How much OpSec is really required for legal purposes? : OpSec | Torhoo darknet markets
Firstly, I'd like to note that I am not a noob when it comes to OpSec and this post is more for the use of others rather than myself. However I welcome the opinions and comments of all types of users whether your a vendor, buyer, whatever.
That being said, HOW MUCH OpSec is required for a curious mind or a security researcher or a journalist or pretty much anyone who may use the darknet for completely legal and legitimate purposes? I would expect someone like a vendor or admin to use every precaution in the book, but should non-vendors, non-buyers, non-admins, etc. be concerned with such high levels of OpSec. Should you connect using a VPN or not? If TOR is "safe", then there should be no need, right? On the other hand, if your circuit is in any way compromised, this should be an added layer of security. Even with this seemingly logical process, I see many people recommend NOT using a VPN with TOR. Any thoughts?
Assume that everyone's emails, phone calls, social media, web searches, etc. is already scanned and automatically analyzed and could in combination with Tor flagging mean that you as a person could be flagged as an activist, potential drug user, potential school shooter, potentially associated with terrorism, (the list here is long). You will never see such flagging officially, it's stored deep in CIA's databases.
However, when traveling and being flagged, the probability to be swab tested, or scanned, or having luggage checked in "random checks" will increase. Same with international post, the probability is increased to have packages swabbed and scanned increase. The probability also increase to have bank transactions frozen for days. E.g. all kinds of odd things starts to occur more often.
For those who become flagged as risks will be periodically checked manually for deviations, which could lead to formal LE investigations even for small time crimes. And if someone is seriously flagged spyware will be injected in their phones and computers.
Now, back to your question, "How much OpSec is really required for legal purposes?"
What I claim is that every single soul have reasons to be careful with what they expose to the authorities, and this is regardless of country. State surveillance flagging might hinder you from certain jobs and positions in the future, or from being promoted, or getting VISA in some countries, or getting weapon licenses, or getting business licenses to handle certain chemicals, or getting permission to do certain international bank transactions, or being harassed if becoming a public person in the future, etc. (this list is very, very, very long).
All this due to a state "clearance check" done by secret police.
I know my reply is Orwellish, but we passed 1984 long time ago, Orwell assumed public state surveillance, he was wrong, it's secret, "For Your Safety".