Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
∞ take a peek at our legendary cryptostorm_is twitter feed if you're into that kind of thing ∞
Ξ we're rolling out voodoo network security across cryptostorm - big things happening, indeed! Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit GitHub Ξ

Search found 52 matches

by sysfu
Mon Nov 21, 2016 11:29 pm
Forum: crypto, VPN & security news
Topic: [BleepingComputer] UK Passes the Most Extreme Surveillance Law in the History of Western Democracy
Replies: 6
Views: 2410

Re: [BleepingComputer] UK Passes the Most Extreme Surveillance Law in the History of Western Democracy

I actually welcome these crackdowns because they drive encryption adoption by the plebs like nothing else.

I've been working for the last five years to develop my own self hosted and encrypted infrastructure and plan on releasing a video tutorial series showing punters how to do it themselves.
by sysfu
Sat Apr 09, 2016 11:02 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget v3
Replies: 155
Views: 106400

Re: widget v3

The alpha has actually been less buggy for me on Win7 than 2.22. Narwhal would crash with almost 99% percent reliability when attempting to exit the app as it tried to reset the DNS server(s).

Thanks for the hashes.
by sysfu
Thu Apr 07, 2016 8:47 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget v3
Replies: 155
Views: 106400

Re: widget v3

PJ or df, can one of you please post a SHA file hash of the alpha installer .exe so we can verify file integrity after downloading?

Thanks
by sysfu
Sun Mar 27, 2016 4:33 am
Forum: general chat, suggestions, industry news
Topic: feedback reqest: jitsi, and Ostel.co
Replies: 2
Views: 3834

Re: feedback reqest: jitsi, and Ostel.co

Jitsi is a piece of sh*t in my experience, buggy as all hell, unreliable, devs insist on ridiculous amounts of logging enabled by default, dependence on client server architecture, etc etc. Save your time and grief and go with Tox as a Skype replacement instead, I've had great success using it with ...
by sysfu
Sat Mar 26, 2016 2:21 am
Forum: guides, HOWTOs & tutorials
Topic: HOWTO: Mac/OSX connects via Viscosity
Replies: 3
Views: 14067

Re: HOWTO: Mac/OSX connects via Viscosity

Installed Viscosity 1.6.2 on Mac OS X 10.11.4, imported the configuration file cstorm_linux-dynamic_udp.ovpn and tried to fire up a connection but got stopped cold with this error Mar 25 14:16:17: Options error: --txqueuelen not supported on this OS Can someone please either update the 'linux' confi...
by sysfu
Fri Mar 25, 2016 6:15 am
Forum: general chat, suggestions, industry news
Topic: Modern 100% FOSS libreboot server now available!
Replies: 1
Views: 9641

Re: Modern 100% FOSS libreboot server now available!

Thanks for posting this.

I've been looking to migrate to coreboot capable server hardware for quite some time now however all of the well supported AMD motherboards listed on the coreboot wiki have been hard to come by, especially in small form factors.
by sysfu
Fri Mar 25, 2016 6:04 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget v3
Replies: 155
Views: 106400

DNSC hash upgrade warning

Here's a screenshot of one of the DNSC hash upgrade warnings

Image
by sysfu
Fri Mar 25, 2016 4:37 am
Forum: DeepDNS.net - cryptostorm's no-compromise DNS resolver framework
Topic: TrackerSmacker: philosophical considerations
Replies: 11
Views: 10310

Re: TrackerSmacker: philosophical considerations

A little required reading directly related to this topic... Software Defaults as De Facto Regulation: The Case of Wireless APs ," Rajiv Shah and Christian Sandvig, TPRC'07, September 2005, Our results show that default settings play a powerful role in how people use technology. People are hesit...
by sysfu
Thu Mar 24, 2016 9:44 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget v3
Replies: 155
Views: 106400

Re: widget v3

The V3 widget is working pretty well on my Windows 7x system, better than the v2.22 release. In-line updates are working smoothly, only issue is that the signature check for the widget software update appears to be failing, but the openvpn and openssl component updates work without any apparent erro...
by sysfu
Thu Mar 24, 2016 6:44 am
Forum: DeepDNS.net - cryptostorm's no-compromise DNS resolver framework
Topic: TrackerSmacker: philosophical considerations
Replies: 11
Views: 10310

Re: TrackerSmacker: philosophical considerations

I'm not going to get too worked up about it as long as there in as option for power users to opt-out of the filtering via a checkbox on the connection widget options, or perhaps a special password in the password field for cross platform support. Would be re-assuring if the cryptostorm team will com...
by sysfu
Thu Mar 24, 2016 2:32 am
Forum: general chat, suggestions, industry news
Topic: webRTC browser IP leak fix via Windows Firewall
Replies: 28
Views: 64522

Re: webRTC browser IP leak fix via Windows Firewall

People seeking to solve the WebRTC issue with Firefox might try installing the 'Statutory' add-on.

I also found out about a privacy centric Mozilla fork known as Pale Moon which should also solve the problem. This project is recommended in the description for the Statutory add-on.
by sysfu
Fri Mar 18, 2016 4:23 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget v3
Replies: 155
Views: 106400

Re: widget v3

Is there any kind of timeline for an alpha/beta or official release of the v3 Widget?
by sysfu
Thu Mar 17, 2016 2:33 am
Forum: DeepDNS.net - cryptostorm's no-compromise DNS resolver framework
Topic: TrackerSmacker: adware/crapware-blocking done right
Replies: 61
Views: 59661

Re: TrackerSmacker: adware/crapware-blocking done right

Second the idea of the special password field opt-out method
by sysfu
Wed Mar 16, 2016 4:11 am
Forum: DeepDNS.net - cryptostorm's no-compromise DNS resolver framework
Topic: TrackerSmacker: adware/crapware-blocking done right
Replies: 61
Views: 59661

Re: TrackerSmacker: adware/crapware-blocking done right

Just a heads up, looks like hostname clicks.aweber.com is blocked which prevents a lot of links contained in legit newsletters from being usable.
by sysfu
Tue Mar 15, 2016 10:42 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget v3
Replies: 155
Views: 106400

Re: widget v3

Adding keywords 'black dolphin' to this thread so those searching for info on the v3 widget can more easily find it.
by sysfu
Tue Mar 15, 2016 10:24 pm
Forum: DeepDNS.net - cryptostorm's no-compromise DNS resolver framework
Topic: TrackerSmacker: adware/crapware-blocking done right
Replies: 61
Views: 59661

Re: TrackerSmacker: adware/crapware-blocking done right

Why don't you guys add a 'knob' to the connection widget that allows a user to enable or disable the ad blocking DNS functionality at connection time?

That would be the best way to implement the feature so that those with philosophical objections are not forced to use it.
by sysfu
Thu Feb 11, 2016 4:18 am
Forum: member support & tech assistance
Topic: Virustotal alert for Windows Narwhwal Widget
Replies: 3
Views: 4244

Virustotal alert for Windows Narwhwal Widget

Process Explorer is reporting one hit on virustotal.com for the client.exe process belonging to the Cryptostorm client Windows Narwhal widget v2.22.

The 'Bkav' antivirus is reporting a hit for 'HW32.Packed.4C3F'
by sysfu
Thu Jan 14, 2016 11:59 am
Forum: general chat, suggestions, industry news
Topic: webRTC browser IP leak fix via Windows Firewall
Replies: 28
Views: 64522

Re: webRTC browser IP leak fix via Windows Firewall

If you're forced to use Chrome for whatever reason you can block WebRTC leaks with the WebRTC Leak Prevent Extension I also came across the manual method below posted here 08.01.2016 at 13:41 To deactivate WebRTC in chrome-Browser and clones you have to insert a code-line into the file “preferences”...
by sysfu
Tue Aug 25, 2015 3:37 am
Forum: member support & tech assistance
Topic: BLACKLISTING - Websites that block CryptoStorm IPs
Replies: 52
Views: 39101

Re: BLACKLISTING - Websites that block CryptoStorm IPs

PayPal sucks donkey dong, they used to shut down my business accounts for no reason other than I tried to sign in over Tor or VPN. Each time it happens you're forced through the 'prove you're a documented govt slave' paperwork shitshow to get the account reactivated again, fuck that company in the g...
by sysfu
Thu Aug 13, 2015 10:21 am
Forum: member support & tech assistance
Topic: Narwhal 2.22 drop down node list needs updating
Replies: 2
Views: 3713

Re: Narwhal 2.22 drop down node list needs updating

IP of 'mystery' Rochester node is 23.92.211.54
by sysfu
Thu Aug 13, 2015 7:03 am
Forum: member support & tech assistance
Topic: Narwhal 2.22 drop down node list needs updating
Replies: 2
Views: 3713

Narwhal 2.22 drop down node list needs updating

Noticed that a few nodes on the drop down menu show below are either defunct or incorrectly labeled, this is the case after clicking the 'Update' button as well. ⋅  IIRC the Montreal node is down for the count and not coming back any time soon. ⋅  'Deneb - Cygnus' appears to be a...
by sysfu
Thu Aug 13, 2015 6:41 am
Forum: member support & tech assistance
Topic: Narwhal 2.22 windows resizing bug
Replies: 1
Views: 4441

Narwhal 2.22 windows resizing bug

I'm having an issue with the Narwhal 2.22 widget on a Windows system where it the window collapses to half size after clicking the 'Options' button, and will not allow resizing. Hitting the 'Back' button restores the window to the correct size.

Image
by sysfu
Tue Aug 11, 2015 5:33 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget version 2.22 ('sexy narwhal') released in the wild | 4.2.2015
Replies: 56
Views: 254680

Re: widget version 2.22 ('sexy narwhal') released in the wild | 4.2.2015

I resolved the issue by following Tealc's guide It's a moot point though, I ran Windows 10 for less on 10 hours before coming to the conclusion that there were no compelling reasons to upgrade. I can't fucking take any more of this god awful butt-ugly Soviet inspired 'flat design' trend, it can and ...
by sysfu
Mon Aug 10, 2015 8:35 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: widget version 2.22 ('sexy narwhal') released in the wild | 4.2.2015
Replies: 56
Views: 254680

Re: widget version 2.22 ('sexy narwhal') released in the wild | 4.2.2015

Just upgraded a system to Windows 10 (via clean install) and installed Narwhal 2.22.

Getting a Tap32 error when launching, after clicking OK to the error message it seems to connect and function properly afterwards.

Image
by sysfu
Fri Aug 07, 2015 7:28 am
Forum: member support & tech assistance
Topic: streaming video choppy (Youtube/Twitch/...)
Replies: 18
Views: 13599

Re: streaming video choppy (Youtube/Twitch/...)

The increased jitter would not come as a big surprise to me when stressing the connection in that manner.
by sysfu
Fri Aug 07, 2015 5:53 am
Forum: member support & tech assistance
Topic: streaming video choppy (Youtube/Twitch/...)
Replies: 18
Views: 13599

Re: streaming video choppy (Youtube/Twitch/...)

With regards to the 45% packet loss in de-cix, PingPlotter can be misleading that way to new users. "Is there any packet loss at the destination IP?" is the question you want to ask yourself first. If the answer is no, then you can disregard packet loss on intermediate hops. They may be to...
by sysfu
Thu Aug 06, 2015 9:00 pm
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

Re: SSH sessions dropping constantly while connected to Cryptostorm network

Confirmed this issue also occurs with stock sshd_config on Ubuntu 15.04 x64 VM.

I think the next step is to gather pcaps both workstation and server side, any recommendations for filtering or snaplen length?
by sysfu
Thu Aug 06, 2015 8:40 am
Forum: member support & tech assistance
Topic: streaming video choppy (Youtube/Twitch/...)
Replies: 18
Views: 13599

Re: streaming video choppy (Youtube/Twitch/...)

Try this: ⋅ Install TCPView and PingPlotter for Windows ⋅ Connect to CrypoStorm and start streaming a video. ⋅  Fire up TCPView. ⋅  Under the TCPView 'Options' menu, make sure 'Show Unconnected Endpoints' is un-checked. ⋅  Click on the 'Rcvd Packets'...
by sysfu
Thu Aug 06, 2015 7:10 am
Forum: member support & tech assistance
Topic: Windows 10?
Replies: 11
Views: 12847

Re: Windows 10?

Seeing as how Microsoft has been cramming the Windows 10 automatic updates down the throats of their Windows7/8 userbase with no way to opt out of them, it's hard not to draw the conclusion that the reason they're making the upgrade free for everybody is to get every last customer on the data collec...
by sysfu
Thu Aug 06, 2015 6:51 am
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

Re: SSH sessions dropping constantly while connected to Cryptostorm network

I was able to reproduce the issue on an Ubuntu 15.04 x64 VM. I am running a somewhat restricted sshd_config as detailed below. Wonder if that could have something to do with it, as I didn't notice any SSH session drops until I hardened SSH. /etc/ssh/sshd_config Port 22 Protocol 2 HostKey /etc/ssh/ss...
by sysfu
Tue Aug 04, 2015 11:37 pm
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

Re: SSH sessions dropping constantly while connected to Cryptostorm network

Mostly OpenBSD with a smattering of FreeBSD and Parabola GNU/Linux
by sysfu
Mon Aug 03, 2015 12:15 am
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

Re: SSH sessions dropping constantly while connected to Cryptostorm network

Another interesting data point on this issue; it's also happening with SSH connections to hosts on the local network. So this suggests it's something to do with the local OpenVPN software, not the Cryptostorm network.
by sysfu
Sun Aug 02, 2015 11:03 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 71
Views: 74628

Re: The CryptoStorm Speed Test Thread

Using exit linux-cantus1.xn--cdaan2d.be46.165.222.248 Native 22Mbps/2Mbps dn/up Retrieving speedtest.net configuration... Retrieving speedtest.net server list... Testing from Leaseweb Germany GmbH (46.165.222.248)... Selecting best server based on latency... Hosted by Base-Mail (Frankfurt) [100.73 k...
by sysfu
Sun Aug 02, 2015 10:57 pm
Forum: general chat, suggestions, industry news
Topic: Please three character search terms on the forum
Replies: 4
Views: 6664

Re: Please three character search terms on the forum

Confirmed that three letter search terms are working now, thank you.

Also, if there's any way to move the relocate the search box from the bottom of the screen to the top, that would be helpful too.
by sysfu
Sun Aug 02, 2015 10:54 pm
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

Re: SSH sessions dropping constantly while connected to Cryptostorm network

This behavior is hugely problematic for me, I cannot effectively administer servers when the connection drops every few minutes.

I will open a support request with Cryptostorm.
by sysfu
Sun Aug 02, 2015 1:26 am
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

Re: SSH sessions dropping constantly while connected to Cryptostorm network

Confirmed this is an issue on both Mac and Windows platforms with both the Narwhal widget and Viscosity, and SecureCRT and OpenSSH clients. Pretty confident it's a cryptostorm network issue of some sort as it rarely if ever happens when using 'naked' Internet connection. Error message in terminal wh...
by sysfu
Sun Aug 02, 2015 12:12 am
Forum: member support & tech assistance
Topic: SSH sessions dropping constantly while connected to Cryptostorm network
Replies: 10
Views: 6945

SSH sessions dropping constantly while connected to Cryptostorm network

I'm having chronic issues with SSH sessions dropping while connected to the Cryptostorm network. They rarely stay up for more than 5 minutes after which they must be reconnected. This occurs with SecureCRT 7.3.1 and sshd OpenSSH_6.8, LibreSSL 2.1. Right now I'm testing to see if I can duplicate this...
by sysfu
Wed Jul 29, 2015 9:24 pm
Forum: general chat, suggestions, industry news
Topic: Please three character search terms on the forum
Replies: 4
Views: 6664

Please three character search terms on the forum

I'd like to search the forums for three letter technical terms like 'dns' and 'i2p' however currently only four letter or greater terms are allowed. Can the board sysadmin please allow searching for three letter terms?
by sysfu
Tue Jun 16, 2015 9:51 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 71
Views: 74628

Re: The CryptoStorm Speed Test Thread

Thought I'd share a pretty cool command line client for speedtest.net that I found the other day: https://github.com/zpeters/speedtest
by sysfu
Sun Jun 14, 2015 10:27 pm
Forum: member support & tech assistance
Topic: OpenVPN terminal window filled with multiple replay warnings per minute
Replies: 5
Views: 4650

Re: OpenVPN terminal window filled with multiple replay warnings per minute

So far I have not been able to reproduce the replay warnings when connected to the Seattle or Montreal clusters on default udp port 443. Will post back here if they crop up again.
by sysfu
Sun Jun 14, 2015 9:33 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 71
Views: 74628

Re: The CryptoStorm Speed Test Thread

Raw or nekkid connection speed: ADSL ~22Mbps/2Mbps
by sysfu
Sat Jun 13, 2015 11:13 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 71
Views: 74628

Re: The CryptoStorm Speed Test Thread

Direct via ISP aria2c http://speedtest.sea01.softlayer.com/downloads/test100.zip Download Results: gid |stat|avg speed |path/URI ======+====+===========+======================================================= ed2189|OK | 2.6MiB/s|D:/Users/test/Downloads/test100.zip OpenBSD/Alix router via Seattle cl...
by sysfu
Fri Jun 12, 2015 4:09 am
Forum: member support & tech assistance
Topic: OpenVPN terminal window filled with multiple replay warnings per minute
Replies: 5
Views: 4650

Re: OpenVPN terminal window filled with multiple replay warnings per minute

Well it looks like I spoke too soon. Replay errors abound once again only this time on udp port 80. Seems to be tied to Netflix watching.

I'll try some other nodes, like Seattle and Montreal.
by sysfu
Thu Jun 11, 2015 10:54 pm
Forum: member support & tech assistance
Topic: OpenVPN terminal window filled with multiple replay warnings per minute
Replies: 5
Views: 4650

Re: OpenVPN terminal window filled with multiple replay warnings per minute

I switched to udp port 80 on the Kansas City node and so far no replay errors.

As far as I can tell the 'replay-window' OpenVPN connection config file option is not supported for tcp connections and therefore does not apply in this particular case.
by sysfu
Thu Jun 11, 2015 4:05 am
Forum: general chat, suggestions, industry news
Topic: Leakblock: opensource anti-leak tool for Windows VPNs
Replies: 4
Views: 10864

Re: Leakblock: opensource anti-leak tool for Windows VPNs

Any status update on the availability of the Leakblock software? Will it be rolled into the Narwahl connection app for Windows?
by sysfu
Wed Jun 10, 2015 11:53 pm
Forum: member support & tech assistance
Topic: OpenVPN terminal window filled with multiple replay warnings per minute
Replies: 5
Views: 4650

OpenVPN terminal window filled with multiple replay warnings per minute

I have CryptoStorm tunnel connected via an OpenBSD 5.7 router running OpenVPN 2.3.6 i386-unknown-openbsd5.7 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on May 7 2015 library versions: LibreSSL 2.1, LZO 2.08. The terminal window is filled with bad packet ID / replay warnings such as the ones posted below...
by sysfu
Wed Jun 10, 2015 10:13 pm
Forum: guides, HOWTOs & tutorials
Topic: [OpenBSD] Connection Guide.
Replies: 4
Views: 7978

Re: [OpenBSD] Connection Guide.

Forgot to add that the 'txqueuelen 686' line in the OpenVPN configuration file should be commented out as it's apparently not supported on the BSD platform.
by sysfu
Wed Jun 10, 2015 9:45 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 71
Views: 74628

Re: The CryptoStorm Speed Test Thread

@sysfu Could you edit your post to include the supported bandwidth (8Mb/s, 24Mb/s, 100Mb/s) of your Internet connection? Many thanks. :) Forgive me if I'm being dense but I no longer see an option to edit the previous post even though I am logged into the forum. The 'raw' speed of the Internet conn...
by sysfu
Wed Jun 10, 2015 7:45 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 71
Views: 74628

Re: The CryptoStorm Speed Test Thread

Ran a test today from the Kansas City node to linode test file in Dallas. ¡Qué miserables! Connection: ADSL 22Mb/2Mb curl -o /dev/null http://speedtest.dal01.softlayer.com/downloads/test100.zip % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 10...
by sysfu
Wed Jun 10, 2015 1:54 am
Forum: guides, HOWTOs & tutorials
Topic: [OpenBSD] Connection Guide.
Replies: 4
Views: 7978

Re: [OpenBSD] Connection Guide.

you might also need to do the following: ⋅  Create the interface file: touch /etc/hostname.tun0 ⋅  If you're configuring the OpenBSD device as a gateway/router for a LAN using a private IP address range, add a NAT translation rule to /etc/pf.conf match out on tun inet from !(...
by sysfu
Wed Apr 08, 2015 5:34 am
Forum: crypto, VPN & security news
Topic: [Spiegel] Inside the NSA's War on Internet Security
Replies: 2
Views: 5408

Re: [Spiegel] Inside the NSA's War on Internet Security

Regarding the IPSec side of things - Don’t stop using IPsec just yet The “TL;DR” summary of what follows below is: If you configure your IPsec based VPN properly, you are not affected. Always use Perfect Forward Secrecy (“pfs=yes” wich is the default in libreswan IPsec) and avoid PreSharedKeys (auth...

Go to advanced search

Nothing to display.

Login