Sam Bent's avatar
Sam Bent
contact@sambent.com
npub1y7rv...d0r3
Agorist. Counter-economist. Privacy maximalist. Student of OPSEC. Anti-authoritarian. Free speech absolutist. Logician. Ex-Darknet Vendor. Youtuber.
Sam Bent's avatar
SamBent 1 month ago
#OPSEC365 047/365 Your smart TV shares a network with your laptop, phone, and NAS. That's a compartmentalization failure. ACR runs by default on Vizio, Samsung, and LG โ€” fingerprinting your viewing. A TV with a vulnerable update path is a lateral pivot into your LAN. Cronk's SEPARATE strategy: partition contexts with different trust levels. Your TV needs internet. It has no need to see your other devices. VLAN your IoT tier. Your TV doesn't need to know your NAS exists. Implementation: create an isolated IoT VLAN with internet-only egress, no routing to your primary LAN. A smart TV's legitimate function requires only outbound streaming access โ€” zero visibility into personal devices.
Sam Bent's avatar
SamBent 1 month ago
Secure means your funds can't be seized without your keys, private means no one sees your balance or transactions, untraceable means chain analysis is useless, Monero is the only cryptocurrency that delivers all three by default. image
Sam Bent's avatar
SamBent 2 months ago
Monero devs spent years quietly building FCMP++ while Zcash devs spent years lobbying regulators and tweeting about compliance one project shipped privacy, the other shipped press releases. image
Sam Bent's avatar
SamBent 2 months ago
"No money in the budget" only applies to things that help you. image
Sam Bent's avatar
SamBent 2 months ago
Happy birthday to the only 12-year-old the FBI, IRS, Chainalysis, and Europol all failed to groom into an informant. $XMR image
Sam Bent's avatar
SamBent 2 months ago
#OPSEC365 021/365 OPSEC Step 2 is threat analysis: research your adversary's actual collection capabilities. Public records, court databases, social media aggregators, data brokers, and reverse image search form a surveillance infrastructure anyone can access for under $50/month. Your adversary doesn't need hacking skills. They need patience. NTTP 3-13.3 lists adversary collection as HUMINT, SIGINT, OSINT, GEOINT, and MASINT. For most civilians, HUMINT and OSINT are the primary threats. Digital countermeasures alone fail if your adversary collects via human contact.
Sam Bent's avatar
SamBent 2 months ago
Ken Thompson's acceptance speech for the Turing Award on security thinking. "The moral is obvious. You can't trust code that you did not totally create yourself." - ๐—–๐—ผ๐—บ๐—ฝ๐˜‚๐˜๐—ฒ๐—ฟ ๐—ฆ๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ถ๐˜๐˜† ๐—ถ๐—ป ๐˜๐—ต๐—ฒ ๐—ฅ๐—ฒ๐—ฎ๐—น ๐—ช๐—ผ๐—ฟ๐—น๐—ฑ by Butler Lampson (2004) https://www.microsoft.com/en-us/research/wp-content/uploads/2004/06/Computer-Security-in-the-Real-World.pdf image
Sam Bent's avatar
SamBent 2 months ago
Monero has survived ten years on donations and volunteer labor while VC-backed "privacy" projects burned through millions building compliance tools, turns out you don't need a marketing budget when the product actually works. image
Sam Bent's avatar
SamBent 2 months ago
Congress forced telecoms to build surveillance backdoors in 1994. Chinese hackers found them. The government's response is to ban your router. image
Sam Bent's avatar
SamBent 2 months ago
Anon, Feds hate you, it's not just a meme. ๐—”๐—น๐—ถ๐—ฐ๐—ฒ ๐— ๐—ฎ๐—ฟ๐—ถ๐—ฒ ๐—๐—ผ๐—ต๐—ป๐˜€๐—ผ๐—ป | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒ + ๐Ÿฎ๐Ÿฑ ๐˜†๐—ฒ๐—ฎ๐—ฟ๐˜€ Relaying phone messages in a cocaine conspiracy. First arrest ever. ๐—ช๐—ฒ๐—น๐—ฑ๐—ผ๐—ป ๐—”๐—ป๐—ด๐—ฒ๐—น๐—ผ๐˜€ | ๐Ÿฑ๐Ÿฑ ๐˜†๐—ฒ๐—ฎ๐—ฟ๐˜€ Three sales of $350 worth of marijuana with an alleged ankle holster. No prior record. ๐——๐—ถ๐—ฐ๐—ธ๐˜† ๐—๐—ผ๐—ฒ ๐—๐—ฎ๐—ฐ๐—ธ๐˜€๐—ผ๐—ป | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒ Transported meth on his truck route to pay for his dying toddler's $250,000 bone marrow transplant after insurance dropped them. ๐—š๐—ฒ๐—ผ๐—ฟ๐—ด๐—ฒ ๐— ๐—ฎ๐—ฟ๐˜๐—ผ๐—ฟ๐—ฎ๐—ป๐—ผ | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒ Pleaded guilty to drug charges expecting 40-54 months per the prosecution's own recommendation. The judge gave him the maximum to pressure him into snitching on the Philly mob. ๐—ง๐—ถ๐—บ๐—ผ๐˜๐—ต๐˜† ๐—ง๐˜†๐—น๐—ฒ๐—ฟ | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒMailed LSD to a Grateful Dead concert friend. Two prior nonviolent drug offenses triggered the federal three-strikes provision. ๐—™๐—ฎ๐˜๐—ฒ ๐—ช๐—ถ๐—ป๐˜€๐—น๐—ผ๐˜„ | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒ Acted as a $5 middleman in a $20 crack sale to an undercover cop in Shreveport, Louisiana. ๐—–๐—ผ๐—ฟ๐˜ƒ๐—ฎ๐—ถ๐—ป ๐—–๐—ผ๐—ผ๐—ฝ๐—ฒ๐—ฟ | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒ Federal marijuana conspiracy. Never touched the product, no violence. Sentenced under the federal three-strikes drug law. ๐—ฃ๐—ฎ๐˜๐—ฟ๐—ถ๐—ฐ๐—ธ ๐— ๐—ฎ๐˜๐˜๐—ต๐—ฒ๐˜„๐˜€ | ๐—Ÿ๐—ถ๐—ณ๐—ฒ ๐˜„๐—ถ๐˜๐—ต๐—ผ๐˜‚๐˜ ๐—ฝ๐—ฎ๐—ฟ๐—ผ๐—น๐—ฒ Stole tools from a shed in Slidell, Louisiana. Enhanced by prior nonviolent convictions under habitual offender laws.
Sam Bent's avatar
SamBent 2 months ago
Monero devs have never once suggested building backdoors for law enforcement, Zcash's founder suggested it publicly then asked you to memory-hole his own words. image
Sam Bent's avatar
SamBent 2 months ago
#OPSEC365 006/365 Posting vacation photos while you're still on vacation tells everyone exactly when your home is unoccupied. The timestamp, the location tag, and the caption all confirm you're hundreds of miles away and won't be back for days. Save the photos. Post them when you're home. See if you can resist the urge to broadcast your absence in real time. If you have to post during travel, strip location data and avoid revealing details that pin down your specific location or how long you'll be gone. General photos without landmarks are harder to geolocate than a poolside shot with a resort logo visible in the background.
Sam Bent's avatar
SamBent 3 months ago
The enemy is at the gates. Do you see where this is going? Red = Removing image
Sam Bent's avatar
SamBent 3 months ago
Dylan, useful idiot with commit access, pushed age verification PRs to systemd, Ubuntu & Arch, got 2 Microslop employees to merge it, called it 'hilariously pointless' in the PR itself, then watched Lennart personally block the revert after community outrage. Unpaid compliance simp.
Sam Bent
The Engineer Who Tried to Put Age Verification Into Linux
Dylan, useful idiot with commit access, pushed age verification PRs to systemd, Ubuntu & Arch, got 2 Microslop employees to merge it, called it 'hi...
 image
Sam Bent's avatar
SamBent 3 months ago
Europol didn't say "difficult to trace" or "challenging".... they said can't, and that word choice matters. image
Sam Bent's avatar
SamBent 3 months ago
Motorola is building a phone specifically for GrapheneOS. The Pixel monopoly on mobile privacy is over. image
Sam Bent's avatar
SamBent 3 months ago
Apple's Mandatory ID... GrapheneOS is the Exit Apple requires your government ID to use your own phone. Decline and you lose app access. The "age check" company already got breached and is funded by the co-founder of Palantir. image
โ†‘