Recent searches

No recent searches

Search options

Not available on photog.social.
photog.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for your photos and banter. Photog first is our motto Please refer to the site rules before posting.

Administered by:

Server stats:

246
active users

photog.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.3

#geoblocking

0 posts0 participants0 posts today
Replied in thread
*
Kevin Karhan :verified:

@landley @pmevzek @jschauma @ryanc @0xabad1dea And that is espechally baffling considering that #APNIC as #RIR ran out of #IPv4|s first.

Cuz people telling me "Oh, just use HEnet's Tunnelbroker"" never experienced the shitshow that is #Geoblocking and #GDPR-#Noncompliance with #Malvertising to slap their faces!

  • Cuz believe me, I tried, but since some idiots decided to #GeoIP entire #ASN|s and not #IP - #Allocations the PoP in FRA (FFM actually) will get me mislocated to the #USA!
Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)@pmevzek@framapiaf.org @landley@mstdn.jp @jschauma@mstdn.social @ryanc@infosec.exchange @0xabad1dea@infosec.exchange no, it's just absurd to skip #64bit... I'd not be pissed if #IPv6 was widely available. - I can't even get a /64 but my ISP is happy to give me /28 subnets of IPv4...
#geoip#asn#ip
Replied in thread
*
Kevin Karhan :verified:

@neu3no @halva yes and no.

  • I can see the benefit of a miniaturized retro gaming system (I think legacy systems need to be served with properly maintained software & hardware).

youtube.com/watch?v=2P1E2vjpcRo
youtube.com/watch?v=B8WfiRRvQXo

As with #IPv4 the problem is that there is no mandate to provide users with static prefixes and I'm stuck on a /28 of IPv4's and can't even get a singoe /64.

  • And before you ask: No, #Tunnelbroker is not a valid solution as HE.net's tunnel will get #USA #GeoIP'd even eith the PoP in FRA so it bricks a shitload of things due to #Geoblocking and bad #peering. Believe me, I tried that already!
YouTubeTINY DOS gaming PC build guide - weeCee Part 2By TheRasteri
#tunnelbroker#usa#geoip
Replied in thread
Piiieps & Brummm

@jwildeboer I do #GeoBlocking on the login side of my server (submission, imap). Only login from an European country is allowed. This is possible, because I usually know the whereabouts of my users. If we travel outside Europe, I can temporarily allow that counrty. :-)

Do you do anything of that kind?

Walker

When can we declare IP Geo location / country code blocking practically dead as a mitigation strategy?

Sure it is still useful blocking script kiddies from Iran and other low hanging fruit, but do any serious APT crews actually launch attacks from their home country anymore?

With the use of zero trust, distributed attack and delivery networks (looking at you Cloudflare), and VPN usage country blocking feels less useful than in the past.

#zerotrust#geoblocking#apt
Replied in thread
*
Veza85UE

@EUCommission My proposal for unlocking the potential of one particular 🇪🇺 creative industry (one we invented in Europe) is to smack Ruben Östlund and all politicians he's lobbied for #geoblocking over the head with the Consolidated version of The Treaty on the Functioning of the European Union open at Article 101 until they stop blocking Europeans from learning about each other and entertaining each other with 🇪🇺 popculture.

eupolicy.social/@Veza85UE/1115

EUpolicy.social - A Mastodon server for the EU bubbleVeza85UE (@Veza85UE@eupolicy.social)Attached: 1 image @euractiv@masto.ai My villain origin story. This is how I breakdown and start churning out scripts for "the tastes of average Europeans" and the lowest common denominator just so industry nepobabies like Miu Miu's daughter and mediocre Scandi bros like Östlund can die mad about it. That euro Love Actually except with way more gay couples you've always wanted for Saturnalia? It's coming. Jean&Bob Monnet/Schuman Hangover-style biopic? Consider it done.
#cinema#eurocultura#MyOwnPersonalJihad
Replied in thread
*
Kevin Karhan :verified:

@landley @jschauma @ryanc @0xabad1dea yeah, the exhaustion problem would've been shoved back with a #64bit or sufficiently delayed by a 40bit number.

Unless we also hate #NAT and expect every device to have a unique static #IP (which is a #privacy nightmare at best that "#PrivacyExtensions" barely fixed.)

  • I mean they could've also gone the #DECnet approach and use the #EUI48 / #MAC-Address (or #EUI64) as static addressing system, but that would've made #vendors and not #ISPs the powerful forces of allocation. (Similar to how technically the #ICCID dictates #GSM / #4G / #5G access and not the #IMEI unless places like Australia ban imported devices.

I guess using a #128bit address space was inspired by #ZFS doing the same before, as the folks who designed both wanted to design a solution that clearly will outlive them (way harder than COBOL has outlived Grace Hopper)...

If I was @BNetzA I would've mandated #DualStack and banned #CGNAT (or at least the use of CGNAT in #RFC1918 address spaces) as well as #DualStackLite!

Replied in thread
Kevin Karhan :verified:

@shoppingtonz @alternativeto @torproject also every #Tunneling - regardless if #SSH or #VPN or whatever - will inevitably introduce #latency (unless you happen to be customer of a shitty #ISP with horrible #peering and thus can cut down on hops needed, which is AFAIK only a theoretical scenario)...

In fact I stopped using #HEnet #Tunnelbroker and #IPv6-#GIF-Tunneling because it created more issued than it solved on my #IPv4only #Internet connection…

Mac & i

Apple-Geräte aus China: Harte Blockade von Apple Intelligence

Wer Mac, iPhone & iPad in China kauft, kann darauf Apple Intelligence nicht starten, auch nicht mit passendem Account. Apple nutzt offenbar hartes Geoblocking.

heise.de/news/Apple-Geraete-au

heise online · Apple-Geräte aus China: Harte Blockade von Apple IntelligenceBy Ben Schwan
#Apple#AppleIntelligence#Geoblocking
Replied in thread
*
Kevin Karhan :verified:

@fennix TBH, I think those bs claims should be illegal.

The only valid claims I've seen is that it enables people to circumvent #geoblocking and potentially #InternetCensorship as well as #TrafficDiscrimination due to lack of #NetNeutrality, but those are always to be taken with a truckload of salt!

Most certsinly, there are no "#loglessVPN|s" and no #VPN provider will risk jailtime for any.client

Twitterthaddeus e. grugq on Twitter“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo https://t.co/Q2aOQJkG4g”
#loglessvpn
Replied in thread
Kevin Karhan :verified:

@kubikpixel @malwaretech @tomscott or to put it into perspective:

I worked at a telco, and whilst clients were above-average in terns of bahaviour, one does get a high single digit or low double-digit amount of LEA requests per day per x million customers.

Now imagine the average #VPN has similar utilization as a #CGNAT, so easily they'll have #LawfulInterception going on 24/7 because logless VPNs are a lie and besides circumventing #Geoblocking they don't do anything else...

  • In fact I'd argue it'll be more privacy friendly to self-host a VPN on-demand with flexible hoster or just having a fixed IP at home, simply because those usually have a higher bar for getting surveillance approved.

TLDR: Just get @torproject @tails_live @tails / #Tails and good.

Twitterthaddeus e. grugq on Twitter“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo https://t.co/Q2aOQJkG4g”
Live feeds
About