Sign into an existing account

I know way way way too much about these topics. I don't wish to get involved in long tutorials.

SSL is the topic (H T T P S).

You are confusing.

RSA is not part of SSL (H T T P S) for many newer modern keys. ECDSA was introduced in the specification of TLS v1.2 in 2008. ECDSA is not RSA.

If you look at the SSL certificate by clicking on the PADLOCK on the upper left of your browser and geeting details you will see RSA is not part of SSL for voat.xyz via cloudflare, the SSL is using ECDSA.


See? Its "ECDSA with SHA-256", not RSA. ECDSA is more secure, if its your SSL key and not a man-in-the-middle key (CloudFlare). MITM article are on the internet.


Yes but not part of voat.xyz discussions. For some special targets, but not brute force. Brute force SSL cracking of 100% secure end to end would take longer in 2021 than the heat death of the universe.

Oh I get it now!!! You got totally fooled by the padlock. Click it. Its a CloudFlare certificate not a domain certificate to voat.xyz!!! See?!



Its not a SSL key end to end for voat.xyz, and also its a TERM OF SERVICE VIOLATION of Cloudflare to implement extra custom encryption within browser javascript

There is no RSA the front side path between you and CloudFlare.

Feds on talk.lol HATE my following post, but...

NO CONNECTION to talk.lol is secure, not even over VPNs (historically due to several long-time exploits). talk.lol still uses free Cloudflare.

TOR and TAILS have had multiple exploits revealed in Federal Court by FBI in the past, and some not revealed.

ALL talk.lol P2P PRIVATE MESSAGES HAVE ALWAYS BEEN PUBLIC!!!! (CLOUDFLARE)

As stated on terms of service page of cloudflare, all encrypted information sent over H T T P S to Cloudflare's semi free Anti-DDOS system cannot use the SSL key (the H T T P S key) of talk.lol... and MUST, absolutely MUST allow complete open decryption and logging by CloudFlare prior to relaying back and forth to talk.lol.

NO DATA IS UN-READABLE by CIA/ NSA/ NRO/ FBI/ DIA/ USDOJ/ State Dept INR/ USAFISR/ DOE/ DHS/ TFI/ ONSI/ NSF/ USPS/ etc, etc etc its all in the open and open warrant requested from cloudflare often... all private messages are fully logged for the us gov at CloudFlare. This is true. Cloudflare is TRANSPARENT to us gov data requests by their policies :

https://www.cloudflare.com/transparency/

Check who owns your current SSL certificate you use to connect to talk.lol... it is CLOUDFLARE!!! Look yourself. click on the padlock. CloudFlare... not really talk.lol.

if you doubt me, click on padlock in your browser and read the signatory owner of the SSL key for yourself!!! It is NOT under any control of talk.lol

proof of what i say :

https://www.cloudflare.com/ssl/

and :


https://www.troyhunt.com/cloudflare-ssl-and-unhealthy-security-absolutism/


No way to ever use CloudFlare as a service without all user transmissions stored and cached by CloudFlare's partners :

https://security.stackexchange.com/questions/175740/how-can-cloudflare-read-encrypted-request-without-private-key

Having talk.lol users KNOW that the FBI is reading all talk.lol messages is something the US LEA tries to suppress on talk.lol

VPNs no ideal solution for talk.lol either! (many different exploits leak IPs):
============

Tor ? Tails? nope!!!! They for years had hidden backdoors proven if you read the release notes of TAILS
TAILS too? Yup, Even the famous https://tails.boum.org/

...had WebRTC enabled by accident (or by mossad on purpose) in past versions of TAILS, and if you read ALL THE CHANGE NOTES OF ALL VERSIONS you will learn I am telling the truth on the one little note they fessed up.

https://medium.com/%40blackVPN/critical-windows-exploit-webrtc-can-expose-your-real-location-ip-address-even-when-using-a-vpn-4555d2fd280d

https://www.exploit-db.com/exploits/44403/

https://blog.ipvanish.com/webrtc-security-hole-leaks-real-ip-addresses/

https://thehackernews.com/2015/02/webrtc-leaks-vpn-ip-address.html

https://www.reddit.com/r/VPN/comments/2tva1o/websites_can_now_use_webrtc_to_determine_your/

That is NOT the only weakness in Tor browser, there were other non-WebRTC leaks!!!! Javascript (required for talk.lol) and (required for Cloudflare) had exploits in summer 2019 that leaked endpoint IP addresses, and even allowed kernel level OS alteration on Mac OS using TAILS!!!!!! Many years of tails exploits prior too.

NO large web browser should EVER be trusted not to divulge IP addresses over VPN

Anyone trusting using TAILS along with its graphical browser, is a patsy. The rest are in prison already if they were criminals.

Only use text messaging , not a graphical web browser, when using TAILS, or tor services and VPNs! No fancy web browsers!

Even better, use a "one time visit" concealing gait and face, to a coffee shop.

Remember TOR/TAILS often runs unstoppable javascript using exploits by FBI, such as the infamous recent noscript vulnerability!...

https://www.netsparker.com/blog/web-security/noscript-vulnerability-tor-browser/

javascript code can cause lots of problems for your anonymity, and even root your machine , as in summer of 2019.

HTML5 fingerprints and indestructible cookies also thwart SOME VPN users too :

https://33bits.wordpress.com/2010/02/18/cookies-supercookies-and-ubercookies-stealing-the-identity-of-web-visitors/

25% of sites fingerprint you using javascript (talk.lol's CloudFlare and others, require javascript to connect)

2020.08 : A quarter of the Alexa Top 10K websites are using browser fingerprinting scripts!

https://www.zdnet.com/article/a-quarter-of-the-alexa-top-10k-websites-are-using-browser-fingerprinting-scripts/

Tor (TAILS) and VPNS worthless if you have talk.lol chat window open this month:

WARNING! - 2021.08.24 - How Data Brokers Sell Access to the Backbone of the Internet from ISPs to Help ADL/SPLC/MOSSAD/JIDF track H T T P S periodic tiny chat packets through VPNs to voat.xyz, as I mentioned hours before this was written

https://www.voat.xyz/viewpost.php?postid=612697d6584b3

https://www.vice.com/en/article/jg84yy/data-brokers-netflow-data-team-cymru

For very little money ADL/SPLC/JIDF/MOSSAD/China/Russia can pay for a data seive of specific size H T T P S SSL packets exiting VPNs out of CloudFlare beck to your home address, to get your real IP address when you use talk.lol and have sidebar chat window visible.


TAILS? use HiddenVM too
==============


ASTOUNDING NEW FREE TOOL!! HiddenVM - Use any desktop OS without any traces! Hides your TAILS install completely! Laptops secure at coffeeshops,libraries, etc from Feds copying it!


HiddenVM – Use any desktop OS without leaving a trace , Hides your TAILS install completely!

open source and looks amazing, so its probably secure. open source rarely has malware in it

https://github.com/aforensics/HiddenVM


https://news.ycombinator.com/item?id=22492343

There are many reasons why you may want to use HiddenVM.

whonix OS! inside HiddenVM, for TAILS on a USB, for coffeeshops or libraries: ...

I SUGGEST if you do not need OSX or Windows, to install Whonix secure Tor anonymization and TAILS inside your HiddenVM !!!
https://www.whonix.org/


TL;DR: TOR and TAILS still risky, and talk.lol will probably have real H T T P S with end to end encrypted private messages when funded better and cloudflare gone and the SSL cert updated to not be owned by cloudflare, until then all private messages are public. Tor/Tails/VPN ended up sending a lot of people to prison for many years due to outrageous exploits in it. The FBI for years in fed courts tossed entire cases rather than reveal how they exploited tails, Multiple cases tossed. The secret was more important than another conviction or two.


I do not wish to engage in a running dialog on these topics. All I write is 100% correct. In the past, whenever people keep typing "but why" "but how" and I have to keep answering with evermore unpublished and underpublished cryptopunk (cyberpunk) revelations of Chinese cryptography recent papers, or fresh NSA-parallel university cryptography papers, or quantum computer advances, or 100 terabyte presalted rainbowtables, I start to glow too much. Even I get blinded from my own glowiness, so I learned long ago: GIVE ONE DETAILED COMMENT and a single mic drop. I also learned 90% of the people demanding answers are most likely LEA feds fucking with me. Playing me like a tool. Or feds try to 'become my buddy pal'. So its one answer and a 'mic drop'. They can naysay all they want or belittle me all they want, and its not like I am revealing inter-router-firmware exploits by feds in 90% of people's homes ( https://www.wikileaks.org/vault7/ ).

The cyberpunk community of darkweb programmers do not like to be known or targeted, or die in mysterious unfortunate car wrecks or "accidents".

I also no longer care about my reputation, as I shred my name every 90 days, and its long overdue to bury the manifestation of this 'try' persona. I keep 'try' alive this week because it serves as a forensic pincushion to aid the main admin in detecting which specific SBBH/ALS/Leftist accounts here are downvoting the educated builders, to disenchant them. Free speech sites have many enemies. Glowniggers are not enemies of free speech sites, they use them as a form of 'de facto' honeypot, but 'cia glowniggers' totally rage at my words above and try to denounce it, pathetically. Additionally, the paid leftist downvoters (ADL/JIDF/SPLC/ShareBlue) are trying to sequentially run off each educated "builder", to ruin this Jew Naming free speech site.

Jews and Glowniggers on voat eventually all downvote these "ways and means" revelations of mine. But my words are trivial to corroborate.


I am 100% correct about all the above.

account deleted by user