Notices by Rysiekúr Memesson (rysiek@mastodon.social), page 18

@Martin03 how is Keybase not a centralized walled-garden?

@paul this! So very much this!

This is missing from these discussions all the time, perhaps because it's one of the less obvious (but more sinister) issues with the Microfacegoopple.

Everyone should at one point or another run Mozilla Lightbeam:
https://addons.mozilla.org/pl/firefox/addon/lightbeam/

Wait, what. Windows 10 sends info on USB devices plugged in directly to Microsoft?

And it does that using pure HTTP?
https://pastebin.com/ttYp5rLg

You gotta be kidding me.

#InfoSec

@jordila @conoro Twitter used to have RSS/Atom for each user. They killed it some years ago.

Mastodon has it, of course: https://mastodon.social/users/rysiek.atom

@angristan @Gargron

@alienghic @cwebber @Shamar @kaniini @starbreaker and this (as a licensing scheme) is 100% fine, because anyone has a clear choice -- either you go with GPL, or you pay.

Notice there is nothing about "noncommercial" in the GPL.

That's my point, NC is not necessary to achieve what people think it's needed for. And it's counter-productive and problematic in general.

I approve of this:
http://hackthepatriarchy.tumblr.com/post/172962219817

Wow, this is old news (June 2017), but... how can I support this?
https://www.engadget.com/2017/06/19/eu-proposes-banning-encryption-backdoors/

"The European Parliament has proposed amended regulation that would not only require end-to-end encryption when available, but forbid backdoors that offer guaranteed access to law enforcement. EU residents need to know that the "confidentiality and safety" of their data is "guaranteed," according to the draft, and backdoors risk "weakening" that privacy."

#InfoSec

@clacke indeed.

However, while criticizing Congress for their lack of tech-savviness is justified, it should not obscure the fact that Facebook and other tech giants are *exploiting it maliciously*.

Should Congress get up to speed with tech? Yes.

Is this the main issue here? Absolutely not, and we need to put the spotlight back on Mr Zuckerberg.

@lain I'm sorry, but that's a completely different thing.

I don't think anyone is saying everyone should be *pushed* to higher education. Don't want? That's fine.

Instead, what at least I am saying, is: if they want to, they should have to take a crippling debt on to do so, even if we're talking philosophy, japanese studies or art.

It's like with science funding: you *never* know which path leads to a great discovery. So don't limit the paths people can take.

@pettter @slipstream @mareklach @kaniini @Jase can we stop with the "THEY STARTED IT" level of debate, though?

This is silly. I do really believe we can have an informed discussion about:
- federated protocols;
- how they should handle CWs, blocks, etc;
- how we can/should handle trolls and other not-excellent-people in the Fediverse;
- etc, etc;

without generalizations and stereotyping users based on software they happen to be using.

It's really not "Mastodon vs Pleroma vs GNU/Social".

@angristan stigmatizing all users of a particular piece of software is pretty uncool, tbh

@kaniini @maloki block the fsckers, report them to admins, screenshot the fsck out of it. Report death threats to the Police.

You are a valued member of this community, and you do great things. Don't let them bring you down.

Oh wow:
https://arstechnica.com/information-technology/2018/04/whatever-you-do-dont-give-this-programmable-payment-card-to-your-waiter/

"Ryan said the vulnerability appeared to stem from an "oversight around assumptions of who would be able to communicate with the card." The assumption seemed to be that "if someone got hold of your card, they would never try to pair the card over Bluetooth and download the data.""

#InfoSec #Fail

This is important: https://savecodeshare.eu/

"Current EU Copyright Review threatens Free and Open Source Software.
Take action now to preserve the ability to collaboratively build software online!"

#FLOSS
#EU
#Copyfraud
#Copyright

@crowd42 "Among those killed was Yaser Murtaja, a 30-year old Palestinian photographer, who was shot in the stomach by an Israeli sniper despite wearing a jacket emblazoned with 'PRESS' to identify him as a journalist."

https://en.wikipedia.org/wiki/2018_Gaza_border_protests#6_April

Ffs.

Looks like Motherboard did a write-up of the #tMobileAt fiasco from last night: https://motherboard.vice.com/en_us/article/7xdeby/t-mobile-stores-part-of-customers-passwords-in-plaintext-says-it-has-amazingly-good-security

Best part:
"A T-Mobile Austria representative said that "there is a misunderstanding in this thread about how we store and what is being displayed for customer service agents. I will check with our security officer and get back to you." But didn't immediately follow-up."

Looks like full damage control mode to me.

#InfoSec

@Shamar @alcinnz @ebel @pettter @HerraBRE @bjoern @galaxis @alanz here's a couple of other p2p communication projects that might be interesting: Twister (BitTorrent/Blockchain based social network), Tox (encrypted p2p IM and audio/video calls), Briar (end-to-end encrypted Tor-based IM with forums and blogs), Retroshare (too many features to even list)

@pettter @HerraBRE @bjoern what completely flabbergasts me in this discussion is that instead of asking "how can we make this happen", most people seem to be looking for reasons this would never work.

I feel this approach is not going to move us forward.

I also feel that (quoting Eben Moglen, I think), the server must die to save the web. As long as we have servers, we will have centralization.

Peer-to-peer, end-to-end principle (in the revolutionary, "serverless" sense) is what we need back.