Updated the Obnam website. There is a kitten and a roadmap now.

obnam.org/

"The X.509 Chain of Trust is more of a Tree of Trust. And the Tree of Trust is more of a Web of WTF." #tlsmastery #nonotryagain

Readers are storing 8,332 e-books, digital comics and magazines with Libreture, the e-book alternative to Goodreads!

libreture.com/

Free software funding idea: Honorary employee

A company adopts a maintainer of a free software project as an honorary <some title based on company> so that they can continue their free software development full time..

An honorary employee doesn't report to any manager in the company nor is accountable for any of its goals. Their relationship to this company is only for tax purposes. The company does this because it depends on the free software project.

#FreeSoftware

Ende-zu-Ende-Verschlüsselung muss die Regel werden, um den Schutz von Wirtschaft, Zivilgesellschaft und Politik im 21. Jahrhundert zu gewährleisten.
Stattdessen würde uns dieser Schuss ins eigene Knie zurück in die Steinzeit katapultieren

ccc.de/de/updates/2020/cryptow

Blog post time 🎉

Keyoxide Project Update #1

yarmo.eu/post/keyoxide-project

Been a bit busy lately: creating a non-profit foundation, getting a grant and releasing a #node library! 😎

Oh, and there's a Keyoxide Matrix room now! #keyoxide:matrix.org 🤩

#keyoxide #decentralized #identity #doip

They say war on terror but act like war on encryption.
Taking away the very freedoms they claim to protect - again.

For those interested in #emacs you might get a kick reading

multicians.org/mepap.html

It's an in-depth brain dump by Bernard S. Greenberg, author of #multics emacs c.a. 1979. His was the first Emacs to use lisp as it's extension language and probably the only one to have it's source code comments in a mixture of Yiddish and #Latin.

Gives background on #teco and the early creation of Emacs that was NOT done by #rms

I happened to use this as an programming intern around 1981

Every time you direct somebody to GitHub and ask them to file an issue or use it for some other kind of work (esp. without even stopping to consider whether they even have an account), imagine you have a Facebook group instead, and you're telling them to post in it. Stop and think about why you feel that doing the same thing with GitHub is any different.

Being a GitHub user should not be a prerequisite for public participation.

mastodon.radio/@colby/10514712

The developers of Signal are currently doing a user survey:

surveys.signalusers.org/s3

I told them that I really like the app but also that I would like:
a) Signal on @fdroidorg
b) a proper desktop client
c) no data stored in "secure enclaves"

Maybe you'd like to tell them, too?



#AttackSurface by @pluralistic

"...no one at the Interior Ministry used PGP for email, because no normal human does..."

<sigh>

Signal assumes no E2EE network can survive without centralization to empower rapid changes.

I assume no E2EE network can survive without decentralization to resist political demands for censorship and backdoors.

This is fundamentally why I always recommend Matrix over Signal.

Things like this can be solved with #decentralization and #FLOSS. Consider #selfhosting or use providers who can host these systems for you. We have jitsi and more alternatives will be available. Although Higher education shouldn't be using propriatory solutions.
---
RT @sedyst
Zoom shuts down an NYU academic event on zoom censorship. Facebook asks NYU researchers to stop doing research on political ads. NYU’s response will be interesting t…
twitter.com/sedyst/status/1319

Software A is designed to download videos from server S; software B as well.
How can A be considered as “circumventing a technical measure” while B isn’t?

(With A = youtube-dl and B = Firefox, say.)
github.com/github/dmca/blob/ma #RIAA

The ZDNet reports this is part of a larger action:

"RIAA blitz takes down 18 GitHub projects used for downloading YouTube videos"

and isn't a DMCA 512 takedown:

Although GitHub classified the RIAA letter as a DMCA takedown request, it is not one. As Public Knowledge Legal Director John Bergmayer pointed out today on Twitter, RIAA isn't alleging the library infringed on its rights, but that the library is illegal in itself.

This isn’t really a DMCA request. I don’t see an assertion that youtube-dl is an infringing work. Rather the claim is that it’s illegal per se t.co/vQ16nVleCf

— John Bergmayer (@bergmayer) October 23, 2020

zdnet.com/article/riaa-blitz-t

Show thread

Just a little update: I'm back from a much needed break so development is resuming soon. Though I haven't touched the code in three weeks, I haven't been idle either and I'll hopefully have some good news soon 😉

How do you do key signing in the time of a pandemic? about 's approach for now and for the future: lwn.net/SubscriberLink/831401/

I feel like Mozilla keeps introducing all of these proprietary network services aimed at privacy minded folks while also not realizing their services are less private than the self-hostable libre alternatives that people concerned about privacy already use.

They also keep trying to bake these "features" into their browser which leads to more telemetry, which leads to privacy minded folks forking Firefox and stripping out the telemetry and ads for Mozilla services.

Show thread

RT @pepsecurity@twitter.com

1/ #Enigmail for Thunderbird is being discontinued. A lot of people are missing an easy way to encrypt their emails now.

This is why p≡p has developed p≡p for Thunderbird – a fully automated email encryption add-on. (Thread)

pep.software/thunderbird/

🐦🔗: twitter.com/pepsecurity/status

Show older
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!