Originally posted by woohoo
View Post
-
If you are that paranoid you should be using a VPN then, as any Wifi that is not your own is a riskOriginally posted by Stevie Wonder Boy -
I actually post directly on a forum that I host on my own server. I then have a bot that scrapes the content, encrypts it, connects to a VPN (hosted myself, obvs!), opens TOR, logs into CUK with my fake email account, decrypts the text, posts the reply for me, then changes my password to something that nobody will ever guess (256 characters, mixture of caps, lower case, numbers, symbols and characters that it's just invented specifically for this purpose) and logs out of everything. It then clears all caches on the computer, shuts down, and restarts.Originally posted by SimonMac View Post
And it still falls down because of http rather than https
Comment
-
Meanwhile, someone pinched your TV.Originally posted by TheFaQQer View PostI actually post directly on a forum that I host on my own server. I then have a bot that scrapes the content, encrypts it, connects to a VPN (hosted myself, obvs!), opens TOR, logs into CUK with my fake email account, decrypts the text, posts the reply for me, then changes my password to something that nobody will ever guess (256 characters, mixture of caps, lower case, numbers, symbols and characters that it's just invented specifically for this purpose) and logs out of everything. It then clears all caches on the computer, shuts down, and restarts.
And it still falls down because of http rather than https Comment
-
hah yeah install a VPN on a clients machine without their permission.Originally posted by SimonMac View PostComment
-
There is actually a fair bit of personal information which could be got at but only if you're going the whole hog and filling everything in under 'Settings':
And I bet some people have filled out the Biography section with some personal information!Home Page URL:
If you would like to let other visitors to this site know the URL of your own web site, enter it here.
Instant Messaging
ICQ Number:
AIM Screen Name:
MSN Messenger Handle:
Yahoo! Messenger Handle:
Skype Name:“Brexit is having a wee in the middle of the room at a house party because nobody is talking to you, and then complaining about the smell.”Comment
-
-
-
You're not just protecting email addresses and passwords though. Our usernames, email addresses, IP addresses and our browsing habits are all in the open. In particular if you just look at the HMRC schemes section, without a VPN and a burner profile, it's possible they have already generated a profile on you without any involvement of the forum.Originally posted by SimonMac View Post
Given letsencrypt is free and fairly trivial to configure, the admin probably should enable TLS if they have control of the server. I don't really see what motivation anyone has in talking it down. Makes even less sense when much of the forum is IT contractors. You guys understand the issue, right?Last edited by fool; 27 November 2017, 20:33.Comment
-
Have you read the comments on this thread?Originally posted by fool View Post
It's clear many of the people who have posted do not understand or (worse) believe they understand far more than they actually do...merely at clientco for the entertainmentComment
-
Comment