Tor vs I2P Review
Tor and I2P are the main privacy routing networks that we have to hide IP addresses other than basic VPN connections. There are other projects too but they are either new or not that popular so they are less effective as anonymity scales by the number of users. I am going to give my honest opinion and compare the two:
β΄οΈI2P Features:
β Designed for hidden services which are faster and more efficent than Tor (
β Distributed, P2P, decentralized and self organizing (
β Packet switch instead of circuit switch, provides higher level of anonymity
β Unidirectional tunnels, doubling the security / node than Tor
β Tunnels are shorter lived than Tor
β All peers participate in the network π©π© (
β Bandwidth requirement is low
β Built in Java π©π©π©π©π©π©π©π©(
β Free and Open Source
(
(
(
(
β΄οΈTor Features:
β More users hence bigger haystack of anonymity
β More security audits and academic reviews on it
β Has solved the scaling issue
β Centralized π©π©π©π© (
β Has more funding and workforce working on it
β Is censorship resistant, it doesn't assume clear access to internet lik I2P (
β Adaptive to DDOS attacks
β Higher degree of plausible deniability and smaller risk of usage
β Low usage of resources on clients but big usage on servers π©π© (
β High bandwidth throughput reaching the throughput level of an average VPN service
β Free and Open Source
β Supposedly resistant to Sybil attacks (
(
(
(
(
β΄οΈConclusion and more infos at: https://www.reddit.com/r/privacy/comments/8naaw8/tor_vs_i2p_review/
β΄οΈ I2P Website: https://geti2p.net/en/
β΄οΈ Tor Website: https://www.torproject.org/
β΄οΈ Read in german language: https://t.me/cRyPtHoN_INFOSEC_DE/1678
#Tor #I2P #Review
Tor and I2P are the main privacy routing networks that we have to hide IP addresses other than basic VPN connections. There are other projects too but they are either new or not that popular so they are less effective as anonymity scales by the number of users. I am going to give my honest opinion and compare the two:
β΄οΈI2P Features:
β Designed for hidden services which are faster and more efficent than Tor (
1)β Distributed, P2P, decentralized and self organizing (
2)β Packet switch instead of circuit switch, provides higher level of anonymity
β Unidirectional tunnels, doubling the security / node than Tor
β Tunnels are shorter lived than Tor
β All peers participate in the network π©π© (
3)β Bandwidth requirement is low
β Built in Java π©π©π©π©π©π©π©π©(
4)β Free and Open Source
(
1) I am not sure whether the onionv3 system would be more superior than this. While Tor wasn't designed for hidden services and it's just a plugin, with the onionv3 system it's getting there.(
2) Although it's much more decentralized than Tor, their claims are misleading. They still have directory servers and I guess the development team has a lot of power over the project, it's not like a blockhain which is fully decentralized, so this is misleading. Though it's more decentralized than Tor in either case.(
3) This makes I2P use very risky, especially connecting to it directly, as if somebody is doing something illegal, it would put every node there in danger and suspects of that same crime. Police I guess is not well experienced with this ,and due to the low user count ,this makes it very dangerous to use. Though connecting to I2P from Tor or from a VPN is less risky.(
4) Java is a very flawed language with a history security bugs, and the way the website mocks C in favor of Java makes them look ridiculous. This is a massive red flag for me.β΄οΈTor Features:
β More users hence bigger haystack of anonymity
β More security audits and academic reviews on it
β Has solved the scaling issue
β Centralized π©π©π©π© (
1)β Has more funding and workforce working on it
β Is censorship resistant, it doesn't assume clear access to internet lik I2P (
2)β Adaptive to DDOS attacks
β Higher degree of plausible deniability and smaller risk of usage
β Low usage of resources on clients but big usage on servers π©π© (
3)β High bandwidth throughput reaching the throughput level of an average VPN service
β Free and Open Source
β Supposedly resistant to Sybil attacks (
4)(
1) This is a big problem, the development and the infrastructure is very centralized, which would increase the risk of it being shutted down or censored, as it has a few points of failure. I think about 9 directory nodes exist now, which means that blocking only those 9 IP addresses worldwide would cripple the network. The use of bridges and proxies can help, but this issue needs to be addressed.(
2) While I2P assumes that you can connect to the internet, Tor assumes that you are censored, which is better. Tor has a bridge feature which allows to bypass any censorship other than total blocking of the internet. It can connect even through a HTTP proxy and it molds the traffic to be hard to distinguish from normal browsing by packet inspection. Though I2P can be used through Tor, so it's not a big drawdown, Tor still needs to do this, so perhaps the two systems complement eachother.(
3) It's balanced towards higher user experience by outsourcing the work to servers, but this increases centralization which is not good.(
4) It is supposedly resistant against Sybil by it's mechanism is picking trusted nodes, but due to it's centralized nature, operators could be coerced or coopted to become informants, so I don't think this works as well as advertised.β΄οΈConclusion and more infos at: https://www.reddit.com/r/privacy/comments/8naaw8/tor_vs_i2p_review/
β΄οΈ I2P Website: https://geti2p.net/en/
β΄οΈ Tor Website: https://www.torproject.org/
β΄οΈ Read in german language: https://t.me/cRyPtHoN_INFOSEC_DE/1678
#Tor #I2P #Review
Forwarded from BlackBox (Security) Archiv
Komoot: Facebook goes also on tour
The App Review Week starts with the Android app Komoot (version 9.16.2) - a navigation app for cyclists and hikers. Let's start with the network connections that Komoot establishes during use.
App start: Immediately after start (no user interaction)
[1] Immediately after starting the app, the app contacts Facebook. Among other things, the following information is transmitted [graph.facebook.com]:
ππΌ Read the fully translated article:
https://rwtxt.lelux.fi/blackbox/pstrongkomoot-facebook-goes-also-on-tourstrong
ππΌ Source π©πͺ:
https://www.kuketz-blog.de/komoot-facebook-geht-mit-auf-tour/
#komoot #navigation #app #review #kuketz #DeleteFacebook
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
The App Review Week starts with the Android app Komoot (version 9.16.2) - a navigation app for cyclists and hikers. Let's start with the network connections that Komoot establishes during use.
App start: Immediately after start (no user interaction)
[1] Immediately after starting the app, the app contacts Facebook. Among other things, the following information is transmitted [graph.facebook.com]:
Google Advertising ID: advertiser_id = c3639f11-626a-4692-9574-6a0f632e1ea3
Whether Ad-Tracking is enabled / allowed: advertisertrackingenabled = true
One identifier: anon_id = XZce953baa-18a8-42e0-82ad-2d1b3866fe63
Whether app tracking is enabled / allowed: applicationtrackingenabled = true
Further information:Package name of the app: de.komoot.android
Version number of the app: 9.16.2
Android version number: 7.1.2
Device model: Redmi Note 4
Country code: de_DE
Time zone: CEST, Europe/Berlin
Display resolution: 1080Γ1920
βοΈ How critical the integration of Facebook building blocks (SDKs) are with regard to privacy still doesn't seem to have penetrated the app developers - simply irresponsible. The mere transmission of the Google Advertising ID is basically enough for Facebook to establish a link between Facebook users and the data transmitted. The reason: The Facebok app (if installed) also reads the Google Advertising ID. Facebook then has an identifier that they can assign to a person exactly.ππΌ Read the fully translated article:
https://rwtxt.lelux.fi/blackbox/pstrongkomoot-facebook-goes-also-on-tourstrong
ππΌ Source π©πͺ:
https://www.kuketz-blog.de/komoot-facebook-geht-mit-auf-tour/
#komoot #navigation #app #review #kuketz #DeleteFacebook
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@cRyPtHoN_INFOSEC_ES
Comparison review of alternative search engines
Detailed tests of search engines: Google, Startpage, Bing, DuckDuckGo, metaGer, Ecosia, Swisscows, Searx, Qwant, Yandex, and Mojeek
https://libretechtips.gitlab.io/detailed-tests-of-search-engines-google-startpage-bing-duckduckgo-metager-ecosia-swisscows-searx-qwant-yandex-and-mojeek
#search #engines #alternatives #review
Detailed tests of search engines: Google, Startpage, Bing, DuckDuckGo, metaGer, Ecosia, Swisscows, Searx, Qwant, Yandex, and Mojeek
https://libretechtips.gitlab.io/detailed-tests-of-search-engines-google-startpage-bing-duckduckgo-metager-ecosia-swisscows-searx-qwant-yandex-and-mojeek
#search #engines #alternatives #review
Forwarded from BlackBox (Security) Archiv
Media is too big
VIEW IN TELEGRAM
/e/ Phone Review: Out-of-the-Box Privacy?
The /e/ foundation aims to offer out-of-the-box security and privacy competing directly against Google's Android and Apple's iOS. Does it compete? Is it secure? Is it private? Is their ecosystem good? Find out in this video review!
π https://invidio.us/watch?v=CgkuNbtoQc8
#e #review #privacy #thinkabout
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@NoGoolag
π‘@BlackBox
The /e/ foundation aims to offer out-of-the-box security and privacy competing directly against Google's Android and Apple's iOS. Does it compete? Is it secure? Is it private? Is their ecosystem good? Find out in this video review!
π https://invidio.us/watch?v=CgkuNbtoQc8
#e #review #privacy #thinkabout
π‘@cRyPtHoN_INFOSEC_DE
π‘@cRyPtHoN_INFOSEC_EN
π‘@NoGoolag
π‘@BlackBox
Amazon is filled with fake reviews and itβs getting harder to spot them
Since Amazonβs early days, reviews are the one big metric customers have relied on to determine the quality and authenticity of a product. Amazonβs listings often have hundreds or thousands of reviews, instead of the handful found on competing marketplaces.
But many of those reviews canβt be trusted. Thousands of fake reviews have flooded Amazon, Walmart, eBay and others, as sales have skyrocketed.
From Facebook groups where bad actors solicit paid positive reviews to bots and click farms that upvote negative reviews to take out the competition, fake reviews are getting harder to spot.
https://www.cnbc.com/2020/09/06/amazon-reviews-thousands-are-fake-heres-how-to-spot-them.html
#Amazon #fake #review
Since Amazonβs early days, reviews are the one big metric customers have relied on to determine the quality and authenticity of a product. Amazonβs listings often have hundreds or thousands of reviews, instead of the handful found on competing marketplaces.
But many of those reviews canβt be trusted. Thousands of fake reviews have flooded Amazon, Walmart, eBay and others, as sales have skyrocketed.
From Facebook groups where bad actors solicit paid positive reviews to bots and click farms that upvote negative reviews to take out the competition, fake reviews are getting harder to spot.
https://www.cnbc.com/2020/09/06/amazon-reviews-thousands-are-fake-heres-how-to-spot-them.html
#Amazon #fake #review
American faces prison over bad Tripadvisor review of resort in Thailand
An American has been sued by an island resort in Thailand over a negative TripAdvisor review, authorities said Saturday, and could face up to two years in prison if found guilty. Domestic tourism is still happening in Thailand, where coronavirus numbers are relatively low, with locals and expats heading to near-empty resorts -- including Koh Chang island, famed for its sandy beaches and turquoise waters.
But a recent visit to the Sea View Resort on the island landed Wesley Barnes in trouble after he wrote unflattering online reviews about his holiday.
"The Sea View Resort owner filed a complaint that the defendant had posted unfair reviews on his hotel on the Tripadvisor website," Colonel Thanapon Taemsara of Koh Chang police told AFP.
https://www.cbsnews.com/news/american-faces-prison-bad-tripadvisor-review-thailand/
#Asia #Thailand #TripAdvisor #review
An American has been sued by an island resort in Thailand over a negative TripAdvisor review, authorities said Saturday, and could face up to two years in prison if found guilty. Domestic tourism is still happening in Thailand, where coronavirus numbers are relatively low, with locals and expats heading to near-empty resorts -- including Koh Chang island, famed for its sandy beaches and turquoise waters.
But a recent visit to the Sea View Resort on the island landed Wesley Barnes in trouble after he wrote unflattering online reviews about his holiday.
"The Sea View Resort owner filed a complaint that the defendant had posted unfair reviews on his hotel on the Tripadvisor website," Colonel Thanapon Taemsara of Koh Chang police told AFP.
https://www.cbsnews.com/news/american-faces-prison-bad-tripadvisor-review-thailand/
#Asia #Thailand #TripAdvisor #review
CBS News
American faces prison over bad Tripadvisor review of resort in Thailand
Wesley Barnes, who works in Thailand, was arrested by immigration police.
Forwarded from Privacy Matters π‘οΈ
SimpleLogin Review - An OpenSource Email Aliasing service
πΉ Watch it via:
YouTube || Invidious
β’ Website: HERE
β’ Get it via F-Droid Store: HERE
π±Other similar Alternatives:
Annonaddy || Erine email
MailDrop || MailSac
Inbox Kitten || Spamgourmet
π‘ @howtobeprivateonline
#Email #Alternatives #Privacy #Review
An Open Source email aliasing service designed to prevent spam while protecting privacy and security.πΉ Watch it via:
YouTube || Invidious
β’ Website: HERE
β’ Get it via F-Droid Store: HERE
π±Other similar Alternatives:
Annonaddy || Erine email
MailDrop || MailSac
Inbox Kitten || Spamgourmet
π‘ @howtobeprivateonline
#Email #Alternatives #Privacy #Review