You might like the #HackingLicense that

* has already been adoped by a group of activists fighting agaist #BigTech in Italy
* scared as hell corporate gatekeepers from #OSI
* proved Irene's point about unsubstantiated corporate #FUD against "license proliferation" and "risks"
also proved that developers are still mick more open-minded and can read and accept a clear and simple #software license** for themselves as several contributors did back then

/CC @ireneista@irenes.space @cinebox@masto.hackers.town

Continued thread

**Kevin Karhan** @kkarhan@infosec.space · Jul 8 *

Jul 8 *

Kevin Karhan @kkarhan@infosec.space

Granted #Sony still won with the #PS3 compared to the #Xbox360 because at launch it was the cheapest #bluray player (just like the #PS2 was at launch one of the cheapest #DVD players).

#Microsoft's halfassed Support of #HDDVD was intentionally an act of spiteful 'pissing into Sony's breakfast cereal bowl' as to #FUD consumers into #Streaming....

YouTubeHistory of the Xbox 360 HD DVD Drive | Past Mortem SSFFBy Stop Skeletons From Fighting

#microsoft #hddvd #fud

**Auric Crypto News** @auriccrypto · Jun 24

Jun 24

Auric Crypto News @auriccrypto

Celestia (TIA) nears all-time lows amid insider sale allegations!

A viral thread accused Celestia team of dumping millions in tokens and paying influencers. Co-founder Mustafa Al-Bassam calls it “FUD” and says the project still holds $100M+ in reserves. We break down the accusations and the team's response here: https://auriccrypto.com/altcoins/tia/celestia-near-all-time-low-faces-allegations-of-insider-sales/

Picture showing blank Celestia (TIA) coin

Auric Crypto News · Jun 24Celestia Near All-Time Low, Faces Allegations of Insider SalesCelestia, the modular blockchain project behind the TIA token, is currently facing scrutiny following a series of allegations involving insider token sales,

#Celestia #TIA #Crypto

**MrCopilot** @mrcopilot@mstdn.social · Jun 23

Jun 23

MrCopilot @mrcopilot@mstdn.social

DRAWBACKS OF SOFTWARE regardless of license.

https://www.xda-developers.com/drawbacks-open-source-software/

#OpenSource #FUD

Replied in thread

**Kevin Karhan** @kkarhan@infosec.space · Jun 17 *

Jun 17 *

Kevin Karhan @kkarhan@infosec.space

@Cappyjax IDGAF about "passion". All I care about is the security of users!

Requiring any #PII like a #PhoneNumber is inacceptable when it comes to #ComSec, #InfoSec & #OpSec, espechally given @signalapp is not only able but entirely willing to restrict service based off said numbers, making their "solution" insecure by design.

There's a reason why #XMPP+#OMEMO and #PGP/MIME [both each over @torproject / #Tor] is the evidently superior and more secure approach, as being unable to "#KYC" a user is a matter of security...

Espechally since obtaining a phone number anonymously is oftentimes illegal (i.e. #Germany made it illegal starting 07/2017, so using any service that demands a phone numner is out of question)

And even if one can get an anonymous #SIM (with a phone number) or god forbid #eSIM, (which is at best pseudonymous as tracking down users by virtue of matching ICCID, IMEI & IMSI to location and time) the chances are high that one ends up with recycled phone numbers that have already been used.

Obviously the devs of #Signal and @Mer__edith are well aware of this critical flaw, which is why I consider them to act as "useful idiots" or rather "controlled opposition" as #Signal could've been shutdown trivially by the #US Government or forced into banning users based off their #PhoneNumbers (they may call this "#sanctions #compliance" given they added a #Shitcoin - Wallet into Signal!)...

All the "but #Metadata" #FUD turns into #MarketingLies once put under the looking glass and examined against the risk of state-sponsored / -endordsed / -supported attackers.

Whereas with @monocles / #monoclesChat, @gajim / #gajim and @delta / #deltaChat and @thunderbird / #Thunderbird respectably I can not only use Tor, but do #SelfHosting for the entire #communications infrastructure (i.e. using an #OnionService = only reachable via Tor) and get the advantages of a self-routing, self-authenticating & battle-hardened against censorship proxy network that can't be shutdown!

And if you think this is too tinfoilhatted, then consider yourself privilegued enough of having your mere existance not being criminalized by the government under threat of public execution!

https://ilga.org/wp-content/uploads/2024/02/ILGA_World_map_sexual_orientation_laws_December2019.pdf
https://infosec.space/@kkarhan/114697690127511140

Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)@renardboy@mastodon.social @derekmorr@mastodon.social depends... Did you have to remotely onboard someone onto a secure communication stack whilst they are on the run from the authorities *and* blood relatives due to *"living while trans"* with a *literal "dead or alive" bounty on their head* whilst stuck in a besieged city that's being shelled? - Cuz I did... @signalapp@mastodon.world is evidently a solution appealing to #TechIlliterates with *dangerous 'semi-knowledge'* who are willing to accept a *"#TrustMeBro!"* by @Mer__edith@mastodon.world and #MoxieMarlinspike before her. - Using #Signal would've gotten said person tracked down and killed by the de-facto aithorities for merely having their phone # linked to that shite!

Replied to Marcus Rohrmoser

**Relish the Cracker** @relishthecracker@infosec.exchange · Jun 8

Jun 8

Relish the Cracker @relishthecracker@infosec.exchange

@mro @mirabilos @jwildeboer hostility against self-signed certificates is not #FUD.

Non-Root CA self-signed certificates, when used in a hierarchical trust model and used with the #TLS protocol, are in fact a bad idea.

Using self-signed certificates on an online host (Root CA or Non-Root CAs) is bad practice which limits the usefulness of Non-Root CA self-signed certificates.

There is also no available revocation methods to Non-Root CA self-signed certificates, when they’ve become compromised.

If you want independence while using #TLS, create your own private (at least 2-tier) PKI.

But then you would have to spend the time, money, and effort to secure and distribute that PKI (much like commercial CA’s do).

Replied in thread

**Marcus Rohrmoser** @mro@digitalcourage.social · Jun 8

Jun 8

Marcus Rohrmoser @mro@digitalcourage.social

Hi @mirabilos @jwildeboer,
the most concerning part about #TLS is IMO the #FUD about self-signed certs. So the whole ecosystem acts hostile against indies and turns into an oligopol at best. https://blog.mro.name/2022/11/tls-may-not-be-what-you-think-it-is/

blog.mro.nameTLS may not be what you think it is. | MRo Blog

Replied in thread

**Droppie [infosec] ** @MsDropbear42@infosec.space · May 24

May 24

Droppie [infosec]  @MsDropbear42@infosec.space

@Kai_Jansson #FirefoxNightly, & #Floorp12... because i pay no respect to #FUD.

Replied in thread

**Giacomo Tesio** @giacomo@snac.tesio.it · May 21

May 21

Giacomo Tesio @giacomo@snac.tesio.it

@GeorgWeissenbacher@fediscience.org

This sounds a bit like spreading #FUD, to be honest. Sure, bad things happens, but the larger is the instance the bigger is the stake: an attacker is much more likely to attack a #Mastodon instance with hundrends o thousands users than a small #snac2 instance with a handful of people.

Also we are not talking about #SelfHosting a corporate #NextCloud, that could block operation of a whole company, but about a federated social media whose sole raison d'étre is the resilience against single point of failure (both technical and political).

Then sure, Mastodon is not a software I would run on my server: too big and complex. But it's not by far the only option out there: I'm writing you through snac, and while it's not perfect, it's cheap and easy to run securely.

http://www.tesio.it/2024/12/18/how-to-run-your-own-social-network.html

Giacomo TesioHow to run your own social network (with Snac)Short tutorial on how to join the Fediverse for cheap.

**Stefan 'lerothas' D.** @lerothas@tech.lgbt · May 20

May 20

Stefan 'lerothas' D. @lerothas@tech.lgbt

Bereits vor Jahren haben führende europäische (#FOSS)Unternehmen davor gewarnt: Was, wenn US-Firmen #Software und digitale Dienste in der #EU einstellen?
Das wurde abgetan mit "die machen zu viel Profit bei uns" oder "das ist durch Verträge abgesichert" oder als "Endzeitszenario".

Was soll man sagen: Jetzt ist es passiert:

https://www.heise.de/news/Strafgerichtshof-Microsofts-E-Mail-Sperre-als-Weckruf-fuer-digitale-Souveraenitaet-10387368.html

So schnell wird aus vermeintlichem #FUD drastische Realität. 1/2

heise online · May 18Strafgerichtshof: Microsofts E-Mail-Sperre als Weckruf für digitale SouveränitätBy Stefan Krempl

#microsoft #usa #digitalesouveranitat

**Der Brüsseler** @derbruesseler@chaos.social · May 15

May 15

Der Brüsseler @derbruesseler@chaos.social

Aus "Ich habe keine Ahnung, aber davon viel" wird "ich habe keine Ahnung, aber eine #KI".

Früher waren wir ahnungslos, in Zukunft haben wir haluzinierende KI. Der ideale Nährboden für #Desinformation, #FakeNews, #Agitprop und #FUD.

Die unheilige Allianz zwischen #BigTech #Oligarchen wie Thiel, Musk usw., autokratischen Regierungen und faschistischen Parteien überrascht mich daher nicht.