resist1984 @resist1984@social.privacytools.io

@t0k apparently the CF JS must be executed in order to reveal the URL

@t0k when viewing this: view-source:https://www.ran.org/bankingonclimatechaos2021/ searching for pdf only has 3 hits, and none of them are "Banking-on-Climate-Chaos-2021.pdf"

@t0k well it seems there is no viable option. Once I knew the full PDF URL, it's fine because the js doesn't block a direct download (i can load the PDF in a non-js browser). But apparently executing the js is mandatory if you only know the parent URL that contains the pdf link (https://www.ran.org/bankingonclimatechaos2021/)

The original URL would not give the PDF without running CF JS. Yet archive.org avoids CF JS. Is archive.org simply delivering copies of the CF JS as though it's first-party #javascript?

What are the consequences of executing #JavaScript from cdnjs.cloudflare.com? I don't trust CF in general & try not to connect to them, so then I went to this link instead of the original: https://web.archive.org/web/www.ran.org/wp-content/uploads/2021/03/Banking-on-Climate-Chaos-2021.pdf#page=7 That avoids #Cloudflare. But why did the PDF load?

"Surveillance quiets resistance and takes away our choices. It robs us of private space, eroding our dignity and the things that make us human. It's up to all of us to fight back." -Edward Snowden

@croqaz @hackernews We need AI machines that can do web design because clearly the humans working for newyorker.com suck at it. That article is unreadable in GUI browsers due to nags/paywalls, but quite readable in #lynx.

While #PeterThiel has the priviledge of borderless travel & acquired #NZ nationality, he gives $10M to each of the campaigns of white nationists in #AZ & #OH. IOW, he's using the wealth that gives him extraordinary freedom of movement to take the same freedom from others. https://americanindependent.com/peter-thiel-white-supremacists-donald-trump-arizona-senate-republican-candidate

@koherecoWatchdog @eryn I only use the onion address myself. Onion addresses are inherently tunneled so they're secure even if there is no SSL at all. Just accept the self signed cert. I wasn't aware of http://sercxi.io/. Does sercxi.eu.org redirect to that? sercxi.eu.org is clearnet only so I've not used it.

@deutrino #Walgreens is also a problem because it forces account creation and imposes #CAPTCHA. #Riteaid is also a problem because they block Tor outright, and if you go outside of Tor the server is persnickety about browser brand & version. BTW, #CVS should be avoided anyway, as CVS has ties to #Trump.

@Br0m3x There is now a way to post an issue from Mastodon without having an account: https://git.nogafam.es/deCloudflare/deCloudflare/src/branch/master/subfiles/anonymous_issue.md

@edsu The blocklist is merely objective data for people to use as they see fit. What I hope will happen is someone will cross-reference the wbm blocklist with Tor-blocking sites, and reduce search rankings of sites that block both.

@edsu Archive.org gives publishers control, most likely to avoid legal problems. So while it is up to the publisher, as users we have a right to judge that. Now that the #WaybackMachine has become indispensible (due to Tor-hostility), those who act against WBM act against Tor & thus against privacy. They are not our friends and we have a right to resist propagation of their website URLs.

@hund was it powered off before water could get inside? I think the common reaction is people turn their device on because they want to assess the damage, but it's not the spill that does damage, it's the power going through a wet circuit board. So you need the discipline to wait till it's bone-dry.

@hund man vs. environment

If someone does not have a mobile phone # or they have one but will not share it with strangers or orgs, they should be *praised* not excluded. #Facebook, #Signal, #Google, #Microsoft, some banks, (& possibly #Twitter) all exclude people without mobile phones. We have a moral duty to exclude those companies. We should support ppl w/out mobile phones by walking when a ph# is demanded.

@edsu it has moved to https://git.nogafam.es/deCloudflare/deCloudflare/src/branch/master/anti-tor_users/fqdn/antiarchive.txt I'm not clear on what legitimate reason you have in mind for blocking bots from harvesting. Can you give an example?