Author Topic: CryptoParty like it's 1984 - The CryptoParty Handbook  (Read 3977 times)

J.A.F.O.

  • Anarchist
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12272
  • No one rules if no one obeys - Tao Do
    • Anarcho-Primitivism
CryptoParty like it's 1984 - The CryptoParty Handbook
« on: October 10, 2012, 05:41:01 AM »
Apropos to a recent thread here at HA on the Melbourne CryptoParty, I have now added the 1st Edition of The CryptoParty Handbook to my collection of downloadable files.  Download Link

Anyone interested in keeping their private communications and data actually private, should read this.  Anyone interesting in organising their own CryptoParty should read this.  They should also go to the CryptoParty website for additional resources and to see what CryptoParties may be planned for their area, as they are spreading in popularity and are being held all over the world.

The handbook itself is also available from the site, if you prefer to obtain it that way.

Important Note:
PPTP is referenced in this book as one method for use when setting up Virtual Private Networks. It is easily breakable. Do not use it!  Use OpenVPN instead.


"Why let the Government take care of your privacy, when you can do it yourself?"
« Last Edit: October 10, 2012, 06:05:24 AM by J.A.F.O. »
We got further smashing windows than we ever got letting them smash our heads.
~ Christabel Pankhurst, Suffragette

What happens in disasters demonstrates everything an anarchist ever wanted to believe about the triumph of civil society and the failure of institutional authority. ~ Rebecca Solnit 'A Paradise Built in Hell'

I don't vote. Because I believe if you vote, you have no right to complain.
Yeah, people like to twist that around, I know.. they say "Well, if you don't vote, you have no right to complain." But where's the logic in that? If you vote, and you elect dishonest, incompetent people, and they get into office and screw everything up, well, you are responsible for what they have done. You caused the problem, you voted them in, you have no right to complain. I, on the other hand, who did not vote, who, in fact, did not even leave the house on election day, am in no way responsible for what these people have done, and have every right to complain as loud as I want about the mess you created that I had nothing to with. ~ George Carlin

The corporate state, in theological terms, is about unchecked exploitation and death. And if the corporate state is not vanquished, and vanquished soon, the human species will not survive. ~ Chris Hedges

People who pretend to forget history are doomed to invent it. ~ Gromit

mangrove

  • Hero Member
  • *****
  • Posts: 1059
  • before night falls
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #1 on: October 10, 2012, 07:34:20 AM »
Thanks -- slightly on a tangent -- I went to the OpenVPN site you suggested and was reading about Private Tunnel, and watched their cool little youtube video. Any experience with this, JAFO?


J.A.F.O.

  • Anarchist
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12272
  • No one rules if no one obeys - Tao Do
    • Anarcho-Primitivism
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #2 on: October 10, 2012, 07:39:50 AM »
Unfortunately, no.. around the time I was planning on setting up a VPN tunnel to a server I was renting, I had to give up the server for budgetary reasons.. :( >:(

I will be messing around with VPN's again in the near future, as part of a larger project I'm researching.

(I should add that OpenVPN can be used to connect with any OpenVPN equipped server, not only the service promoted at the website.  Clients for Linux are available too, even though the site doesn't appear to offer a direct download for it)
« Last Edit: October 10, 2012, 07:49:03 AM by J.A.F.O. »
We got further smashing windows than we ever got letting them smash our heads.
~ Christabel Pankhurst, Suffragette

What happens in disasters demonstrates everything an anarchist ever wanted to believe about the triumph of civil society and the failure of institutional authority. ~ Rebecca Solnit 'A Paradise Built in Hell'

I don't vote. Because I believe if you vote, you have no right to complain.
Yeah, people like to twist that around, I know.. they say "Well, if you don't vote, you have no right to complain." But where's the logic in that? If you vote, and you elect dishonest, incompetent people, and they get into office and screw everything up, well, you are responsible for what they have done. You caused the problem, you voted them in, you have no right to complain. I, on the other hand, who did not vote, who, in fact, did not even leave the house on election day, am in no way responsible for what these people have done, and have every right to complain as loud as I want about the mess you created that I had nothing to with. ~ George Carlin

The corporate state, in theological terms, is about unchecked exploitation and death. And if the corporate state is not vanquished, and vanquished soon, the human species will not survive. ~ Chris Hedges

People who pretend to forget history are doomed to invent it. ~ Gromit

mangrove

  • Hero Member
  • *****
  • Posts: 1059
  • before night falls
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #3 on: October 10, 2012, 07:40:24 AM »
^^^ Well, I looked at their Terms of Service and stopped cold at item #1. I mean, sure it would be nice to have privacy from criminals, but what if "the law" is itself criminal (just asking)? lol  Oh, and then you're supposed to trust Private Tunnel as well.... You know what? I think I'm just going to get rid of the damn computer.... well, eventually at least.  :'(

Quote
(a). We will make our best effort to provide PrivateTunnel services to you with minimum downtime.

(b).The information you provide when you purchase, connect and use the service, can only be accessed by the Company. Your information may be used only by us to provide our services to you. We respect your privacy and will not disclose it to a third-party, except in the following situations:

1. At the request of law enforcement agencies in compliance with all procedures established by law.

. . .


mangrove

  • Hero Member
  • *****
  • Posts: 1059
  • before night falls
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #4 on: October 10, 2012, 07:43:27 AM »
Thanks for the quick response. I'll probably just continue doing what I do now for security.... and hope it's good enough.  :police:

J.A.F.O.

  • Anarchist
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12272
  • No one rules if no one obeys - Tao Do
    • Anarcho-Primitivism
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #5 on: October 10, 2012, 07:51:48 AM »
^^^ Well, I looked at their Terms of Service and stopped cold at item #1. I mean, sure it would be nice to have privacy from criminals, but what if "the law" is itself criminal (just asking)? lol  Oh, and then you're supposed to trust Private Tunnel as well....

See the edit to my previous post..

and there are ways around the "problems" you mentioned..  PM me for more info.
We got further smashing windows than we ever got letting them smash our heads.
~ Christabel Pankhurst, Suffragette

What happens in disasters demonstrates everything an anarchist ever wanted to believe about the triumph of civil society and the failure of institutional authority. ~ Rebecca Solnit 'A Paradise Built in Hell'

I don't vote. Because I believe if you vote, you have no right to complain.
Yeah, people like to twist that around, I know.. they say "Well, if you don't vote, you have no right to complain." But where's the logic in that? If you vote, and you elect dishonest, incompetent people, and they get into office and screw everything up, well, you are responsible for what they have done. You caused the problem, you voted them in, you have no right to complain. I, on the other hand, who did not vote, who, in fact, did not even leave the house on election day, am in no way responsible for what these people have done, and have every right to complain as loud as I want about the mess you created that I had nothing to with. ~ George Carlin

The corporate state, in theological terms, is about unchecked exploitation and death. And if the corporate state is not vanquished, and vanquished soon, the human species will not survive. ~ Chris Hedges

People who pretend to forget history are doomed to invent it. ~ Gromit

J.A.F.O.

  • Anarchist
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12272
  • No one rules if no one obeys - Tao Do
    • Anarcho-Primitivism
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #6 on: October 10, 2012, 03:04:54 PM »
A possible alternative to the OpenVPN service (as distinct from the software itself, which is not ToS encumbered)

DarknetVPN
Quote
It is important for us to protect our customers internet privacy, we achieve this by not store any traffic logs. Therefore it is not possible for us to provide third party with information about any internet activities from our anonymous vpn network.

We keep no traffic logs of our darknet users.

They are based in Sweden, according to a whois check on the Domain Name, which explains the slightly less than perfect English on the site..  Given their location, this one I'd be inclined to consider.
We got further smashing windows than we ever got letting them smash our heads.
~ Christabel Pankhurst, Suffragette

What happens in disasters demonstrates everything an anarchist ever wanted to believe about the triumph of civil society and the failure of institutional authority. ~ Rebecca Solnit 'A Paradise Built in Hell'

I don't vote. Because I believe if you vote, you have no right to complain.
Yeah, people like to twist that around, I know.. they say "Well, if you don't vote, you have no right to complain." But where's the logic in that? If you vote, and you elect dishonest, incompetent people, and they get into office and screw everything up, well, you are responsible for what they have done. You caused the problem, you voted them in, you have no right to complain. I, on the other hand, who did not vote, who, in fact, did not even leave the house on election day, am in no way responsible for what these people have done, and have every right to complain as loud as I want about the mess you created that I had nothing to with. ~ George Carlin

The corporate state, in theological terms, is about unchecked exploitation and death. And if the corporate state is not vanquished, and vanquished soon, the human species will not survive. ~ Chris Hedges

People who pretend to forget history are doomed to invent it. ~ Gromit

Gromit

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12555
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #7 on: October 10, 2012, 03:43:49 PM »
But isn't it true that while they won't know what you're doing while using the VPN service, they will know that you are using it, so that alone may raise a big red flag? Would VPN through proxy alleviate this problem? Just something to consider.

J.A.F.O.

  • Anarchist
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12272
  • No one rules if no one obeys - Tao Do
    • Anarcho-Primitivism
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #8 on: October 10, 2012, 04:02:20 PM »
VPN via proxy might help..  but better protection is probably afforded by the simple fact that hundreds of thousands of businesses use VPN's all the time, as do their employees when working from home/on the road.  The vast majority of VPN traffic is quite legitimate, and ISP's would be courting trouble if they flagged it.  So private users are kind of a drop in the bucket.  Also, a torrent download (for example) might be traced back to a particular VPN, but the authorities are then unable to determine which of the hundreds or even thousands of users of that VPN was the one performing the download.  Indeed, they have no real way of even determining who was connecting to it at the time.  Tracking by its nature has to work backwards.  The VPN represents a dead-end.

And the more people use such technologies, the muddier the trail gets.. yet another reason crypto-parties are so important.
We got further smashing windows than we ever got letting them smash our heads.
~ Christabel Pankhurst, Suffragette

What happens in disasters demonstrates everything an anarchist ever wanted to believe about the triumph of civil society and the failure of institutional authority. ~ Rebecca Solnit 'A Paradise Built in Hell'

I don't vote. Because I believe if you vote, you have no right to complain.
Yeah, people like to twist that around, I know.. they say "Well, if you don't vote, you have no right to complain." But where's the logic in that? If you vote, and you elect dishonest, incompetent people, and they get into office and screw everything up, well, you are responsible for what they have done. You caused the problem, you voted them in, you have no right to complain. I, on the other hand, who did not vote, who, in fact, did not even leave the house on election day, am in no way responsible for what these people have done, and have every right to complain as loud as I want about the mess you created that I had nothing to with. ~ George Carlin

The corporate state, in theological terms, is about unchecked exploitation and death. And if the corporate state is not vanquished, and vanquished soon, the human species will not survive. ~ Chris Hedges

People who pretend to forget history are doomed to invent it. ~ Gromit

Gromit

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12555
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #9 on: October 10, 2012, 04:12:21 PM »
Thanks, JAFO, that makes sense.

FeelingAwake

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 1379
  • Forecaster of DOOM
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #10 on: February 08, 2013, 02:56:26 PM »
PGP Encryption keys are the best if you know the person you are communicating with..

PGP through VPN would be the absolute best..

A PGP key is created and sent to the other person. Only a person with the key on their keyring can open the file.. So if you sent something via a secure VPN tunnel, they would only get a PGP encrypted file....

Only the most experienced computer techs would be able to do BOTH.. We are talking NSA computer jock level...

Something to consider while the tech is still easily accesible on the web..

We use secure tunnels at work(permanent VPN connections) to secure our SFTP sites.. But some clients go a bit further and only send their files as PGP encrypted.. We then had to install the PGP key onto a server for our people to decrypt the files so they could use them.

Somone would have to first break into the VPN packet(no easy feat) and then figure out how to break the PGP encryption(nearly impossible outside of NSA spook technology).

Robert
Those who beat their swords into plowshares usually end up plowing for those who kept their swords-Benjamin Franklin

Till then, keep putting happy days in the Bank of Time.  - Dermot

The second mouse always gets the cheese-Chesire

ralfy

  • Hero Member
  • *****
  • Posts: 1755
  • We love jungle love!
    • Peak Oil Reports
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #11 on: March 26, 2013, 05:23:04 PM »
"Free Access To Dozens of Anonymous VPNs Via New University Project"

http://torrentfreak.com/free-access-to-dozens-of-anonymous-vpns-via-new-university-project-130324/
"Hard pressed on my right. My center is yielding. Impossible to maneuver. Situation excellent. I attack."--Ferdinand Foch

J.A.F.O.

  • Anarchist
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 12272
  • No one rules if no one obeys - Tao Do
    • Anarcho-Primitivism
Re: CryptoParty like it's 1984 - The CryptoParty Handbook
« Reply #12 on: March 26, 2013, 05:30:16 PM »
The only problem with anonymous VPNs is that you have no idea who's running them, or what they do with the access logs.. and given that certain large companies are already seeding pirated copies of their own products in order to track illegal downloaders, why on earth would you trust an anonymous VPN?
We got further smashing windows than we ever got letting them smash our heads.
~ Christabel Pankhurst, Suffragette

What happens in disasters demonstrates everything an anarchist ever wanted to believe about the triumph of civil society and the failure of institutional authority. ~ Rebecca Solnit 'A Paradise Built in Hell'

I don't vote. Because I believe if you vote, you have no right to complain.
Yeah, people like to twist that around, I know.. they say "Well, if you don't vote, you have no right to complain." But where's the logic in that? If you vote, and you elect dishonest, incompetent people, and they get into office and screw everything up, well, you are responsible for what they have done. You caused the problem, you voted them in, you have no right to complain. I, on the other hand, who did not vote, who, in fact, did not even leave the house on election day, am in no way responsible for what these people have done, and have every right to complain as loud as I want about the mess you created that I had nothing to with. ~ George Carlin

The corporate state, in theological terms, is about unchecked exploitation and death. And if the corporate state is not vanquished, and vanquished soon, the human species will not survive. ~ Chris Hedges

People who pretend to forget history are doomed to invent it. ~ Gromit