this post was submitted on 27 Jul 2025
336 points (96.2% liked)
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
63199 readers
121 users here now
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.
Rules • Full Version
1. Posts must be related to the discussion of digital piracy
2. Don't request invites, trade, sell, or self-promote
3. Don't request or link to specific pirated titles, including DMs
4. Don't submit low-quality posts, be entitled, or harass others
Loot, Pillage, & Plunder
📜 c/Piracy Wiki (Community Edition):
🏴☠️ Other communities
FUCK ADOBE!
Torrenting/P2P:
- !seedboxes@lemmy.dbzer0.com
- !trackers@lemmy.dbzer0.com
- !qbittorrent@lemmy.dbzer0.com
- !libretorrent@lemmy.dbzer0.com
- !soulseek@lemmy.dbzer0.com
Gaming:
- !steamdeckpirates@lemmy.dbzer0.com
- !newyuzupiracy@lemmy.dbzer0.com
- !switchpirates@lemmy.dbzer0.com
- !3dspiracy@lemmy.dbzer0.com
- !retropirates@lemmy.dbzer0.com
💰 Please help cover server costs.
 |
 |
|---|---|
| Ko-fi | Liberapay |
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
the most important thing to have when pirating is common sense
the second most important thing to have is a vpn
Still don't know why I'd need a vpn. My country doesn't go after individuals pirating (yet). That's the only reason, as far as I understand, to have a vpn for pirating. So until they start to take come after individuals, I'm gonna save my money.
You only need a VPN in very few countries, some countries where it is needed to avoid fines/getting your internet connection cutoff from your ISP are the US, Germany and a few other countries somewhere in western Europe, also don't pirate polish films without a VPN if you live in Poland, the rest of the world doesn't care about people downloading movies online.
I am in Greece pirating without a VPN, and even after the new anti-piracy law passed, I haven't received a notice (yet).
Oh I didn't know that, are you using public trackers and leeching popular stuff too ?
Yes.
Also, I kinda should use a VPN anyway but I don't want to buy it yet.
In Germany they won't cut off your Internet connection. They'll send you a cease and desist for a few thousand euros.
That's even worse 😳
I think you've exactly described why some people need a VPN. My ISP does 3 strikes when they get complaints :/
It’s a general rule, there are exceptions. I’d think it would be obvious why a VPN is needed for some even if you don’t need it.
I think it's the older way around. There are really only 3 or 4 countries where using a VPN to pirate is needed. I'm just willing to bet you live in one of those countries.
You want a tray of cookies for that original line?
Also VPN makes you rather anonymous. The sites won't track you and sometimes the trackers on public torrent files are notorious for tracking.
That is not true, the sites do still track you. VPNs don't prevent tracking, they just make sure the tracking is done through a secure tunnel.
The extra hop adds a significant barrier for the website in knowing the actual source IP. The fake source IP is likely used by many other users, and the user you are trying to track can easily rotate VPN IPs.
Its one less identifier for them to use.
Adtech relies on the OpenRTB 2.5/2.6 spec for tracking, you would have removed 1 identifier out of a hundred (one that isn't really used anyway given SSAI is so popular). In addition to that, cookie expiry timers are typically set to 365 days meaning you're VPN would need to enabled at all times to not invalidate multi-hop. WebStorage API based trackers tend to be indefinite.
ORTB spec: https://www.iab.com/wp-content/uploads/2016/03/OpenRTB-API-Specification-Version-2-5-FINAL.pdf
EDIT: If anyone is looking for more specifics about WHY IP addresses and multi-hop don't matter, the spec includes a mention:
The issue is that mobile is so prevalent and mobile networks rely so extensively on CG-NAT that even with XFF headers, there's no good way to tell if you are going to get an IP address that actually matters. You could potentially put in a lot of auction time trying to figure that out and still just end up with a private address that's unusable. So, aside from the devicetype and the geo object which is used for geo targets and fencing, the device object isn't useful in tracking. Instead adtech uses the user object. This object should contain all your GDPR specifics, any EIDs, 1st party cookie IDs, etc. Even if those change, there usually exists backend mapping that allows for vendors to correlate different user IDs as being the same user ultimately.
So it can matter.
barely, efectively meaningless
Yeah, multi-hop is pointless for tracking. The logic to it is crazy too. People think VPNs make them anonymous (they don't), but they also think multi-hop makes them MORE anonymous. So anonymity is kind of an absolute concept. Either you are or you are not anonymous. You can't be more anonymous than anonymous. There is no +1.
Whether multi-hop matters to tracking is far and away a different discussion than whether multi-hop "makes you anonymous".
I too disagree with the original comment, but also believe the pendulum swung too far the other direction in your replies.
Situations differ. Threat models differ. More hops can, from direct personal experience, make the difference in tracking. Your claim of "...multi-hop is pointless for tracking." has too broad of a scope to be correct.
What specifically about multi-hop makes you think it improves your security? Be specific. What is your "direct personal experience"?
I haven't mentioned security.
if your security breaks, so does your privacy alongside it
I'm sorry, that isn't evidence.
I'm unsure what evidence you are referring to.
Remember to read the rest of that sentence:
So, no. Not really.
It doesn't change the contradiction.
You almost had the rest of the sentence there:
That doesn't change the contradiction.
You're trying to argue without evidence (like I had provided). To summarize these exchange so far its:
Is there some evidence you'd like to provide or is it going to be another "nuh-uh!"?
I'm sorry, but that isn't correct.
I'm sorry, but that isn't evidence.
I'm unsure what evidence you are referring to.
Evidence, or it isn't true.
Unrelated, but absence of evidence is not evidence of absence.
Anyways, your own statement:
Removing an identifier that is used. (1/100 = matters, "isn't really used" != unused). This contradicts your other statements:
Broad statements that don't take into consideration the threat model of other users. Servers you connect to might not be using source IP in any way to track. You might be leaking so many other identifiers, that its completely useless to worry about multi-hop. But this is not true for everyone in every situation.
If its worth anything to you, the Tor Project seems to think multi-hop and IP addresses matter for protecting against tracking.
So, I'm not allowed to ask you for proof of your statement? And if its unrelated, then why did you post it? Its unrelated. Also, you're saying you have an absence of evidence, ergo you have no evidence. Having no evidence does not qualify as evidence.
Just because an identifier exists doesn't mean it is used.
BidRequest.imp[i].tagidexists, but advertisers don't use it. I think you are confusing having an option with something being mandatory.And Tor nodes are not the same thing as VPN multi-hop. If you think that they are, wow! VPN multi-hop is you connecting to a provider's server that connects to another one of the provider's server then out. It's all the provider's network.
And again, if you connected your Firefox browser to Tor, we could still track you. You'd get cookied or localStorage() tracked. When you disconnect from Tor, that stuff is still present in your browser. Almost like the number of hops you take or the IP address used doesn't seem to really matter, huh?
EDIT: I just realized you think that Tor is built using multi-hop VPN. Its a real life Dunning-Kruger effect! I've never encountered this. You are going to do something really stupid and end up in prison.
That is a good point indeed, but also applies for regular internet use..