101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.

Server stats:

480
active users

#TechIlliterates

0 posts0 participants0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@SecurityWriter" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>SecurityWriter</span></a></span> I don't defend this, nor anything else that <span class="h-card" translate="no"><a href="https://mastodon.social/@MastodonEngineering" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>MastodonEngineering</span></a></span> / <a href="https://infosec.space/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mastodon</span></a> <a href="https://infosec.space/tags/devs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>devs</span></a> do, including <a href="https://github.com/mastodon/mastodon/issues/28605" rel="nofollow noopener" target="_blank">stifling and sabotaging</a> the need for good moderation tools.</p><ul><li>In return I think that the arguments pushed against the <a href="https://infosec.space/tags/Fediverse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fediverse</span></a> by (alleged) <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> are not worth entertaining, cuz the same folks would also dismiss any alternative to <a href="https://infosec.space/tags/GMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GMail</span></a> cuz <em>they'd have to 'choose a Server'</em>....</li></ul><p>If we can't expect <a href="https://infosec.space/tags/users" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>users</span></a> to make informed decisions, then maybe they should not be allowed to use tech.</p><ul><li>Sorry for me <a href="https://infosec.space/tags/venting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>venting</span></a>, but noone would dismiss <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> because <a href="https://infosec.space/tags/mutt" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mutt</span></a> is not a beginner-friendly eMail client for folks that can't even use a goddamn mouse, as so many <a href="https://infosec.space/tags/Zoomers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Zoomers</span></a> these days do.</li></ul><p>I gladly <em>teach people tech</em> but most don't want to learn or even follow through on suggestions, advice and take explanaitions to their answers, and at a certain point that's just tiring...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://fedifreu.de/@cryptgoat" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptgoat</span></a></span> <span class="h-card" translate="no"><a href="https://toots.ch/@dalai" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dalai</span></a></span> <span class="h-card" translate="no"><a href="https://chaos.social/@martinsteiger" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>martinsteiger</span></a></span> wie gesagt: penetrant-ignorante <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> haben meine Spoons verbrannt und ich sehe es daher nicht ein, mich nach denen zu richten!</p><ul><li>Ich helfe gerne Leuten die ehrlich interessiert sind - und auch jenen die's nicht auf anhieb kapieren...</li></ul><p>Aber mehr außer erklären und einrichten kann ich nicht!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.vivaldi.net/@ajsadauskas" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ajsadauskas</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@JessTheUnstill" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>JessTheUnstill</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@tomiahonen" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tomiahonen</span></a></span> <span class="h-card" translate="no"><a href="https://oxytodon.com/@fuchsiii" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fuchsiii</span></a></span> </p><p>And <a href="https://infosec.space/tags/MeeGo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MeeGo</span></a> aka. <a href="https://infosec.space/tags/Maemo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Maemo</span></a> kinda was lauched <a href="https://social.vivaldi.net/@ajsadauskas/114271044421455134" rel="nofollow noopener" target="_blank">dead in the water</a>, with even less support than <a href="https://en.wikipedia.org/wiki/Openmoko" rel="nofollow noopener" target="_blank">the</a> <a href="https://infosec.space/tags/OpenMoko" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenMoko</span></a> powered <a href="https://www.openmoko.org/wiki/Neo_1973" rel="nofollow noopener" target="_blank">FIC Neo1973</a> in it's days, which was as approachable to <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> as a F-22 cockpit to an illiterate…</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://cyberplace.social/@GossiTheDog" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>GossiTheDog</span></a></span> <span class="h-card" translate="no"><a href="https://social.vivaldi.net/@ajsadauskas" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ajsadauskas</span></a></span> OFC, we groomed generations of <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> (<a href="https://infosec.space/tags/Users" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Users</span></a> and <a href="https://infosec.space/tags/Admins" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Admins</span></a>) to use that garbage and everyone who didn't lick the boots got yeeted.</p><ul><li>It's called <a href="https://infosec.space/tags/BrainDrain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BrainDrain</span></a>!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://hachyderm.io/@dalias" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dalias</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.laurenweinstein.org/@lauren" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lauren</span></a></span><br><span class="h-card" translate="no"><a href="https://troet.cafe/@pixelschubsi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>pixelschubsi</span></a></span> </p><p>Also the <a href="https://hachyderm.io/@dalias/113999748481227961" rel="nofollow noopener" target="_blank">blatant dismissal</a> of absolitely basic <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> is just flabberghasting.</p><ul><li>It's inherently wrong to <em>put all eggs in one basket</em> and <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> being not shut down like <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> &amp; <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> makes it just as sus as <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> / <a href="https://infosec.space/tags/OperationIronside" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationIronside</span></a> / <a href="https://infosec.space/tags/OperatioTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperatioTrøjanShield</span></a> and <a href="https://infosec.space/tags/CryptoAG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoAG</span></a> / <a href="https://infosec.space/tags/MINERVA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MINERVA</span></a> / <a href="https://infosec.space/tags/RUBIKON" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RUBIKON</span></a>.</li></ul><p>Only <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralized</span></a>, <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> &amp; <a href="https://infosec.space/tags/OpenStandards" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenStandards</span></a> can actuall survive long-term and remain <a href="https://infosec.space/tags/secure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>secure</span></a>.</p><ul><li>Otherwise we'd all gaslight ourselves into ignoring the hard lessions we learned that bought us to the <a href="https://infosec.space/tags/Fediverse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fediverse</span></a> and why we ain't on <a href="https://infosec.space/tags/Shitter" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Shitter</span></a> or <a href="https://infosec.space/tags/tumblr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tumblr</span></a> or <a href="https://infosec.space/tags/BrownSky" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BrownSky</span></a> or <a href="https://infosec.space/tags/NSAbook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NSAbook</span></a> (any more)!</li></ul><p>It's the same reasons we use <a href="https://infosec.space/tags/PGPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGPG</span></a>/MIME &amp; <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> and not <a href="https://infosec.space/tags/X400" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>X400</span></a> &amp; <a href="https://infosec.space/tags/X25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>X25</span></a>!</p><ul><li>Unlike with <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> one doesn't has to trust the provider or app. <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> works regardless if you use <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> or <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gajim</span></a></span> or do <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a> and only trust code you wrote yourself...</li></ul><p>IOW: Think <em>"How can you weaponize Signal?"</em> and see what you csn do <em>just holding key people in contempt</em>...</p><ul><li>And I'm not even talkibg about <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> - <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Backdoors</span></a> and <a href="https://infosec.space/tags/MassSurveillance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MassSurveillance</span></a> alike <a href="https://infosec.space/tags/Room651A" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Room651A</span></a>, but just <em>duely submitted warrants</em> that <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> <em>will comply with</em>... </li></ul><p>The less <a href="https://infosec.space/tags/info" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>info</span></a> a provider has, the less they can be forced to snitch upon customers.</p><ul><li>So even if you don't give a shit that <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> makes this a <em>"<a href="https://infosec.space/tags/CantUse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CantUse</span></a> &amp; <a href="https://infosec.space/tags/WintUse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WintUse</span></a>"</em> (out of US-centrist privilegue to not comply <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> &amp; <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BDSG</span></a>) for many, it's still dishonest.</li></ul><p><em>"<a href="https://infosec.space/tags/JustUseSgnal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JustUseSgnal</span></a>!"</em> is a form of <em>dangerous "<a href="https://infosec.space/tags/TechPopulism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechPopulism</span></a>"</em> aimed at bamboozling <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> <em>who don't know better</em>, abusing information asymetry to <em>pull rank</em> instead of investing the time and effort to *explain "how" and "why" this is indeed a good or bad idea.</p><ul><li>There's a reason why <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> doesn't include <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> and why I'll say it again that XMPP+OMEMO over <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> is the gold standard in terms of <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> and <a href="https://infosec.space/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> when it comes to <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> that isn't <a href="https://infosec.space/tags/airgapped" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>airgapped</span></a> aka. <a href="https://www.youtube.com/watch?v=vdab4T_CoN8" rel="nofollow noopener" target="_blank"><em>"Airgapped PGP"</em></a>.</li></ul><p>The only ones that have a chance to beat that are <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deltaChat</span></a> but that's just <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> in a nice UI...</p><ul><li>You may now laugh at me and think my <em>"<a href="https://infosec.space/tags/TinfoilHat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TinfoilHat</span></a> sits too tight"</em> but I'm shure sooner or later I'll be evidenced as <em>correct</em>...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.laurenweinstein.org/@lauren" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lauren</span></a></span> I disagree as <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> <em>requires</em> a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumber</span></a> = <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> &amp; cost barrier and they restrict access based off <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumbers</span></a>.</p><ul><li>Plus it's illegal in an increasing number if juristictions to gmeven attempt to acquire a phone number or SIM anonymously.</li></ul><p>Whereas it's so easy and fast to get <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> setup with <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> (which uninke <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> doesn't demand PII!) that I'd challenge you to a <a href="https://infosec.space/tags/speedrun" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>speedrun</span></a> <em>with step-by-step documentation for every <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> to follow along</em> to setup Signal <em>from scratch</em> vs. me doing <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> on <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gajim</span></a></span>.</p><ul><li>Cuz I did that on <span class="h-card" translate="no"><a href="https://mastodon.earth/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty</span></a></span> / <a href="https://infosec.space/tags/CryptoParty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoParty</span></a> / <a href="https://infosec.space/tags/CryptoParties" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoParties</span></a> quite often.</li></ul><p>Also <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> being <a href="https://infosec.space/tags/centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>centralized</span></a> makes it as vulnerable as any other <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a> &amp; <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a> solution!</p><ul><li>Whereas even if <a href="https://infosec.space/tags/monocles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocles</span></a> were to shutdown, one could easily switch over to any other provider or <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a>.</li></ul><p>I'd not count on the <a href="https://infosec.space/tags/Trump" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trump</span></a>-Regime not flexing <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> against anyone they deem undesireable!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://swiss.social/@silvan" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>silvan</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@nakal" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nakal</span></a></span> <span class="h-card" translate="no"><a href="https://social.tchncs.de/@kuketzblog" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kuketzblog</span></a></span> jain.</p><ul><li><em>"<a href="https://infosec.space/tags/Gratismentalit%C3%A4t" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Gratismentalität</span></a>"</em> von "<a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a>" <a href="https://social.tchncs.de/@kuketzblog/113938815702379959" rel="nofollow noopener" target="_blank">ist durchaus ein massives Problem</a> denn damit wurde <a href="https://infosec.space/tags/Datenhehlerei" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Datenhehlerei</span></a> der <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GAFAMs</span></a> zum <a href="https://infosec.space/tags/Gesch%C3%A4ftsmodell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Geschäftsmodell</span></a>!</li></ul><p><a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> &amp; <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME sind allein wegen <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> und <a href="https://infosec.space/tags/Offenheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Offenheit</span></a> inkl. <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a>-Möglichkeit zu bevorzugen!</p><ul><li>Alle <a href="https://infosec.space/tags/Messenger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Messenger</span></a> die <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> wie <a href="https://infosec.space/tags/Rufnummern" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rufnummern</span></a> verlangen sind allein deshalb IMHO durchgefallen!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@wmd" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>wmd</span></a></span> <span class="h-card" translate="no"><a href="https://denden.world/@miqokin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>miqokin</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> <span class="h-card" translate="no"><a href="https://social.librem.one/@guardianproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>guardianproject</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@micahflee" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>micahflee</span></a></span> also it's not as if I'm <a href="https://infosec.space/tags/shitposting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shitposting</span></a>, cuz I mean this serious.</p><ul><li>I've ~ 18 years of IT skills at my fingertips, &gt; 15 just with *getting "<a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a>" setup when it comes to <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>.</li></ul><p>And I'm not talking just about helping some kiddies spread the news, but criticsl comms that literally saved lives.</p><ul><li>I wish I could.go into details but alas my confidentiality was requested and I'm nit gonna violate an NDA and put a life at ridk just to wib an argument on the Internet.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@wmd" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>wmd</span></a></span> <span class="h-card" translate="no"><a href="https://denden.world/@miqokin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>miqokin</span></a></span> <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPN</span></a>|s are - for the most part and with the exception if circumventing <a href="https://infosec.space/tags/Geoblocking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Geoblocking</span></a> - a <a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Scam</span></a> catering towards <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a>.</p><p><a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">web.archive.org/web/2022011202</span><span class="invisible">0000/https://twitter.com/thegrugq/status/1085614812581715968</span></a></p><p><a href="https://infosec.space/tags/TLDR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TLDR</span></a>:</p><ul><li>Use <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> or GTFO!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://gruene.social/@max" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>max</span></a></span> <br>To <a href="https://gruene.social/@max/113872018769294131" rel="nofollow noopener" target="_blank">quote you directly</a>:</p><blockquote><p>"[...] easy to use solutions that are at the same time private and secure. [...]"</p></blockquote><ul><li>The fact that <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> requires <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> like a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumber</span></a> which more often than not <em>cannot be legally acquired anonymously</em> makes it not <a href="https://infosec.space/tags/private" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>private</span></a>. </li></ul><p>It is easier, faster, cheaper and overall simpler to get someone setup with <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a> + <a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> espechally if they don't have a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumber</span></a> and/or <a href="https://infosec.space/tags/ID" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ID</span></a> to acquire a <a href="https://infosec.space/tags/SIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SIM</span></a>. </p><p>And if you go and say, <em>"Just buy a [insert country here] [e]SIM!"</em> and expect <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> without a <a href="https://infosec.space/tags/CreditCard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CreditCard</span></a>, <a href="https://infosec.space/tags/PayPal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PayPal</span></a> or other means of <a href="https://infosec.space/tags/OnlinePayment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnlinePayment</span></a> to fiddle around with some <a href="https://infosec.space/tags/eSIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eSIM</span></a> if not having to get some <a href="https://infosec.space/tags/eSIMcard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eSIMcard</span></a> because they can only afford to maintain one SIM and can't spend triple-digits on a new devices then you <em>completely missed the point</em>!</p><ul><li>I can much faster and easier get TechIlliterates setup show them around - either in a <span class="h-card" translate="no"><a href="https://mastodon.earth/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@mastodon.earth</span></a></span> / <span class="h-card" translate="no"><a href="https://chaos.social/@cryptoparty" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cryptoparty@chaos.social</span></a></span> / <a href="https://infosec.space/tags/CryptoParty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoParty</span></a> - style <a href="https://infosec.space/tags/classroom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>classroom</span></a> / <a href="https://infosec.space/tags/seminar" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>seminar</span></a> or 1:1 tutoring than I can <em>legally acquire and activate a new SIM in <a href="https://infosec.space/tags/Germany" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Germany</span></a></em> [since 07/2017]...</li></ul><p>It's not that I expect anyone to get <a href="https://infosec.space/tags/TechLiterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechLiterate</span></a> within minutes, but similar to setting up a cordless DECT phone it's something one has to do once in 5 years and just have them put the password in a safe spot to retain...</p> <p>Point is that <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> <a href="https://infosec.space/tags/WontFix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WontFix</span></a> their setup and that was evidently clear even before <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> succeeded <a href="https://infosec.space/tags/MoxieMarlinspike" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MoxieMarlinspike</span></a>: Their entire operation has a <em>distinct <a href="https://infosec.space/tags/CryptoAG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoAG</span></a> stench</em> as it's an <a href="https://infosec.space/tags/unsustainable" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>unsustainable</span></a> <a href="https://infosec.space/tags/VCmoneyBurning" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VCmoneyBurning</span></a> party!</p><ul><li><a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> and the <a href="https://infosec.space/tags/NOBUS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NOBUS</span></a> <a href="https://en.wikipedia.org/wiki/NOBUS#Criticism" rel="nofollow noopener" target="_blank">hegemony</a> ain't something that just got executed now (neither was <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> &amp; <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BDSG</span></a>!)... </li></ul><p>A counterexample on how this could've been done are <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a>, <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> and other <em>truly <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a></em> as in <a href="https://infosec.space/tags/MultiVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiVendor</span></a> &amp; <a href="https://infosec.space/tags/MultiProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiProvider</span></a> standards. </p><ul><li><p><em>NOTHING</em> compells Signal to <a href="https://en.wikipedia.org/wiki/Signal_(software)" rel="nofollow noopener" target="_blank">demand PII</a>, run a <a href="https://infosec.space/tags/Shitcoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Shitcoin</span></a> <a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Scam</span></a> <a href="https://en.wikipedia.org/wiki/Signal_(software)#In-app_payments" rel="nofollow noopener" target="_blank">aka.</a> <a href="https://infosec.space/tags/MobileCoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MobileCoin</span></a> that even seasoned <a href="https://infosec.space/tags/TechLiterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechLiterates</span></a> and <a href="https://infosec.space/tags/CryptoBros" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoBros</span></a> <a href="https://www.youtube.com/watch?v=0DSGq9FQKU4" rel="nofollow noopener" target="_blank">can't setup properly</a>, and in fact Signal using <a href="https://en.wikipedia.org/wiki/Signal_(software)#Controversial_use" rel="nofollow noopener" target="_blank">phone numbers makes it trivial to discriminate against users and easier for them to identify them</a>!</p></li><li><p>If <a href="https://infosec.space/@kkarhan/113869305765533809" rel="nofollow noopener" target="_blank">my reasoning</a> didn't resonate with you, then try helping i.e. undocumented migrants aka. <em>"<a href="https://infosec.space/tags/SansPapier" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SansPapier</span></a>|s"</em> to get setup with it without violating laws and/or ToS and/or needing an imported SIM which I'm shure most folks don't have on hand!</p></li></ul><p>Whereas it's trivial to get people setup on <a href="https://github.com/greyhat-academy/lists.d/blob/main/xmpp.servers.list.tsv" rel="nofollow noopener" target="_blank">one of many XMPP servers I've personally tested</a>!</p><ul><li>Not to mention clients like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesChat</span></a> and <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gajim</span></a></span> / <a href="https://infosec.space/tags/gajim" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gajim</span></a> are way more user-friendly and unlike Signal can also work perfectly fine over <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a>, including <a href="https://infosec.space/tags/OnionServices" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnionServices</span></a> as endpoints. </li></ul><p>AFAIK Signal doesn't even have an <a href="https://infosec.space/tags/OnionService" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnionService</span></a> / <a href="https://en.wikipedia.org/wiki/.onion" rel="nofollow noopener" target="_blank"><code>.onion</code></a> for their Website, much less any <a href="https://infosec.space/tags/API" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>API</span></a> enpoints to use it with!</p><ul><li>Them relying on <a href="https://infosec.space/tags/ClownFlare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ClownFlare</span></a> is just something that makes them even <em>more <a href="https://infosec.space/tags/sus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sus</span></a></em> as there is <em><a href="https://en.wikipedia.org/wiki/Cloudflare#Controversies" rel="nofollow noopener" target="_blank">no legitimate reason</a></em> to use a <a href="https://infosec.space/tags/RogueISP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RogueISP</span></a> like that.</li></ul> <p>You're free to also provide evidence and supporting data to your arguments, rather then <em>neighsaying</em> against <em>proven to be more secure and reliable [by virtue of decentralization]</em> options like XMPP+OMEMO and/or <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME. </p><ul><li>What gets my blood boiling is the constant <a href="https://infosec.space/tags/disinfo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disinfo</span></a> by <a href="https://mstdn.social/@rysiek/113868777937162686" rel="nofollow noopener" target="_blank">Signal</a> <a href="https://mstdn.social/@rysiek/113869169340313254" rel="nofollow noopener" target="_blank">Fanboys</a> like <span class="h-card" translate="no"><a href="https://mstdn.social/@rysiek" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>rysiek</span></a></span> who sell it like <a href="https://infosec.space/tags/DigitalSnakeoil" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DigitalSnakeoil</span></a> akin to <a href="https://infosec.space/tags/AntivirusSoftware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AntivirusSoftware</span></a>, because it's at best <em>"<a href="https://infosec.space/tags/TechPopulism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechPopulism</span></a>"</em> and at worst <a href="https://infosec.space/@agturcz@circumstances.run/113868748895262202" rel="nofollow noopener" target="_blank">will mislead "TechIlliterates"</a> with a <a href="https://infosec.space/@kkarhan/113868987217053362" rel="nofollow noopener" target="_blank">false sense of security</a>, which in turn puts more users at risk.</li></ul><p>The <em>proper fix</em> is to actually <em>assess the situation</em> and acknowledge the <em>risks and limitations</em> as well as the very nature of communications, which means <em>upgrading later</em> is exponentially more painful, thus getting people <em>properly setup once</em> is way easier.</p><ul><li>Just because <em>WE</em> [ or rather <span class="h-card" translate="no"><a href="https://mstdn.social/@rysiek" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>rysiek</span></a></span> in this case ] rather <em>privilegued enough</em> to not be <em>hatecrimed in their current location</em> doesn't mean this is the case for everyone. And having places like Signal rely on a <em>"<a href="https://infosec.space/tags/CDN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CDN</span></a>"</em> is just another <em>red flag</em> to me because questions like <a href="https://circumstances.run/@agturcz/113866980398547492" rel="nofollow noopener" target="_blank">this one</a> just don't arise with <a href="http://monocles.chat" rel="nofollow noopener" target="_blank">monocles.chat</a> as people can just exercise proper <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> and just use Tor!</li></ul><p>Speaking of <a href="https://infosec.space/tags/monocles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocles</span></a>: That business is at least <a href="https://infosec.space/tags/sustainable" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sustainable</span></a> because it's funded by users <a href="https://store.monocles.eu/produkt/monocles-starter-account/" rel="nofollow noopener" target="_blank">(€2 p.m.)</a> which they can <a href="https://monocles.eu/more/#payment-section" rel="nofollow noopener" target="_blank">pay anonymously</a></p>
Replied in thread

@rysiek @agturcz that's not how you fix #TechIlliteracy, espechally since things changed for the better.

@monocles / #monoclesChat & @gajim / #gajim are quite easy, whereas @signalapp / #Signal demands #PII in the form of a #Phone number which is more often than not not legally obtainable without "#KYC" aka. "forced #SelfDoxxing" all whilst being an extremely #centralized, #SingleVendor & #SingleProvider solution that falls under #CloudAct ant thus cannot adhere to #GDPR & #BDSG!

Otherwise we'd only perpetuate the #Enshittification-#Lifecycle as has happened with #AIM, #ICQ, #BBM and so many more...

  • Mark my words, cuz I've been proven correct up to this point.

If #Signal and @Mer__edith actually cared, they would've setup their system truly decentralized as an #OnionService over @torproject / #Tor!

Mastodon 🐘Michał "rysiek" Woźniak · 🇺🇦 (@rysiek@mstdn.social)@kkarhan@infosec.space I ran and hosted a bunch of XMPP servers a while back. It was a pain to use, and it was easy for users to make mistakes and accidentally send messages in the clear. You are making people les safe. Last time: please stop doing this in my mentions and replies. @agturcz@circumstances.run @torproject@mastodon.social
#THXBYE#EOD#ITsec

[#TLDR: JUST TELL ME IF YOUR TABLET CAN DO #CALLS!]

#DearVendors of #Android-#Tablets:

Off all the #Functions you can put into a #Specifications Sheet of your Devices there's one you should ALWAYS answer clearly on your #Website:

DOES YOUR TABLET [with #4G / #5G / …) SUPPORT MAKE PHONE CALLS?

Like: IS IT TOO MUCH TO ASK TO HAVE THAT INFO IN THE SPECSHEETS?

You're obviously able to list all the #Codecs natively supported and the user-available storage as well as supported Frequency Bands, WWAN modes, WiFi channel width and the Display Glass vs. Panel dimensions including DPI of the latter and whether or not it has a hall effect sensor to detect your overpriced 1st party tablet covers!

Now some folks may ask: "WHY does this matter?" or outright dismiss this as a problem.

Listen:
Not everyone is able or willing to carry two devices when 1 SHOULD BE ENOUGH and also some places (i.e. #Turkey) have #ImportRestrictions re: #MobileDevices, so having more than 1 #IMEI is already a "NOPE!" by the authorities.

  • Also this isn't something one can "fix" post-purchase like installing #VLC to decode some obscure file format in Software: Either the #Baseband and #ROM support #PhoneCalls or they don't!

So why do NONE of the #Tablet manufacturers allow to #search or #filter for that???

NO, instead one has to download an obscenely huge #PDF just to then read on page 34 that for any "#telephony" function you NEED YET ANOTHER DEVICE FROM THE SAME MANUFACTURER AND HAVE TO SIGNUP WITH AN ACCOUNT and even that level of #abuse WON'T GUARANTEE THAT IT WORKS...

  • I mean, come on, this ain't some obscure functionality like #OMAPI to do some "evil sourcery" like managing an #eSIM that is in a #SIM-Card form factor!

Pretty shure A LOT of other folks have the same question and ain't willing to get yet another device & #SIM just to recieve the occasional call because #TechIlliterates can't be assed to send an #eMail or learn #XMPP+#OMEMO to message one...

  • Obviously they same manufacturers are able and willing to specify f-stops of the built-in cameras and list EVERY SINGLE #WEARABLE they made and certify as 'compatible' with, as if anyone is gonna take their non-#waterproof #Tablet for a marathon or god forbid triathlon...
Replied in thread

@Natanox @djvdq I do agree in that regard as in that a lot of #FLOSS doesn't do good #UI & #UX but I've yet to see an issue that wasn't already covered well-enough (even for #GnuPG / #GPG there's #Kleopatra as a nice #GUI!) to the point that even on #Windows or #macOS you'd have to use a #CLI tool for that...

In fact, they don't give a s**t about tje underlying OS. Most don't even care if they use #Firefox or #Chrome and #Google or #DuckDuckGo.

  • All they want is get shit done! And these.folks are eadily helped with a hands-on on a good #Linux dostro and maybe preinstalling some #RemoteSupport tool like #Dayon where one can help them if there ever was a need to do anything...
Replied in thread

@hollowone @vvelox @SecurityWriter

IDK what planet you live at, but I'd trust @libreoffice more than #MicrosoftOffice.

As a #Sysadmin, I'm used to acting as "#BenevolentDictator" cuz otherwise #TechIlliterates would fuck up (literally) everything!

  • Sounds harsh but I'd rather not work in #IT than committing professional malpractice by using #Windows & #Office365 as that combo cannot under any circumstances comply with #GDPR & #BDSG and just because too many folks ignore that [just like they did when GDPR rolled out) doesn't mean this #InconvenientTruth won't go away...

I'd rather invest time and effort to not be shackled to a #GAFAM & #PRISM collaborator than just doing what everyone else does.

Replied in thread

@xoron I don't want to discourage you at all - in fact I think your goal is not just noble but also worth aspiring to.

  • My recommendation is always to scout out existing solutions, protocols and standards and see if those can be salvaged / used and if not, reason why. #PGP/MIME may seem crusty but a good UI can make it easy. Same.goes for #OMEMO & #OTR...

But whatever you do, please "DO NOT DIY ENCRYPTION!"

  • Instead delegate it to drop-in libraries (i.e. crypto++ for C++) that are well, maintained and getting audited.

Prioritize features early on and make a decision what you want and if/how these can be accomplished. If necessary, have different modes / functions one has to context-switch (i.e. videocalling can't work in an airgapped network unless your callers are in the same (W)LAN).

  • If possible choose to stay platform-independent in terms of tech, so like #WebCall, #JitsiMeet, etc. you can simply package that up with nw.js... (Except if you need like a minimalist, (n)curses-style TUI tool like #enc)

User-test early on. Espechally with "#TechIlliterates", if you can.

  • Focus on a #MVP (minimum viable product) early on.

Write #documentation early on since that'll remove headaches. And I don't just mean #CommentYourCode but go deep and explain in detail why you chose something. This will help not just you.

Make yourself a list what you like and dislike from those.

Don't be afraid if your #App can't tick all the boxes at first release. Rather feel free to slowly ibtegrate them.

Needless to say I do sincerely wish you good luck and only the best in terms of success.

nwjs.ioNW.jsnwjs

@estelle well,
@signalapp is a #proprietary, #SingleProvider, #SingleVendor, solution that collects #PII in the form of #PhoneNumbers and is not only extremely #centralized but subject to #CloudAct.

The only #secure comms are those with real #E2EE and #SelfCustody of all the keys.

Everything else is just baiting #TechIlliterates to a #VC #MoneyBurningPit that is is #Signal.

Twitterthaddeus e. grugq on Twitter“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo https://t.co/Q2aOQJkG4g”