Encrypt all the things!

Posted on
Page
of 138
  • Do we have a general network thread somewhere? Just got a letter from my fibre provider, as they've upped my speed to a dedicated 200/200 Mbit/s line (and kept the price at £8 a month...). They suggest I buy a TP-Link Archer C2 AC750 through them, but is there anything better I should consider? I'd like high speed and some customisability.

  • Honestly... you're not going to use it.

    The vast majority of web sites are only on 100Mbps links, some on 10Mbps links, and even the ones that can serve faster than that generally don't because of the nature of web traffic.

    Then when you're looking at file servers, be it AWS S3, Drive, etc... those will throttle traffic and you won't see crazy speeds at all.

    Even if you consider 4k video streams, you're not going to be getting uncompressed data, so you won't actually cap this stuff out.

    You probably already have a WiFi system that will be fine... but if not, then don't buy consumer hardware for speed, go straight to office hardware and look at an Ubiquiti AP such as https://www.ubnt.com/unifi/unifi-ap-ac-lite/ and plug it in to your existing router.

    I'm presuming your home ethernet is already at 1Gbps because that's been the default for enough years that I'd be surprised if it wasn't.

  • Now is the time to install a load of digital security cameras that send their footage offsite over that connection with minimal buffering (so that if someone takes out a camera you get as many pre-death frames as possible).

    Your usage isn't metered is it?

    Which country is this?

    Wel jel.

  • anyone used disconnect or similair apps that encrypt, block trackers and vpn in one package?

  • Yep, i did respond a page back, guess not many folk use it.

  • Cheap Lastpass and GhostVPN (plus various others) on humble bundle https://www.humblebundle.com/lifehacker-software-bundle

    As an aside, I was surprised to see DOpus still going, that was my preferred file manager on the Amiga.

  • So I bought the bundle but for DisplayFusion. I have 2 monitors + TV connected. Steam big picture gets confused, and even if my audio moves over to amp Windows resets it to 2.1.

    Set up two monitor profiles with DF, and the wrote some script in it to auto switch to "gaming" profile (TV only), disable other monitors, switch audio, run a regedit script to make SURE the audio is configured 5.1 , run Steam Big Picture. When you leave Steam, it switches TV off, back to monitors and minimizes Steam.

    Only gotcha, during DX12 games steam big picture crashes in the back ground. Games carry on fine. No clue.

    I really wish Windows would stop renaming my amp/tv devices. Also UAC kicks in on the registry load, I know I can turn UAC off but I'd rather not do that.

  • https://haveibeenpwned.com/
    I've been pwned by leaks from
    LinkedIn
    Dropbox
    Business solutions

  • Probably a silly question, but why a switch as well as the 5 port router?

    I'm replacing a shonky Belkin wireless router (attached to a Virgin hub in modem mode), and can understand connecting it to the Edgerouter, applying all DNS, Firewall, DHCP bits there, and then attaching a wireless access point, but I don't understand the need for a switch in the middle.

  • Unless you can apply rules for VPNs / SSH tunnels at the switch?

  • Probably a silly question, but why a switch as well as the 5 port router?

    The router routes. Each port is a different network, with it's own DHCP server and IP range. It's own config and features.

    The switch allows multiple ports on the same network.

    You can use the router by itself and just stick things on different networks, but this can have the effect of making some software that has dumb defaults not behave properly. i.e. if there this an expectation that two devices must talk to each other and it is presumed that they are on the same IP range rather than different networks.

    This is all a non-issue if you use a switch too and stick everything on the same network, so for simplicity I suggest people do that. But, they don't have to... instead just bear in mind this could be the root cause of any issue that arises.

  • I must have always assumed that everything from the router is on the same network.

    Or, at least, not run into any issues with them being on different networks.

    Or just been blithely ignorant to them being on different networks.

  • Does this setup look not completely useless then?


    1 Attachment

    • home-network.jpg
  • Looks sane to me.

  • is anybody using Opera Developer edition to get their free VPN?
    Is it any good, is it worth it, does it work etc?

  • Think I read somewhere that it kind of defeats the point of using a vpn.

  • How much more encryption are we going to need with Trumper in control of the NSA?

  • A lot more.

    "If there were a crisis in the relationship between the UK and the US, what risks would our shared intelligence arrangements pose?"
    We asked this question in our 2015 report about the Snowden leaks [1]. We might be about to find out the answer.
    Britain’s GCHQ and America’s NSA work very closely together. They are integrated in a way that means it is difficult for our Parliament to hold GCHQ to account. We rely so much on US technology and data that it even poses questions for our sovereignty.
    GCHQ is virtually a branch office of the NSA. It hoovers up around 30% of Internet traffic from the UK and EU, and share it all with the USA. The agencies use the same shared hacking tools. They use the same core data analytics platforms, like XKEYSCORE.
    Is sharing of UK citizens’ “bulk data” with a Trump government safe? Will Trump threaten the UK with the removal of key technologies, if our government steps out of line? Will he push the UK into taking ever greater risks and intrusions as the price for this close relationship?
    GCHQ helped the NSA by tapping Google’s cables and harvesting vast amounts of personal data according to the Snowden documents. It would be illegal in the USA, but they got the data. GCHQ hacked into the heart of Belgian telecoms at Belgacom, with US co-operation. The NSA even paid GCHQ £100m to keep its data harvesting operations open when their budget was cut.
    Will Trump be asking GCHQ to do more of the same? Is our government capable of resisting these requests, when they are made in secret, and the cost of resistance could be cutting off tools they rely on?
    Oversight of this state of dependency between the UK and USA is woeful in the UK. If we want our future to be safe, this is time to rethink how surveillance is governed and overseen."
    From https://www.openrightsgroup.org

    (sent from my windows phone)

  • (sent from my windows phone and intercepted by Microsoft on the NSA's behalf)

    😘

  • Just dropping this quick guide here https://theintercept.com/2016/11/12/surveillance-self-defense-against-the-trump-administration/ with a note that humble bundle still has a years VPN in it at the moment.

  • Nothing about windows phone then :(

  • So, I guess its VPN o'clock

  • Post a reply
    • Bold
    • Italics
    • Link
    • Image
    • List
    • Quote
    • code
    • Preview
About

Encrypt all the things!

Posted by Avatar for Velocio @Velocio

Actions