Skip to content

UK households could face VPN 'ban' after use skyrockets following Online Safety Bill

Technology
360 222 10.9k
  • @arc99 please inform yourself about end to end encryption and decryption.
    All i say is you haven't understand what is happening on this firewall and what this firewall can do and what i can't do.

    I'm intimately aware about what it can and cannot do. And it can intercept and man in the middles any https traffic

  • I'm intimately aware about what it can and cannot do. And it can intercept and man in the middles any https traffic

    @arc99 but end 2 end encryption is not by default https traffic 😉 ssh / vpn are protocolls ( end 2 end encryption, decryptio) and this firewall can't deep inspect while this protocoll can easy tunnel other tunnels.

  • @arc99 but end 2 end encryption is not by default https traffic 😉 ssh / vpn are protocolls ( end 2 end encryption, decryptio) and this firewall can't deep inspect while this protocoll can easy tunnel other tunnels.

    I really do not know what you are saying. I have just told you that Fortigate Firewall can and does do deep packet inspection on https connections. It does so by man in the middle proxying. If one filter / proxy can do it then any other could too. There would be ways for kids to circumvent this, e.g via VPN but that is no different than with age verification.

  • I really do not know what you are saying. I have just told you that Fortigate Firewall can and does do deep packet inspection on https connections. It does so by man in the middle proxying. If one filter / proxy can do it then any other could too. There would be ways for kids to circumvent this, e.g via VPN but that is no different than with age verification.

    @arc99

    I said (picture) your deep inspection falls short to real end 2 end. You said your firewall can break end 2 end ... nope they can't and never will and you exactly said this in your last post too. (Sidenote -> i can gpg a text and post it public even with https .. for 99% it will be giberish and only the person who got the right key material will be able to read it ) ... so using deep package inspection to identify something you want to protect kids from is just a lie ...

    Link Preview Image
  • @arc99

    I said (picture) your deep inspection falls short to real end 2 end. You said your firewall can break end 2 end ... nope they can't and never will and you exactly said this in your last post too. (Sidenote -> i can gpg a text and post it public even with https .. for 99% it will be giberish and only the person who got the right key material will be able to read it ) ... so using deep package inspection to identify something you want to protect kids from is just a lie ...

    Link Preview Image

    I honestly do not know what you are saying. Deep packet inspection through a firewall that does mitm interception demonstrably happens. It is not up for debate.

  • I honestly do not know what you are saying. Deep packet inspection through a firewall that does mitm interception demonstrably happens. It is not up for debate.

    @arc99 you still don't understand end 2 end encryption. Yes man in the middle decryption can be done. First for this to happen you need to accept the certificates of the firewall ( which in terms of a home PC you can't force anyone to do ). Second even if you can encrypt the https packets , you can still put an additional layer on top which only you and the reciever has the keys too.

    To give you an example you can easy write down a base64 encoded binary blob in any text field on a website. If this binary blob has been encrypted before noone will be able to tell what is inside.

    So breaking https is useless if someone really wants to hide informations. So no your deep packet inspection is totally useless in this case besides you know someone did put strange stuff in a text on a website.

  • No. They could put it into a review and quietly shitcan this. It's not particularly popular. They just want to say they're protecting kids.

    They're spineless and Keir is an authoritarian.

    "Oh, i see. You want to help paedophiles do you? Why do you hate children then, hey? Of course keef comes out to help the Jimmy Savile brigade again."

    Congratulations, you just lost the media narrative and now all but one paper is going to write about how all the things that hurt every child in the UK is your fault, for the next 3 years. The whole system is compromised and they're passengers, only a little more engaged than we are.

  • "Oh, i see. You want to help paedophiles do you? Why do you hate children then, hey? Of course keef comes out to help the Jimmy Savile brigade again."

    Congratulations, you just lost the media narrative and now all but one paper is going to write about how all the things that hurt every child in the UK is your fault, for the next 3 years. The whole system is compromised and they're passengers, only a little more engaged than we are.

    Not really the narrative. Reform opposes it and Tories likely will. Only Lib Dems will complain and media ignore them anyway.

    Our media are bad, but not that tabloid.

  • Yeah, businesses will not accept this. Remote work and remote connections rely on VPN for ALL KINDS OF SHIT. If you must adhere to some kinds of government compliance, it is even MANDATED BY THE FUCKING GOVERNMENT. Explain to me how the hell that is going to just poof and not cause all kinds of problems.

    You don't get it. They will just force VPNs to black list sites. Business users will happily do it because they don't care about porn anyway. Any VPN which doesn't enforce UK laws will be blocked at the ISP level.

  • @arc99 you still don't understand end 2 end encryption. Yes man in the middle decryption can be done. First for this to happen you need to accept the certificates of the firewall ( which in terms of a home PC you can't force anyone to do ). Second even if you can encrypt the https packets , you can still put an additional layer on top which only you and the reciever has the keys too.

    To give you an example you can easy write down a base64 encoded binary blob in any text field on a website. If this binary blob has been encrypted before noone will be able to tell what is inside.

    So breaking https is useless if someone really wants to hide informations. So no your deep packet inspection is totally useless in this case besides you know someone did put strange stuff in a text on a website.

    No, YOU don't understand end to end encryption, and you don't understand browsers. You say you could "write down a base64 encoded binary blob on a website". Yes you could and how do you decrypt it? The asnwer is with a key (asymmetric or symmetric) that the recipient must have in memory of the receiving software - the browser that the filter has already intercepted and compromised. So "moar layers" is not protection since the filter could inject any JS it likes to reveal the inner key and/or conversation. It could do this ad nauseum and the only protection is how determined the filter is.

    But this is also a nonsense argument just on a practical level. The problem is kids connecting to adult websites, or websites with some adult content. The filter doesn't need to do much - either block a domain outright, or do some DPI to determine from the path what part of the website the browser is calling. The government thinks it reasonable that every single website that potentially hosts adult content should capture proof of identity of adults. I contend that really the issue is kids having access to those websites at all, and that proxies can and would be a far more effective way to control the issue without imposing on adults. No solution is perfect, but a filter is a far more effective way than entrusting some random website with personal information. Only this week somebody found an app that was storing ids in a public S3 bucket compromising all those users. Multiply that by hundreds, thousands of websites all needing verification and this will not be the last compromise by any means.

  • No, YOU don't understand end to end encryption, and you don't understand browsers. You say you could "write down a base64 encoded binary blob on a website". Yes you could and how do you decrypt it? The asnwer is with a key (asymmetric or symmetric) that the recipient must have in memory of the receiving software - the browser that the filter has already intercepted and compromised. So "moar layers" is not protection since the filter could inject any JS it likes to reveal the inner key and/or conversation. It could do this ad nauseum and the only protection is how determined the filter is.

    But this is also a nonsense argument just on a practical level. The problem is kids connecting to adult websites, or websites with some adult content. The filter doesn't need to do much - either block a domain outright, or do some DPI to determine from the path what part of the website the browser is calling. The government thinks it reasonable that every single website that potentially hosts adult content should capture proof of identity of adults. I contend that really the issue is kids having access to those websites at all, and that proxies can and would be a far more effective way to control the issue without imposing on adults. No solution is perfect, but a filter is a far more effective way than entrusting some random website with personal information. Only this week somebody found an app that was storing ids in a public S3 bucket compromising all those users. Multiply that by hundreds, thousands of websites all needing verification and this will not be the last compromise by any means.

    @arc99 the same way as you did encrypt it ??? with ggp ?

    ???? the needed certificate are exchanged by for example a matrix / telegram or personal ????

  • Not really the narrative. Reform opposes it and Tories likely will. Only Lib Dems will complain and media ignore them anyway.

    Our media are bad, but not that tabloid.

    Why would the tories oppose thier own bill?

    I don't think you're fully aware of all the factors here.

  • Why would the tories oppose thier own bill?

    I don't think you're fully aware of all the factors here.

    Because they've always railed against the nanny state. Kemi is a dreadful populist. It isn't popular.

    You're simply making excuses for Keir and anyone that disagrees doesn't understand. Copium.

  • You don't get it. They will just force VPNs to black list sites. Business users will happily do it because they don't care about porn anyway. Any VPN which doesn't enforce UK laws will be blocked at the ISP level.

    I just don't believe that method will be as successful as you may think.

  • VPN company Mullvad reminds users it will no longer use OpenVPN

    Technology technology
    52
    1
    465 Stimmen
    52 Beiträge
    215 Aufrufe
    D
    This post makes it look like there's something serious ly wrong with openvpn, but it's just them not wanting to deal with it and deprecating it. Oh well, guess Ill put a note not to use them. My country blocks VPN protocols and wg specifically, so for my usecase I need as many protocols supported as possible, preferrably mimicking other innocuous protocols.
  • 1k Stimmen
    137 Beiträge
    1k Aufrufe
    D
    Looks as if Visa Debit has about the same and slightly less fees than Visa Credit Cards. https://www.clearlypayments.com/blog/how-visa-debit-works-in-canada/ Looks like buying physical gift cards is the way to go...
  • Uber Eats is adding AI to menus, food photos, and reviews

    Technology technology
    38
    1
    151 Stimmen
    38 Beiträge
    121 Aufrufe
    sharkattak@kbin.melroy.orgS
    ...you just have to trust that those reviews won't get "adjusted" in the process...
  • 220 Stimmen
    39 Beiträge
    429 Aufrufe
    A
    True, they will always play the victim even as they're hurting and exploiting people they see as less than. Don't allow them to have any evidence of credibility. I think his idea of hell would probably be having to lower himself to the standard of living most people would consider normal and comfortable. Having to learn to actually survive day to day if he were to find himself suddenly without a cent of the money he was born into and all future wages and earnings garnished to pay the people he has harmed, would probably be a fate worse than any hell he could imagine. I know there's no justice and there is pretty much no chance of him ever facing any sort of proportional punishment or consequence for his actions. But, if I could make it happen, having to suddenly learn to survive with the rest of us mortals in the society he has helped create, in his late fifties, wondering how he will even afford something as basic as healthcare while his body rapidly ages from stress and gradually falls apart, after a lifetime of unimaginable privilege, unable to go anywhere or do anything he enjoys without being recognized and having people curse his name. That would be the fate I would wish on somebody like him.
  • The Age-Checked Internet Has Arrived

    Technology technology
    154
    1
    522 Stimmen
    154 Beiträge
    3k Aufrufe
    irmadlad@lemmy.worldI
    Governments like everything and everyone in their own little stack and in the government's self established status quo. When Paula Protester comes along with her LGBTQ++ agenda, governments don't like that. Paula Protester represents instability to the status quo established by the ruling class. Governments don't like instability. Governments like everyone sorted, coallated, and stapled, all in their respective stacks, so dissidents and social change advocates are viewed as adversaries and are not welcome. If it's genuuinely 'for the chirren' then it would seem to me that making parents be parents and take responsibility for their child's actions would go a very long way. However, we make laws with the lowest common denominator in mind. I don't want your children involved in adult activities online. However, just like any education program, the success is determined by parental involvement in their child's daily lives, and it starts at home. It's a lot easier to make government responsible for the child's developement, than actually requiring parents to be parents. I hear parents say 'I'm not technologically inclined.' Well, get there. The safety and well being of your child hangs in the balance. Take a class, read some of the millions of step by step tutorials that exist all over the internet. Ask some questions in forums. The possibilities are endless. Protecting your child is work, just like rasing them is work, and therein lies the issue.
  • Understanding The Data Center Water Regulation Debate

    Technology technology
    1
    1
    14 Stimmen
    1 Beiträge
    16 Aufrufe
    Niemand hat geantwortet
  • Hire Mean Stack Developers From Spaculus Software

    Technology technology
    1
    2
    0 Stimmen
    1 Beiträge
    24 Aufrufe
    Niemand hat geantwortet
  • 406 Stimmen
    83 Beiträge
    2k Aufrufe
    J
    Of course they don't click anything. Google search has just become a front-end for Gemini, the answer is "served" up right at the top and most people will just take that for Gospel.