We’re sorry we got caught

Well, it could be forked of course. The self-hosted version at least.

It would certainly be detectable. You could do an X-ray, sweep the RF spectrum and see the energy disappear at the right frequency, things like that.

They had that tech in the 60s too.

Also when the bug was in operation it was definitely not passive. It was being fed by what must have been a really strong signal to power it, and transmitted the results back.

Wow that sounds pretty Draconian. I would not travel without a personal phone, after all the trip is not 100% work time. I’d bring a personal burner, not my real phone, but I’d bring something. I don’t want my work to listen in on all personal comms while I’m there. I mean if they want me to leave a personal device in the hotel ok but not bringing it at all?

And throwing my luggage and clothes away? Over my dead body.

Of course with any work issued stuff they can do whatever they want. But not my personal things.

I would really refuse a trip under such conditions, or refuse the conditions themselves.

Oh I use KDE every day. I love it.

But this would be a very different usecase I wouldn’t use on my main PC.

Same here. Kodi’s UI was nice back in the days when it was XBMC. These days we have different ideas on usability.

Yeah this has been on the books for ages. It’s not being developed by KDE’s core team and it wasn’t making much progress for a while but I’m really happy yo see it come out.

Ohhhh it’s finally coming!

Looking forward to trying it.

Also, OKC is no longer being maintained as far as I know.

I kinda hope this one can replace OKC as a PGP integrator into other apps because I use it a lot. Especially for my password manager

But it does have to support external yubikeys and it looks like this doesn’t yet

Thanks! I already love it for the taskbar icon alone lol

What’s the little cat thing?

Paint it Rainbow 🌈🏳️‍🌈🏳️‍⚧️

So now we go from the glasshole to the podhole? Great.

Honestly, I don’t really care about that. Yes it uses quantum-sensitive protocols like AES but honestly, who with a quantum computer is either going to:

• Record all my traffic to decode it 10 years later, knowing they will also have to break SSL on top of that!
• Already has a quantum computer or a huge datacenter for paralellisation right now meaning they are the NSA and if they wanna spy on me they are going to anyway. And really if someone has such a datacenter they will use it for AI which is more profitable.

For my threat model the threat of my VPN crypto being broken just isn’t important right now especially in my VPN usecase which is already low-importance stuff. There’s nothing valuable or personal in that traffic. The only reason I use the VPN is to do torrents really. If they want to grab a few torrenters and make an example out of them it’s much easier to grab a few that are not using any VPN. There’s still loads of people torrenting directly on their bare home IP.

It’s like the saying of the two guys running from the bear. One says to the other: “We’re not gonna outrun him!”. The other says: “Doesn’t matter, I only have to outrun you”. Not being the easiest catchable is enough protection.

Yeah I can imagine 80/443 being blocked because sometimes it was being used for awful stuff. I don’t really care about that so much, but the higher ports should be available (especially UDP).

It’s weird times when Iran sounds sane.

Hmm any way we could make it seem to the web server that our phones are iOS perhaps? That should always bypass it.

No, but I have a home lab and that is behind the VPN. With a download server and some other stuff like IRC (IRC can expose your home IP to other users)

The router blocks any requests going around the VPN so that the usual de-anonimisation tricks don’t work.

Just the same as other VPNs, just different protocol.

It’s a regular point to point VPN just like wireguard and ipsec. Based on openssl. So you have a client and it connects to a single server. You can also connect a network to another network but usually you use a dedicated router for it. Only if you connect individual clients would you use an app.

There’s other VPNs these days which are substantially different, called Mesh or Overlay VPN. These are ones like tailscale and zerotier. They are different in usage because each client can talk together independently. This means even on a shared network each client will have the VPN app. It’s used more for personal networks, not really private anonymous access. For those you explicitly don’t want to talk to other clients so the usecase makes for different tech. For this reason anonymous VPN providers never use mesh tech.

I use both myself. OpenVPN for torrents etc. And tailscale for connecting to my home stuff from my phone and laptop.

But OpenVPN is a very classical VPN type.

It’s one of the many VPN protocols. Wireguard is the current favourite.

So in other words, if you don’t specifically need openvpn it won’t matter to you. Wireguard is good too.

The thing is that openvpn has been around a lot longer so it has more support in things like routers. For me that matters because I have a separate vlan that’s connected via a router to my main network.