resist1984 @resist1984@social.privacytools.io

@bagder The embedded video renders as "Please click here to watch this video on YouTube" thus completely defeating the purpose of embedded video. Then the #youtube page blocks it w/a Google re #CAPTCHA. So fuck that. So then I try https://invidio.us/watch?v=dKT3vlIw6bQ and get "the media could not be loaded..b/c the format is unsupported".

#netneutrality plz.

Drive this truck in front of the Google Streetview car plz.

@NatCor Actually the APK download is the version that harassed me about Google Play

@bash Looks like a good approach superficially. I'd love to get a #firejail or middlebox setup to do that filtering.

Note that the Eyebeam Center for the Future of Journalism who funded that study unwittingly has their own site in CloudFlare's #walledgarden of #privacy and #netneutrality abuse. WTF ppl.

Everyone who considers themselves aware of #Amazon's societal detriment should repeat this challenge:

https://gizmodo.com/i-tried-to-block-amazon-from-my-life-it-was-impossible-1830565336

Would be cool if we could game it - the person who empowers Amazon the least for a year wins a bag of reddit gold.. (oh shit, can't be that).. wins an anonymous #Signal account (oh shit, no).. okay, we give them a dirt hut in the middle of the Amazon forest with no internet service.

@jenn as someone like that author, I am regularly redefining a /need/ to be /not needed/. That's a critical component of taking on evil giants.

@jenn the stronger your constitution is and awareness of evil, the more of Amazon you can avoid. It may never be 100% for anyone, but it's less than moral to not try and give up outright

@jenn Good story. To what extent avoiding empowering Amazon is possible is largely determined by someone's constitution and moral conviction. Most consumers are total pushovers and will go the unethical route if it saves them 0.5% on a purchase of something they don't really need anyway

@jenn i should also mention there is a browser extension called "Cloud Firewall" that gives you switches to block google, amazon, facebook, MS, Apple, CloudFlare.. you just tick the things you want to block. you can always unblock but it's a convenient way to become aware of the problem sites. You might still opt to visit a problem site but perhaps refrain from referring others to those

@jenn Captial One bank's customer data was stored on AWS and an AWS contractor leaked their data. I don't even know how to detect when a bank uses AWS internally. The best we can do is at least avoid the cases that are noticeable (doing an nslookup on reddit shows AWS).

@jenn the fact that a huge portion of the world's services are in AWS is in itself cause for alarm - apart from the fact that Amazon is funding facial recognition to an extent that will ruin cities in the next ~8 or so years.

@jenn #Reddit also has a sneaky approach to censoring posts without informing the author. You are not told when a moderator removes a post. The purpose of the silent #censorship is to contributors blind to things working against them, in order to keep them around to feed ads to. So ppl think they are using reddit when it's more like they are being /used by/ reddit. A good app would detect censorship and tell you - not sure if that feature exists.

@jenn I'll warn that RTV needs to evolve more. It currently forces you into a GUI browser to login.

@jenn Reddit feeds Amazon b/c it runs on AWS. So using reddit at all feeds a #privacy adversary. It may be hard to ditch #reddit altogether, but a phone app seems like an addiction-feeding way to give too much attention to Reddit & power to Amazon. If you limit yourself to using reddit on the desktop, it can help cut back on it. For the desktop, there is Simple Reddit terminal Viewer ("RTV") which is #freesoftware.

@volt4ire Is that the full quote? I see no intent to apologize, nor do I see where RMS indicates what you claim (that he thinks it's an apology). He changed his view to a more refined and informed position, and this is simply a statement of that. I'm not even sure why someone would be expected to apolagize for evolving. We expect ppl to evolve to more informed positions.

@jenn The hassle a recipient goes through to retrieve your symmetrically encrypted msg may motivate them to get a protonmail account or consult you for better options. My strategy is to never stoop to a lower level of security than I'm comfortable with. It's their duty to step up their game. There are some ppl I simply never connect with because they will not work securely and I will not give up security.

@jenn As for #Facebook, the only thing better than deleting it is not signing up in the first place. There is nothing you can do to communicate to a Facebook-only user without compromising your own security and giving FB more power. If you can manage to get their email address, you can send them encrypted email by shared key. But then you have to work out a clever way to get the key to them. IIRC #protonmail and #tutanota have that capability. It's a hassle for the recipient, but rightly so

@jenn Signal is a bad idea in this situation. Those adverse to crypto won't use it, and because it subjects everyone to mulitiple varieties of mass surveillance (needlessly and foolishly) it's also unsuitable for advanced users. See https://github.com/privacytoolsIO/privacytools.io/issues/779 for the long list of issues.

@tao Actually after another read, it seems the exploit can be used to intercept SMS msgs. Attacker can access the target device's local data and also send an SMS. So it could apparently intercept a 2FA msg, for example.