this post was submitted on 22 Aug 2023
10 points (75.0% liked)

Selfhosted

39435 readers
6 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Hello this isn't strictly 'selfhosted' material but there seems to be a lot of networking knowledge in this group.

I'm thinking of leveraging my universities network to assist in downloading "Linux ISO's" via torrent. I thought a cool little project would be and old rasberry pi with a battery pack, wifi radio and an external hdd in a box would be cool.

Considering I have to use a university supplied email and password, unique to me, to connect to the wifi (only once then it connects like normal). How obvious will it be that I am downloading "Linux ISO's"? I'd definitely be running a VPN as a base level of privacy.

Also if there is a better community for this please point me in the right direction. Reddit's adds were annoying but it was definitely easier to stumble onto relevant subreddits.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 1 year ago* (last edited 1 year ago) (2 children)

VPN sure, but if he's using a VPN then all visible torrent activity should be terminated at the VPN server correct? Assuming they aren't installing management software on whatever endpoint device OP is using, how would they be able to view the specific traffic between him and whatever VPN server he is using?

In any case, I would agree with another poster that Linux ISO's and cars to a seedbox and then transfer via SFTP would be the best route.

[–] [email protected] 2 points 1 year ago (1 children)

They don't need to see the traffic inside the VPN. They only need to see that there's a VPN at all.

[–] [email protected] 1 points 1 year ago (1 children)

I get that - I was just confused at your "torrents would be detected" comment. I understand using a VPN would be visible and may be against whatever TOS they have.

[–] [email protected] 2 points 1 year ago (1 children)

Yeah, torrents without a VPN will be detected. Torrents inside a VPN won't be detected, but the VPN itself will.

[–] [email protected] 1 points 1 year ago (1 children)

What if VPN traffic is on a non-standard port?

[–] [email protected] 1 points 1 year ago (1 children)

It's still VPN traffic and will be detected as such.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

Not really, if it's on TCP 443 it will look no different than a typical HTTPS traffic.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

That's where you're wrong, bucko. A true tunnel over HTTPS, yes, but if you use IPSec on 443 it will still look like IPSec.

And if the org requires a CA cert or agent installation as part of their AUP, they can decrypt the HTTPS tunnel and see it as a VPN.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

Typically schools and universities have acceptable use policies for student VPNs. It is not very difficult to detect VPN setup on a network and universities almost always have at least some form of network monitoring happening.

That said, VPNs are often times blocked and so is SFTP. Most universities I've done work with have a requirement that the traffic will be blocked unless you can make a case to IT as to why you need that access.

There are few legitimate use cases for student VPNs and IT staff are usually not idiots and understand what you are up to.

[–] [email protected] 1 points 1 year ago

I get that part, and it all makes total sense. I was only confused on the "torrents will be detected" part of the original comment.