resist1984 @resist1984@social.privacytools.io
Joined Mar 2019
resist1984
boosted
#GMail is harmful to e-mail ecosystem; its antispam blocking policy matches too many valid messages as spam.
It blocked LastPass email leak warning email, because it contained "a link" to a leaked site.
It blocked an e-mail from goverment agency addressed directly to me.
It discriminates all non-gmail servers, and it's pretty much impossible to own a private SMTP server these days, because GMail will classify everything as spam.
It's not how e-mail should work.
Consider dropping GMail.
resist1984
boosted
#Codeberg.org & #gitea made the increadibly stupid decision to break on some browsers because doing so improves server performance in those cases where they've broken shit. Of course if you break a web browser you're going to have a lighter load. You can also lighten the load by taking the server offline. https://codeberg.org/Codeberg/Community/issues/444
@protonmail #hCAPTCHA isn't good either because it discriminates against people with disabilities & impairments. hCAPTCHA is also partnered with #Cloudflare, the web's biggest privacy abuser. #Protonmail users don't want to support privacy abusers. hCAPTCHA also needlessly imposes a GUI & non-free #javascript on users. Plz find a different option than hCAPTCHA.
@nergal That robot found 24 US banks that were illegally sharing consumer data.
resist1984
boosted
@nergal People need to stop the bot hate. Comp Sci people at #CarnegieMellon created a robot that harvests #banking websites for #privacy policies, and do an automated comparison to find banks that are relatively more privacy respecting: https://www.vice.com/en/article/9a3nbp/carnegie-melons-bank-privacy-tool-exposes-too-often-opaque-sharing-policies
@nergal People need to stop the bot hate. Comp Sci people at #CarnegieMellon created a robot that harvests #banking websites for #privacy policies, and do an automated comparison to find banks that are relatively more privacy respecting: https://www.vice.com/en/article/9a3nbp/carnegie-melons-bank-privacy-tool-exposes-too-often-opaque-sharing-policies
Apparently #EPIC is unaware of its own articles. They plug #Zoom-bashing articles here: https://www.epic.org/privacy/consumer/
@nergal surprises are a bad thing, but what's going on here is much worse than surprises. It's also wrong to say that bots are a "problem". Just like humans, bots can be either harmful or beneficial.
@humanetech @codeberg actually moving to 1.14 was a bad move: https://codeberg.org/Codeberg/Community/issues/444 There are better forges: https://git.sdf.org/humanacollaborator/humanacollabora/src/branch/master/forge_comparison.md
@dreiwert @Bubu #Gitlab.com indeed has serious issues (https://git.sdf.org/humanacollaborator/humanacollabora/src/branch/master/gitlab-dot-com.md) And there are better choices than #Codeberg: https://git.sdf.org/humanacollaborator/humanacollabora/src/branch/master/forge_comparison.md
@Phate6660 There are plenty of forges that are better than both #Github & #Codeberg: https://git.sdf.org/humanacollaborator/humanacollabora/src/branch/master/forge_comparison.md /cc @fossraven
@Salastil For threat models that include targeted surveillance, Protonmail is generally a bad choice because they can selectively push malicious javascript. But there is a control for that: anonymously download #Electronmail. That ensures that you're running the same static js that everyone else is.
@Salastil As for storing email at #Protonmail, that's a non-issue because it's encrypted (e2ee & at rest). If it's unencrypted mail that triggers your comment, that's a valid concern. I have no idea to what extent people use Protonmail for plaintext email. PM-to-PM & PM-to-external-PGP only exposes metadata to mass surveillance programs to the extent that the Swiss jurisdiction has them.
@Salastil https://infosec.exchange/@bojkotiMalbona/104637098084869887 see also this article for a comprehensive outline on the ethical issues with #Github: https://git.sdf.org/humanacollaborator/humanacollabora/src/branch/master/github.md
@Salastil The problems w/MS #Github are direct privacy offenses to a small extent (Tor users get bad treatment) & indirect privacy offenses to a large extent (MS profits from privacy abuse so any time you use any of their services you help a privacy abuser's bottom line). Github is also detrimental to quality of #freesoftware by discouraging bug reports:
@jpaul Losing #Protonmail is a big loss for expert-to-novice comms b/c an expert can get a novice's PM pubkey & reach them securely w/out having a PM acct themselves. Apart from PM only Hushmail can do that AFAIK & HM is no longer gratis.
@jpaul it depends on the scenario. The best move for expert users doesn't change, which is to use an ESP like danwin or onionmail w/a PGP-capable MUA like mutt or Thunderbird. For novice users it's non-trivial, but generally #tutanota, #hushmail, or #countermail.
@glitcher32 #Signal has been called out for it: https://github.com/privacytoolsIO/privacytools.io/issues/779
#Protonmail has started using #Google #reCAPTCHA: https://github.com/ProtonMail/WebClient/issues/242 And yes, it's also disturbing that they use #Microsoft #Github.
@altlink @vesperto #Cloudflare links are socially irresponsible & detrimental, so a good admins seek to control them. The altlink bot is overly non-intrusive IMO. If I were an admin, I would do more to get CF links out of public view.
Joined Mar 2019
