Please continue using a VPN when visiting this channel, or using Lemmy in general.
Most - if not all - sites are not blocked and can be reached freely, but that also means your ISP can keep tabs on you.
For the censorship issue, of someone can’t reach here than your advice is meaningless
For the ISP issue, have you heard of HTTPS? It uses military grade encryption and nearly every website has it
Lemmy is unblocked in China, at least various instances are. And https is meaningless, they don’t care what particular content you access, as long as the website itself hosts potentially controversial content, you’re on the hook regardless. A mere DNS resolve to a domain they don’t want you to see is all it takes.
You can use DNS crypt to send encrypted DNS requests to servers outside of China
Are you in China?
Yes, I was able to use DNS Crypt earlier, but of course that’s because it’s under the radar and they could block all of those servers at any time they wish
DNS over HTTPS
Something that is blocked in China
How do you block https without making 99% of websites defunct?
They don’t block all of HTTPS, they try to block TLS 1.3 + ESNI so they will require to know what website you’re browsing
They also block encrypted connections to common servers like 8.8.8.8 so that they see what DNS request you’re making
Certainly, they can’t block DNS over HTTPS to your own overseas DNS server unless they know about it
Are there massive security vulnerabilities in TLS 1.2?
Yes, like telling the Chinese government what site you visit, for example
I don’t think most VPN that is accessible from China is trustworthy either. There is no way out.
It’s called self-hosting, you only have to buy a VPS
If you self host an VPN, meaning that the outbound of your VPS/machine you host VPN can be checked, as least, what IP it connected.
So, you got to buy VPS from foreign country, not in mainland or hongkong
Well as of now we have never heard of someone being in trouble because of Reddit posts. So either they know and don’t care or they just don’t know.
I think they might know, at least they can if they wanted to. Pinning down a reddit post from ISP data is not that hard: reddit don’t put post id in query string, but in the URL, which is unencrypted. With the created time of a post, the added payment link from a VPN, I think they can kind of pin down the author of a post if they really wanted to.But I think most dissenters are not that much of a concern for the CCP, and it would cost a lot of resources to arrest most of them. Especially given there are many low-hanging fruits on Weibo, I don’t think they want to spend the effort to silence such a minority that cannot even be heard by most Chinese.Turns out URL is also encrypted except the base domain (see comment). So it is unlikely they can figure out.
The URL is also encrypted on a https connection, they can only see you’ve connected to Reddit… not what you’re actually browsing: https://blog.mozilla.org/en/privacy-security/https-protect/
HTTPS also prevents your internet service provider (ISP) from seeing what pages you visit beyond the top level of a website. That means they can see that you regularly visit https://www.reddit.com, for example, but they won’t see that you spend most of your time at https://www.reddit.com/r/CatGifs/.
There’s a lack of warning about DOXXING, including self-DOXXing. Use a different Lemmy identity on different servers. DOXXing is easy when you DOXX yourself through a combination of interests in French, Hair Extensions, Ningbo, Physics, Quebec, Rabbits, Scuba and Vegetarian.
Yeah. If they wanted to know what you were saying, they’d simply cross reference for ISP info with your post times.
You don’t know if the connection is used to post or to view posts if it’s encrypted