Monthly review, May 2020:

– news: attacks on hardware, Permissions Policy
– tip: auto-mounting a secondary LUKS-protected disk
– internal: 2020 spring cleaning

#monthlyreview #review #infosechandbook #infosec #security #SideChannelAttacks #PermissionsPolicy #LUKS #encryption

"Normal web browsing is easy with Tor... once you're in, you can use Tor just as you would any other browser."

Pretty bold move 😆


Read ‘Why you don’t need a VPN’ - the first post in our blog series ‘VPN Worst Practices’. It covers misleading marketing messages and common misconceptions on what VPNs are useful for.


If your new to #mastodon and you’re interested in #technology, #opensource, or #privacy topics I’ve made a list of accounts to drop a follow only OFFICIAL ones not bots

Be sure to #boost

Tor Project - @torproject
Matrix Project - @matrix
Proton Services - @protonmail @protonvpn @ProtonCalendar
Swiso - @switchingsoftware
PrivacyTools - @privacytools
Mastodon - @Mastodon
Pixelfed - @pixelfed
Pixeldroid - @PixelDroid

So far ive verified 12 people on matrix today. It feels like im starting a new collection, lol.

@matrix ive been verifying multiple people today, and while its a bit on the slow side sometimes, it works really solid and straight forward, great work, you have my compliments :).

Looking for a good social proof solution following Keybase's acquisition this morning? Check out @wiktor's decentralized solution built on PGP! I'm setting my key up now 😄

@matrix any idea when the riotX update with cross signing will land on fdroid?

Great security news: We are currently working on enabling MTA-STS for custom domains in Tutanota. Thanks to #LetsEncrypt, you will only have to add two DNS entries - everything else will be handled by us. 😀🎉


Riot Web/Desktop 1.6 + RiotX Android 0.19 + Riot iOS 0.11 IS HERE!!! E2E Encryption by default, Cross-signing & QR-codes for Device Verification, All New E2EE UI/UX + SO MUCH MORE making this our biggest release EVER! E2E will never be the same again 🎉🚀🍾


🔐 💻 Privacy tools "...enable journalists to pursue and tell the truth, without fear or favor. And not just in the U.S., but globally. We should empower and enable this work, not sabotage it by removing crucial capabilities, even in the name of child protection."

The 9.5a11 alpha version of @torproject's browser ships with support for announcing your Onion site from your regular website via the "Onion-Location" HTTP header. For Nginx users: `add_header Onion-Location x.onion$request_uri;` and you're done.

About the take two minutes of silence during to remember our people who fell during WW2. I hope my fellow dutch people will do so as well.

Oh this looks awesome 👀 new game coming out in a couple days called, “Tonight We Riot.”

“...a revolutionary crowd brawler set in a dystopia where wealthy capitalists control elections, media, and the lives of working people. Workers are faced with two choices - accept it or fight for something better... you play as a movement of people whose wellbeing determines the success of your revolution.


More info:


Just took a lovely walk with my dog. Sometimes, even privacy advocates need some time off.

@Tutanota Are there any plans to have your new encrypted calendar audited by a third party?

Show more
Mastodon 🔐

Fast, secure and up-to-date instance. PrivacyTools provides knowledge and tools to protect your privacy against global mass surveillance.

Matrix Chat:
Support us on OpenCollective, many contributions are tax deductible!