Recent searches
Search options
#comsec
ѦਹѤʞ Also the blatant dismissal of absolitely basic #OpSec & #ComSec is just flabberghasting.
- It's inherently wrong to put all eggs in one basket and #Signal being not shut down like #SkyECC & #EncroChat makes it just as sus as #ANØM / #OperationIronside / #OperatioTrøjanShield and #CryptoAG / #MINERVA / #RUBIKON.
Only #decentralized, #OpenSource & #OpenStandards can actuall survive long-term and remain #secure.
- Otherwise we'd all gaslight ourselves into ignoring the hard lessions we learned that bought us to the #Fediverse and why we ain't on #Shitter or #tumblr or #BrownSky or #NSAbook (any more)!
It's the same reasons we use #PGPG/MIME & #SSH and not #X400 & #X25!
- Unlike with @signalapp one doesn't has to trust the provider or app. #XMPP+#OMEMO works regardless if you use @monocles or @gajim or do #SelfHosting and only trust code you wrote yourself...
IOW: Think "How can you weaponize Signal?" and see what you csn do just holding key people in contempt...
- And I'm not even talkibg about #Govware - #Backdoors and #MassSurveillance alike #Room651A, but just duely submitted warrants that @Mer__edith will comply with...
The less #info a provider has, the less they can be forced to snitch upon customers.
- So even if you don't give a shit that #CloudAct makes this a "#CantUse & #WintUse" (out of US-centrist privilegue to not comply #GDPR & #BDSG) for many, it's still dishonest.
"#JustUseSgnal!" is a form of dangerous "#TechPopulism" aimed at bamboozling #TechIlliterates who don't know better, abusing information asymetry to pull rank instead of investing the time and effort to *explain "how" and "why" this is indeed a good or bad idea.
- There's a reason why @tails_live / @tails / #Tails doesn't include #Signal and why I'll say it again that XMPP+OMEMO over @torproject / #Tor is the gold standard in terms of #privacy and #security when it comes to #ComSec that isn't #airgapped aka. "Airgapped PGP".
The only ones that have a chance to beat that are @delta / #deltaChat but that's just #PGP/MIME #eMail in a nice UI...
- You may now laugh at me and think my "#TinfoilHat sits too tight" but I'm shure sooner or later I'll be evidenced as correct...
@cwebber I disagree.
#ActivityPub does allow for more privacy and granularity, unlike the fake shitshow that is #ATProto.
- OFC proper #InfoSec, #OpSec & #ComSec demands that people consider all comms not #E2EE with #SelfCustody to be compromized in realtime!
If you are a small ISP and you host anything vaguely similar to this, and it gets discovered, the FBI will drop by your home after midnight, and take you in a van blindfolded in the middle of the night.
But for Google Doxx... business as usual.
@anelki I do agree to some extent.
#PGP/MIME & #XMPP+#OMEMO keep the coversation contents secure, but merely encrypting messages is just 10% of #ComSec!
Like: If you use some garbage Android 8.1 device that never got security updates then you can use #Signal all day and that won't protect ya ass!
- Speaking of @signalapp, the same as with any #eMail provider or #Messenger applies:
none of them will refuse to comply with a duely submitted subopena, otherwise @Mer__edith would already be in prison.
- And Signal, like all #centralized, #SingleVendor & #SingleProvider #Messengers collects #PII [#PhoneNumber!] with no legitimate reason and is subject to #CloudAct, which is inherently incompatible with #GDPR & #BDSG...
@EugeneMcParland If I wasn't 60 years old and #Neurodivergent I would be there in a #Heartbeat 2 decades #usaf
#comsec #tactical #combat #communication #webappsecurity #socialengineering #osint #cook
#commitment I am going look up #UkraineJenny
@jensorensen
Which reminds me. I occasionally shop at #Ocado and have never had a problem with the process... except the other day I could no longer get the 'login' button to 'stay depressed'. After spotting some 'interesting' traffic I tried (temporarily) relaxing my firewall rules wrt certain g00gle domains and, et voila, all was 'normal'.
#WTF #privacy #surveillance #consumer #security #comsec #thirdpartyparasites
@ravirockks not only are companies refusing to hire folks, the entire chain from #ElementarySchool to #University refuses to teach proper #ITsec, #InfoSec, #OpSec & #ComSec and rather "grooms" people into being "stupid #consoomers"!
You use PGP/MIME because you want to look "Tech Literate".
I use PGP/MIME because I not only adhere to the highest potentially applicable data protection standards, but aim to exceed them by a long shot, as employers/clients expect me to do so.
- We are not the same!
RANT: Yet another reason why I'll never buy a new car in my life
I had a rental (#Peugeot2008) which is one of these garbage "#Crossover" / #SuperUselessVehicles that are PHAT outside but crammed af inside due to a needlessly W I D E center console and barely adjustable driver seat and steering wheel.
This car is basically impossible to reverse without staring at it's backup camera as it has a giant-ass deadzone behind it.
It's shitty front allows children to hide even easier than the rear and makes parking even more stressful
But what made my blood boil is the obnoxiousness with which it's shitty tablet decided to randomly (!), whilst driving >50km/h to just pop up a demand for #tracking bs, offering only "allow" and "later" instead of a "no thanks" / "don't ask me again" option.
Shit like this can literally kill people as they fiddle around trying to dismiss it.
I had it pop up 2x (!) within 5 mins (!!) on the same (!!!) trip [not plulling ignition key!] And at tue 2nd time decided to pull over to document this shit.
This kind of #Enshittification in the form of a #Car comitting an "Exhaustion Attack" against it's own driver needs to be outlawed, not mandated!
Cc: @bmdv @EUCommission / @EU_Commission
![Peugeot 2008 Infotainment system randomly demanding location data and internet access for a voice assistant randombly on the road.
The only selection options are "Accept" and "Abort" (not "Decline"]…
It a fullscreen popup that this blocks readability of the navigation system and thus directions...](https://media.infosec.space/infosec-space/media_attachments/files/113/055/103/164/681/953/original/a05d6a7ff565b408.jpg "Peugeot 2008 Infotainment system randomly demanding location data and internet access for a voice assistant randombly on the road.
The only selection options are \"Accept\" and \"Abort\" (not \"Decline\"]…
It a fullscreen popup that this blocks readability of the navigation system and thus directions...")
@Joseph I've to disagree with @deviantollam on that part solely because #Cyberfacism at the U.S. border necessitates said #ITsec, #InfoSec, #OpSec and #ComSec...
Like even if I wanted to enter the #USA [which I don't considering the fact that more and more states try to criminalize the very existance of several of my mutuals and don't get any repercussions for doing so!] I'd certainly not bring any device with me with any data on it!
@enno not that surprising given that every #SingleVendor / #SingleProvider "solution" for communications will inherently have #Govware #backdoors, otherwise they'd be illegal!
That's why noone who takes #ITsec, #InfoSec, #OpSec & #comSec 100% seriously will use them for anything but posting public info.
That's how the drug dealers using #EncroChat & #ANØM got caught and why noone should trust any #VPN or #Messenger!
https://www.youtube.com/watch?v=WVDQEoe6ZWY
https://twitter.com/thegrugq/status/1085614812581715968
So that's how the #French #Police cracked shit...
Thanks @tails for the info:
https://tails.boum.org/security/argon2id/index.en.html
I guess a lot of people now have their weekends f**ked because they gonna need to re-encrypt shit.
Gladly I'm not affected as I user 128-digit passwords wherever possible...
https://github.com/kkarhan/misc-scripts/blob/260f087c8337417c69f94787358abf4faf5090f9/bash/.bash_aliases#L5
But a lot of you folks may be!
Please check your crypto settings NOW!
@anders @torproject @linuxexperiment
OFC your question is pretty valid on it's own so either #DGSI still places operatives in #Hackspaces like the one for @LaQuadrature or they f**ked up their #ITsec, #InfoSec, #OpSec and #ComSec...
But then again, kids got accused of "hacking the schools network" for using #Linux...
Also @tails sadly doesn't have any good #UndercoverMode for a long time - unlike say @kalilinux...
@evawolfangel Es bestätigt mich nur in meinen Aussagen, dass #ITsec, #InfoSec, #OpSec & #ComSec bei #MedicalIT quasi nichtexistent ist...