Freddy @freddyym@social.privacytools.io

@freddyym
"This type of “warrant-proof” encryption adds little to the security of the communications of the ordinary user, but it is a serious benefit for those who use the internet for illicit purposes."

So wrong, encryption has just as much benefit if not more for ordinary users.

Nitter is working again!

Years ago now I worked a gig that was doing some crap with ISP-grade software that was not great for privacy/safety.

When I realized what was going on I started making noise. I began filing bug reports against privacy/safety/freedom breaches I identified, they got ignored. I finally went up my management chain going "We can't sell this, it's abusive!"

I dunno if it was my cage-rattling or someone else's that got to the CEO, but he eventually announced to the company something to the tune of "We're not alone in this emerging market. If we don't do this, others will anyway so really we're not doing anything that won't happen anyway"

And that stuck with me, because at the time I didn't have a coherent argument against it. Now? My stance on it is pretty solid-- we need far more ethics training than we get now, and we need a union or unions to back up refusal to do this crap on moral and ethical grounds.

So many people in tech feel helpless because they can just ultimately be replaced. It may HURT to replace some people, but the entire industry is kind of a meat grinder and everyone is just a cog in the machine. If you refuse to turn, the org cuts you and spends 3 days to 3 months training a fresh grad to replace you, depending on role.

People need the training to identify the misuses of what they build, the conviction to refuse to build abusive software, and the backing from their peers when they put their foot down. We don't have any of that right now.

@nekojanai

Only 11% of developers don't care about personal data collection

https://www.jetbrains.com/lp/devecosystem-2020/lifestyle/

So it's the DuckDuckGo team that's helping Apple block Google Analytics from cross-site tracking. Nice work! 👏

They announced it on Twitter: https://twitter.com/DuckDuckGo/status/1275473734397317120

New Add-on: Post Signatures https://video.writeas.org/videos/watch/3a069fcf-57d6-4d4d-aaba-d9de3b4b64de

Soon another two sad milestones will be reached in this pandemic. 10 million diagnosed infections and 500 thousand deaths. #WearAMask😷 #WearAMask😷 #WearAMask😷 #WearAMask😷

Weird. Ontario Health's Covid19 test results website operates on a non-standard port (4443).

Classic example of "security through obscurity"?

Horrible #UX given the URL is on printed instructions handed out by the health unit post-testing.

https://covid19results.ehealthontario.ca:4443/agree

Is there a good term which distinguishes a general-purpose OS (Unix, Windows, Plan 9, etc) from operating systems like Android, iOS, Windows RT, etc? The term "operating system" is being overloaded to ship systems which are really more of a graphical shell than a classical operating system. The moves to lock down operating systems, ostensibly made for "security" reasons but conveniently centralizing power and authority with the vendor at the same time, are being marketed to consumers as the same kind of product as a conventional operating system while in fact being profoundly different.

Can anyone recommend an online store, preferably accepting crypto and based in the #UK, which sells pentesting gear (#wifi adapters suitable for monitor mode etc.)? All roads in my research seem to lead back to the terrible two I want to avoid: eBay and Amazon.

I know of #Maltronics and #Hak5, but neither sell wifi adapters (which is specifically what I'm after).

#security #networking #hacking #whitehat #linux #kali