here are the latest privacy terms: https://www.starlink.com/legal/documents/DOC-1000-41799-67?regionCode=DE
privacy ÄT spacex DDDOTT com
one fine day, DNS stopped working.
the reason this time was NOT on the server-side, but on the Google side, blocking all DNS servers that are NOT google.
while this can be understood in the terms of CyberSec:
+ (manipulation of DNS servers, forwarding visitors of banking.com to a malicious website, that looks exactly like the original site).
– it is another step towards more internet surveillance, as a DNS server is de-facto asked EVERY time a client makes a connection to domain.com
possible solution: tunnel all traffic over tor or a trusted VPN provider (until tor is blocked, then change ISP (Internet Service Provider)
mass surveillance is real & cencorship is real:
HURRAY!
# asking Lightning Wire Labs' DNS Server: "what IP address has google.com?" dig @81.3.27.54 google.com -t A
# a day later: it’s working again, technical defect, can not be ruled out, but is unlikely because many DNS servers were not available including https://doh.libredns.gr/dns-query
; <<>> DiG 9.16.33-Debian <<>> @81.3.27.54 google.com -t A ; (1 server found) ;; global options: +cmd ;; connection timed out; no servers could be reached dig @62.133.35.15 dwaves.de -t A ; <<>> DiG 9.16.33-Debian <<>> @62.133.35.15 dwaves.de -t A ; (1 server found) ;; global options: +cmd ;; connection timed out; no servers could be reached # in contrast, when asking DNS server of google: dig @8.8.8.8 google.com -t A ; <<>> DiG 9.16.33-Debian <<>> @8.8.8.8 google.com -t A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47191 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;google.com. IN A ;; ANSWER SECTION: google.com. 66 IN A 172.217.16.142 ;; Query time: 48 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Tue Jan 03 12:41:29 CET 2023 ;; MSG SIZE rcvd: 55 # cloudflare dig @1.1.1.1 google.com -t A ; <<>> DiG 9.16.33-Debian <<>> @1.1.1.1 google.com -t A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38750 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;google.com. IN A ;; ANSWER SECTION: google.com. 72 IN A 142.250.184.206 ;; Query time: 44 msec ;; SERVER: 1.1.1.1#53(1.1.1.1) ;; WHEN: Tue Jan 03 12:35:09 CET 2023 ;; MSG SIZE rcvd: 55
Solution: switch to Tor Browser Bundle instead of default Firefox
while thunderbird works flawless via this proxy settings, firefox seems to have problems connecting to SOCKS4 proxy? (#wtf actually?)
sometimes it works sometimes not.
so it might be recommended to “abandon” firefox default and user tor browser bundle per default.
It is also possible to use uBlock Adblocking extension, when enabled to run in “private mode”
- get the tor browser bundle: https://www.torproject.org/download/
- migrate all bookmarks via -> export to bookmarks.html
- use a separate password manager or simply plain encrypted text file
- enable adblocking:
Alternative: continue to use Firefox default, but with local Tor Proxy
this is not working very smooth. (it works fine with thunderbird, but not with firefox #wtf?)
- get the tor browser bundle: https://www.torproject.org/download/
- open up firefox settings: Edit -> Settings or SandWichMenu top right -> Settings
- type: “proxy”
- fill it like this, also note the custom dns settings to: https://doh.libredns.gr/dns-query
- while u are on it:
- do the same in Thunderbird.net (Also donate there!)
- set https://metager.de/ as new default search engine 😀
- star tor browser bundle!
- start firefox!
- it should connect, with less surveillance but a bit slower 😀
- HURRAY! HAPPY NEW YEAR!
what about youtube?
Youtube (bought by Google in 2006 for $1.65 billion) is frequently blocking connections from Tor network.
Try this: https://youtube.076.ne.jp/ <- paste in YoutubeVideoID, should find it 🙂
run a tor bridge
- this will grow the tor network with nodes
- it is possible to set bandwidth limits / quota limits, so whenever those limits are reached tor will refuse connections
- statistics are loged in vim /var/log/tor/notices.log
- not so hard to setup
- with as little as 3,79 Bucks (2023-01) per Month get a Virtual Private Server @ Hetzner
- setup Debian
- setup Tor https://community.torproject.org/relay/setup/bridge/debian-ubuntu/
- not necessary to run an tor exit node (exit node = last IP that will connet to WebsiteX and thus visible to WebserverX and thus IP will show up in the log files of WebserverX)
- sample config:
- vim /etc/tor/torrc
- when a Nickname is specified, it is possible to search for the node via
- https://metrics.torproject.org/rs.html
- used to be: https://atlas.torproject.org/rs.html
- or it’s anonymized equivalent: http://hctxrvjzfpvmzh2jllqhgvvkoepxb4kfzdjm6h7egcwlumggtktiftid.onion/rs.html
- so this and the contact info is publicly available, so rather chose something anonymous 😀
- vim /etc/tor/torrc
if the user likes a free as in freedom internet, donate now!
before it is too late.
Want to support Free (GNU) and Open Source software? – list of open source projects to donate to
liked this article?
- only together we can create a truly free world
- plz support dwaves to keep it up & running!
- (yes the info on the internet is (mostly) free but beer is still not free (still have to work on that))
- really really hate advertisement
- contribute: whenever a solution was found, blog about it for others to find!
- talk about, recommend & link to this blog and articles
- thanks to all who contribute!