Is TOR even safe anymore?

>tfw you accidentally run the CIA image or call 911 from an autoexec.bat

>the fb i has a known exploit that they have used and dismissed charges so they wouldn't have to give it up to the court

I've yet to see anything resembling proof of this. just people talking shit on forums.

>but as always if your threat model includes the nsa you're fucked :)

yeah this

I thought you pedos just used Kik groups these days or something

what is this going to do am i going to jail if i googled this

Way more efficient through TOR

Any good onion sites? Just go t this bitch

uh do a news search? It's not hidden

You cant, everyone trusts eachother, like why would you report/get someone in trouble thats the same as you are?

Its only .mp4 and image files so its like downloading normal porn, just slower, nothing else

I do but i wont post it here

no

What do you mean your threat model?

Tor is slow as fuck.

none of the articles I've found suggest that. Can you please link to one.

i dont understand. what?

no

...

If you run enough nodes (which a nation state is more than capable of doing considering the size of Tor), you can easily do a traffic analysis attack. This allows you to determine what sites a user is accessing and the location of hidden services. Tor would only be secure if hundreds of millions of people used and provided routing nodes.

hahahahha

schneier.com/blog/archives/2017/03/fbis_exploit_ag.html
wired.com/2017/03/feds-rather-drop-child-porn-case-give-exploit/
arstechnica.com/security/2016/11/firefox-0day-used-against-tor-users-almost-identical-to-one-fbi-used-in-2013/

>TOR is slow as fuck.
Not if you have 60mbp/s and use good websites

>fbi has a known exploit
Yeah its called Java Script, just fucking disable JS. Also the FBI/NSA/Whatever the fuck isn't going to break RSA-1024, as long as you follow basic fucking rules and instructions to tor you're safe.

thanks! I was only finding older stuff

I thought your shit was being funneled through a bunch of slow ass nodes. Are you direct connecting to FTP or something insanely stupid?

Just install tor and youre fine, whats with the paranoia, jesus

>Are you direct connecting to FTP or something insanely stupid?

No, just install TOR, find sites, download/browse

Theres also chatrooms with a bunch of images being linked

Oh and disable scripts globally duh

I'm a mentally social outcast to people cause I'm nervous and it's like reading a book from tortoise and the hare. I feel like I'm a tortoise a lot ;~;

there is 100% beleivable reports that the they have broken encryption keys. NSA has its own super computer. And there is something about once they crack it once its trivial to crack again

youtube.com/watch?v=QRYzre4bf7I

youtube.com/watch?v=lVcbq_a5N9I

Yes, Tor is very safe, just find an instruction manual to tweak the settings each time you start up.
Using Tor just like that is NOT safe enough.
The tweak takes about 5 minutes every start-up, things including font exploits and permissions.
You need to turn these off, or the CIA can track you

legal stuff here is interesting. assuming bunch of people plead guilty for reduced sentences, and now find out the FBI would have backed off lol.

It'll be interesting to see what the exploit was ( assuming it wasn't controlling a ton of the nodes, like they did back in 2015 ) . Or just got someone on the inside ( which I know they did ) ....

It sounds like they got the cp ring site, then had everyone download malware.

They were able to trace out actual ip through the onion, and label mac address of known members...it wasn't simply a js issue.

how old are you user

I've just seen the thumbnails and i already know its some bullshit, people will scare other people off of tor just so they dont watch the goodness that is CP

dailydot.com/layer8/government-contractor-tor-malware/

24

yall niggers need jesus

It's not that kind of video just check the channel it's quiet good if you're interested in computers

>disable js in about:config
>globally enable noscript

There are other things you can do to be even safer, something to do with fonts, etc, but I never bother with that. Just don't be stupid and use common sense and you'll be fine. E.g: using same credentials from the clearnet, etc

I know about Computerphile , i work in IT

But 99% of the freenet will tell you TOR is so disturbing and FBI will come at your door as soon as you click a link, and guillable people believe it, which is bs

People used to say the same thing about Sup Forums. I didn't come here until 2010 because everything that I ever heard about it was "IT'S FILLED WITH CHILD PORNOGRAPHY YOU WILL GO TO JAIL!"

I kept seeing greentexts posted elsewhere, and figured I could just filter out the awful shit. I never had to worry about that particular kind of shit filtering. The bark was worse than the bite/mountains out of molehills/etc

DPR is definitely in prison over this said exploit they wont give up.

Want some greentexts?

>be in onion land
>on maskfag irc
>someone dops link to dump
>crazy ass shit that I need not talk about

Other shit is kinda cool there tho
>go to the crystal palace onion
>puzzle written in the page
>read the html and find part of castle not shown on the page
>this leads to another onion with another puzzle
>literally going deeper and deeper to hell
>never made it into hell tho
>maskfags I was running with said it was insane and to not go there unless I wanted mib at muh door

Also way too much charlie parker for any burgerfag to feel safe, like you dont even have to look for it and its there, kinda sad tbh

Can we gat some good links?

NO IF YOU CANT FUCKING FIND YOUR OWN ONIONS YOU DO NOT NEED TO BE ON TOR OFFICER FFS

And its the same with TOR.

>You cant find CP unless you want to (It's easy but it wont get shoveled into your face you have to find it just like, PornHub wont pop-up if youre browsing Sup Forums or something
>Even if you do look at/download (like me) its nothing special, click download/extract with given password/watch

Absolutely nothing happens at all, its just like downloading webms and images from Sup Forums except you need to extract them

Like you can find HurtCore CP in 10 seconds from hiddenwiki, i am not even exaggerating

...

stoped using tor just before that first big bust (freedom host).
curious but to scared to go back now

Youre literally retarded

why

hes trying to bait you into searching for child porn...

Because youre scared of literally nothing

Ok name 1 person that was caught for CP that DIDNT PRODUCE it and wasnt SNICHED by some who THEY PERSONALLY TOLD AND TRUSTED

someone that was purely caught without any admitting or production of cp, only viewing/downloading

How the fuck is kik a safe way to trade? Might as well use gmail

well the name most recently in the news is jay michaud, one of the hundreds arrested merely for logging into playpen

Lol am I famous now?

FUCK

I hear them coming for you already, your fucked

you are now fucked

Ah, youre thick

Playpen was an FBI bait, which is soo obvious, unless youre a retard, go to a CP directory list or chat and everyone will point you at what to avoid and what is safe

How did no one catch me for years? I've even pasted the link to my regular chrome to download CP if TOR was slow

V&

Rip

Enjoy your party van

Do you have to use a vpn? Are they even helpful?

>Being this much of a newfag

it wasn't fbi bait originally, only the last couple weeks.
i assume you're speaking of hidden wiki or topic links, it was listed there with no notes about safety.

the theory is that the exploit required user error like leaving javascript on (its on by default) like LC, but since the FBI is dropping cases rather than reveal it, that might not be the case; it could be a deanonymization attack like they contracted carnegie mellon for, or it could be a harder attack on the tor system, an attack on tor browser not requiring JS, or even file-based exploit (there's been reported security bugs that can make media players contact a server just by opening the file). the last one would certainly explain the secrecy, because that's a step even further in cp distro than running the site.

also if you're accessing cp over clearnet you're a fucking retard and the only reason you havent been caught is luck

Listen bud, TOR in itself is a VPN, you cannot be targeted through TOR, unless you download a malicious software and install it, which would be plain retarded

>wired.com/2017/03/feds-rather-drop-child-porn-case-give-exploit/

Hah, they quoted one of my law school classmates in the Wired article

I wouldn't have asked if I knew what the hell people were talking about. So yes, Im a newfag. Deal with it. Summer is here to stay.

i've only ever heard of flash exploits which is user error, but i wouldn't be surprised if they could track down popular hidden services (not individuals) via traffic analysis

I'm not your bud, pal.

Who said i was accessing cp over clearnet? are you a retard?

Yeah but there was a warning on Topic links when it was discovered, and who leaves JS on? That is plain fucking retarded, if the site requires Scripts on, Leave it, thats what i said about it being obvious, use your brain if you have one

>Who said i was accessing cp over clearnet?

>I've even pasted the link to my regular chrome to download CP if TOR was slow

No. "family nudism" is not illegal. Only if the child is posing sexually.

Well idk what surprises you but that would be extremely fucking surprising to me

>>I've even pasted the link to my regular chrome to download CP if TOR was slow
And by downloading CP i meant Downloading a masked, encrypted zip file with an innocent name, again, use your brain

>itt pedo's face when

a masked encrypted zipfile that's public posted as cp on a cp site with a preview image indicating it's cp with a password given by a known cp distributor.

that's the fucking most moronic thing i've ever heard that someone would think that's ok

fbi sees link on cp site, because they're monitoring them all, then pulls server logs... you're FUCKED when they see a non-tor IP in the logs.
jesus christ and here i was thinking there couldn't possibly be enough idiots making obvious errors to explain the number caught up by playpen, but here you are making me reconsider

Summerfags are basement dwelling oldheads like myself. Use a vpn if you can afford it for every day shit. You cant post here cause literally all vpns are blacklisted

Can you elaborate, pls?

They usually don't set up TOR correctly and leave JS on and shit

How about get a job and don't watch cp

This. A sophisticated enough analysis will work.

Any other stuff to look out for that can catch you out like that? For newbies

All this shit about IPs, nodes, java, scripts, etc. is confusing. It just doesn't seem worth the trouble. How the hell do you know all of this?

Good point, what do pepper do in dark webs besides drugs and cp?

even if you don't look at cp, go to a cp site and read the guides in the security forum, best instructions you'll find for tor opssec

all sorts of gotchas, like shell bags-- did you know windows saves a list of every file you've ever accessed? there's people rotting away in jail right now because of those-- police see it say the filenames make the contents a foregone conclusion, so the court holds you in contempt til you give the password.

Don't maximize TOR browser, make sure onion links have HTTPS (if they don't stay away). Never give out anything that can be used to trace you. Use TAILS. Don't save any questionable content. By default, Put security level high on TOR Browser (pic related).

Besides CP, drugs, obvious illegal activities and trades, what is TOR used for that is less well known?

Just as trivia

>a known cp distributor.
no
>then pulls server logs... you're FUCKED when they see a non-tor IP in the logs

What server log? pull it up from their ass? they cant pull or view any server logs on TOR, you dumbass

you are literally too stupid to insult someone that has superior networking/IT knowledge compared to you

the media player you use can be a huge risk

if the FBI wanted to, they could prepare a video file in a way that the required codec has to be downloaded from their site, literally calling home from your real IP when you try to watch it.

obviously, most media players have this disabled by default, but VLC for example allows it

holy shit you're dangerously stupid

yes, someone who posts a bunch of cp is a known cp distributor, im not talking about real-life identity, just the username

the server logs on the clearnet download site shit for brains.

Yeah that you have to manually download, implying that the user is this retarded to do that

Holy shit i didnt expect this to get actual rational answers on this site
I wasn't serious
please dont get me v&....