I can access it. I read some posts on Gab saying it was shutdown temporarily for maintenance.

So once again ads bite users in the rear.

Decoupling ad blocking from the browser would be darn smart (ublock origin is simply awesome - so far).

Ad blocking on browser layer should be done via plugins / addons.

Question is what is / was Brave shipping out - calling home - to check? Is Brave saying here is a domain that cleared in the browser, let's call home remotely to verify? That's what it appears.

That isn't a feature. That is Brave collecting lookups unknown to those running the browser. When I do a lookup I expect MY DNS SERVER to deal with it. I don't expect the browser to go talking behind my back.

Terrible 'feature' that should be removed. It is distributed intelligence and I understand that pursuit well. However, it is something people ought to opt into and be aware of.

So yes, Brave likely has been logging onion addresses also and internal domains and other private things they should never be seeing. What is being done with that data and where is note of handling and destruction thereof?

Funnier though is Brave should have seen these onion address lookups whenever 'bug' was introduced. Smart people know those don't belong there. Something isn't right about all of this. Doesn't pass sniff test.

It is up to Brave to prove what they are or aren't doing. I don't believe it until someone speaks and provides code and breaks it down for non coders.

We made mass media about this :) ZDNet on MSN.

https://www.msn.com/en-us/money/other/brave-browser-leaks-onion-addresses-in-dns-traffic/ar-BB1dPSnS

Brave browser leaks onion addresses in DNS traffic Catalin Cimpanu 11 hrs ago

Added in June 2018, Brave's Tor mode has allowed throughout the years access to increased privacy to Brave users when navigating the web, allowing them to access the .onion versions of legitimate websites like Facebook, Wikipedia, and major news portals.

But in research posted online this week, an anonymous security researcher claimed they found that Brave's Tor mode was sending queries for .onion domains to public internet DNS resolvers rather than Tor nodes.

While the researcher's findings were initially disputed, several prominent security researchers have, in the meantime, reproduced his findings, including James Kettle, Director of Research at PortSwigger Web Security, and Will Dormann, a vulnerability analyst for the CERT/CC team.

Furthermore, the issue was also reproduced and confirmed by a third source, who also tipped off ZDNet earlier today.

The risks from this DNS leak are major, as any leaks will create footprints in DNS server logs for the Tor traffic of Brave browser users.

While this may not be an issue in some western countries with healthy democracies, using Brave to browse Tor sites from inside oppressive regimes might be an issue for some of the browser's other users.

Brave Software, the company behind the Brave browser, has not returned a request for comment sent before this article's publication earlier today.

Over the past three years, the company has worked to build one of the most privacy-focused web browser products on the market today, second only to the Tor Browser itself.

Based on its history and dedication to user privacy, the issue discovered this week appears to be a bug, one the company will most likely hurry to address in the coming future.

Update: Minutes after this article went live, the Brave team announced a formal fix on Twitter. The patch was actually already live in The Brave Nightly version following a report more than two weeks ago, but after the public report this week, it will be pushed to the stable version for the next Brave browser update. The source of the bug was identified as Brave's internal ad blocker component, which was using DNS queries to discover sites attempting to bypass its ad-blocking capabilities, but had forgotten to exclude .onion domains from these checks.

3 hours after my last comment.. Gab still appears down... same message...

tunnel into a unwitting persons router remotely, then use their point of presence, kind of like a http proxy relay but not a open proxy

not what i use, but would work, if javascript also remote :

https://www.proxynova.com/proxy-server-list/

https://fossbytes.com/free-proxy-list/

Do we really think it's good idea to drop v2 addresses soon?

I think they should run dual address stack.

Dummies. Everyone involved.

I like Veritas. They should have been ready for all this.

We shall all escape the slave plantations by running in every direction. Chaos. Then go silently to our alt nets. Free of their commercial hell. Left we shall be to deal with the intelligence groups.

That is far better than dealing with the intelligence apparatus and the corporate owners.

... limiting it because their tech can't identify all people equally as well?

We call this a bias? I call it a bias against white people. Technologists are racists against whites.

No sane person wants any of this tech to get better than it is already. It is already a weapon and will be abused.

Time for people to stop using Facebook.

I don't understand why normies live on Facebook.

All I hear is their family + friends are on there.

I think they are mostly being voyeuristic and spying on what other people open post.

Beyond that it's become thing for businesses to have no website and point people to their Facebook. I yell at businesses all the time about that. Can't even view their stuff often if not logged into FB.

Facebook is smart enough to look at end side after your convert the link for destination and gather that. You could time them out there or create more complex situation before allowing real person to do activity to click on something to then be forwarded.

Interesting project. Would like to see more approachable full example... Keep up the work.

I encourage people to hold these projects accountable.

Auditing is a normal thing in the real world. Transparency is necessary to some level.

Tor will never be clean trustworthy project. Government directly invested in it. There are shortcomings in design and not enough nodes to mix things up by default, thus prior endpoint hacker data collection.

It's just a piece of a solution. Wear your web condom with a VPN, then Tor...

The data caps are unlimited (well over 8 Terabytes a month)... if you cancel your Comcast residential account, wait a week, then open a new BUSINESS COMCAST account using a different phone number, email, and slight spelling difference for name, for only about double the price.

BUSINESS comcast will repair your line in under 3 hours! Always! Business comcast will send a tech to your house even at 9pm!!! Business comcast is astounding.

UNLIMITED!!!!! and all ports open , even port 25, though normally an email server on comcast cable would be ignored by recipient servers.

UNLIMITED for about 100 bucks a month, just buy your own cable modem like a SB6190 modem

Totally... It's a man-in-the-middle.

I wouldn't care if 70% of the net went through CF. It is just another honeypot / slave plantation for the lazy, those in over their heads, those without funding to do this or that tech wizbang.

Slaves need to revolt.

Another day and more known but unfixed security issues.

Funny that it is in Android, which Google owns.

The same Google dumping sh%t on open source the other day and talking about making themselves a gateway for open source published projects that are core.

Got news you wealthy tards in Mountain View --- worry about how badly your code sucks and how lousy your company has become as citizens.

Censor this you big dummies.

As for TikTok BOOM. Worst app. When you have 15 second attention span and endlessly swiping. Yeah, that might be good approach for your masturbation fodder but it isn't smart for hours a day, for a developing young person's brain, etc.

Nevermind the obvious spying and leaking - which is all the tech tards know how to do. The all knowing fake godplex is what is all about. They are in cahoots. Companies not on the team get blacklisted and downed - i.e. Parler.

20% of all web traffic now goes through CloudFlare. Cloudflares main evil is that it 100% destroys SSL (HTTPS).

Don't you DIY nerds blackhole CloudFlare on your personal nets?

The world is a lot quieter and more decent when you blackhole CloudFail.

Yeah, could be an outage. Amazon is comfortable saying "you broke our Terms of Service" (i.e. "we don't like you"). So in the absence of such an email, I'm inclined to believe this is technical issues.

This has been a 'feature' in Firefox and likely other browsers.

I would test but I am lazy right now and I disable and mutate browsers to pretend they could be privacy adhering (in reality they are lying, cheating, c*nts who report to everyone whatever).

Chromium just recently cleaned up their version of this stupidity:

https://www.theregister.com/2021/02/04/chromium_dns_traffic_drop/

Chromium cleans up its act – and daily DNS root server queries drop by 60 billion That’s a 41 per cent traffic relief for all concerned Simon Sharwood, APAC Editor Thu 4 Feb 2021 // 08:01 UTC The Google-sponsored Chromium project has cleaned up its act, and the result is a marked decline in queries to DNS root servers.

As The Register reported in August 2020, Chromium-based browsers generate a lot of DNS traffic as they try to determine if input into their omnibox is a domain name or a search query.

Verisign engineers Matthew Thomas and Duane Wessels examined the resulting traffic and reached the conclusion that it accounted for up to 60 billion DNS queries every day.

Wessels has since penned a new post that went unreported when it appeared on January 7 – the day after the US Capitol riot – but was today resurfaced by APNIC, the Regional Internet Registry for the Asia-Pacific region.

In the post he says the Chromium team redesigned its code to stop junk DNS requests, and released the update in Chromium 87.

COV FEFE is interesting..

COV = COVID

FEFE = Yellow

What country is know as yellow? China.

COVID IS CHINA.

The Teflon Donald dropped COFEFE way back in 2017? This was another bat signal. He for some reason dropped random crumbs and wouldn't outright drop info. Proof enough in my little brain that the deep state is that real and dangerous.

Definitely down for me. I don't use it, but loaded it to see :)

CloudFail has been experiencing a good bit of issues past few weeks.

F-off to reddit and other control NAZIS (as opposed to my kosher friends - at least the genuine ones of faith).

This gatewaying of all information and only calling something valid when it is admitted by a head of pyramid is tired.

This is why people sit on 0 day exploits for years and drop things strategically. Because too many people out there in power positions are abusive and in denial that their sh!t stinks.

Brave is an ugly baby.

I went back and found I tagged Brave leaking to plain DNS back on February 6th. Was new to me. Working on other stuff involving Tor and had just spun up Brave to check it out. Wondered why strange stuff in my DNS logs (you log your DNS lookups, don't you? You should).

Now who can point me to all the bundled Brave releases? Cause they are all fronted to feed you latest one. I want to selectively install and test and see how many releases they've been outing .onion addresses and putting normies at risk.

Cloudflare 30 minutes ago, 21 hours after your typing, is DOWN for accessing Gab.co

https://downdetector.com/status/gab/

https://ramble.pw/f/technology/2443

I didn't know Gab was using Cloudflare, but there it is: https://intodns.com/gab.com

edit: https://tv.gab.com/ works and so does https://dissenter.com/ . Might not be a Cloudflare issue, might just be regular ol' maintenance or outage. Cloudflare had a large outage last night that impacted most North American customers from what I understand so it's not like they're prone to breaking.

Just look at that.

It's Black History month yo'!

Give the downtrodden man of better suntan a whole month.

Give him the whitest and coldest month.

Feb-uuuurrrrr-y

Have a coke and a smile.

That deep V chill is just the lady VEEPEE spreading her tunnel of doom. Heels up is from Cana-duh anyways. Icy broad.

It's more secure than Brave :) Just look at how Brave has been leaking addresses to regular DNS for how long? (who can feed me a URL with their old releases so I can test?)

Seriously you should be running Tor browser with javascript off. JS is a nuisance and privacy sewer and by design. Javascript creator should be charged with crimes against humanity.

Oh isn't that fellow the lad behind Brave?