# I am the Watcher. I am your guide through this vast new twtiverse.
# 
# Usage:
#     https://watcher.sour.is/api/plain/users              View list of users and latest twt date.
#     https://watcher.sour.is/api/plain/twt                View all twts.
#     https://watcher.sour.is/api/plain/mentions?uri=:uri  View all mentions for uri.
#     https://watcher.sour.is/api/plain/conv/:hash         View all twts for a conversation subject.
# 
# Options:
#     uri     Filter to show a specific users twts.
#     offset  Start index for quey.
#     limit   Count of items to return (going back in time).
# 
# twt range = 1 22
# self = https://watcher.sour.is/conv/f7pxu3q
abucci
anthony.buc.ci
View Thread
Is your browser leaking your IP address?

WebRTC can leak your real IP address even if you use a VPN.
abucci
anthony.buc.ci
View Thread
WebRTC cannot be disabled by default in (most?) Chromium-based browsers. You need an extension.
mckinley
twtxt.net
View Thread
@abucci Librewolf protects from this by default. https://librewolf.net/docs/features/#privacy
prologic
twtxt.net
View Thread
I don't fully understand the privacy issues around your IP address, especially in Web RTC, where it's actually necessary to be able to exchange your IP address between peers -- kind of how the protocol works right? 🤔
prologic
twtxt.net
View Thread
I don't fully understand the privacy issues around your IP address, especially in Web RTC, where it's actually necessary to be able to exchange your IP address between peers -- kind of how the protocol works right? 🤔
abucci
anthony.buc.ci
View Thread
@prologic idk I tend to think that "reading something on some random person's web site" and "telling some random person where I live to within a mile or two" ought to be distinct things I get to choose independently....
abucci
anthony.buc.ci
View Thread
@mckinley Librewolf is a Firefox offshoot and that whole line gives control over WebRTC AFAIK, whereas Chrome and its derivatives don't.
mckinley
twtxt.net
View Thread
@prologic The problem with WebRTC is that the implementations tend to try all the available network interfaces and ignore proxy settings, thus leaking your *real* IP address.
mckinley
twtxt.net
View Thread
@abucci Just one more reason to get off of Chromium-based browsers.
prologic
twtxt.net
View Thread
@mckinley You mean leaking your internal Private IP on your LAN? 🤔
prologic
twtxt.net
View Thread
@mckinley You mean leaking your internal Private IP on your LAN? 🤔
mckinley
twtxt.net
View Thread
@prologic No, the public IP allocated to you by your ISP as opposed to the one at the other end of your VPN or proxy tunnel.
ocdtrekkie
twtxt.net
View Thread
@abucci I feel this about Signal giving everyone real phone numbers. I worry a little less about IP addresses because I'm generally pretty public about my rough geographic area anyways...
mckinley
twtxt.net
View Thread
Out of curiosity, I tried the leak test on Ungoogled Chromium and it actually was leaking the private use internal IP given to me by my VPN provider. That doesn't happen on LibreWolf due to its security measures.

My real IP still didn't leak because my VPN client prevents any other program from using my real network interface.
prologic
twtxt.net
View Thread
@ocdtrekkie I _feel_ the same way myself too. I'm generally pretty open about roughly geographically where I live, I don't have anything to "hide" there per se. Its the incessant tracking of my online activities and shoving ads in my face that I have a real problem with.

As _some_ of you _may_ know I actually pay for a /29 IPv4 address block from my ISP where I run the so-called "Mills DC". Most of you don't really know what my IP address block is because I generally put things behind proxies like Cloudflare (yes yes I know) mostly to thwart/protect from bad actors and potential DDoS attacks.
prologic
twtxt.net
View Thread
@ocdtrekkie I _feel_ the same way myself too. I'm generally pretty open about roughly geographically where I live, I don't have anything to "hide" there per se. Its the incessant tracking of my online activities and shoving ads in my face that I have a real problem with.

As _some_ of you _may_ know I actually pay for a /29 IPv4 address block from my ISP where I run the so-called "Mills DC". Most of you don't really know what my IP address block is because I generally put things behind proxies like Cloudflare (yes yes I know) mostly to thwart/protect from bad actors and potential DDoS attacks.
prologic
twtxt.net
View Thread
One thing I do want to point out though IHMO... Is I _think_ one of the best ways of protecting your online privacy and security is by going completely decentralised in the first place. NOT to be confused with "distributed" networking systems like ActivityPub, Matrix, Blockchains, etc where you leak you "Node's IP Address" anyway to all sorts of "unknown actors".

In a completely decentralised model where you peer with friends/family and people you trust and "pull" information, there is much more trust that can be built up IMO.
prologic
twtxt.net
View Thread
One thing I do want to point out though IHMO... Is I _think_ one of the best ways of protecting your online privacy and security is by going completely decentralised in the first place. NOT to be confused with "distributed" networking systems like ActivityPub, Matrix, Blockchains, etc where you leak you "Node's IP Address" anyway to all sorts of "unknown actors".

In a completely decentralised model where you peer with friends/family and people you trust and "pull" information, there is much more trust that can be built up IMO.
mckinley
twtxt.net
View Thread
@prologic Well, you can always run a Monero node as a Tor hidden service :)
mckinley
twtxt.net
View Thread
@prologic Well, you can always run a Monero node over Tor :)
prologic
twtxt.net
View Thread
@mckinley Hah 😆
prologic
twtxt.net
View Thread
@mckinley Hah 😆