undefined | Better HN

0 pointsdudehere4y ago0 comments

Ok, true. I think realistically, just use a community approved (and actually the only) software from the company who risks its huge business, if they become a MITM.

0 comments

3 comments · 1 top-level

cmeacham984y ago· 2 in thread

Tons of people have an opportunity to MITM you and there's nothing any community approval can do about it because it's not their end of the connection.

The random on the coffee shop wifi.

Or the hacker on your apartment/university's poorly configured network.

Or your shady ISP.

Or your own government (especially likely in authoritarian countries decentralized solutions are supposed to help).

I see elsewhere you mentioned certificates on the blockchain. That could work, but someone has to actually create a standard and write the code to validate the certificate and get other people to use it, which hasn't happened yet.

dudehereOP4y ago

I am aware of SSL on blockchain domains, but this is pain in the ass. As I mention somewhere in this thread, if random downloaders lose the same concerns about privacy as serial killers and child traffickers, I think it's better to buy a book, than to actually satisfy such demands. It can be a good joke for stand-up, though, but since there have been only a few individuals caught in the entire mankind history for making or hosting such libraries, it's not more than a joke which should not detail the world from using high tech. No need to be afraid as an academic exercise. In reality nobody needs users. At all. A few owners vs a billion users... No, bro, no. We are wasting time discussing how a book without any private data is "defaced". It is possible, if to stick a dynamite up the ass, but likely without real exposure or, let alone, the interest of all those 12 lawyers in the world fighting with piracy.

Have a glass of wine and relax. There is a long line of people to catch before you get on the list.

cmeacham984y ago

I'm not worried about getting "caught" for piracy, I'm worried about some asshole in the middle hijacking my connection.

Story time: back when I was in college a few years ago, the university network had some weird configuration where everybody in my dorm was on a single large local network. Somebody thought it would be funny if they ARP poisoned the network and redirected all HTTP traffic to shock websites. This would last 2-3 weeks until either they decided to stop or University IT finally caught them.

Regardless, I'm glad we moved the goalposts to "you don't need privacy" and conceded that my original comment pointing out how insecure this was is correct.

2 more replies

j / k navigate · click thread line to collapse