Slashdot Mirror
Use Tor, Get Targeted By the NSA
An anonymous reader sends this news from Ars Technica:
"Using online anonymity services such as Tor or sending encrypted e-mail and instant messages are grounds for U.S.-based communications to be retained by the National Security Agency, even when they're collected inadvertently, according to a secret government document published Thursday. ...The memos outline procedures NSA analysts must follow to ensure they stay within the mandate of minimizing data collected on U.S. citizens and residents. While the documents make clear that data collection and interception must cease immediately once it's determined a target is within the U.S., they still provide analysts with a fair amount of leeway. And that leeway seems to work to the disadvantage of people who take steps to protect their Internet communications from prying eyes. For instance, a person whose physical location is unknown—which more often than not is the case when someone uses anonymity software from the Tor Project—"will not be treated as a United States person, unless such person can be positively identified as such, or the nature or circumstances of the person's communications give rise to a reasonable belief that such person is a United States person," the secret document stated.'"
So we just need to write a Spam Generator that sends out billions of encrypted stuff to US-citizens to create government jobs?
Nice!
Given the recent revelations about the NSA dragnets of literally every single email, call, text, and pretty much any other form of electronic communication, it's pretty much a given that the best way to attract the NSA's attention is fog a mirror.
Just because you're paranoid doesn't mean they aren't out to get you
You are supposed to use HTTPS only over Tor anyway and transmit no identifying data in other cases, respectively. Tor already assumes the existence of such an adversary as the NSA, so what's the story here?
Of course it runs NetBSD. BTC: 1NT7QvbetmANwaMzhpVL6
Aren't they violating the millennium act? I suppose that's only if they try to circumvent an encryption scheme....
They keep stretching the parameters and scope of what they can do. Of course that is only after they have been caught lying about the scope to begin with. Does anyone still believe them? I imagine quite soon they will start declaring that they need to have a back door to all encryption just in case you might do something wrong.
Combining the fragments of leaked information that are now public related to the NSA's programs and the legal authorities affirmed by the FISA courts and Attorney General Eric Holder, it's clear that the US government's surveillance apparatus has the potential to monitor a significant portion of US citizens' communications.
Several reputable reports, including PBS' Frontline and NOW, have detailed the construction and operation of telecommunication interception facilities such as Room 641A. These types of facilities, which were deployed by 2003 and revealed to the general public by 2006, provide the NSA with the opportunity to access a large volume of telecommunications traffic. To use an analogy, imagine that several major mail sorting hubs in the US had "secret" rooms controlled by the NSA that all mail passed through.
A significant portion of Internet traffic is encrypted. Online banking, Facebook, Twitter, Gmail, etc. utilize standard SSL encryption to provide security. To continue the analogy, while some internet traffic is unencrypted in much the same way that postcards are mailed all the time with their messages clearly visible, many "sensitive" online communications such as the aforementioned banking and social networking services encrypt communications, similar to the way that sensitive mail communications like bank statements are usually sent in envelopes and not on postcards.
It is not politically palatable to suggest that US government agencies can and should surveil US citizens' telecommunications in any indiscriminate fashion, and there is no clear legal authority that would permit them to do so. In an interview with Charlie Rose that aired June 17, 2013, President Barack Obama said "...if you're a U.S. person then NSA is not listening to your phone calls and it's not targeting your e-mails unless it's getting an individualized court order."
Under the original provisions of the 1978 Foreign Intelligence Surveillance Act (FISA), the US government does have authority to conduct surveillance of communications without a court order if the parties communicating are not United States persons. More recent amendments to FISA since September 11, 2001 have expanded the government's authority to conduct surveillance.
It can be difficult to identify the geographic origin of telecommunications traffic. Tor, Virtual Private Networking, and Internet proxies provide ways for Internet users to "hide" their return addresses. There are all sorts of legal, legitimate uses for these technologies. For example, the 1996 Health Insurance Portability and Accountability Act (HIPAA) is widely interpreted to require hospitals to use encryption technologies such as Virtual Private Networks to protect confidential medical information if it is transmitted electronically between medical facilities.
It is also incredibly difficult to determine the nationality of a user of a telecommunications network. For example, two non-US persons could be visiting the US and using a telecommunications network in the country or a US citizen could utilize a telecommunications network when traveling outside the US.
There's an area where it helps to extend the envelopes vs. postcards analogy a bit: encryption is, in some ways, more like mailing a letter in a combination safe where only the sender, receiver, and safe company know the combination. The whole point of encryption is that it secures communications in such a way that even if someone intercepted an encrypted message, they couldn't read it unless they knew the secret combination to decode it.
This leads to a couple of questions:
" Where the NSA has no specific information on a person's location, analysts are free to presume they are overseas, the document continues."
http://www.guardian.co.uk/world/2013/jun/20/fisa-court-nsa-without-warrant
use TOR to send copies of 1984
Aw fuck. First I get blocked from Slashdot, now this..
Yes, using Tor is going to attract attention. That's why we need as many people as possible to use Tor, to decrease the signal to noise ratio. If you have nothing to hide, you should be using Tor to help protect those who do.
Give me Classic Slashdot or give me death!
That's such a comfort to the rest of us.
Slashdot - News for Nerds, Stuff that Matters, in ISO-8859-1 Has just realised that beta makes this signature redundant
I think this is reasonable in the context of communications monitoring. TOR exit nodes are often not in the U.S., and it's reasonable to expect that traffic coming out of a TOR exit node may not originate from the U.S. I don't support this massive data collection in general, but I don't see why TOR traffic wouldn't be expected to raise red flags.
That having been said, I'm not sure where the fire is. Unless you're stupid enough to log into your own accounts (which contain identifying information) via TOR, they can collect all they want, but they'll never tie it back to you.
Now, could they theoretically track your traffic back to its origin if they have a complete picture of the network? It's possible, but they can only do a positive ID when there's not much TOR traffic, especially near your physical location, to begin with. That's where security by obscurity comes into play.
"If a nation expects to be ignorant and free in a state of civilization, it expects what never was and never will be."
They want to know everything about everyone, which according to their dictionary somehow does not qualify as "indiscrimately".
Captcha: justice
LOL
It's always true. Just send your communications directly to NSA and a bunch of other people (from a SPAM list) and ask to have it forwarded to the final recipient. It's unlikely that it will get flagged as a potential threat....
In other words, since they don't know who you are and can't positively confirm that you are a U.S. citizen, then they claim they are not bound to uphold your Fourth Amendment rights despite the fact that they are likely able to confirm that you are currently located in the U.S. I'm not sure that logic would hold up in court and I hope they are challenged on this.
So, don't use Tor to encrypt your traffic (to avoid NSA snooping) because they will store your encrypted traffic?
Attach an email sig line that is the ciphertext of some small paragraph from Google News.
Now if we all just start using Tor we'll give the government something to do. The message from the NSA is if you use Tor you are a criminal. Great Constitutional argument. BTW, this message was sent with TOR AND a anonomizing proxy.
"we only target people outside of the US"
Because people outside of the US are non-persons and as such should have no expectations of privacy when their data is held inside the US. Does no one actually think about what they are saying?
Leaving the argument aside for the moment of whether what the NSA is doing is legal, if they are collection all foreign communication, what else should they do when they don't know where it comes from ? Aside from that, using Tor and encryption properly may get your data collected, but the NSA still won't be able to read it. Far better than trusting them not to look at your unencrypted domestic conversations.
Back in the late-80's/early-90's, there was suspicion that the gov't was watching all Usenet traffic for suspicious keywords. So, people would purposely include things like: "Food for the FBI scanners: bomb weapons nuclear". The aim was to overwhelm the scanners with false-positives.
So, they're going to pay extra attention to TOR traffic? Okay... excuse my while I configure my mom's PC to use it. The sooner we overwhelm them with the backlog for their cracking efforts, the better. In fact, here's my vote for Google to convert their web-crawler to use TOR... that ought to give them some content to chew on.
yeah, the encrypted data bit is interesting (who doesn't use opportunistic TLS on SMTP these days?) but here's the bigger problem:
That's it, no questions left, the NSA is involved in domestic surveillance of US Citizens for law enforcement purposes. It's as if the Church Committee never existed.
Considering the ease of writing those two required letters and the current state of law breaking in the United States, it's easy to see how bureaucrats could take the guidelines as written and 'reasonably determine' that all domestic communications need to be stored in perpetuity.
Assuming anything else is to assume a level of generosity and restraint on the part of the intelligence agencies that each day we find ourselves more foolish to do.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
So, guilty until proven innocent?
I don't see how with the current form of government that's been perverted and the people in power.
Will it take 20M people marching on DC or a coup or ???.
Time to just hide in plain site, then.
-----BEGIN PGP MESSAGE----- wYwDnjZmSa5jm10BA/9tq+tFZW7ZTwWorCU2PJ5RWkhiefDCt0GCxVlg1MPa zkj6bUvN99JdyZZtbsQ3xxz7ugvNPL3cydtnX6Hwn9I/BGqZDYB7ki6UBaY1 uT1T5ZQd28WhLd5Bs4JRr5kc9WCuQf5KdZa9WCO/9UItlsmCakYglJxmVSNy 0XHuJrl3k9JiAR8cYQurOOe3LWKMf8Ytewx4iZquuh0wLwrUs14Zy8G+dkcP C66rRlOIw8S0TqeLd8CoHcEaYPu9osnR5+V3Nz31AoOTgYV5FbkRsV6c6HIs 7byyAyg87jk9Hfu9Zbajfec= =MgO6 -----END PGP MESSAGE-----
"will not be treated as a United States person, unless such person can be positively identified as such, or the nature or circumstances of the person's communications give rise to a reasonable belief that such person is a United States person," the secret document stated.'"
Which is why I start all my conversations with an un-encrypted "Hello fellow US citizen! Nice weather here in the US, where we both live and currently are, today huh?" ;-)
Many moons ago, people used to stuff all kinds of ridiculous claptrap in their Usenet .sig lines to "clog the NSA monitors." Keywords like nuclear, communist, peace, soviet, blah blah blah blah. It was a fairly useless exercise whether the underlying suspicions were true or not.
The execution was amteurish, but today's news proves that the principle is worth exlporing further. Software developers need to stop talking the talk and make a more concerted effort to transparently encrypt all the network communication conducted by their applications, their mail systems, their social media platforms, whatever. The cypherpunk community has long pooh-poohed allowing "weak" encryption to become entrenched and create a false sense of security. But this "secutrity through purity" approach has resulted in the abject failure of the widespread adoption of encryption at all levels. Can we not find some sort of barely acceptable common standard and just start routinely implementing it and make the marketing people figure out how to describe it as a sexy feature?
NSA agents are not allowed to eat cookies. However, they may take items from the cookie jar and place them in their mouths to determine whether they are cookies. Any cookies which are inadvertently swallowed may be retained.
My next sig will be ready soon, but subscribers can beat the rush
Extended to the physical mails it is analogous to deeming all sealed letters and other private mail to be suspicious and in need of permanent archiving, and so create Postal Bots that open each letter, photocopies its contents, the reseals it it until the Government decides it wants to devote the resources to looking it up and reading it.
In the email case the saving is easier, and the reading is harder than with physical mail but they both accomplish the same task (treating private mail as government property) with manageable levels of effort.
Second class citizen of the New Gilded Age
That's how it works these days. I've been uncomfortable with it ever since I was on a bus in early 2001 (pre-9/11) in the Phoenix area and the Border Patrol or INS or whatever it was came through the bus asking if each of us was born in the United States. I briefly contemplated requesting a warrant and exercising my right to remain silent, but decided it would end badly.
In SOVIET RUSSIA... erm...NSA AMERICA, the Internet logs onto YOU!
Blind Jimmy Jackson, NSA Agent for 10 years, can't positively identify you as a US Citizen because he can't see the monitor. That gives us the right to retain your data. PS. Do you know any blind people? We're looking to fill many positions here at the NSA!
Collected until demonstrated boring.
"I don't know, therefore Aliens" Wafflebox1
Foreign until determined American.
"A simple question, Mr. Holder: how many of these extensions have you and your miserable predecessors rubber stamped? I'm putting the final touches on your Contempt of Congress while you ponder about lying. Again."
Next post:
"Walk around wearing a ski mask on a hot summer day in the city, get scrutinized by the police!"
Does this honestly surprise anybody? When you do something unusual, you will attract notice. When the something 'unusual' happens to be something that is done by many criminals (even if there's a harmless explanation for your particular usage), you will draw scrutiny.
Shout profiling, security theater, and '4th amendment' all you want - but if you engage in 'unusual' activities, you're gonna draw the attention of people looking for 'unusual' situations.
what about encrypted chat?
They do it anyway, so expand your own security and encrypt EVERYTHING.
if we want to cause you unemployment ( preferred ) we all take a break from the net for 4 months and cause your economy to tank totally
NICER!
Simply take all the words on this list: http://rense.com/general66/scgh.htm ...and insert them into each and every email message you send. I send them coded as white-on-white in html formatted messages so they aren't readily visible.
first get your self some ability to read and write ...now go back and try again ...
what is human left or right.....anyhow?
my law states that what i do anywhere on the net Canadian law prevails...IT catches kiddy pron and it protects my privacy with the privacy act.
THUS i should and could then say that i have the legal right to sue the US govt in abesentia and ask the WTO for a judgement.
this i will make that all of canada be allowed legally to download up to the judgement amount of all your precious movies and tv shows and cause you keep doing it that this be continued until such time as you stop spying on us. and can prove such.
I recently read that many Apple communications are encrypted: "Conversations which take place over iMessage and FaceTime are protected by end-to-end encryption so no one but the sender and receiver can see or read them. Apple cannot decrypt that data." . So, are all of us who use these Apple communications tools behaving in a way that gives NSA grounds for retaining our IMs? OMG NSA, CU @ the mall real soon. K?
Okay I get the logic of leave all your stuff unencrypted and on the open web so the NSA can spy on you otherwise if you use encrypted networks like TOR, the NSA will try even more to spy on you. That's their logic.
Buuuut...
What is the use of capturing undecryptable TOR traffic? It's just gibberish garbage data to them. And then if they just mean they capture and analyze all of your unencrypted data just because you're using TOR, then obviously anything you don't care about is included in that traffic and anything top secret and sensitive goes on in that TOR connection you're obviously using, making it completely pointless to have your open internet traffic analyzed. So it's actually all around pointless.
Eric Holder, is that you?
How can they identify TOR traffic? There were whole slashdot articles about how impossible it is to detect TOR traffic. SSL is SSL. An encrypted VPN connection aka all of them looks exactly like Tor traffic because they both have the same structure.
If you keep the curtains in your windows closed you are obviously doing something criminally wrong and should be prosocuted to the fullest extent of the law!
I recently read that many Apple communications are encrypted: "Conversations which take place over iMessage and FaceTime are protected by end-to-end encryption so no one but the sender and receiver can see or read them. Apple cannot decrypt that data." . So, are all of us who use these Apple communications tools behaving in a way that gives NSA grounds for retaining our IMs? OMG NSA, CU @ the mall real soon. K?
Or, more likely, Apple built a back door for the feds, or is simply mistaken, or more likely, lying about it.
NSAMail, the new e-mail service provided by the NSA, is totally secure and protects your privacy too! Remember, unlike with GMail, every message hosted on the NSAMail servers is automatically classified top secret. In fact, it would be so secret that no-one, not even the intended recipient, will be able to read it. Think about it, next time you select a new E-Mail provider: your communications are absolutely SECURE and totally protected with NSAMail. NEW!: Now also available to non US-Persons: you're more than welcome to use our FREE NSAMail service. If you need assistance, a human analyst^Woperator will help you out quickly: they know more about you than you do. Human operators are only available to non-US Persons or US Persons who use TOR.
cpghost at Cordula's Web.
Today, a former NSA leaker revealed that the NSA spied on judges (including a current SC Justice), politicians, military, etc. Among other names mentioned: Barack Obama in 2003/2004 (while running for US Senate).
Barack Obama was unopposed in his 2004 senate bid (if you don't count "token" oponent Alan Keys). Why? Because Jack Ryan's sealed divorce records were leaked -- including accusations from his (ex-) wife (Star Trek Voyager actress Jeri Ryan) that he took her to swinger clubs, sex clubs, etc and asked her to participate in wife swapping, gang bangs, etc.
Was the NSA involved? Barack Obama, Senator, was opposed to the Patriot Act, gitmo, etc. As recently as Inauguration day 2009, he stated that we didn't need to make a "false choice" between security and liberty.
Something changed his mind. What does the NSA know about Barack Obama?
Do you even lift?
These aren't the 'roids you're looking for.
As a Canadian sys-admin who works on a lot of US servers, I've known we've all been screwed for a long time. This came as no surprise.
My question is (not really, I'm pretty sure of the answer), does this mean that any server(DBs included) touched by an outsourced worker is open for scrutiny and monitoring? If one party is American, and the other is a server that was "handled" by an outsourced worker, is this protected, or is it open for monitoring and recording?
Most Canadians and other foreign nationals ought to understand what this means to them, if they didn't already.
Hmm, the humour and sarcasm seem to have been be lost on you.
Write a program that:
1) Downloads free creative commons licensed videos from youtube (like these: https://www.youtube.com/user/UCBerkeley/videos )
2) Encrypts them.
3) Uploads/downloads them repeatedly to/from my own server, via Tor (so as to relay/exit through non-US Tor nodes).
4) Laugh as I fill up the NSA's new datacenter with encrypted videos of things like an MIT professor teaching thermodyamics.
This might be a good exercise in Go. Been wanted to get a little more experience with it ...
I thought the whole premise of Tor was that you can't tell from that outside that someone is actually using it (much less "collect" the data you transmit over Tor)?
fun
So what your really saying is that I need to start emailing friends & associates encrypted ascii porn files through a tor connection so the only people who will be able to see it will be myself and the NSA
A torrentor who Tor'd some torrent
Tried to tutor two torrentors to Tor
Said the two to the tutor
Is it harder to Tor
Than to torrent two torrents over Tor?
Here's something we can do to protest that they can't arrest us for. Raise the Noise Floor. On every phone call slip out a word you think the NSA will
flag. I also google "how the make a small EMP device". Or.. google "how to make thermite".. it's not a crime to know it.
aluminum powder, iron oxide, and your favorite sparkler in the center to get it going.
Benjamin Franklin once said "Those who sacrifice freedom for security deserve neither."
If you ask me our current president has taken away our liberties. This goes against the Constitution. I've got an electronic copy of it.
It's time we do something about this. Make some noise. Be heard.
I installed Tor for the first time yesterday. I then pasted 2 lines of configuration into the config file to create a hidden service, and wrote a trivial web server (in Go). This took about 10 minutes and just worked, which I found rather surprising. So very easy!
While Tor in general is about hiding endpoints, Hidden services also provide end to end encryption, and allow you to host services from behind NAT and firewalls, even without a static IP, and on ports that your ISP or firewall block. This is also all free (No need for a domain name or DNS). If you simply want to run some server for your own use, Tor hidden services are quite handy! The whole anonymization and screwing with the NSA spying is just a bonus.
If you find it bothersome that such Hidden Services require Tor to access, there is a nice web proxy at tor2web.org that lets you access http based hidden services from a client without Tor.
The stuff you read is likely a "leak" from NSA encouraging people to use iMessage or iFacewhatevertime thinking that their messages are encrypted and safe from the government. In fact, NSA likely has a direct server making it REALLY easy to obtain data sent using these methods, ahem.
... agreed upon meaning by those using it.
For example what I just wrote could have a definition of blowing up the moon.
The proof of this fact of abstract languiage is political double and tripple speak.
So what this really all amounts to is spys are trying to justify their pay check, like law makers try to justify their job but creating new laws regardless of the validity or constitutionality of them.
And to think, we tax payers really need the paper work telling government how to spend our taxes, rather than giving the politicians who have proven to0 be liars a blank check.
...and get targeted by the NSA.
its really not that hard people..
Since Kennedy, every U.S. president knows what will happen if they cross the line and aggravate their masters.
The main reason (besides not wanting the bother) that I never went with TOR and all this encrypted "hiding in plain sight" is that I was almost certain that would get you scrutiny. Now we see that it does.
You've got to figure that if you make it hard for them to figure out what you're up to, they're going to try harder to find out. Otherwise you're an amateur, and amateurs go to jail.
Fight back, but be SMART about it.
Slashdot itself plays the NSA's bitch by blacklisting TOR exit nodes all the time. That's because deep down, they support the NY criminals who run the show from Tokio to Budapest.
Now, ban this IP address and suck a dick of Lockheed Martin and/or AIPAC.
http://www.spiegel.de/netzwelt/netzpolitik/spionageskandal-britischer-geheimdienst-sammelt-gewaltige-datenmengen-a-907260.html
And, I use TOR to view movies on a regular basis. Just have some patience to let the buffer fill up.
Example: kinox.to (stuffed full of pro-Empire propaganda, but hey, we need bread, games and a LEASH).
This really shouldn't come as a surprise.
Look at it this way: if you commit to using Tor, in essence the NSA has a choice.
1. Shrug their collective shoulders, say, "Oh well. No point in bothering with anyone using Tor." and move on to easier targets.
2. Say to themselves "Right, Mr. Clever Who Thinks He Can Hide So Easily. We'll see about that..." and redouble their efforts.
When the organisation in question is a government spy agency with a budget that might as well be unlimited for all practical purposes and a battalion of very clever people who are employed wholly and exclusively to figure out new and inventive ways to spy on people - what did you think they were going to do?
If you think about who benefited from that, it was the Arms Makers, Mercenaries, Booze-Allen-Hamilton,L3 and the like. Plus, it was Israel, who got an innocent (relative to 9/11) bystander (Saddam Hussein) taken out. This thing was a win/win for the MIC and Israel.
Now, they want to do something like this again: Fancy up the need for war against Iran which will take out another Israel nuisance while making at least 500 billions in revenue for the Makers Of Death And Misery.
@UK-USA Security Services: It is up to you to be part and parcel of this next crime they contemplate, or to work against it, with all your resources. I am not suggesting treason, I am suggesting you shape your leader's thought processes in the right way, as opposed to facilitate their Next Crime. Remember, Corruption destroys empires and it will destroy your's and your civilization.
After all, Google, et.al get my physical location wrong all the time, because I may be beaming down to one of several possible locations in the USA. Seriously, Google, and Speedtest.net, among others, never get my location right.
So, according to the article, we probably drive the feds crazy.
And this is how I do anonymous secure online backups, guaranteed to be retrievable forever thanks to FISA...
Also, this helps my stock holdings in hard drives and storage companies - win, win!
bjelr qzvjw arxsn bxors tncfm eyhcx
qxssz isway gxytb pnekv bnghu kjtsn
jkpkz almac mdwtj tjnll igayq tpqmj
rqzlh nllib pphxk wloeq akvdo gnkgk
apcso vvnvz jpbyu pkydt fjesc cfqqt
omqki nkofr emqin eqkja sejcq onikj
hkguw jdgve voxqo akjys kxhyy ddnho
jvcjw jaemt pxbim hcvhy ukpyp lgbzm
otxtz asaii wxyfd bmkxz hlpax bxaaq
bytem eyiqm
So, guilty until proven innocent?
No, just "guilty". It makes things easier. Due process is for non-important things only today. And identifying (a.k.a. making) terrorists is of course the highest priority. How can the population be kept in fear otherwise?
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Just build a specialized, high-performance X-Ray machine and see the ink on the paper. Call it "communications tomography". Deploy it in those 27* central distribution centers and of course forward the "take" directly to Ft. Stasi, Maryland.
You bet this is already done and somebody like "Raytheon Strategic Government Systems" have already raked in billions for that program. Plus a 850 million yearly "maintenance fee".
* Pulled out of my ass, but the magnitude is correct.
You don't receive SPAM on Government-Mail (shortened "Gmail"). So what's your complaint ?
At some point the popular uprising in Syria morphed to a civil war, then Israel dropped some bombs on it and it started to look like it was morphing into an old fashioned proxy war between East and West. If I'm not mistaken Obama has yet to send arms to anyone, but he recently signed a UN backed agreement with Putin to work together toward creating a "caretaker" government formed by the waring parties themselves. However before any of that can happen they need to negotiate a cease fire on the ground which is much easier said than done. Secondary goals are distributing aid, and sending in UN inspectors to investigate the reported use of nerve gas. They have also agreed that the day to day public service should not be dismantled (which was what threw Iraq into an orgy of looting on the 3rd day of the war).
If stopping the bloodshed and restoring order is your aim then you should be applauding an agreement that aims to stop the violence and reboot the politics, while at the same time asking WTF did it take them 2yrs to publicly agree (through gritted teeth)?
And did you exchange a walk on part in the war for a lead role in a cage? - Pink Floyd.
Cold Fjord.
I'm pretty sure that tool is still sucking authoritarian dick.
now there is a crypto-boom. NSA will just wait some time, until it fades again, before they can assume that encryption = suspicious, again.
By the way, is there an error in the article? Shouldn't it be that they need to stop collecting data, when the target is from OUTSIDE the US? NSA is a american secret service after all.
Due to obsolete constitutional constraints, it is least problematic if the U.S. outsources all of its domestic spying to China and vice versa. It would make it possible for China to make significant progress regarding human rights violations: after all, all the snooping would be done by the U.S.
It's not like there is no precedence: the U.S. already outsources a good deal of "due process" and "human rights" violations to Guantanamo, Cuba.
I'm surprised this it's a surprise. It seems reasonable to assume that if you're detected in any way using Tor someone is capturing every packet and saving it away somewhere until it can be easily decrypted using future technology (imagine how powerful computers will be in another 30 years) and they can see what you were up to.
Of course this story is only coming out so they can try to scare you out of using encryption. Fuck them!!
If they want to threaten to "hold it all until they crack it", well, let's give them tons of garbage to decipher that can never be deciphered because it has NO content at all. They simply can't tell the difference anyway so for every message you encrypt, send hundreds of others that are merely randomized content wrapped to look like encrypted message but just being onion layers wrapped around a core of random nothing. It's just a variant of the old school internet "NSA food" people put into .sigs taken to the next level of resource wastage!!!
This is how you deal with puffed up threats like this.
if i go to the drug store and buy the bogo rubbers, multiple women will seek me out?
So if I use TOR I get to be a United States Person. No more green card lottery for me. TOR here I come.
Use Tor, Get Targeted By the NSA
Don't Use Tor, Get Targeted By the NSA anyway
Everyone of your communication is recorded by these bastards.
aaaaaaa
It's getting harder and harder to sing that last line in the Star Spangled Banner.
A non US citizen can 'immunise' themselves from NSA scrutiny by appearing to be a US citizen?
"will not be treated as a United States person, unless such person can be positively identified as such, or the nature or circumstances of the person's communications give rise to a reasonable belief that such person is a United States person,"
The question is, how can you make it clear that you are a US citizen without giving away your identity?
Are they saying that the evidence will be inadmissible in courts if it turns out to decrypt illegal activities from a US citizen? Otherwise, this statement is meaningless.
Come, use Tor and join the fun then. If we all do we will all be labeled terrorists, which is so trendy these days.
And lets get all cool EFF stickers for our laptops!
https://supporters.eff.org/shop
1 - It is natural for a government agency to watch where criminal activity may happen. And anonymized networks are more likely to contain criminal information.
2 - They are only watching, they can't arrest you or issue search warrents for just using TOR.
3 - If you don't expect to be watched, why are you using anonymizers ? The whole point of anonymizers is to preserve your anonymity even if you are watched. So if the NSA manages to identify you, blame yourself and whatever service you are using, not the NSA.
"Hide your location, lose protections guaranteed to those in America"
Seriously, is this somehow unexpected? If they're monitoring stuff they believe is from people outside the USA, and you go out of your way to mask your location, why would it surprise you that if they don't know where someone is, they treat them with the lowest level of trust? Isn't that the default security policy for from every IT vendor since the beginning of time?
Most radio communications can be encrypted or sent over a spread spectrum format if you want to keep a secret over radio, BUT this technology is only available to proper licensee's. All the encryption or frequency hopping codes are known to someone thus it can be monitored. So I am thinking the same should apply to the internet. The only way to be better in cyberspace is to have the best tech and this should not be available FOR FREE to just anyone. The jokers behind this knew full well what it was capable of and did this just to frustrate authorities and care nothing about anyone, their privacy or their rights. That is what disgusts me to see creeps like Assange and Snowden being emboldened by misled public supporters. Totally wrong. These guys do it for the thrill nothing more nothing less.