Outline by Alphabet Reviews

Signed Pages Reviews

Outline by Alphabet mentions (64)

• Russia has started indiscriminately blocking all OpenVPN/WireGuard connections

  Outline (https://getoutline.org) is even easier to deploy than Streisand and uses Shadowsocks. - Source: Hacker News / 5 months ago

• Set Up a Self Hosted Outline VPN with Amazon LightSail in 5 steps.

  Outline, a free and open-source VPN service developed by Google, is renowned for its user-friendly design. It can be conveniently established on diverse platforms, and this blog will specifically guide you through the process of setting up a self-hosted Outline VPN using Amazon LightSail. - Source: dev.to / 11 months ago

• How can I bypass extreme website restrictions in my university wifi?

  Another good way is to set up your own VPN server on Digitalocean or something. Use a VPN protocol that is good at escaping detection. I recommend Outline VPN (getoutline.org). It's an open-source project that uses the Shadowsocks protocol and aims to provide censorship-free Internet to journalists in certain countries. It's not a VPN service so you need to set it up on your own server. Source: 10 months ago

• Is there any way to circumvent the shitty VPN ban that we have in place other than, well, a VPN ?

  Use a self-hosted Outline on GCP or any other cloud platform, it works really well in my experience for circumventing these blocks. Source: 11 months ago

• Shadowsocks vs. Astrill?

  Shadowsocks is a protocol. Technically not a VPN, but looks like one. Shadowsocks is a string of code that needs a server. You can get a VPS (aka server for $2/m) and install Shadowsocks. Alternately install outline, it's largely based on Shadowsocks. Works also with the Shadowsocks client, or others, like V2rayNG. Source: 12 months ago

Signed Pages mentions (12)

• E2EE on the web: is the web that bad?

  There is "Signed Pages" by the debeloper of EteSync. It is a browser extension, that checks webapps based on signatures in the html file. The addon then warns the user if the signature is not correct or - if I remember correctly - the source changed. This allows you to be sure what webapp code was delivered. But it seems like it did not really get used outside of his own projects. - Source: Hacker News / 3 months ago

• Cloudflare and CDNs - call for community opinions

  EteSync has implemented something called Signed Pages, this might be worth looking closer at. This uses PGP keys which is preloaded into the browser; but I suspect that will be a barrier too high for most non-tech users. Source: about 1 year ago

• Truly safe?

  There are also projects like signed web pages which can also help increasing the trust level to some degree. But that requires that you can download the source code and regenerate the verification hash locally - or have other trusted methods to verify the hash value hasn't been modified as well. The current concept is reasonably sane, but it requires too much from users currently to make it widely used. Source: almost 2 years ago

• Security experts declare all Proton apps secure after security audit

  > The server can at any time start serving malicious payloads True, and I call this threat model "Beware Each and Every Fetch" (BEEF) in contrast to the more common TOFU model (although if you trust a desktop app to auto-update itself then these two models might not be all that different). In any case, I think you're being a little quick to dismiss the idea of server-hosted applications. It's true that browsers... - Source: Hacker News / about 2 years ago

• ProtonMail Is Inherently Insecure, Your Emails Are Likely Compromised

  Something like a browser extension for this does already exist, fortunately: https://github.com/tasn/webext-signed-pages. - Source: Hacker News / over 2 years ago