This user has not registered Logdon.
Logdon is a service to save Mastodon toots as blog diaries. Plsease sign up!
avatar

Spoon spoon@freeradical.zone

@sir I'd guess you don't think that the link between owner and email address is public, though, so why does sourcehut try to disallow registration using an email address from a forwarding service?

avatar

Spoon spoon@freeradical.zone

@sir @mke I appreciate the write-up. One thing you don't mention is two factor authentication, which would be an important criterion for me. For access via a client like Thunderbird rather than the web, the only one who seems to offer 2FA is Protonmail via their bridges, acc. to another mastodon user when I tooted about this. I don't use protonmail for several reasons (likely overlapping with your dozens), but this I like. I just wish I could find it elsewhere.

avatar

Spoon spoon@freeradical.zone

@aktivismoEstasMiaLuo @thenewoil Anything taken from Google is favorable to #privacy long-term, given their reach and ambitions. Among not-Google's, companies publicly hammering privacy as a value are helping by making privacy a clear value to consider when choosing #search.

1/2

avatar

Spoon spoon@freeradical.zone

@Decentralize_today Maybe Signal is better than many options, but centralization still means it is susceptible to compulsion. So Briar is better, especially for the threats that protesters face (attacks on infrastructure, NSL's, etc.). Note too that the availability of code does not tell us what is running on Open Whisper's servers, and since there is no federation (again, since Signal actively prevents it), there's little we can do about it.

avatar

Spoon spoon@freeradical.zone

@Decentralize_today Not to heckle you, but FEH. Signal snarfs your contacts, uses your phone number, is centralized, and actively prohibits federation. Their statement is fine, and EARN IT does suck, but if you want to make EARN IT and its inevitable successors moot, you use something distributed and robust. #Briar, maybe (I have no affiliation, but last time I checked they were doing good work).
#privacy

avatar

Spoon spoon@freeradical.zone

@Decentralize_today Not to heckle you, but FEH. Signal snarfs your contacts, uses your phone number, is centralized, and actively prohibits federation. Their statement is fine, and EARN IT does suck, but if you want to make EARN IT Act and its inevitable successors moot, you use something distributed and robust. #Briar, maybe (I have no affiliation, but last time I checked they were doing good work).
#privacy

avatar

Spoon spoon@freeradical.zone

@Decentralize_today Signal is not decentralized (and is actively hostile to federation). In fact that's a big problem with it in times of protest, as it can be squeezed in various ways. See: EARN IT Act. #signal #privacy

avatar

Spoon spoon@freeradical.zone

Signal is not decentralized, @Decentralize_today! In fact that's a big problem with it in times of protest, as it can be squeezed in various ways. See: EARN IT Act.

avatar

Spoon spoon@freeradical.zone

@aral It's interesting how some developers invest time in personal narratives to shore up their answer to "can you trust the people who make it?" For example, when you read the many stories that Moxie Marlinspike has posted on his website, are you more likely to feel that you can trust him?
moxie.org/about.html

I also think about someone like Ladar Levinson, or the Calyx guy (whose name I forget). They've been tested, and went to the mat, which should count for something.

avatar

Spoon spoon@freeradical.zone

@sheogorath Time to dump them?

avatar

Spoon spoon@freeradical.zone

Anyone know what happened with the exemption given by Mozilla's HTTP Observatory to Cloudflare's __cfduid tracking cookie? Looks to me like they buried the attempt to remove it.

github.com/mozilla/http-observ

github.com/mozilla/http-observ

github.com/mozilla/http-observ

@sheogorath
@mozilla

avatar

Spoon spoon@freeradical.zone

Before the legendary Altair was 'called the 'Altair,' it was the 'Little Brother.' (Levy, _hackers: heroes of the computer revolution", p. 188) @doctorow

avatar

Spoon spoon@freeradical.zone

@info_activism I will just leave this here as well 😀

vimeo.com/333795857

"For ORDER OF MAGNITUDE, I viewed every one of these recordings and used them to build a supercut drawn from three of Mark’s most favored words: “more,” “grow,” and his every utterance of a metric such as “two million” or “one billion.” The result is a nearly fifty minute film that reveals primary topics of focus for the tech CEO, acting as a lens on what he cares about, how he thinks, and what he hopes to attain."

avatar

Spoon spoon@freeradical.zone

Thoughts on taking money from #Facebook?

They now sponsor #privacy research directly:
research.fb.com/programs/resea

They give large amounts of money to organizations with a privacy-focused mission:
news.bloomberglaw.com/privacy-

Is it possible to just take their money and do your work? Is it unfair to compare this to "the BP endowed chair of environmental protection" or "the Phillip Morris center for lung cancer research?" I have my views (clearly) but I recognize disagreement here as well.

avatar

Spoon spoon@freeradical.zone

@neoncipher Somehow, I had never watched that documentary. It was very powerful; thank you. I see surprising cravenness among academics faced with losing funding, as these conferences would if they turned down sponsors. Counterexamples that have impressed me (on open-access) were Mathematicians boycotting Springer (gowers.wordpress.com/2012/01/2), and ML researchers on Nature Machine Intelligence (openaccess.engineering.oregons). On #privacy I can't think of counterexamples.
@aral
@Mr_Teatime

avatar

Spoon spoon@freeradical.zone

@neoncipher @aral

Privacy conferences certainly don't mind having the likes of Google, Facebook, Palantir, and Acxiom among their sponsors (fpf.org/about/supporters/). Prominent privacy researchers don't mind serving on the board of Palantir, either (palantir.com/2012/11/announcin)

avatar

Spoon spoon@freeradical.zone

@doctorow Hoboy, organized on a Facebook page? Maybe the discussion could include how to avoid that.

avatar

Spoon spoon@freeradical.zone

@janvlug How about something like what readthedocs does? docs.readthedocs.io/en/latest/

avatar

Spoon spoon@freeradical.zone

Has anyone noticed the sponsors for #privacy conferences / events are ... interesting? Examples I've seen, off the cuff: Facebook (SOUPS); Cisco, Intel (#DataPrivacyDay); and ... Acxiom, Euclid Analytics, Palantir, etc., (Future of Privacy Forum, fpf.org/about/supporters/). I am conflicted about whether to speak out on this stuff to organizers.

avatar

Spoon spoon@freeradical.zone

@deutrino @peter @torgo
May I highlight this fundamental issue, from that discussion:
"... any study that lumps browser vendor and version differences into its analysis of the fingerprintability of a population is largely useless for evaluating either attacks or defenses. Unfortunately, this includes popular large-scale studies such as Panopticlick and Am I Unique."

avatar

Spoon spoon@freeradical.zone

#introduction. Joined this instance by referral. Student of #privacy technology in its many forms, and generally of civil rights online. Lover of #libraries; enemy of CYBERCRUD. Run #OpenBSD, #Debian---when I want a trusted opinion, I pipe to cowthink. #philosophy #ai #crypto #blockchain #floss #libre #pgp #gpg #gnu.

Share mastodon Share twitter Share facebook Share hatebu follow us in feedly Share rss

Recent tooots

2020-08-24 1
2020-07-10 1
2020-06-19 1
2020-06-13 1
2020-06-04 3
2020-06-03 2
2020-05-07 1
2020-04-14 1
2020-04-05 1
2020-01-09 1
2020-01-02 1
2019-11-19 1
2019-01-17 1
2019-01-15 1
2018-09-08 1
2018-02-09 1
2018-01-28 1
2018-01-25 1
2018-01-18 1