this post was submitted on 02 Oct 2023
64 points (94.4% liked)

Privacy

31488 readers
1331 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
64
How much of this should I believe? (www.nytimes.com)
submitted 1 year ago by darthTurtle89@eviltoast.org to c/privacy@lemmy.ml
39 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Molecular0079@lemmy.world 20 points 1 year ago (2 children)

This article is downright harmful.

HTTPS only ensures the data stream is private and protected, but DNS requests can still leak things like search queries or other bits of identifying info.

If you setup your own VPN in a VPS, it will not protect your privacy since the hosting provider usually can be subpoenaed for information on the owner of a particular server.

[–] rurb@lemmy.ml 3 points 1 year ago (1 children)

How would a DNS request leak a search query? Not much more than the domain name is sent in a DNS query. And likely the OS has the search engine in the DNS cache so each search doesn't require a DNS query.

[–] Molecular0079@lemmy.world 4 points 1 year ago (1 children)

You make a search and then you start clicking through the websites in the results. A lot of browsers also do link prefetching, so even just the fact that you open search results will reveal info about the query because your browser might preemptively resolve DNS for result items.

And likely the OS has the search engine in the DNS cache so each search doesn’t require a DNS query.

Cache doesn't matter, you still have to build up the cache in the first place which will make DNS calls out. The TTL for DNS cache entires is usually pretty short as well at around 5 minutes, so even if you have a cache, your computer will still make DNS calls out periodically at quite a frequent rate. My point is that HTTPS doesn't prevent third parties from snooping on your browsing habits because it does nothing to hide your DNS queries.

[–] rurb@lemmy.ml 3 points 1 year ago

Yes your original point was well made. It just wasn't clear yet how DNS requests would leak search queries. So more precisely, multiple DNS requests with local cache misses in a short period of time can be used to infer search queries. Like if there are DNS requests for google, amazon, and a botany supplier one after another, then it could be inferred that you searched for something related to shopping and plants.

Thanks for the detailed response!

[–] possiblylinux127@lemmy.zip -1 points 1 year ago (1 children)

Fun fact your data isn't safe anywhere

[–] vector_zero@lemmy.world 8 points 1 year ago (1 children)

No, but you can at least choose who you distrust the least with a VPN.

[–] Fly4aShyGuy@lemmy.one 2 points 1 year ago (1 children)

And at least that entity has some stake in doing what they say they are doing. Proton VPN just to pick one as an example should care a lot about if a story were ever to surface about not being trustworthy as users would leave since that's it's only purpose.

My ISP on the other hand probably doesn't care too much since my choices are A) take it, or B) leave it and go without internet (or drastically subpar services, 5G internet, satellite, etc).

[–] vector_zero@lemmy.world 2 points 1 year ago

Meanwhile, ISPs actively sell every single byte about you and your browsing habits that they can.