• Nath@aussie.zone
    link
    fedilink
    arrow-up
    8
    arrow-down
    1
    ·
    1 year ago

    Our servers sit behind cloudfront, the same as half the Internet. All that foreign government will see is cloudfront traffic. That won’t tell them much. I don’t think Amazon will give out their data to some foreign government easily either, since that’s their whole business model.

    It isn’t as trivial to identify a user from their metadata as you seem to be saying.

    • jet@hackertalks.com
      link
      fedilink
      English
      arrow-up
      8
      ·
      edit-2
      1 year ago

      I stand behind my advice.

      Especially because the OP is posting from suppo.fi and not using your setup from Aussie.zone.

      If someone is at risk, they should follow the data hygiene suggested by the EFF. Especially if they’re concerned about their safety. Which was the implication in OP’s post.

      To your point about cloud front, not all web clients use encryptid hello yet, or encrypted DNS, so people monitoring connections to cloud front can see the domain you’re trying to connect to. This is exactly why CloudFront and AWS were upset with the signal foundation for doing domain front running when connecting to their services.