Show more
kravietz 🦇  

@aral I've dealt with X.509 a lot in the past when working in electronic signature industry (also XAdES, CMS etc) and it's a nightmare.

A classic 90's technical committee invention - any *potential* usage reflected in standard, most of which never materialised, but muddied it and overcomplicated to an unbelievable extent.

A good example how crap solutions become so widespread that better ones can't be introduced. SPKI was a very nice replacement, but largely ignored...

0
kravietz 🦇 boosted
Strypey  

If you're one of those people, please register and turn up to vote, if only so you can vote "yes" in the #cannabis referendum. If you know one of these people, please make sure they know how to register and vote and encourage them to do so.
#MakeItLegal

Show thread
0
kravietz 🦇  

@strypey

So maybe it's my past poor experience with EU programs speaking here, but I'm just concerned that if EU decides to create "our own Linux" we'll again end up with an project that is vaguely defined in terms of project objectives (again: Quaero) and suffers from all typical diseases from feature creep to politics.

1
kravietz 🦇  

@strypey

At the same time EU needs to be very careful not to end up with something like "we build our own hardware just to build out own hardware", like Russia did with their Elbrus family of processors that are ~10 years behind the state of the art. They at least found their niche in the military sector.

Or for that matter, like EU did in 2000's when it spent millions on Quaero search engine whose main purpose was to be anti-Google en.wikipedia.org/wiki/Quaero

1
kravietz 🦇  

@strypey

Or preventing vendor lock-in and other anti-competitive technologies (Google Play Services, proposed ban on custom firmware in routers and mobiles), supporting open-hardware (eg. CoreBoot). Lots can be done to improve this situation.

1
kravietz 🦇  

@strypey

Let's say they choose Ubuntu or whatever else - the distro has its important place, but it not best for all purposes.

A huge public sector project forking it will result in plenty of lobbying to implement this, then that and feature creep, until it's not really usable for anything.

The minister is also missing the point: we don't depend on anyone in terms of software, we're pretty good in terms of software. It's the hardware that we have huge dependency on.

1+
kravietz 🦇  

Been playing with stablecoin deposit apps oasis.app and app.aave.com.

Ease of use, speed and low transactional costs make them a viable replacement for $$$ especially cross-border.

Perfectly happy to get paid in DAI for infosec consulting now.

0
kravietz 🦇  

Just watched "Dark Waters" (2019) about toxic waste dumps.

One important fact: in many countries in the world no company would share incriminating documents voluntarily, based on a court order.

Strong and independent judiciary is fundamental to democracy.

0
kravietz 🦇  

@strypey Or just support the existing ones. If the "establish" or "choose" on it will just get something that is averaged for everyone.

1
kravietz 🦇 boosted
Strypey  

'Finnish Minister: EU Needs to Establish Own OS, Web Browser':
nytimes.com/aponline/2020/02/2

... or just use choose a distro of GNU/Linux and Firefox.

1+
kravietz 🦇 boosted
c1t1z3n0n3  

I have built a Searx instance with Spotify integration. So if there are people interested in using it to listen to songs let me know. If multiple people use it they can't track us. This is more for people who do not care about recommendations but more just want to be able to search and play songs they like.

0
kravietz 🦇  

for - Project Sandcastle projectsandcastle.org/

I'm sure @Wetrix will love it 😉

0
kravietz 🦇  

Hacker Test History

github.com/hwayne/hacker-test-

I'm a bit between epochs apparently - I can't respond "I personally did" to most, but I do understand what they mean.

0
kravietz 🦇 boosted
Strypey  

"When you take #VentureCapital, it is not a matter of if you’re going to sell your users, you already have. It’s called an exit plan. And no investor will give you venture capital without one. In the myopic and upside-down world of venture capital, exits precede the building of the actual thing itself. It would be a comedy if the repercussions of this toxic system were not so tragic."
- #AralBalkan
ar.al/notes/ello-goodbye/

1+
kravietz 🦇 boosted
Strypey  

Another great essay debunking the 'using #Signal from the Goggle Prey Store or the iThing store is the best private chat solution available' trope:
it-kollektiv.com/wrong-signal-

0
kravietz 🦇  

US is fun to watch. From a distance vice.com/en_us/article/qjde95/

0
kravietz 🦇  

About a dozen of mine were affected. Renewal takes ~3 minutes. Beauty of the ACME protocol 👍 community.letsencrypt.org/t/re

0
kravietz 🦇  

github.com/gitronald/suggests

Show thread
0
kravietz 🦇  

"If you're struggling to differentiate between which search results are paid for vs which are 'organic' user-centric results, then that's quite deliberate.

Here's how has gradually made it harder for people to differentiate between the two." searchengineland.com/search-ad

1
kravietz 🦇  

Yet another reason to always use PyYAML SafeLoader class for - remote code execution in FullLoader class github.com/yaml/pyyaml/pull/38

0
Show more

kravietz 🦇's choices:

nuclear

55

privacy

50

security

43

russia

15

ipfs

11
Mastodon 🔐 privacytools.io

Fast, secure and up-to-date instance. PrivacyTools provides knowledge and tools to protect your privacy against global mass surveillance.

Website: privacytools.io
Matrix Chat: chat.privacytools.io
Support us on OpenCollective, many contributions are tax deductible!

Resources

Developers

What is Mastodon?

social.privacytools.io

More…