I don't know if I just forgot to turn it off or if it was on or what but I just noticed my companie's vpn was on on my laptop while I was jerking off to porn. It was off my own wifi, but still, is this anything they could see?
I don't know if I just forgot to turn it off or if it was on or what but I just noticed my companie's vpn was on on my laptop while I was jerking off to porn. It was off my own wifi, but still, is this anything they could see?
>t.Jeffrey Toobin
if your company VPN was on, it doesn't matter if it was your WiFi
Good job coomer, now everyone at work will know you're into fur and trannies
pls be a joke dude.
>he doesn't know how vpn works in 2022
You deserve to be fired.
>It was off my own wifi
So? It's their VPN.
They just use it for remote accessing the company's local computers.
It depends if it's configured to route all your traffic through the VPN or not. Just Google "what's my IP" with and without the VPN if both give the same result then you're going to the Internet through your home connection.
lol, yeah, do that just to confirm how fricked you are
like, you really think the company *doesn't* want to spy on everything you're doing?
I accidentally loaded $online_game once on company VPN (laggy as shit) and accidentally next day too, it was blocked already
>troony porn
>fricked
dude, he's getting a promotion, what are you talking about
They were different. Frick how fricked am I? I browse /misc/ and /d/ and shit.
>I browse /misc/
you're a homosexual and you deserve it
COuld they really see all of that?
They can see your URLs, jackass.
everything you do is logged but no one checks logs until there's company dollars on the line (ex: hacker incident response) and then they only check relevant logs to the incident. you're fine. if you're actually worried then start looking (outside of work) for new employment... but you'd be dumb to expect anyone to care.
I downloaded a steam game while on the vpn that was like 1.5gb. It took like an hour, that wouldnt set off any red flags that might send them looking in my direction would they?
I agree, just do shit until people complain.
That's all you can do on the internet now.
Oh btw, everyone has probably broken the law in this day and age. It will be used as blackmail if you attack the government.
that means all your traffic is routed through the VPN (your company network) when the VPN is on, and if you have a company CA certificate installed, all your traffic was visible, even the https traffic
whats a company ca certificate? I didnt download that just the vpn.
you can look at your certificate properties in most browsers by clicking the lock icon in your url bar
For instance, if you visit google.com you should see something like
>Organization (O) Google Trust Services LLC
and if that changes to something else when your VPN is enabled, there's a root CA installed on your work laptop that lets them monitor all your web browser traffic on the VPN
Its not a work laptop its my personal laptop that I downloaded the vpn on. Does that mean I'm fine?
Please respond bro this'll keep me up all night.
they won't care you moron
But could they see without the CA certificate though?
they can see the dns requests like IQfy and that's it.
so they can just see dns and not urls? What about downloads?
the vpn installer could install a root CA
the best thing to do is just check and see
even if there's no root CA, they still see your dns queries
>I can haz IP for pornhubz?
and the fact that you downloaded a lot of something from it
lots of bandwidth usage (games and videos) will put you on their radar
but since you're using a personal device, as long as it's not company time, they probably won't care, but prefer you stay off company network for downloads
if it is company time, they'll probably say something to you about it
they're cheap ass bastards if they expect you to use personal devices in the first place
It wasnt company time. Frick I'll look at my downloads. I definetely downloaded a bunch of shit
just pop open chromium
go to google.com
click the lock in the url bar
click 'connection is secure'
click 'certificate is valid'
look for
>Organization (O) Google Trust Services LLC
if it's the same On/Off VPN, there's no root CA, they can only see your DNS queries and bandwidth usage
they can't even see your entire URL, just the part behind the third slash, example: https://google.com/ not https://www.google.com/search?q=cowsay
What about downloads though can they see that? I'll check ca rn.
like I said
*if* it's https
*if* there's no root ca
they can see
>DNS query for pornhub
>6 gorillion megabytes used
but not the content
If what is the same? The number underneath
>Ensures the identity of a remote computer
?
what browser are you using?
chrome
and on what step of
are you getting lost?
I don't see
(O) Google Trust Services LLC
After clicking certificate is valid
what is under
>Issued By
also, flip over to the Details tab
do you see something like Default TrustGTS Root at the top?
That section you pointed out is the same on non vpn and vpn.
As far as
>Default TrustGTS Root
No that doesnt appear.
Sorry I took my time I just wanted to be extra sure.
Does this mean I have no CA certificate and I'm good?
if you're not on VPN, you should see a google issued certificate
I see the google issued certificate on both.
then you're not being MITM on your VPN
I checked the page you said and everything looks the same to me.
My only question is would they still see downloads?
okay, then no root CA
so they see you download *something*
not Alex Jones' favorite tgirls
they only know the domain and the approximate number of bytes downloaded
I just downloaded some pics from IQfy, tbh they were mostly harmless, I was worried they could see if I downloaded a racist meme or something but I havent it looks like in a couple weeks
okay, sounds like you'll be fine
get a different laptop exclusively for work asap
be real careful till then
thanks fren. I was really scared there thanks.
Just out of curiosity what would it look like if I did have a root CA?
>what would it look like if I did have a root CA
It would be something other than a Google certificate authority (CA)
They would probably have something like 'Company Name CA' in there
How it works is there is a select set of root trusted CAs that your browser will trust
Those root CAs can vouch for other certificates, and your browser will trust those certificates too
In the details view, you see a certificate chain, at the top(usually) is the root ca
Nobody trust your rinkydink company CA, but your company can install their own CA on their own computers if they want
which means they can now capture encrypted packets on the VPN, and decode them, simply by switching the certificate you receive for google.com
(You) <-> Company VPN <-> google.com
They're the 'man in the middle' MITM
Yep its just the google CA lmao. Oh thank God. I thank you dearly anon I probably almost had a heart attack just now.
They should really make it more clear whether you're on a vpn or not lol.
good luck at your new job fren
Ah yes, the man in the middle run by cult and using quantum AI?
What could go wrong?
I realized this homosexualry the other day at my work when I went to my home website but it said the cert was from my employer.
fug!
how do I check?
Please bro I'm begging you, am I good if I didnt download a ca certificate? I do still have to login my credentials to get into the vpn.
Depends on how technologically competent the company is and how much they really care.
Disgust
what were you fapping to?
/d/ shit
Everyone jerk offs. No big deal.
Apparently some people do not and increasingly corps are using intel analysing your habits even with vpn usage.
OH MY GOD NOW IM REALIZNG WHY MY INTERNET HAS BEEN SO SHIT FOR THE LAST 2 DAYS
WHAT THE FRICK I'VE BEEN ON TH ECOMPANY VPN LAST 2 DAYS?
OH GOD
>WHAT THE FRICK I'VE BEEN ON TH ECOMPANY VPN LAST 2 DAYS
lol you think you're the worst offender? *and* that people watch all the traffic from all computers? lol.
You're fricked. Consider using the money your next job gives you in exchange for work to buy your own device.
People who use their work devices for personal shit are insane and are inviting being fired.
It was on my personal device. My company is gay and doesnt give out work laptops.
If it's your own device then it's unlikely that they'll be doing the whole domain connected machine thing where they can intercept connections and really see what you're up to; although with some exceptions. If you have admin access to your own machine then chances are they're not gonna bother with adding security controls since they're pointless.
Take this as a lesson to NOT mix machines, and get a seperate device.
You're right. I should buy a laptop strictly for work. I suppose actually I have an old laptop I could use.
I only just started this job. Its not fricking obvious whether the vpn in on or off.
op, are you using company laptop? or did you literally have to install a company backdoor on your laptop? either way, if they really wanted to see what you were doing, they can do it with or without vpn. if you're using company laptop, it usually doesn't matter if you're on vpn or not they literally intercept everything. if you're on your own laptop and you installed company vpn software, well, you installed a company backdoor so they can literally intercept everything.
Personal device with backdoor. I'm really tired and stressed guys.
damn anon you don't have a spare computer for this sort of use?
are you okay now?
not gonna have a nice day, right?
we good?
Not gonna kill myself now 🙂
What if I connect to the work VPN on my work laptop (provided by them) and then watch porn and look for escorts on my phone that's connected to the same WiFi?
the VPN software is on your laptop, not your phone, so your phone goes through your home DNS on your wifi while the laptop goes through the work VPN DNS
Thank you anon, I'll continue watching porn and looking for escorts in peace.
my job MITM me; when I visit my own domain it says the cert is from my employer.
yeah, if you're on the work network and work computer, you basically should expect it
another reason for OP to get a work-only laptop is if your company is sued, then the plantiff lawyers can demand access to your work laptop, even if it is your personal that you use for work
never do anything personal on a work laptop
never never never
and they're cheap bastards if they expect you to buy your own work laptop, but at least that gives you leverage about telling them to frick off with their work spyware
So all those Thinkpads on Thinkpad general?
Oh no.
They know everything. Probably nothing will happen if you get caught. Spoke to the IT bois. He brought up the stats on the porn thing. If those numbers were real then someone in the company would be fired for porn every week.
It knows what urls you accessed if they keep logs. I don't think your sysadmin is browsing your pixiv material of Lisa from genshin getting rammed in the ass by a futa Eula which Diluc prepares to execute them both for disgracing Allah.
Dont use your company laptop to look at porn in the first place. Don't conduct company business on your personal devices so you never need to hook them up to the company VPN. Post the link to the porn you were jerking off to.