Eduroam is just a network of RADIUS servers that cross-honor authentication among participating institutions. If your org participates in Eduroam, it means users from your org can connect to the eduroam WiFi SSID at other orgs, and vice-versa. It’s helpful for traveling academics and visitors from other .edus
It’s also frequently used to authenticate access to online resources like online libraries, journals, and research infrastructure. Useful for when schools collaborate on grant projects.
The eduroam service requires a CA certificate to validate the APs broadcasting eduroam’s SSIDs are providing the real service. The issuer of that certificate isn’t one of the well-known SSL certificate resellers, so it needs to be installed in your device’s CA store, or configured in your 802.1x WPA supplicant. The protocol used is EAP-TLS, if you’re curious.
So what can the hosting institution see? Not much, from an authentication standpoint. Transactionally, the hosting institution sees a username and org name in an outer transaction. An encrypted payload with your user credentials is then tunneled to your home org’s servers which either validate or invalidate those credentials. If the home org validates, then the hosting org lets you connect.
Beyond that, the network admins can “see” whatever they can normally see when you’re using someone else’s infrastructure: your DNS queries, the application ports you use, a lot of encrypted SSL/HTTPS traffic, plus the contents of anything that isn’t encrypted or sent over SSL.
Some orgs disallow tunneling traffic out when you’re on their eduroam, so sometimes IPSec, SSH, Tor, and maybe even WireGuard are disallowed.
Sorry, I think this is very helpful but unfortunately I’m not english + don’t have much knowledge on the matter, so I really don’t understand much of the things you said…
Thank you for answering, but I must ask you (if you have the time) to explain if they could see or not what I was doing 😭
Slightly longer: Someone can probably see your connections to google and notion and infer that you are using Notion, but they cannot see your Google/Notion account and not what content you are working on. (Also those are very popular tools, unless you are the enemy of the state number 1, why would they care?)
Even longer: If your laptop or your gmail or your notion account is compromised, they can see everything.
You’ve asked a similar question here before this post. Have you been naughty? :-)
At your uni, you probably have what’s called a reasonable expectation to privacy-- the terms of use for accessing the computer and network facilities would be spelled out at your uni’s IT website.
The information observed and reported on by their tools most likely amounts to what websites and services you looked up by name, and the IP addresses & ports you accessed while using their network. It will be things like start & stop times, protocol used, number of bytes transferred, and maybe some “flags” on the connection. Flags in this case are special markings on the data flow to give the network hints about how to hand that traffic most efficiently.
MS Office Online, Notion, Gmail, they all use secured HTTPS connections, so the content is secured between you and the remote service.
As long as you’re not doing anything illegal or that severely violates the terms of use laid out by the University, nobody will even notice your traffic. Hack away.
No more than someone running a coffee shop wifi would see. Some basic traffic for name resolution then encrypted traffic for web browsing that they can’t read. Unless your notes application transmits in cleartext (unlikely).
I have a tv from them and one day the PBS kids app just stopped working. I contacted customer support and they just told me it was the app developer’s fault, nothing to be done. Waited months thinking it would eventually resolve but never did.
And recently where they:
Blocked people from using their tvs until they accepted a new agreement and
Filed for a patent that defines how they can start overlaying ads on top of other connected devices over hdmi
Glad I shut off wifi to my tv years ago and plugged in a separate smart tv hdmi dongle. And not getting anywhere near anything that says Roku on the packaging again.
We’ve used the Amazon firestick before and it worked well. Currently we use the google chromecast/tv dongle for both ours tvs.
Nice thing about the google one is that it makes any Google movie/tv show purchases available, and Amazon movie purchases are still available through the Amazon video app.
But they’re pretty comparable. Depends mostly on what ecosystem you’re in or would prefer to be in.
I’ll second this. Prometheus + Grafana is what I’m using now, but you can definitely add more extensions/monitors to get far more detail, like Loki which was suggested above.
Grafana is just the frontend, its a dashboard for your different data sources Prometheus is the “database”, it scrapes data from your endpoints over http
I want to have artistic and photographic content and make the interface less GTK-like, especially on mobile, to try to make it acceptable to the normal people. I am techie so I think it will always have a significant tech vibe, but yes. If it had about 80% fewer people talking about Linux and US politics, I think that would represent a big improvement in the experience.
appreciate what you have now. take your time, you have tmie right now, don’t worry about finding your dream situation in live be it work, love, living, whatever just experience life. you’re young, you hopefully have some money, so experience it if you can. If you’re going to drink, do it now cause when you hit my age hangovers last 2 days and after one or two beers you’re pissing up a storm.
Don’t complain about a week taking forever and you hope the weekend comes soon because once you hit your 40s all that “time” snowballs together and you’ll be begging the days to go by slower. Things start speeding up and people start leaving you and you have no choice but to go along for the ride and hope for the best. You’re still in your 20s, cherish the time you have. hold onto it. apprecaite it. Take as many photos as you can, take as many videos as you can and save them. Friends and lovers will come and go but those memories from your 20s will last forever. make it easy to remember them.
The word “dogwhistle” has also lost all meaning. I mean that’s its mostly used to patronize the other side. Much like how they use woke. There are reasonable people on both side and none of them use these words.
If a dog whistle no longer means “something that is said with the intention of most people hearing something harmless and others knowing what the speaker actually means” please enlighten me.
kbin.life
Hot