Date: Sat, 19 Sep 2015 01:44:36 +0800 From: Alastair Hogge <agh@fastmail.fm> To: "William A. Mahaffey III" <wam@hiwaay.net> Cc: freebsd-security@freebsd.org, freebsd-questions@freebsd.org Subject: Re: HTTPS on freebsd.org, git, reproducible builds Message-ID: <20150918174436.GF85844@kropotkin.auxio> In-Reply-To: <55FC19B7.1010607@hiwaay.net> References: <CAD2Ti2_YNkNi2b=PzFCwu3PVaP8hOzADys3=-k0AqvsDRhJpzA@mail.gmail.com> <1442578892.1807598.387215049.07156D0F@webmail.messagingengine.com> <1442579551.1810383.387233801.46EBDA6D@webmail.messagingengine.com> <55FC1498.7090902@Plominski.eu> <55FC19B7.1010607@hiwaay.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2015-09-18 Fri 09:09:05 +0000 William A. Mahaffey III <wam@hiwaay.net>, wrote: > On 09/18/15 08:47, Daniel DP. Plominski wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA512 > > > > well, encryption does not cost much, most mobile devices are now fast enough > > for IP obfuscation there vpn providers or anonymity networks like Tor > > > > you should look for "when leaken metadata", customized Firefox > > versionslike the "torbundle" package or FreeBSD features such as: > > disabled tcp timpstamp, activated net.inet.ip.stealth etc. > > > > may be that the most information are not critical of freebsd.org > > on a page about political commitment, however, twice what you click on > > > > in the post snowden/nsa area, i think it is not heard now de rigueur, > > but should be compulsory > > Where is that 'net.inet.ip.stealth' setting ? I didn't find it in my > /etc/defaults/rc.conf file .... What about: $ sysctl -d net.inet.ip.stealth net.inet.ip.stealth: IP stealth mode, no TTL decrementation on forwarding $ sysctl -d net.inet.ip.random_id net.inet.ip.random_id: Assign random ip_id values Add them to /etc/sysctl.conf To good health -- The liberals can understand everything but people who don't understand them. -- Lenny Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150918174436.GF85844>