I really, really, really want to like peer tube. I mean, I truly, honestly do. But, at least currently, I can’t find any of the content I want to watch on it. lemmy and Mastodon have reached a critical mass where there is enough content to not need other services. Peertube is not to that point. My guess is that it is due to the fact of the bandwidth and storage needed to host the video and the fact that video content takes more effort to create.
I had this same issue the other day where none of my videos in new pipe would work and I found out that it was because YouTube wanted me to sign in and I’m assuming that that’s the next phase of them trying to kick us off is just not serving people who do not have an account. So I would expect this to only increase over time. YouTube is about to end up the same way Facebook is where if you do not have an account you can’t even look at anything on the service itself I would just about bet you that.
Because who doesn’t have or doesn’t want a Google account, right? /s
Edit: It’s happening again right now, as a matter of fact.
A blockchain to verify ssl cert keys and changes may work. Though idk how consensus would be secured.
Seems like no change from right now, because currently the certificate authorities are centralized entities, which could be pressured by governments to add their own certificates.
Decentralization comes with some casualties, and stupid people might just be those casualties.
Oh, that was an idea for a way to do it. Not anything that’s been implemented, or at least not to my knowledge.
Well, you can just generate your own SSL certificate on your machine, locally. I believe you can probably do it with OpenSSL. I’ve only done it with my Monero node, and they offer a binary, which will generate a certificate for you. I would just look up how to create a self-signed SSL certificate. My guess is it’s just a few commands in the terminal.
Well, it really depends on if you want somebody to trust or not. If you don’t want to trust anybody except yourself, then you can just use Tofu and be good with it. The only reason I brought up using search engines as an index is just to give people a place to look.
If I want to visit CNBC and I’ve never visited them before, I could just go straight to CNBC and trust their certificate right away. Or, if I wanted to confirm that the CNBC certificate was likely valid, I could ask DuckDuckGo, Google, and Quant. And if they all agreed that they had the same certificate that I was getting, I’d be more likely to think that it’s valid.
Your welcome
Tofu stands for Trust on First Use. So basically, you would get an SSL certificate from the website the very first time you connected to it, instead of trusting a certificate authority. Then, if the SSL certificate changed, you would then be warned that the certificate had changed and would have to decide whether to trust the new certificate or not trust the new certificate. That’s why I said perhaps search engines could index certificates and tell you how long the certificate has been active and you could check several engines quickly to determine whether each engine has the same certificate indexed for the same website and if they did not then you would know something might be up.
But i2p doesnt have PoW DDOS protection. Trust me, that shit helps a fuckton for limiting ddos. I witnessed firsthand nine onion services that upgraded from not having DDOS protection to having DDOS protection while under attack and the attack completely stopped.
Edit: RetoSwap, a decentralized Monero exchange, has 9 onion seed nodes and they were being DDOSed to oblivion. As soon as they added PoW the attacks stopped and havent happened since. That was about 9 months ago now.
As far as Let’s Encrypt goes, the easy way to solve that is self-signed SSL certificates and Tofu. Just make it stupid obvious if an SSL certificate changes on a site that you go to. Like, turn your browser into a giant red screen that says that the security of the website has changed and may be broken obvious. Maybe you could have search engines also index SSL certificates so you could see if Google and Bing and DuckDuckGo and whoever else all say that this website has the same SSL certificate that it has had for X amount of time and if the search engines start showing different results you get suspicious.
Edit: Using self-signed certificates and tofu fits better with the decentralized ethos of the original web anyway since you’re not relying on some third-party authority to tell you what’s safe and what’s not.
It’s quite possible that even with the SIM card removed, it’s still actively ending up in cell tower logs. At least here in the United States, if you dial 911 from any device, no matter whether it has a SIM card installed and no matter whether it has service or not, 911 is supposed to be able to answer, which means that it must be able to talk to the cell phone towers even without a SIM card installed. You might be able to avoid that by keeping it on airplane mode, but there’s no guarantee of that.
I already have a proton account, so I have access to proton VPN. Otherwise i most likely would
I have not used mullvad myself, but i have heard from others that they are a good choice
I suggest keepassxc on desktop and keepassdx on android. If you are an iphone user keepassium is pretty good (mom approved).
As for whether you should be using Monero with Tor. You don’t have to, and it’s a lot slower if you do, but you do get some benefits if you do in certain scenarios.
I run my own local node which has a copy of the blockchain so that I don’t have to trust anyone except for myself and do not have access to a static IPv4 or IPv6 address and so I host my node as a Tor hidden service. By doing so, I can access my own personal node from anywhere in the world, no matter what network I’m on. And again, since I trust myself, I know that I’m getting correct data. By default, Monero.com and Cake Wallet use the Cake Wallet nodes and they are a rather trustworthy entity. So I would feel safe recommending just using them until you become more advanced and want to run your own. If you access the nodes through Tor, then obviously they won’t know your IP address. Whereas if you don’t access them through Tor, they would know your IP where you connect from. And it’s really up to you to determine whether that’s a problem for you or not. If you already use a VPN, you could just use that as well.
I sincerely hope that is the bridge they cannot cross and get away with it. Because if you are right, then we will be okay. If you are wrong, we are screwed.