Post AOYcW66LQ6pdxtLops by rysiek@mastodon.technology
(DIR) More posts by rysiek@mastodon.technology
(DIR) Post #AOWSo9QYPBrHdQqzwW by rysiek@mastodon.technology
2022-10-13T09:21:45Z
6 likes, 17 repeats
Looks like #Telegram leaks usernames in #TLS SNI:https://nitter.it/fo0_/status/1580146963579740160 🤦‍♀️ TLS SNI is sent in *clear text*, because it is a mechanism that informs the server hosting multiple websites on a single IP address which TLS certificate to present to the client.Putting username in SNI makes it *trivial* for anyone listening on the wire to track who and when is communicating with Telegram servers. Add some timing analysis and one can reason about who is talking to whom.Metadata kills.#Infosec
(DIR) Post #AOWSrJbJ2Mv23XOLui by Bubu@chaos.social
2022-10-13T10:15:16Z
0 likes, 0 repeats
@rysiek There's not really enough information in that toot to say anything here. Afaik neither telegram's mobile nor desktop apps even use TLS, at all, but rather their mtproto thing. Telegram bots use tls in some form I think?Also is that talking about your username? Your contacts usernames, some bot username, or is that happening when someone posts a https://<username>.t.me link?As fun as it is to laugh about telegram's security, could we at least launch substantiated criticism?
(DIR) Post #AOWSrKOw3qcMXSbzGq by rysiek@mastodon.technology
2022-10-13T10:19:43Z
1 likes, 0 repeats
@Bubu MTproto can use TLS as a transport:https://core.telegram.org/mtproto#transportI don't have a Telegram client handy so I have no way of verifying it myself. If anyone would fire up a Telegram client and see what flies on the wire, that would be great.
(DIR) Post #AOWVCekPoBNrdDxMeW by norwin@mastodon.art
2022-10-13T11:16:41Z
0 likes, 0 repeats
@rysiek did a quick wireshark capture, but can't see any tls sni from telegram desktop at all, (but i can't use wireshark properly tbh, i'm probably doing something wrong).from my understanding it opens a single long term tls connection, and not one per message request, so i don't see how it would send data in the sni field.. from that tweet it's not clear which client is used, and which action would trigger this, idk
(DIR) Post #AOWVCfPtJyYphrMUIi by rysiek@mastodon.technology
2022-10-13T11:20:19Z
0 likes, 0 repeats
@norwin yeah. The SNI header would show up in the very first packet of the TLS connection, it's required for the server to know which cert to present while connection is being established.Presumably it would contain *your* username (as in, the username using the client that is connecting).
(DIR) Post #AOWVCfyzDUdLShmW0G by xerz@fedi.xerz.one
2022-10-13T11:33:33.440980Z
0 likes, 0 repeats
@rysiek @norwin asked someone to do some testing, cannot reproduce it so far, I'll do it myself but it's gonna take some hours
(DIR) Post #AOWVDRSiglLOiX3QNE by xerz@fedi.xerz.one
2022-10-13T11:33:44.060657Z
0 likes, 0 repeats
@rysiek @norwin asked someone to do some testing, cannot reproduce it so far, I'll do it myself but it's gonna take some hours
(DIR) Post #AOWVq8RbKatR1lyuC8 by norwin@mastodon.art
2022-10-13T11:33:40Z
0 likes, 0 repeats
@rysiek I started capture before starting the client. looks like it's not really tls going over that connection.or maybe there's some obscurity by obscurity going on
(DIR) Post #AOWVq8qPqKk6GjaisC by rysiek@mastodon.technology
2022-10-13T11:35:52Z
0 likes, 0 repeats
@norwin I think it's MTproto, which can use many different underlying transports. Including TLS.
(DIR) Post #AOWVq9JU6FzjitBwBM by xerz@fedi.xerz.one
2022-10-13T11:40:41.273020Z
0 likes, 0 repeats
@rysiek @norwin yeah, it can do TLS with either WebTransports or HTTPS, but it's something that depends on your client https://core.telegram.org/mtproto/transports
(DIR) Post #AOWVqwDqG1b1PZvcgq by xerz@fedi.xerz.one
2022-10-13T11:40:52.357110Z
0 likes, 0 repeats
@rysiek @norwin yeah, it can do TLS with either WebSocket or HTTPS, but it's something that depends on your client https://core.telegram.org/mtproto/transports
(DIR) Post #AOX4EoTa6cqumLqXqq by theavidhorizon@fosstodon.org
2022-10-13T09:24:36Z
1 likes, 0 repeats
@rysiek Telegram is junk, we saw this in Hong Kong.
(DIR) Post #AOX4Eoy4HHEsIu6tN2 by rysiek@mastodon.technology
2022-10-13T09:40:31Z
1 likes, 0 repeats
@theavidhorizon oh I totally agree. But there are still people pushing it and pushing Durov's bullshit about it being "encrypted" (usually misleadingly phrased in a way that implies e2ee, where e2ee is almost not available on Telegram).So I feel it's important to document new-found ways in which #Telegram is junk and puts users in danger.
(DIR) Post #AOX4EpcTr1Z6KF1AMS by theavidhorizon@fosstodon.org
2022-10-13T09:47:00Z
1 likes, 0 repeats
@rysiek Agree, and you made it fabulously plain to all how easily lives could be destroyed by relying on this durovian junkbox of an application. Durovian Junkbox... Where do I come up with this shit?
(DIR) Post #AOX4Eq9RsRw7yURUkS by rysiek@mastodon.technology
2022-10-13T09:47:58Z
0 likes, 0 repeats
@theavidhorizon I am stealing Durovian Junkbox from you now.
(DIR) Post #AOX4EqZKKEdXGkYA5I by theavidhorizon@fosstodon.org
2022-10-13T10:15:34Z
0 likes, 0 repeats
@rysiek Enjoy, my friend.
(DIR) Post #AOX4Er4sQvsEqbJMGG by geoma@chilemasto.casa
2022-10-13T11:29:24Z
0 likes, 0 repeats
@theavidhorizon @rysiek yes, I still don't understand why privacy aware people use Telegram....Anyway, I don't have a proposed alternative. I personally use Signal but it's centralised, and Matrix but I thunk it could be frustrating for people migrating for whatsapp... keeping an eye on xmpp, session and status
(DIR) Post #AOX4Erg6CXeEi2j5HM by rysiek@mastodon.technology
2022-10-13T11:31:40Z
0 likes, 0 repeats
@geoma @theavidhorizon similar.I do stay way away from Session though, as it insists it needs blockchain to do what Tor does perfectly fine without it, *and* skims a percentage mined tokens off the top, automagically sending them to the wallet controlled by the organization behind it.It just feels scammy.
(DIR) Post #AOX4Es6Kd0dE1P02AS by theavidhorizon@fosstodon.org
2022-10-13T14:33:39Z
0 likes, 0 repeats
@rysiekI feel EXACTLY the same way as you do about session. Total trash.@geoma
(DIR) Post #AOX6SAZNTRXyyQ3QCe by lamp@mastodong.lol
2022-10-13T18:30:56Z
1 likes, 0 repeats
@rysiek why tf
(DIR) Post #AOXcdJQu3dY8BIRoDg by Hyolobrika@gleasonator.com
2022-10-14T00:31:32.524821Z
2 likes, 0 repeats
Cc: @inference @itzzenxxMore reasons to hate Telegram
(DIR) Post #AOYAQQwoCiayAFOxfs by kravietz@agora.echelon.pl
2022-10-13T09:57:41.464814Z
0 likes, 0 repeats
@rysiek In a way, this is a feature, not a bug. Leaking of the target hostname is precisely why ESNI (Encrypted SNI) and ECH (Encrypted Client Hello) were created, but because they’re break the whole market of Internet censorship, they never really got widespread traction.
(DIR) Post #AOYEDip4pgLRehylwe by vivernu@springbo.cc
2022-10-14T07:32:42.409Z
0 likes, 0 repeats
@rysiek@mastodon.technology Don't worry my telegram username smells bad (it has green stink lines coming out of it).
(DIR) Post #AOYOy9IRjeGocnUe6C by rakoo@blah.rako.space
2022-10-14T09:31:15.875844Z
0 likes, 0 repeats
@geoma @theavidhorizon @rysiek Briar may also be useful, but AFAIK there hasn't been an audit yet
(DIR) Post #AOYOyA8CdDfdDJhyls by rysiek@mastodon.technology
2022-10-14T09:32:31Z
1 likes, 0 repeats
@rakoo @geoma @theavidhorizon so @briar is on fedi, and I believe there has in fact been an audit:https://briarproject.org/news/2017-beta-released-security-audit/
(DIR) Post #AOYP2NBm1ebmryO14a by straw@rdrama.cc
2022-10-14T09:33:39.810867Z
1 likes, 0 repeats
@rysiek @rakoo @geoma @theavidhorizon @briar session chuds stay losing :Session: :marseyl:
(DIR) Post #AOYPDXU85MSvzIIRl2 by kuba@toot.kuba-orlik.name
2022-10-14T07:44:37Z
1 likes, 0 repeats
@rysiek the post makes it seem like this SNI thing affects personal messages. AFAIK it only affects what happens *outside* the app, when you visit someone's link in shape of username.t.me. One can use the default t.me/username to work around this. It's the browser that's doing the leaking.Having the option to put the username in domain name was a weird move from Telegram, though
(DIR) Post #AOYPH0qDOcshu3HcX2 by xerz@fedi.xerz.one
2022-10-14T09:36:34.378193Z
0 likes, 0 repeats
@kuba @rysiek this is what I'm wondering, I still have to test the web clients but hopefully they also don't do anything stupid
(DIR) Post #AOYPepzVO8v7CZzOZU by charliebrownau@pieville.net
2022-10-14T07:02:10Z
0 likes, 0 repeats
@rysiek I recommend people migrate from ((( Telegram ))) , ((( SIGNAL ))) , Whats app , Line , etc over toDelta Chathttps://delta.chat/en/You will need an pop3/smtp email (not proton/hotmail/gmail)* no sms* no real name * no meta/data collectedDelta Chat encrypts all traffic by defaultVideo - Delta Chat is awesomenesshttps://www.joshwhotv.com/v/.QDss2Q
(DIR) Post #AOYPeqW7Qt0YpjFRPE by straw@rdrama.cc
2022-10-14T09:40:52.595073Z
0 likes, 0 repeats
@charliebrownau @rysiek delta chat is literally dogshit you are mentally ill if you think Signal or Telegram are Jewish and fucking Delta Chat is better, moreover, you are literally retarded given that you said "no meta/data collected", first of all it's metadata it's not one of the two it's its own thing, second of all email is an awful protocol and it does leak a lot of metadata about who's chatting with who.from their website:>As Delta Chat is a decentralized messenger, the metadata of Delta Chat users are not stored on a single central server. However, they are stored on the mail servers of the sender and the recipient of a message.this means that you have two options1. use an email provider such as gmail, which is obviously spied on by government agencies as well as capitalists2. set up your own server, which consumes ridiculous amounts of RAM, you may get hacked if you don't know what you're doing (which, honestly, is most people, I wouldn't be comfortable running an email server), and is way overkill for chattingDelta Chat is nothing more than a toy, the push for it is either by federal agencies or people who are too dumb to understand that.the real solution is XMPP, which you can securely and safely set up on a tiny server, or something like Briar. alternatively, Signal, if you have a phone and don't mind the phone number requirement. Prosody (an XMPP server) can run at just 20MB of RAM and comfortably work without much setup using SQLite, which is a database that requires no fiddling with Postgres or MySQL, it just works.
(DIR) Post #AOYPr7X9zT0v5KaWBM by straw@rdrama.cc
2022-10-14T09:43:06.499291Z
0 likes, 0 repeats
@charliebrownau @rysiek >if you think Signal or Telegram are Jewish and fucking Delta Chat is better,*better than Signal
(DIR) Post #AOYQanVInGFiHfV1Sy by jcast@mastodon.social
2022-10-14T09:27:21Z
0 likes, 0 repeats
@rysiek @geoma @theavidhorizon According to their last audit, attachments, push notifications are sent through clearnet via centralized servers.
(DIR) Post #AOYQanwx8SN1fQR6Z6 by rysiek@mastodon.technology
2022-10-14T09:33:01Z
0 likes, 0 repeats
@jcast @geoma @theavidhorizon who, Session? Link?
(DIR) Post #AOYQaoTDCWAtHTWrqa by jcast@mastodon.social
2022-10-14T09:44:08Z
0 likes, 0 repeats
@rysiek @geoma @theavidhorizon Session, but my bad, I was unaware of the most recent audit. It was fixed.https://blog.quarkslab.com/audit-of-session-secure-messaging-application.html#full-reportIn any case it still requires too much centralization on lokinet for my taste. Signal is probably no better though.
(DIR) Post #AOYQaoylJDParKI41Y by straw@rdrama.cc
2022-10-14T09:51:21.288736Z
0 likes, 0 repeats
@jcast @rysiek @geoma @theavidhorizon they removed perfect forward secrecy and didn't tell anyone about it
(DIR) Post #AOYQap9Offv1OJGYbI by jcast@mastodon.social
2022-10-14T09:33:14Z
0 likes, 0 repeats
@rysiek @geoma @theavidhorizon The amount of effort in PR itself is fishy.
(DIR) Post #AOYQbyx9i8uM5C5nW4 by rysiek@mastodon.technology
2022-10-14T09:50:29Z
0 likes, 0 repeats
@jcast @geoma @theavidhorizon centralization? but it's on bollockschain, so it has to be decentralized! 🤣
(DIR) Post #AOYQc2WiQO8RALkjrM by straw@rdrama.cc
2022-10-14T09:51:34.486480Z
0 likes, 0 repeats
@rysiek @jcast @geoma @theavidhorizon Session isn't on blockchain, it's on Tor
(DIR) Post #AOYTNGpvErL948NyfQ by kravietz@agora.echelon.pl
2022-10-14T08:22:40.569266Z
1 likes, 0 repeats
@roboneko That’s precisely what I’m talking about - the first ESNI draft was 2018, the latest draft is October 2022, so it’s now fifth year of active development… into a single TLS extension:https://datatracker.ietf.org/doc/html/draft-ietf-tls-esni-15I’m not saying Internet censorship is the primary driver of this delay, but it’s explicitly listed as one of the “stakeholders”:https://datatracker.ietf.org/doc/html/draft-ietf-tls-esni-15#section-8.2@rysiek
(DIR) Post #AOYZV4XhQkZayixvXs by charliebrownau@pieville.net
2022-10-14T11:27:31Z
1 likes, 2 repeats
@straw @rysiek Alt Tech :-* Telegram CEO - Pavel Valeryevich Durov - On board of WEF* LBRY/ODYSEE CEO - Jeremy Kauffman- (Ashkenazi Jew) * Gettr - Jason Miller - (Ashkenazi Jew)* DDG CEO - Gabriel Weinberg (Ashkenazi Jew)* Signal - Moxie Marlinspike (Ashkenazi Jew)(Resigned Jan 2022)* Rumble CEO ((( Chris Pavlovski ))) (Ashkenazi Jew)* Parler - George Farmer (Married to Candace Owens [tpusa]) - (Zionist Shills)
(DIR) Post #AOYZvnGHmwCjCYYux6 by straw@rdrama.cc
2022-10-14T11:36:00.044405Z
0 likes, 1 repeats
@charliebrownau @rysiek @get * Delta Chat CEO - Rael - (Ashkenazi Jew)* XMPP CEO - Robert "Bo" Spotter - ( Sephardi Jew)* Briar CEO - Gethan Gleeson - ( Zionist Shill )* Session CEO - Robin Marlinspike - (Ashkenazi Jew, brother of Moxie Marlinspike)
(DIR) Post #AOYcW5VTdBLE7Y6NN2 by crusom@sunbeam.city
2022-10-14T09:59:51Z
0 likes, 0 repeats
@rysiek i've never seen this subdomain thing in the wild, but it's like, kinda obvious that it is visible for anyone listening on the wire. It's stupid "feature", I agree, but it's not a big problem imo.Btw this user.t.me/ is redirecting to the standard t.me/user sooo
(DIR) Post #AOYcW66LQ6pdxtLops by rysiek@mastodon.technology
2022-10-14T10:00:58Z
0 likes, 0 repeats
@crusom what is "this subdomain thing"? How is it used? What for?
(DIR) Post #AOYcW6ZPg25HQ2x292 by kuba@toot.kuba-orlik.name
2022-10-14T10:04:34Z
0 likes, 0 repeats
@rysiek @crusom those are links that you can send someone to redirect to your profile. If you have the app installed, they open in the app, skipping the browser and the SNI leak
(DIR) Post #AOYcW6ze6V4GjPDz28 by rysiek@mastodon.technology
2022-10-14T10:09:04Z
0 likes, 0 repeats
@kuba @crusom right. So it's not as bad as it could have been, but it's still bad.Sending a link to https://meduza.t.me/ to a bunch of people means that some will end up opening it in a browser. For anyone listening, this gives you the list of IPs and time-of-use data on a bunch of people who just clicked a link to a site that is "foreign-agent"-designated in Russia.Does Telegram make it clear that this is potentially a risk?
(DIR) Post #AOYcW7PsWy3G2lUvvE by kuba@toot.kuba-orlik.name
2022-10-14T11:15:29Z
0 likes, 0 repeats
@rysiek @crusom Nope. they tout it as a featurehttps://telegram.org/blog/infinite-reactions-statuses/pl?setln=en#new-username-links
(DIR) Post #AOYcW7rWsAAZQWR11M by kuba@toot.kuba-orlik.name
2022-10-14T11:19:09Z
0 likes, 0 repeats
@rysiek @crusom Don't modern browsers encrypt the SNI, anyway? 🤔
(DIR) Post #AOYcW8H3LGaOhgNOnw by rysiek@mastodon.technology
2022-10-14T11:47:36Z
0 likes, 0 repeats
@kuba @crusom how would you encrypt the piece of information that the server needs to know which certificate to present in order to encrypt the connection in the first place?There is ESNI, but it's a draft and not a good one.
(DIR) Post #AOYcW8hHljZO12eLh2 by kuba@toot.kuba-orlik.name
2022-10-14T11:52:12Z
0 likes, 0 repeats
@rysiek @crusom oh, I thought that ESNI is a finished thing. What makes it a bad draft?
(DIR) Post #AOYcW9DXpnNFd5k6yW by rysiek@mastodon.technology
2022-10-14T12:00:16Z
1 likes, 0 repeats
@kuba @crusom sorry, it's called ECH now. Here's the long and short of it:> Encrypted Client Hello (ECH) is a TLS 1.3 protocol extension that enables encryption of the whole Client Hello message, which is sent during the early stage of TLS 1.3 negotiation. ECH encrypts the payload with a public key that the relying party (a web browser) needs to know in advance, which means ECH is most effective with large CDNs known to browser vendors in advance.tl;dr it only works for large CDNs.
(DIR) Post #AOYcoEOdJnK2u6YIOO by neglesaks@mstdn.io
2022-10-14T12:07:43Z
2 likes, 0 repeats
@Hyolobrika @rysiek @itzzenxx @inference Nah, Telegram is fine for general messaging, but obviously not the safest bet for privacy and confidentiality.
(DIR) Post #AOYdaDkp0blQoQoWVk by charliebrownau@pieville.net
2022-10-14T12:04:59Z
1 likes, 1 repeats
@straw @get @rysiek Why am I not suprisedDoes whitey actually make any open source Turns out RSS was created by a Jew too
(DIR) Post #AOYeXiRCZV0d3r0Rai by inference@plr.inferencium.net
2022-10-14T12:27:32.544097Z
3 likes, 0 repeats
@neglesaks @Hyolobrika @rysiek @itzzenxx I use it for public group chats and TLS, but wouldn't trust MTProto for anything E2EE. I'd rather use WhatsApp than Telegram for that, and I'm not kidding about that.
(DIR) Post #AOYeiGXAeoNZhkpRh2 by inference@plr.inferencium.net
2022-10-14T12:29:28.384215Z
0 likes, 0 repeats
@charliebrownau @rysiek > You will need an pop3/smtp emailNo need to strip your metadata when the completely unencrypted email leaks it for you.
(DIR) Post #AOYexmwcREL4ZG8Luy by newt@stereophonic.space
2022-10-14T12:32:03.994648Z
0 likes, 0 repeats
@rysiek hahaha people learning about SNI and how ECH has been delayed for years now for no reason at all :comfyjoy: Don’t use Telegram, you pussies. It’s always been a honeypot.
(DIR) Post #AOYf5epkTgnvjGfkxc by straw@rdrama.cc
2022-10-14T12:33:48.512385Z
0 likes, 0 repeats
@charliebrownau @get @rysiek remember these names, once they come to prosecute us, they will be responsible for it because they sold the world on so called "private messengers" such as XMPP and Session - Rael, Bo Spotter, Gethan Gleeson, Robin Marlinspike
(DIR) Post #AOYf6b5hsW22PYaJt2 by hobson@mastodon.social
2022-10-13T10:05:01Z
0 likes, 1 repeats
@rysiek @mdyshel @rickrau Telegram doesn't hide metadata. Any corp or state actor can know who is talking to whom and when.
(DIR) Post #AOYfDOGZxTsafBuRma by melmc@melmc.nohost.me
2022-10-14T12:35:12.117052Z
0 likes, 0 repeats
@geoma @theavidhorizon @rysiek xmpp works great for me
(DIR) Post #AOYfz442NCFbuImAd6 by straw@rdrama.cc
2022-10-14T12:43:49.186360Z
0 likes, 0 repeats
@charliebrownau @get @rysiek What would you recommend for a secure messenger? I think Discord is good, they've been allies of the white movement for a while, I think they only did the "crackdowns" for publicity and didn't do much damage. Their CEO is also Jason Citron (Irish) so that's awesome, purebred white.
(DIR) Post #AOYgiOna84KpFHhDkG by straw@rdrama.cc
2022-10-14T12:52:00.705545Z
0 likes, 0 repeats
@charliebrownau @get @rysiek BTW, Pavel Durov is actually Jewish, I think. >Iranian parliament member said Pavel Durov founder of #Telegram is Jewish and Netanyahu considers him as his brother and a friend of Israel.
(DIR) Post #AOYhAhLEmTS6ravrii by ryo@social.076.ne.jp
2022-10-14T12:57:05.970663Z
1 likes, 0 repeats
@charliebrownau @straw @get @rysiek So every single technology is made by Jews now, got it...
(DIR) Post #AOYhHCO0Gq7WssKGTw by straw@rdrama.cc
2022-10-14T12:58:18.418330Z
0 likes, 0 repeats
@ryo @get @rysiek @charliebrownau linus torvalds is jewish, so yes, in a way, everything that runs linux (nearly everything) is a large part jewish
(DIR) Post #AOYheLc87z4YAEyJEG by ryo@social.076.ne.jp
2022-10-14T13:02:26.884959Z
0 likes, 0 repeats
@straw @get @rysiek @charliebrownau You make it seem like there are more Jews on this planet than anyone else.And I always thought it was the other way around.
(DIR) Post #AOYyO5YXlFuCwu7wGm by get@bae.st
2022-10-14T16:10:02.002040Z
1 likes, 0 repeats
@charliebrownau @rysiek @straw @rysiek @charliebrownau @ryo wtf I love jews now
(DIR) Post #AOZ0gEoCIbxQlYENii by rysiek@mastodon.technology
2022-10-14T16:32:40Z
0 likes, 0 repeats
@newt ECH doesn't solve anything. It only works for massive gatekeeping CDNs. It ties the open web even more strongly to increasingly monopolistic gatekeepers like Cloudflare.ECH is not a good solution.
(DIR) Post #AOZ0gFK6NzTiMV9rRw by newt@stereophonic.space
2022-10-14T16:35:40.409505Z
0 likes, 0 repeats
@rysiek ECH is a good solution to this data leak problem. Also no, its use doesn't require any involvement from big CDNs.
(DIR) Post #AOZ1jgK2Yp1kv9Kb6e by rysiek@mastodon.technology
2022-10-14T16:44:21Z
0 likes, 0 repeats
@newt how is the chicken-and-egg problem of "which cert should the server present to the client to start encrypting this connection" solved, then?I see they are now putting the public key in DNS. That's a decent enough solution to the problem of "where do I get the key". So technically you are right. For this specific data leak problem, this is a reasonably good solution.
(DIR) Post #AOZ1jlzhTMK2VnrREe by newt@stereophonic.space
2022-10-14T16:47:26.703497Z
0 likes, 0 repeats
@rysiek >how is the chicken-and-egg problem of "which cert should the server present to the client to start encrypting this connection" solved, then?Via a TXT record, for one. Isn't this how its done and what email already relies on? Granted, you need to exchange secrets somehow anyway, so there is literally no way out of this problem.
(DIR) Post #AOZSf1t3eZKh7KiUS0 by charliebrownau@pieville.net
2022-10-14T19:47:55Z
2 likes, 0 repeats
@straw @get @rysiek Discord is* Anti White* Anti Ethnic Nationalists* Anti TruthI would replace Discord with* Mumble (voice)and* IRC/XMPP/Delta Chat for the text part/meme postingDiscord like Bittorrent gained traction because it was - Designed for newbies- 'free' free costWankers were too cheap to self host a mumble server
(DIR) Post #AOZSfngHxLdhLd6yDA by get@bae.st
2022-10-14T21:47:36.711804Z
1 likes, 0 repeats
@charliebrownau @rysiek @charliebrownau @straw @rysiek Why are you throwing shade at BitTorrent it's just a protocol
(DIR) Post #AOZUTPrYsyOpuVbgWG by charliebrownau@pieville.net
2022-10-14T20:10:25Z
0 likes, 1 repeats
@ryo @get @rysiek @straw 1 is too manyEarth is a Flat Non Rotating Plane Realm , not 'planet'Space , Planet , Gravity , Spining ball are all Jew Bullshit designed to prevent goyim discovering the truth about our world , our greatest, previous reset system
(DIR) Post #AOZUTjKcV9vuI8Lewy by charliebrownau@pieville.net
2022-10-14T20:07:25Z
1 likes, 0 repeats
@get @rysiek @straw @ryo Jews are behindAnti whiteAnti GoyimAnti Goyim NationalismFeminismDiversityLibertanism Cuckservitism ChristianityIslamCentral bankingOpen BordersFree LovePornGay/LGBTAbortionNASA/GPSWamans 'rights'No Fault DivorceCensorshipGun controlBLM/ANTIFA/KKKAnti Free SpeechGravity/Space/Moon landing hoaxetcThey are a parasite in all nations they migrate too
(DIR) Post #AOZUYB9qzBJbkfQxUG by charliebrownau@pieville.net
2022-10-14T19:48:54Z
0 likes, 0 repeats
@straw @get @rysiek Thing isIRCXMPPRSSAre all protcols not programsYou can replace XMPP Client and XMPP ServersAs you can with IRC clients/serversSession and Telegram your stuck with their stuff
(DIR) Post #AOZUYBk0okErYoLpqa by straw@rdrama.cc
2022-10-14T22:10:24.956857Z
0 likes, 0 repeats
@charliebrownau @get @rysiek XMPP is created by a Jew, it hasn't been updated in a long time. Why would you promote a nonwhite platform?
(DIR) Post #AOZUZwk7YG5jciExeK by charliebrownau@pieville.net
2022-10-14T19:45:11Z
1 likes, 0 repeats
@straw @get @rysiek @ryo Why am I not suprisedRS is also Jewish alsoand has a cult followingTime to leave (((Linux))) for a based BSD ... OpenBSD maybe ?
(DIR) Post #AOZUbKEXhPvolg7xMu by straw@rdrama.cc
2022-10-14T22:10:59.326133Z
0 likes, 0 repeats
@charliebrownau @get @rysiek @ryo BSD was created in Berkeley, which teaches Anti-AMerican sentiment
(DIR) Post #AOZWY3us6sFNCUUx1c by getimiskon@udongein.xyz
2022-10-14T22:32:46.774458Z
1 likes, 0 repeats
@straw @get @rysiek @charliebrownau >XMPP is created by a Jew [...]. Why would you promote a nonwhite platformMediterranean master race :blobcatgoogly:
(DIR) Post #AOZWmDaKxTVtF3dwum by itzzenxx@plma.plus.st
2022-10-14T22:33:17.936528Z
3 likes, 2 repeats
@charliebrownau @straw @get @rysiek @ryo go outside
(DIR) Post #AOZe1BC0pnihqSLZbc by Yujiri@collapsitarian.io
2022-10-14T23:56:24.634774Z
1 likes, 0 repeats
@straw @rysiek Hey mate, you shouldn't use "mentally ill" as an insult, I assume what's going on is that you're talking to another right winger and trying to use their own language, but consider you're posting this in public, so your audience is everyone, and even to the right wing audience, I don't think you want them to think that this use of language is normal outside of their group
(DIR) Post #AOZfHtsGZr870feDyq by straw@rdrama.cc
2022-10-15T00:10:43.670082Z
0 likes, 0 repeats
@Yujiri @rysiek use of this language isn't normal outside of their group, I simply use it to as you said use their own language, I also use some slurs like faggot, I don't think they'd care about whether using this language is normal outside their group
(DIR) Post #AOZfvttluFuGfVQRdY by ryo@social.076.ne.jp
2022-10-15T00:17:55.355995Z
0 likes, 0 repeats
@charliebrownau @get @rysiek @straw I believe in neither flat earth nor round earth.And it's not really something we should really be concerned about unless you're a pilot of an intercontinental flight or some shit.I mean sure, it's nice to know what the shape is, but we can only truly know that in a world of freedom, so I suggest we delete and purge all the parasites and make people love freedom again first (for which I guess sadly all the lethally injected will have to die first, they are all anti-freedom anyway).
(DIR) Post #AOZi8pDonyxPpx5ox6 by charliebrownau@pieville.net
2022-10-15T00:39:50Z
1 likes, 0 repeats
@ryo @get @rysiek @straw Once the boomers are deadand jabbedThen we can get rid of the parasitesWe will need to remove* Central banks* GST/VAT + Income tax* welfare/social security* 'discrimation' laws* anti free speech laws* anti self defense laws* Overseas 'aid'* money/support of WEF/UN/Agenda21* Overseas corporationsSupport Local/District and National business'sUsing currency based off HOURS without usury Setup fair and honest trade partners in our areas
(DIR) Post #AOZujAvamM7F22fQeG by charliebrownau@pieville.net
2022-10-15T03:02:57Z
2 likes, 1 repeats
@ryo @get @rysiek @straw Did you know its currently ((( ILLEGAL))) to visit the 'south' pole and north poleand go into certain areas of the ocean ...For 'safety' of course Protect the birdies and fish ....
(DIR) Post #AOZulcjoLx0XrWKAO8 by charliebrownau@pieville.net
2022-10-15T03:03:53Z
0 likes, 0 repeats
@getimiskon @get @rysiek @straw XMPP is a protcol + open standardJust like email, irc and rssYou can have an XMPP clientYou can have an XMPP Server
(DIR) Post #AOZuld7Yve0T3BR8PQ by straw@rdrama.cc
2022-10-15T03:04:10.593152Z
1 likes, 0 repeats
@charliebrownau @getimiskon @get @rysiek XMPP is a Jewish technology
(DIR) Post #AOZvJMyLTXfCoPDJU8 by charliebrownau@pieville.net
2022-10-15T03:09:32Z
0 likes, 0 repeats
@straw @get @rysiek @getimiskon What do you use then* IRC * Mumble* Delta ChatSomething else ?
(DIR) Post #AOZvJNWjPhAYX3Im5A by straw@rdrama.cc
2022-10-15T03:10:16.541234Z
0 likes, 0 repeats
@charliebrownau @get @rysiek @getimiskon Discord. It is as pro-white as it gets, Charlottesville organized there.
(DIR) Post #AOZvStt8SperVOJzuq by charliebrownau@pieville.net
2022-10-15T03:11:03Z
0 likes, 0 repeats
@straw @get @rysiek @getimiskon FFSWanker
(DIR) Post #AOZvSuKQpLUas35nSi by straw@rdrama.cc
2022-10-15T03:11:59.864046Z
1 likes, 0 repeats
@charliebrownau @get @rysiek @getimiskon BLOODY WANKER, YOU DON'T UNDERSTAND DISCORD IS SHRIMP ON THE BARBIE AND XMPP IS MADE BY BLOODY DRONGOS????
(DIR) Post #AOaT3mcbjzZUAcmldo by ryo@social.076.ne.jp
2022-10-15T09:28:25.028458Z
0 likes, 0 repeats
@charliebrownau @get @rysiek @straw Fuck "illegal", all politicians and the rest of the thug class need to be dismissed anyway.
(DIR) Post #AOaVGEevWYD6Vgw4nY by uoya@soykaf.org
2022-10-15T09:53:03.574081Z
0 likes, 0 repeats
@rysiek that looks like its only for user links?They recently released a feature allowing users to link to their profile not only via t.me/username, but also username.t.me. In the latter case, the username is always leaked, regardless of SNI?
(DIR) Post #AOaVJaaATDzfNAJDG4 by uoya@soykaf.org
2022-10-15T09:53:40.937536Z
0 likes, 0 repeats
@rysiek this doesn’t seem like a huge deal, unless they’re also doing this for individual chats
(DIR) Post #AOaVPks77xKJ1RdwGW by uoya@soykaf.org
2022-10-15T09:54:46.698204Z
0 likes, 0 repeats
@rysiek looks like someone elaborated a bit more [on Twitter
(DIR) Post #AOaVTz4wFTGEF5esd6 by uoya@soykaf.org
2022-10-15T09:55:32.685852Z
0 likes, 0 repeats
@rysiek looks like someone elaborated a bit more on Twitter: android and telegram desktop leak usernames just from chats đź’€
(DIR) Post #AOaY1edewyAUbS58MK by rysiek@mastodon.technology
2022-10-15T10:23:06Z
0 likes, 0 repeats
@uoya they're saying the opposite:> on telegram android and telegram desktop not even clicking on the username dot t dot me link in a chat triggers an sni leak as it resolves the username via app logic apparently
(DIR) Post #AOaY1f61FWqy1PLmYy by uoya@soykaf.org
2022-10-15T10:24:01.872153Z
0 likes, 0 repeats
@rysiek you’re right, I misread that 💯
(DIR) Post #AOnu2InPcY1h0afpfE by spiritsplice@pieville.net
2022-10-21T21:01:55Z
0 likes, 0 repeats
@charliebrownau the earth is not flat retard @ryo @get @rysiek @straw