How to PREVENT ISP from ACCESSING my PFSENSE?
-
@johnpoz said in How to PREVENT ISP from ACCESSING my PFSENSE?:
by making sure your dns doesn't leak ;)
And moving it over to cloudflare and using https for it. ;)
-
Yeah because cloudflare which a huge % of the whole internet flows through - they would never work with any government agencies :) ROFL..
Nor have any interest in monetizing the info they have access too ;)
-
@johnpoz said in How to PREVENT ISP from ACCESSING my PFSENSE?:
It really is a pretty out there claim, that the EU - which has some of the highest levels of user privacy requirements on the planet. You can not do this or that with user data, you can not collect it, without specific disclosure of what your collecting and what your doing with it.
But then would also have requirements that the government/ISPs has backdoor access into every device connected to the internet?
I mean really?? This akin to saying the government has been putting fluoride in the water for mind control purposes.. Or that the whole covid thing is a plot to implant micro-chips into everyone and its all bill gates behind it ;)
don't believe in myths. a whistle blower came out in 2015 on an investigative journalism program in the EU and detailed the installation of routing equipment for their national intelligence services on behalf of the NSA, routing all the country's meta data to the NSA and said intelligence org. It is also lawful for the intelligence & police services of said country to install malware on your equipment for the purposes of intelligence gathering....so anyone who relies on the established legal framework and fake privacy...is naive or a fool. in same country a private company happily obtains your personal details from the local council so they can extort a tv license fee from you.....where is your privacy protection there ;-)
-
@gwaitsi
Monitoring traffic in transit is quite different from accessing your firewall. As for monitoring circuits, that's not that hard to do. Any tech working in a telecom central office, as I used to, can do it and there are many other points where circuits may be available for interception. Things are a bit more difficult these days with IP etc., but not impossible. That's why you're supposed to use end to end encryption if you want to keep things private.
What really gets me are the medical and legal professions insisting on using FAX, because they think it's secure. Yeah, right. For example, in many places phone lines are not hard to get to and are usually tagged with the phone number. You may recall the old "Winmodems" from back in the dark ages, where the modem relied on software loaded from the computer. It wouldn't take much for a knowledgeable person to modify one of those to monitor a FAX connection. The FAX machine ID is easily spoofed and one thing I did years ago, when I got a FAX modem, was I faxed myself a sheet with my signature on it, so I could cut 'n paste my signature onto a document, as though I had actually signed it, before faxing it out. Yep, really secure.
-
Here's another example of great security. I recently filled out a form on line. In the past, it would have been signed and mailed in. Now, it's considered "digitally signed", if you just type your name in the box. My understanding of a digital signature is to use X.509 certificates and encryption. You can also use PGP or GPG.
-
Everyone deserves security!
Security means protection of a person, building, organization, or country against threats such as crime or attacks.
For example, you will not get robbed when you go to your local supermarket.
I think people in this forum are missing the real point, it does not matter how you got robbed (by brute force, hidden backdoors, sniffing), but what has been taken from you and your family.. security and privacy.
@powersing, make sure your physical hardwares are not infected and google how to secure/hardening firmware BIOS/UEFI. Usually bad people are focusing on your UEFI to remote your os/pfsense.
-
Facebook is a better venue for fact free fear mongering. Just saying...
-
@jwj
But don't forget your tinfoil hat.
-
-
Ok this is going nowhere useful. Locking it.
Suffice to say that an ISP may well have some access to their device at your end of the connection and that might include everything on the private side of it.
But that doesn't mean they have access to anything beyond the pfSense WAN if that is inside it.
Steve
