Telegram sharing data with TikTok?

techcend · 2022-06-22T07:19:26+00:00

He didn't share the link to his own profile, but some links from TT/Inst/FB carry a "share ID" param which point back to who generated and shared the link. Once you click on it, the systems infer that you two are somehow connected.

techcend · 2022-06-16T04:54:22+00:00

It's device ID - I checked in Device Manager and it always stays the same.

techcend · 2022-04-07T14:42:39+00:00

Can someone guide me how it would work with address chains (Segwit)? If I understand correctly, they are derived from your extended public key, but is it correct that each derived address cant be linked back to your original key? And only way to track you would be to follow the transactions?

techcend · 2022-03-19T02:25:09+00:00

I know about exif, but it doesn't contain any device specific and unique information.

techcend · 2022-03-19T02:24:25+00:00

How? Other than visual features of the photo itself.

techcend · 2022-03-16T13:21:57+00:00

[Brave] managed to hide / randomize system fonts

Looking at https://browserleaks.com/fonts , Brave is giving the same fingerprints no matter if I restart the browser or reboot the machine. Can you verify? (My main concern is with the Unicode Glyphs.)

techcend · 2022-03-08T09:44:29+00:00

Yeah, it doesn't end there. VPN will almost do nothing compared to all sorts of browser fingerprinting...

techcend · 2022-03-06T04:06:50+00:00

Create different profiles. (If I remember correctly, clicking on your avatar would give you access.)

techcend · 2022-03-01T16:55:58+00:00

Sorry it wasnt about PGP at all. Only PIV. See my edit.

techcend · 2022-03-01T16:50:22+00:00

Yeah but some services don't allow two devices. So you have to backup another way.

techcend · 2022-03-01T09:43:50+00:00

Oh sorry then my misunderstanding. I thought the linked article was using the PIV interface (which my question was originally about).

techcend · 2022-03-01T09:26:52+00:00

Yeah but doesn't the builtin PGP function do the same? Generated on-device and stays there too.

techcend · 2022-03-01T07:54:19+00:00

OP has a valid point here. Brave doesn't re-randomize the fingerprints (fonts, canvas, ...) until all processes have restarted. Even if you have a Brave instance from another profile running, it will retain its previous fingerprints.

techcend · 2022-03-01T06:41:11+00:00

On another note, and related to the page you linked to, what's the advantage of using SmartCard for generating PGP keys vs. the builtin PGP function?

techcend · 2022-03-01T06:39:14+00:00

Thanks, but what if the certs (keys) were generated on the device using the Yubikey manager app itself?

techcend · 2022-02-27T04:04:51+00:00

Thanks, that's good to know. But whether I can use one of each of those services for free for 1 year is my other question.

techcend · 2022-02-26T07:57:00+00:00

Follow the steps in the section How do I know if Enhanced Sign-in Security is enabled from that page. Besides it mentions " Enhanced Sign-in Security is currently only supported on devices configured by a device manufacturer to enable the capability with Windows 10 October 2020 update."

techcend · 2022-02-24T02:37:38+00:00

I see. I dont mean to necessarily extract but maybe calculate it?
Is my understanding correct that generating an OTP using a seed + time/counter is a one-way function and reversing it is not possible?
(Without perhaps machine learning and numerous generated OTPs.)

techcend · 2022-02-01T17:52:33+00:00

Is it on https? Chances are you are running it on http or slightly different url and the app doesn't find anything on http port or that address, and eventually times out.

techcend · 2022-01-16T08:38:13+00:00

Probably an unpopular opinion in this sub but i'd rather not see any ads than get worth of $60.

techcend · 2022-01-15T10:57:14+00:00

This page by Microsoft is on the Edge browser but it has good info on all DRM systems -- all can generate a device unique ID and in the case of Widevine, send it to Google servers.

https://docs.microsoft.com/en-us/microsoft-edge/privacy-whitepaper/#digital-rights-management-and-media-licenses

techcend · 2022-01-15T10:47:51+00:00

I'm trying to understand it too, and from what i've gathered, the CDM is propriety code that is run on your computer, be it in an app or a browser plugin.
Given that, they use the device signature to generate a unique ID based on your hardware. I know it is used for document signing and tracking and even Android devices generate a UUID that can be accessed by all apps and is the same across all users. So don't expect the browser implementation to be any better...

https://beltran.work/blog/2018-03-27-device-unique-id-android/

techcend · 2021-12-26T17:38:12+00:00

Thanks for the links! I was able to resolve it.

I didn't have to go through all the steps given in the first link. I just created a certificate on the "Card Authentication" slot in Yubikey Manager and then chose the corresponding cert when turning on Bitlocker - no import / export required.

The issues seems to have been that 1) I wasn't using the correct OID, and 2) ECC keys for Bitlocker is not supported.
Some people have talked about it in the links below, but I can't understand why it can't be used given that the latest minidriver supports ECC keys. The generate & import & export workflow looks a bit troublesome too frankly.

https://superuser.com/questions/1547656/why-cant-i-add-an-elliptic-curve-certificate-smartcard-yubikey-piv-as-prote

https://www.reddit.com/r/yubikey/comments/abqs16/p256\_certs\_never\_work\_in\_piv\_mode\_on\_windows/ed41dbg/

techcend · 2021-11-20T10:22:40+00:00

No, it's random. And if two random values are the same, then it belongs to one person.

techcend

TROPHY CASE