@harmonycorrupted seriously, this #cyberfacist bs needs to be outlawed!
Because physical SIMs, like any "cryptographic chipcard" (i.e. @nitrokey ) did all that fancy public/private crypto on silicon and unless that was compromizeable (which AFAICT always necessistated physical access to the #SIM, espechally in pre-#OMAPI devices) the SIM wasn't 'cloneable' and the weakest link always had been the #MNO /.#MVNO issueing (may it be through #SocialHacking employees into #SimSwapping or LEAs showng up with a warrant and demanding "#LawfulInterception"):
Add to that the regression in flexibility:
Unlike a #SimCard which was designed as a vendor-independent, #MultiVendor, #MultiProvider, device agnostic unit to facilitate the the #authentification and #encryption in #GSM (and successor standards), #eSIMs act to restrict #DeviceFreedom and #ConsumerChoice, which with shit like #KYC per #IMEI (i.e. #Turkey demands it after 90 days of roaming per year) und #lMEI-based #Allowlisting (see #Australia's shitty #VoLTE + #2G & #3G shutdown!) are just acts to clamp down on #privacy and #security.
"[…] [Technologies] must always be evaluated for their ability to oppress. […]
And now you know why I consider a #smartphone with eSIM instead of two SIM slots not as a real #DualSIM device because it restricts my ability to freely move devices.
Thus #Impersonation attacks in GSM-based networks are easier than ever before which in the age of more skilled than ever #Cybercriminals and #Cyberterrorists (i.e. #NSA & #Roskomnadnozr) puts espechally the average #TechIlliterate User at risk.
And then think about those who don't have privilegued access to protection by their government, but rather "privilegued access" to prosecution by the state because their very existance is criminalized...
The only advantage eSIMs broight in contrast is 'logistical' convenience because it's mostly a #QRcode and that's just a way to avoid typos on a cryptic #LocalProfileAgent link.
@stevefoerster @CppGuy whilst the #USA isn't the only country known where the immigration officer has the ultimate say about whether one's allowed to enter or not (Japan has similar laws), it os the only one known to flex it so often that it's a travel advisory.
I'd rather recommend #Germany for international students cuz it's way cheaper and has way higher quality of life cuz stuff like #Healthcare isn't an absurd clusterfuck!
Let it go, already. No one uses MobileCoin. You can’t even find an exchange to buy it.
Then why does @signalapp still have that shit in it? @Mer__edith could've pulled that #Shitcoin yet refuses to do do!
The Cloud Act is a non-issue. Signal doesn’t have data on users, so they can’t be forced to disclose it.
That's literally wrong!
It’s been 30 years, and no one uses xmpp. Let it go.
Wrong again. Otherwise there wouldn't be thriving ecosystems and Apps to this day. It's just that corporate shills refuse to acknowledge that Signal - like all centralized, proprietary, #SingleVendor and/or #SingleProvider kessengers before and after - will inevitably die as their business model is not sustainable. Sake with #ICQ really. The only exceptions are those that abolish #privacy for #profit, integrate actually working payments or sellout to a #cyberfacist #government (all those apply to #WeChat!)
It’s shocking that people who claim to care about security and privacy push niche apps with terrible UX and no PFS like Delta or XMPP instead of the only private messenger with any real market share, Signal.
You know what's shocking to me: People who are unable or rather unwilling.to acknowledge that Signal is garbage and it's requirement for a #PhoneNumber kills any #privacy benefits it may have on paper by virtue of being at best pseudonymous (assuming the userd don't live in a juristiction that demands "#KYC" for even prepaid #SIM cards (ime. #Germany) or god forbid even #IMEI|s (i.e. #Turkey has a literal allowlist that'll kick any device off it's MNOs after 90 days within 365 days.
I'd rather help people onboard #XMPP+#OMEMO like @monocles and/or @gajim or #PGP/MIME like @delta & @thunderbird (incl. setting them up with #Orbot / #TorBrowserBundle / @tails_live so their traffic gets through @torproject and doesn't provide any useable IP addresses.
As for #Sustainability, providers like https://monocles.eu finance themselves by subscriptions (starting at €2 p.m.) which people can pay fully anonymous using #CashByMail and #Monero on top of common payment methods (i.e. SEPA wire transfer)...
@openrightsgroup you cannot fix what's inherently broken!
#OSA, like #KOSA, #FOSTA & #SESTA before, is #cyberfacist bs and everyone in favour of it should be voted out of office!
@CursedSilicon wow, respect for it.
@puppygirlhornypost2 the sad part is that some #Cyberfacist actually want to #ban #Linux and other #FLOSS #OSed that don't integrate "#YouthProtection" #censorship/#filters per default!
@zdl @evacide that any the fact that @signalapp is incorportated in the #USA, making them susceptible to #GDPR & #BDSG-incompatible #cyberfacist bs like #CloudAct.
Remember: #KYC IS THE ILLICIT ACTIVITY when it comes to #Communication!
Compare that to @monocles / #monoclesChat which don't demand any PII or KYC and allow people to pay for their services with #Monero and #CashByMail besides #SEPA #WireTransfer, #Stripe & #PayPal whilst supporting both decentralization (#XMPP is not a #SingleVendor / #SingleProvider solution!), implementing real #SelfCustody (#OMEMO, #OTR & #PGP is supported out of the box) for all the keys, and proper #Anonymitiy (using @torproject / #Tor & @guardianproject #Orbot for #privacy), so in case they ever get a duely sumitted warrant by a court they'd have to comply with, they'll most likely have no data whatsoever on clients that could allow identification.
Also having no PII is a matter of reducing #liability in the sense of #DataProtection: All data requested and by #monocles is the bare minimum mandated for #accounting (i.e. only linking a payment like a #TxID / Transaction-ID to an account and then adding up validity/activation period).
Also the #Vsauce music is very #remixable form a #music POV, tho I won't because I despise having to deal with #MusicLicensing in a juristiction that doesn't have any "#FairUse" provision whatsoever and has #ValueRemoving #Rentseekers like #GEMA lobbying for #Cyberfacist bs.
Remember:
"#LafulInterception" IS the #IllicitActivity!
"#KYC" IS the #IllicitAction!
#Logging IS an act of #Espionage!
#DoNotTrustAnyone - not even me!
Only Soluti ons that allow #SelfCustody of all the Keys & #SelfHosting are truly #E2EE!
Only truly #decentralized, #MultiVendor & #MultiProvider Solutions with true #EndToEndEncryption are secure!
#CloudAct IS the assault on your freedom too!
Use @torproject / #Tor for EVERYTHING!
The only way we can prevent a #Cyberfacist #dystopia is to make it impossible!
@topher nit used it yet but #ESET AFAICT are one of tue few vendors that ain't falling under some #cyberfacist bs. from either the #USA, "#PRC" or #Russia...
I should give it a closer look.
@GrapheneOS but they won't because integrating #Govware #Backdoors that are exploitable is what keeps them in business and allows for #Export & #Import in markets like #Russia, #SaudiArabia and others with #Cyberfacist rules.
The only way #GrapheneOS is not going to get #shafted (i.e. licensed #MacintoshClones like #PowerComputing did when #SteveJobs took over Apple) is by basically not being dependent on Google's "benevolence" and instead collaborate with other vendors.
-Maybe @frameworkcomputer would be interested in doing a secure #Abmndroid-based #Smartphone that is actually repairable?
IDK but this will require a longterm strategic decision, as "bitchin' about it" won't change anything...
@glynmoody still, there needs to be #accountability and #consequences for this #cyberfacist assault!
https://infosec.space/@kkarhan/112648509175439643
@joinjabber @lo__ @kc3yqi @signalapp Y'know that #Signal collects way more threatening stuff than just #metadata?
Like #CloudAct...
Also not only can I not #SelfHost or even *#AirGap" any Signal Server, I have to blindly rely on their claims re: their backed infrastructure.
Whereas with #XMPP+#OMEMO I can just decide to trust noone and self-host everything in my basement...
@glynmoody @thomasjorgensen @quincy basically the #cyberfacist consept of "#LawfulInterception" foced down the throat of #SoftwareVendors just like the "P.R." #China does...
@ilumium @edri doesn't mean @EU_Commission isn't breaking the laws nor that it's anti-democratic and evil.
#NotLegalAdvice OFC.
Also can we please stop that #cyberfacist #figleaf|ing?
@MOGiS already wiped the floor with #Zensursula almost two decades ago, and she still owes everyone who can change #DNS settings an apology for claiming everyone more #TechLiterate than her is a "hardened pedo-criminal"...
I want my #HumanRights and #CivilRights back - all of them since 1949 - WITH INTEREST!
@YourAnonRiots still #sus re: @signalapp as it's a #centralized, #SingleVendor & #SingleProvider solution not just subject to #CloudAct but also able and willing to comply with #Cyberfacist #Embargos!
@jsrailton this alone would be a reason not to do business in the #UK to begin with.
Alongside all the other #cyberfacist shit...
@madargon Also everyone who's supporting or complying with #ITAR / #WassenaarArrangement and other #cyberfacist "Export Controls on Cryptography" is doing the exact same shit!
Because in the 21st century, effective #cryptography doesn't require some bulky appliance but is #code and the only ones being penalized are #civilians whereas #NorthKorea and #Iran OFC will have unrestricted access to technology.
@vantablack can we extend it to Anti-#GAFAM & #Anti-#NSA pact?
Because #AllGAFAMsAreEvil and they all committed to #PRISM as a #Cyberfacist implementation of #SurveillanceCapitalism...
