Replied in thread
Recent searches
Search options
Administered by:
#nobus
0 posts0 participants0 posts today
Replied in thread
Replied in thread
@sylv_a personally, I'd recommend #XMPP+#OMEMO (and #PGP/MIME - encrypted #eMail) for real #E2EE with #SelfCustody of Keys as well as actual #decentralization.
- All #SingleVendor and/or #SingleProvider solutions are inherently insecure, if not due to #TechStack (i.e. using a #CDN like #ClownFlare for app assets with no valid reason), #PII (demaning a #PhoneNumber which oftentimes cannot be obtained anonymously for no valod reason!) or lack of #DataProtection #Laws (i.e. #CloudAct is inherently incompatible with #GDPR & #BDSG), it's due to the inherent risks of #centralization.
Cuz I noone's gonna risk jailtime for (non-paying!) users - it at all…
- Not even @Mer__edith !
In fact I'd call U.S. MIL/INTEL as "criminally incompetent" if they didn't manage to plant multiple people inside @signalapp / #Signal or any other single-vendor / single-provider messenger.
- Cuz if Signal wasn't #NOBUS, they would've been shutdown/taken down/criminalized/hacked like #EncroChat and #SkyECC.
Personally, solutions like Signal & #Threema have a stench like #CryptoAG / #MINERVA / #Rubikon and #ANØM / #OperationIronside / #OperationTrøjanShield.
By contrast: #OpenStandards like XMPP+OMEMO & PGP/MIME are independently verifyable and not dependent on on a single individual/organization for maintenance/survival/implementation/development.
- Also not depending on #GAFAMs and/or #VCmoneyBurningParties is way more sustainable long-term...
Personally I'd still recommend @monocles / #monocles with #monoclesChat & #gajim...
Twitterthaddeus e. grugq on Twitter“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo
https://t.co/Q2aOQJkG4g”
Replied in thread
"[...] easy to use solutions that are at the same time private and secure. [...]"
- The fact that @signalapp requires #PII like a #PhoneNumber which more often than not cannot be legally acquired anonymously makes it not #private.
It is easier, faster, cheaper and overall simpler to get someone setup with #XMPP + #OMEMO espechally if they don't have a #PhoneNumber and/or #ID to acquire a #SIM.
And if you go and say, "Just buy a [insert country here] [e]SIM!" and expect #TechIlliterates without a #CreditCard, #PayPal or other means of #OnlinePayment to fiddle around with some #eSIM if not having to get some #eSIMcard because they can only afford to maintain one SIM and can't spend triple-digits on a new devices then you completely missed the point!
- I can much faster and easier get TechIlliterates setup show them around - either in a @cryptoparty@mastodon.earth / @cryptoparty@chaos.social / #CryptoParty - style #classroom / #seminar or 1:1 tutoring than I can legally acquire and activate a new SIM in #Germany [since 07/2017]...
It's not that I expect anyone to get #TechLiterate within minutes, but similar to setting up a cordless DECT phone it's something one has to do once in 5 years and just have them put the password in a safe spot to retain...
Point is that #Signal #WontFix their setup and that was evidently clear even before @Mer__edith succeeded #MoxieMarlinspike: Their entire operation has a distinct #CryptoAG stench as it's an #unsustainable #VCmoneyBurning party!
- #CloudAct and the #NOBUS hegemony ain't something that just got executed now (neither was #GDPR & #BDSG!)...
A counterexample on how this could've been done are #Tor, #eMail and other truly #OpenSource as in #MultiVendor & #MultiProvider standards.
NOTHING compells Signal to demand PII, run a #Shitcoin #Scam aka. #MobileCoin that even seasoned #TechLiterates and #CryptoBros can't setup properly, and in fact Signal using phone numbers makes it trivial to discriminate against users and easier for them to identify them!
If my reasoning didn't resonate with you, then try helping i.e. undocumented migrants aka. "#SansPapier|s" to get setup with it without violating laws and/or ToS and/or needing an imported SIM which I'm shure most folks don't have on hand!
Whereas it's trivial to get people setup on one of many XMPP servers I've personally tested!
- Not to mention clients like @monocles / #monoclesChat and @gajim / #gajim are way more user-friendly and unlike Signal can also work perfectly fine over #Tor, including #OnionServices as endpoints.
AFAIK Signal doesn't even have an #OnionService / .onion for their Website, much less any #API enpoints to use it with!
- Them relying on #ClownFlare is just something that makes them even more #sus as there is no legitimate reason to use a #RogueISP like that.
You're free to also provide evidence and supporting data to your arguments, rather then neighsaying against proven to be more secure and reliable [by virtue of decentralization] options like XMPP+OMEMO and/or #PGP/MIME.
- What gets my blood boiling is the constant #disinfo by Signal Fanboys like @rysiek who sell it like #DigitalSnakeoil akin to #AntivirusSoftware, because it's at best "#TechPopulism" and at worst will mislead "TechIlliterates" with a false sense of security, which in turn puts more users at risk.
The proper fix is to actually assess the situation and acknowledge the risks and limitations as well as the very nature of communications, which means upgrading later is exponentially more painful, thus getting people properly setup once is way easier.
- Just because WE [ or rather @rysiek in this case ] rather privilegued enough to not be hatecrimed in their current location doesn't mean this is the case for everyone. And having places like Signal rely on a "#CDN" is just another red flag to me because questions like this one just don't arise with monocles.chat as people can just exercise proper #SelfCustody and just use Tor!
Speaking of #monocles: That business is at least #sustainable because it's funded by users (€2 p.m.) which they can pay anonymously
gruene.socialMax L. (@max@gruene.social)@kkarhan@infosec.space Sorry but no, the correct solution is to push for easy to use solutions that are at the same time private and secure. Hiding privacy and security behind a veil of "you need to know" is discrimination of people that are not able (either mentally, physically or monetary) to gain that knowledge.
The correct move here is for @signalapp@mastodon.world and any other service to fix this and for legislators to enact laws enforcing proper security and privacy by design.
Replied in thread
@frumble ich finde das Format an sicht shice...
- Wobei #TikTokBan nur dazu dient, #NOBUS-Doktrin und #DigitaleHegemonie durchzuboxen!
Replied in thread
@eloquence precisely that is my problem with bs like the #TikTokBan...
- It's merely signalling that everything is fine unless it touches #NOBUS Doctrine and threatens the "#GlobalReach" of #NSAbook and it's access via #PRISM-Collaborators.
The fact that #DataBrokers basically act as privatized #intelligence agencies IS LITERALLY THE PROBLEM!
- But that doesn't hurt the #StatusQuo, unlike #DigitalSouvereignity or god forbid people go out of their way to avoid being subject to #CloudAct.
I'd not be surprised if #Trump were to basically create a "DATA-#FATCA" and demand #hosters and #providers outside the #USA to #backdoor their systems and provide #BulkAccess to #US citizens' data to US intelligence unless they want to face sanctions which would basically force them off the Internet due to it's US-centric nature!
@kubikpixel ja, weil #NOBUS-Doktrin setzt auf #CloudAct und #DigitaleHegemonie!
Sowas wie "unsere Schwachstellen" wird's halt nie geben, daher entweder ist ein System für alle oder niemanden sicher. #NOBUS
"Russische Hacker verwendeten Schwachstellen, wie sie sonst nur von Spyware von Regierungen, dem berühmten "Bundestrojaner" ausgenutzt werden."
DER STANDARD · Die Tricks des "Bundestrojaners" sind in die Hände Moskaus gefallenHacker im Dienste Moskaus nutzen Exploits, die nur von kommerziellen Spyware-Anbietern wie der NSO Group oder Intellexa stammen können
Replied in thread
@byteborg @HonkHase ganz einfach: #GAFAMs fallen nur unter #CloudAct und der #Cyberfaschismus der #USA verlangt zwar #Datensammelwut verbietet aber wegen #NOBUS-Doktrin die Weitergabe.
- Deshalb durfte das #FBI & #AFP bei #ANØM / #OperationIronside / #OperationTrøjanShield keine !US-Bürger*innen und -Resident*innen überwachen!
Replied in thread
@ralph naja...
Was #Scraping angeht ist die Sache anders als mit Binärdaten (siehe Apple v. Franklin)...
- #Copyrightmafia und gesetzliche Fuckups beiseite ist #Microsoft schon klar dass deren #Spyware und #Govware-backdoored Betriebssystem "#Windows", #MicrosoftOffixe und deren "#Cloud"-Offerten unter keinen Umständen #legal im Sinne von #DSGVO & #BDSG sein können, weil Microsoft qua #CloudAct zur illegalen #Agententätigkeit gezwungen ist!
Deshalb verbietet die "V.R." #Xhina.auch #Tesla-Fahrzeuge...
Felix RedaGitHub Copilot is not infringing your copyright
Replied in thread
@tomtrottel @guenterhack eher #CloudAct, weil #Palantir stört die #US-#Hegemonie qua #NOBUS-Doktrin...
Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)@guenterhack@chaos.social also quasi wie Heute schon...
Siehe #iCloud und #iOS in der *"V.R."* #China:
https://www.youtube.com/watch?v=Ev9_oDHNf-4
Merke: #AllGafamsAreBad / #AllGafamsAreEvil - [besonders]( https://www.youtube.com/watch?v=5yqRZo4usjk ) #Apple...
#iCloud #Office365 #MicrosoftRecall #Windows11 #Rasomwre #ITsec #InfoSec #OpSec #ComSec #Datenschutz #WhatYouAllowIsWhatWillContinue #LackOfAccountability #LackOfConsequences
Replied in thread
@kkeller @jonahstein @lauren it's literally about the #US #hegemony being threatened.
They don't care about "#FreezePeach" or whatever but to solely protect both the #GAFAMs and the #NSA [see #NOBUS doctrine ]...
Everything else are just smoke grenades...
Replied in thread
@netzpolitik_feed Das allein sollte grund genug sein die #USA nicht als "#SicheresDrittland" weder für #Menschen noch #Daten zu betrachten...
What do you think: Has the fact that the #xzbackdoor has been exposed disrupted the market for security vulnerabilities or will it remain unimpressed?
Imagine if you were a provider and now wanted to offer your code to some service, authority or state so that your #NOBUS solution could never be discovered by others... 
Was meint ihr: Die Tatsache, dass die #xzbackdoor aufgeflogen ist, hat das den Markt von Sicherheitslücken gestört oder bleibt dieser weiter unbeeindruckt?
Stellt euch mal vor, ihr wärt ein Anbieter und wollt nun euren Code irgendeinem Dienst, einer Behörde oder Staat anbieten, dass eure #NOBUS-Lösung nie von anderen entdeckt werden kann...
#ssh #xz #git
Genial am Hack ist die Ruhe und Gelassenheit bei der Vorbereitung von 2021 bis 2024
Genial ist der Plan einer Supply Chain Attack
Genial ist das Verstecken des Schadcodes in 2 Testfiles, die a) harmlos aussehen und die b) im "unsichtbaren" #GitIgnore versteckt waren
Genial ist, eine so sichere Software wie #ssh indirekt anzugreifen (vgl Supply Chain Attack), die weltweit von fast allen Servern genutzt wird
Genial ist, dass die #Backdoor quasi ebenso sicher ist durch #NOBUS
@rose @evdas @cyronimose The #NSAbook / #StasiBook issue won't be addressed because it's mere existance is politically desired for #cyberfacist hegemony of the #NOBUS doctrine...
#Facebook's existance is a #Honeypot done to trick people to #snitch on their mutuals!
@Bitchableiter #NOBUS als Doktrin ist auch nichts anderes als #Cyberfaschismus und gobales Hegemonialstreben...
Da #IT in #JAPAN allerdings zu fast 100% aus #Windows besteht ist es kein Wunder, wenn jene #Govware auch von anderen geknackt wird...
Replied in thread
@Nika2022 @kenji not to mention pushing for the #Hegemony in #Cyberspace aka. #NOBUS by literally restrictiong #Encryption.
#ITAR & #WassenaarArrangement are literal Crimes against Humanity!
Replied in thread
@Elizafox I'd sus the numbers on both.
Espechally on #Facebook since that'll include a shitload ob abandoned and/or corporate accounts...
The thread of the 
is that it may persist and outlive 
just like it already outlived #tumblr, 
and how #XMPP & #IRC outlived #AIM, 
and will outlive 
...
Furthermore they are #PRISM members to this day and thus get financial incentives to sabotage competitors threatening #NOBUS #hegemony...