LuckyHedgehog

joined 1 year ago
[–] LuckyHedgehog@alien.top 1 points 11 months ago

Basic auth is a base64 of your login credentials, might as well be plain text. You should absolutely not be using basic auth if you have other options

[–] LuckyHedgehog@alien.top 1 points 11 months ago (2 children)

Basic auth is better than no auth, but it is absolutely not a recommended auth method these days

[–] LuckyHedgehog@alien.top 1 points 1 year ago

I listen to a security researchers podcast, and they mentioned Tor exit nodes being set up by governments to figure out where messages were coming from and track down individuals

There was also this article I found where the FBI exploited a vulnerability to expose the IP of a wanted individual

https://www.technologyreview.com/2020/02/08/349016/a-dark-web-tycoon-pleads-guilty-but-how-was-he-caught/

[–] LuckyHedgehog@alien.top 1 points 1 year ago (2 children)

Tor has been used to track and arrest people before. It isn't 100% guaranteed like being offline is.