_processes auto;
    pcre_jit on;

    events {
    worker_connections 768;
    # multi_accept on;
    }

    http {

    ##
    # Basic Settings
    ##

    sendfile on;
    tcp_nopush on;
    tcp_nodelay on;
    keepalive_timeout 65;
    types_hash_max_size 2048;
    server_tokens off;

    # server_names_hash_bucket_size 64;
    # server_name_in_redirect off;

    include /etc/nginx/mime.types;
    default_type application/octet-stream;

    ##
    # Logging Settings
    ##

    access_log /var/log/nginx/access.log;
    error_log /var/log/nginx/error.log;

    ##
    # Gzip Settings
    ##

    gzip on;
    gzip_disable "msie6";

    # gzip_vary on;
    # gzip_proxied any;
    # gzip_comp_level 6;
    # gzip_buffers 16 8k;
    # gzip_http_version 1.1;
    # gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript;

    ##
    # nginx-naxsi config
    ##
    Uncomment it if you installed nginx-naxsi
    ##

    include /etc/nginx/naxsi_core.rules;

    ##
    # nginx-passenger config
    ##
    # Uncomment it if you installed nginx-passenger
    ##

    #passenger_root /usr;
    #passenger_ruby /usr/bin/ruby;

    ##
    # Virtual Host Configs
    ##

    include /etc/nginx/conf.d/*.conf;
    include /etc/nginx/sites-enabled/*;

    ## Include for blocking
    include blacklist.conf;
    include blockips.conf;
    }


    #mail {
    # # See sample authentication script at:
    # # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
    #
    # # auth_http localhost/auth.php;
    # # pop3_capabilities "TOP" "USER";
    # # imap_capabilities "IMAP4rev1" "UIDPLUS";
    #
    # server {
    # listen localhost:110;
    # protocol pop3;
    # proxy on;
    # }
    #
    # server {
    # listen localhost:143;
    # protocol imap;
    # proxy on;
    # }
    #}
    #######################################################
    #
    # sites-available config:
    #
    server {
    listen 127.0.0.1;
    root /srv/html/;
    index home.html;
    server_name c6yn3YERSITEk3o7.onion; # replace this with your own
    }
    #
    #######################################################
    #
    # sites-enabled:
    #
    server {
    listen 127.0.0.1:443;
    root /srv/html/;
    index 1ndx.html;
    server_name c6yn3YERSITEk3o7.onion
    ssl on;
    ssl_certificate /etc/nginx/ssl/yerkey.crt;
    ssl_certificate_key /etc/nginx/ssl/yerkey.key;
    add_header X-Frame-Options "DENY";
    server_tokens off;
    location / {
    try_files $uri $uri/ =404;
    include /etc/nginx/naxsi.rules;
    }
    }

    server {
    listen 127.0.0.1;
    server_name c6yn3YERSITEk3o7.onion
    return 301 https://c6yn3YERSITEk3o7.onion$request_uri;
    }
    #
    ########################################################
    #
    the config above is set to allow only https traffic
    often question is 'why do that, tor is encrypted'
    plus the 'untrusted connection window' annoyance
    for me itz just a preference, i like layerz
    and the untrusted window acts as a blocker in a way
    so config this shit how you want yer shit to roll

    # mkdir /etc/nginx/ssl
    # openssl req -x509 -sha256 -newkey rsa:2048 -keyout /etc/nginx/ssl/yerkey.key -out /etc/nginx/ssl/yercert.crt -days 1024 -nodes -subj '/CN=c6yn3YERSITEk3o7.onion'

    there ya go, a nyce one liner, make sure yer site's domain is after the '/CN' common name
    make sure in the config that naxsi core rules are uncommented and herez the blakl15t
    the blokip should be in the config also

    add this into your /etc/nginx/naxsi.rules:

    # ------
    # Sample rules file for default vhost.

    # LearningMode;
    SecRulesEnabled;
    #SecRulesDisabled;
    DeniedUrl "/RequestDenied";

    ## check rules
    CheckRule "$SQL >= 8" BLOCK;
    CheckRule "$RFI >= 8" BLOCK;
    CheckRule "$TRAVERSAL >= 4" BLOCK;
    CheckRule "$EVADE >= 4" BLOCK;
    CheckRule "$XSS >= 8" BLOCK;
    # -------

    this has learning mode OFF which means shit is blocked
    # systemctl start nginx
    # systemctl status nginx

    go to your site's addy try to access a file say: https://c6yn3YERSITEk3o7.onion/blank.html?asd=----

    to see if the 'attack' hit yer logz...
    # tail -f /var/log/nginx/error.log

    should see something like this:

    2016/11/16 15:28:18 [error] 15277#0: *1 NAXSI_FMT: ip=127.0.0.1&server=c6yn3YERSITEk3o7.onion&uri=/blankshit.html&learning=0&total_processed=6&total_blocked=1&zone0=ARGS&id0=1007&var_name0=asd, client: 127.0.0.1, server: c6yn3YERSITEk3o7.onion, request: "GET /blankshit.html?asd=---- HTTP/1.1", host: "c6yn3YERSITEk3o7.onion"

    that means shit is working
    mod any of the configz to yer needs, any improvements, suggestions please contact
    #
    https://github.com/mariusv/nginx-badbot-blocker
    https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker
    http://7bj57iubvkvwe3n4vozvx5qiixm67te4yue76tsdu6l5aeoti342spqd.onion/nav/linux/nginx.html

×
×
  • Create New...