It’s all the other men. Always.

https://arxiv.org/html/2410.12835v1

• ssh to remote, forwarding some remote port to your local ssh port (-R)
• ssh from remote through the exposed port, starting socks proxy in the process (-D)
• use socks proxy explicitly or find some tool that can route the traffic into it

Similar approach can be used to establish VPN tunnel with no encryption (ssh already provides that), routing everything but your ssh connection through it.

• ssh to remote, reverse forwarding your VPN-over-tcp server’s listening port
• establish vpn connection on remote, route everything but your ssh connection through the newly established interface

It will be wasteful, but it will work.

Actually Genuine Ignorance

If the average user

Proceeds to describe a task average users never perform.

And no, you having been a smart child doesn’t excuse you being an obtuse adult.

Good point.

Gl.iNet is a great value router, but if you want to do anything really interesting, it won’t do.

I have Slate AX chugging along, and have been eyeing teklager boxes to do actual routing, with slate as an access point.

You don’t need to have kids to pass on values. The basic premise of your statement doesn’t hold up.

Same weird non-sequiturs chain that foobar2000 author uses.

They could’ve honestly said “I don’t wanna”, and that would be the end of it.

There are actually five people in the picture.

If you know, you know.

In the beginning the Universe was created. This has made a lot of people very angry and been widely regarded as a bad move.

Considering that git doesn’t need federation, and email is the grandfather of federation, sourcehut has a working version of it this very moment.

Or Star Control 2 Hyperspace theme.

Monitor the room temperature.

If you use HTTPS, the attacker can still see what websites you connect to, they just can’t see what you are sending or receiving. So basically they can steal your browsing history, which defeats the purpose of a commercial VPN for many users.

This is blatantly false. They can see IP addresses and ports of you connect to from IP packets, and hostnames from TLS negotiation phase (and DNS requests if you don’t use custom DNS settings). HTTP data is fully encrypted when using HTTPS.

If exposing hostnames and IP addresses is dangerous, chances are that establishing a VPN connection is as dangerous.

Control of the DHCP server in the victim’s network is required for the attack to work.

This is not a VPN vulnerability, but a lower level networking setup manipulation that negates naive VPN setups by instructing your OS to send traffic outside of VPN tunnel.

In conclusion, if your VPN setup doesn’t include routing guards or an indirection layer, ISP controlled routers and public WiFis will make you drop out of the tunnel now that there’s a simple video instruction out there.

Support for QUIC and HTTP/3 protocols is available since 1.25.0. Also, since 1.25.0, the QUIC and HTTP/3 support is available in Linux binary packages.

https://nginx.org/en/docs/quic.html

2023-05-23 nginx-1.25.0 mainline version has been released, featuring experimental HTTP/3 support.

https://nginx.org/2023.html

It’s not a dev code. It would also take a mere minute to check this before failing to sound smart.

Even better, the dude forked because a security issue in “experimental” but nonetheless released feature was responsibly announced.

Talk about an ego.

Please correct me if I’m wrong, but doesn’t this allow one to represent virtually any resource as a mail inbox/outbox with access through a generic mail app?

I’m working with a specialized healthcare company right now, and this looks like a way to represent patient treatments data as an intuitive timeline of messages. With a local offline cache in case of outages. Security of local workstations is a weak point of course, but when is it not…

Federation has nothing to do with that capability. git clone exists since the beginning of git.