Marcel SIneM(S)US<p>Staatsanwaltschaft Berlin: Mehr als 600 <a href="https://social.tchncs.de/tags/Encrochat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Encrochat</span></a>-Verfahren | heise online <a href="https://www.heise.de/news/Staatsanwaltschaft-Berlin-Mehr-als-600-Encrochat-Verfahren-10446814.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Staatsanwaltscha</span><span class="invisible">ft-Berlin-Mehr-als-600-Encrochat-Verfahren-10446814.html</span></a> <a href="https://social.tchncs.de/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.tchncs.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Verschlüsselung</span></a> <a href="https://social.tchncs.de/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>encryption</span></a></p>
mastodontech.de ist einer von vielen unabhängigen Mastodon-Servern, mit dem du dich im Fediverse beteiligen kannst.
Offen für alle (über 16) und bereitgestellt von Markus'Blog
Verwaltet von:
Serverstatistik:
1,5 Tsd.aktive Profile
mastodontech.de: Über · Status · Profilverzeichnis · Datenschutzerklärung
Mastodon: Über · App herunterladen · Tastenkombinationen · Quellcode anzeigen · v4.4.0-beta.2
#Encrochat
0 Beiträge · 0 Beteiligte · 0 Beiträge heute
Ian Brown 👨🏻💻<p>I spent several years as an expert <a class="hashtag" href="https://bsky.app/search?q=%23EncroChat" rel="nofollow noopener" target="_blank">#EncroChat</a> witness in trials of very serious organised crime gangs (I had photos of an assassinated individual slumped in the street to examine a few years back, alongside bricks of cocaine and various guns). I think this is an entirely apt comparison <a class="hashtag" href="https://bsky.app/search?q=%23Clegg" rel="nofollow noopener" target="_blank">#Clegg</a><br><br>RE: <a href="https://bsky.app/profile/did:plc:ki27quedk633w437xz3smlys/post/3lq43iodfus2k" rel="nofollow noopener" target="_blank">https://bsky.app/profile/did:plc:ki27quedk633w437xz3smlys/post/3lq43iodfus2k</a></p>
Ian Brown 👨🏻💻<p>🌶️ <a href="https://eupolicy.social/tags/CPDP2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CPDP2025</span></a> <a href="https://eupolicy.social/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> <a href="https://eupolicy.social/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> <a href="https://eupolicy.social/tags/BigBrotherWatchVsUK" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BigBrotherWatchVsUK</span></a> <a href="https://eupolicy.social/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>encryption</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://eupolicy.social/@eu_os" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>eu_os</span></a></span> <span class="h-card" translate="no"><a href="https://fosstodon.org/@fedora" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fedora</span></a></span> <span class="h-card" translate="no"><a href="https://floss.social/@kde" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kde</span></a></span> <span class="h-card" translate="no"><a href="https://fosstodon.org/@almalinux" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>almalinux</span></a></span> <span class="h-card" translate="no"><a href="https://social.bund.de/@zendis" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>zendis</span></a></span> <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EC_OSPO" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EC_OSPO</span></a></span> the same <a href="https://infosec.space/tags/France" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>France</span></a> that illegally phished data from <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> users in a means to allow <a href="https://infosec.space/tags/dutch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dutch</span></a> police to bypass a <a href="https://infosec.space/tags/Dutch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dutch</span></a> court decision that banned them from doing so?</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tweesecake.social/@adisonverlice" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adisonverlice</span></a></span> it's not just re: <a href="https://infosec.space/tags/Governments" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Governments</span></a> (tho <a href="https://infosec.space/tags/Project2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Project2025</span></a> explicitly endorses unsactioned comms to twart attempts at <a href="https://infosec.space/tags/FIOA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FIOA</span></a> or any <a href="https://infosec.space/tags/accountability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>accountability</span></a> for that matter), but individuals or any organization:</p><ul><li>If a system is <a href="https://infosec.space/tags/centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>centralized</span></a> as in <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a> and/or <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a>, it's inherently vulnerable.</li></ul><p>And if <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> got pwned, who's gonna guarantee <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> won't if it's actually secure or isn't an <a href="https://infosec.space/tags/InsideJob" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InsideJob</span></a> like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a>.</p><p>After all, both <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a>'s Organization and key people like <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> are known to the authorities by more than just their legal name.</p><ul><li>What's gonna prevent <a href="https://infosec.space/tags/Trump" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trump</span></a> from doing a <em>"bag&drag"</em> on her or getting his goons to put a gun on,the developers' heads and force them to,<a href="https://infosec.space/tags/d0x" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>d0x</span></a> all users and <a href="https://infosec.space/tags/backdoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backdoor</span></a> everything (if they didn't already got forced to have some <em>"<a href="https://infosec.space/tags/LafwulInterception" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LafwulInterception</span></a>"</em> gear in a closet like <a href="https://infosec.space/tags/Room641A" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Room641A</span></a>... </li></ul><p>After all, Signal <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">can't pull the 5th</a> and refuse to comply!</p>
Kevin Karhan :verified:<p>Interessant <a href="https://www.youtube.com/watch?v=EkV0SgfSuSY" rel="nofollow noopener" target="_blank">wie</a> wie nen <a href="https://infosec.space/tags/Rechtsanwalt" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rechtsanwalt</span></a> und wie <span class="h-card" translate="no"><a href="https://ard.social/@tagesschau" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tagesschau</span></a></span> <a href="https://www.youtube.com/watch?v=6sP4QpKvRjg" rel="nofollow noopener" target="_blank">das gleiche</a> <a href="https://infosec.space/tags/EuGH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EuGH</span></a> -Urteil werten!</p><p><a href="https://infosec.space/tags/Rechtsstaatlichkeit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rechtsstaatlichkeit</span></a> <a href="https://infosec.space/tags/Justiz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Justiz</span></a> <a href="https://infosec.space/tags/DEpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DEpol</span></a> <a href="https://infosec.space/tags/EUpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EUpol</span></a> <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a></p>
Kevin Karhan :verified:<p>Interestingly, the whole <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> penetration got cut short due to a <a href="https://www.youtube.com/watch?v=ufD7e64YgTE" rel="nofollow noopener" target="_blank">snitching snitch</a>, I guess...</p><p><a href="https://infosec.space/tags/sarcasm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sarcasm</span></a> <a href="https://infosec.space/tags/EpicFail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EpicFail</span></a></p>
Kevin Karhan :verified:<p><em>"Ich bitte nicht um eine Hintertür, ich erwarte die Vordertür!"</em></p><ul><li><a href="https://www.youtube.com/watch?v=7anmIIwg0gI&t=1177s" rel="nofollow noopener" target="_blank">Catherine de Bolle</a>, <a href="https://infosec.space/tags/EUROPOL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EUROPOL</span></a>-Leiterin.</li></ul><p>Damit ist alles zur <a href="https://infosec.space/tags/Verfassungsfeindlichkeit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Verfassungsfeindlichkeit</span></a> von <em>"<a href="https://infosec.space/tags/Strafverfolgern" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Strafverfolgern</span></a>"</em> wie Europol gesagt!</p><p><a href="https://infosec.space/tags/Cyberfaschismus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberfaschismus</span></a> <a href="https://infosec.space/tags/Cyberfacism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberfacism</span></a> <a href="https://infosec.space/tags/Rechtsstaatlichkeit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rechtsstaatlichkeit</span></a> <a href="https://infosec.space/tags/FDGO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FDGO</span></a> <a href="https://infosec.space/tags/Privatsph%C3%A4re" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Privatsphäre</span></a> <a href="https://infosec.space/tags/Kommunikation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kommunikation</span></a> <a href="https://infosec.space/tags/%C3%9Cberwachung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Überwachung</span></a> <a href="https://infosec.space/tags/Massen%C3%BCberwachung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Massenüberwachung</span></a> <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> <a href="https://infosec.space/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Verschlüsselung</span></a> <a href="https://infosec.space/tags/EUpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EUpol</span></a> <a href="https://infosec.space/tags/EU" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EU</span></a> <a href="https://infosec.space/tags/Freiheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Freiheit</span></a> <a href="https://infosec.space/tags/Frieden" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Frieden</span></a> <a href="https://infosec.space/tags/Demokratie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Demokratie</span></a> <a href="https://infosec.space/tags/Menschenrechte" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Menschenrechte</span></a> <a href="https://infosec.space/tags/B%C3%BCrgerrechte" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bürgerrechte</span></a></p>
Andromxda 🇺🇦🇵🇸🇹🇼<p><span class="h-card" translate="no"><a href="https://infosec.space/@kkarhan" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kkarhan</span></a></span> </p><blockquote><p><a href="https://infosec.exchange/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> was as secure as claimed, it would've been shut down like <a href="https://infosec.exchange/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a>, <a href="https://infosec.exchange/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> & others...</p></blockquote><p>Just stop the BS. EncroChat was specifically built and marketed for criminals. It wasn't shut down by law enforcement, it was hacked by the French police, after which they decided to shut the service down themselves.</p><p>Signal is open source (and the issue regarding reproducible builds is known, but it doesn't impact the security of the app. It is caused by a navigation library that causes some race condition during the build process, the result of which is dependent on CPU speed. They are aware of the issue, and are working to fix it. It is tracked here: <a href="https://github.com/signalapp/Signal-Android/issues/13565" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/signalapp/Signal-An</span><span class="invisible">droid/issues/13565</span></a>). If you don't trust the official build, you can compile it yourself. There are also forks like <a href="https://www.twinhelix.com/apps/signal-foss/" rel="nofollow noopener" target="_blank">Signal-FOSS</a> or <span class="h-card" translate="no"><a href="https://fosstodon.org/@mollyim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mollyim</span></a></span> available if you prefer that.</p><p>The server is also open source (of course you can't verify if they are actually running that code, but that's gonna be the case for <strong>every</strong> application with a client/server architecture. Your point regarding Signal being "proprietary SaaS" is, again, total BS.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> It's not <a href="https://infosec.space/tags/disinfo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>disinfo</span></a> when one points out that you demand <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> aka. <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumbers</span></a> from Users and that is literally a architectural vulnerability, alongside your <a href="https://infosec.space/tags/proprietary" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>proprietary</span></a> & <a href="https://infosec.space/tags/Centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Centralized</span></a> <a href="https://infosec.space/tags/Infrastructure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infrastructure</span></a>.</p><ul><li><a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> being a <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a> & <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a> <a href="https://infosec.space/tags/Solution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Solution</span></a> is literally the reason why I consider it <a href="https://infosec.space/tags/insecure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>insecure</span></a>.</li></ul><p>Not to mention the lack of <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> support with an <a href="https://infosec.space/tags/OnionService" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnionService</span></a> or the willingness to fulfill <a href="https://infosec.space/tags/cyberfacist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cyberfacist</span></a> <em>"Embargoes"</em> or shilling a <a href="https://infosec.space/tags/Shitcoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Shitcoin</span></a> <a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Scam</span></a> named <a href="https://infosec.space/tags/MobileCoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MobileCoin</span></a>!</p><ul><li><a href="https://infosec.space/tags/KYC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KYC</span></a> <em>is</em> the illicit activity!!!</li></ul><p>And don't get me started on the <a href="https://infosec.space/tags/cyberfacism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cyberfacism</span></a> that is <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a>.</p><ul><li>If you were secure, criminals would've used your platform so hard, it would've been shutdown like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> and <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a>.</li></ul><p>I may nit have allvthe.evidence yet, but <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> stenches like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a>: <a href="https://infosec.space/tags/Honeypot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Honeypot</span></a>-esque!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> I disagree because your platform is <a href="https://infosec.space/tags/proprietary" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>proprietary</span></a>, <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a>, <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a> and doesn't allow for <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a>, <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> of all the Keys and you demand <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> in the form of a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumber</span></a> which can be used.to track users down!</p><ul><li>If <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> was as secure as claimed, it would've been shut down like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a>, <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> & others...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@alwayscurious" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>alwayscurious</span></a></span> <span class="h-card" translate="no"><a href="https://social.glitched.systems/@froge" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>froge</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@fj" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fj</span></a></span> <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> alone not, but it's just the tip of the iceberg.</p><ul><li>I bet you that <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> & <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> will comply with even the most illegal and cyberfacist orders when facing <em>"rubberhose cryptoanalysis"</em>, which is a valid and likely risk factor in the <a href="https://infosec.space/tags/USA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>USA</span></a>... </li></ul><p>Again: The only <a href="https://infosec.space/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> is <a href="https://infosec.space/tags/decentralization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralization</span></a>! </p><ul><li>This is why <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> is still up and running: It <em>cannot be shutdown</em> even when all maintainers are being held at gunpoint.</li></ul><p><a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> is as vulnerable as <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> if it's not a <a href="https://infosec.space/tags/Honeypot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Honeypot</span></a> like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.glitched.systems/@froge" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>froge</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@fj" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fj</span></a></span> I'm not replacing <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> with <em>"random tools"</em> but good options.</p><p>Like <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> & <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> as well as <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesChat</span></a> & <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gajim</span></a></span> which work flawlessly over <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> using <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> and <span class="h-card" translate="no"><a href="https://social.librem.one/@guardianproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>guardianproject</span></a></span> / <a href="https://infosec.space/tags/Orbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Orbot</span></a> respectably.</p><ul><li>Also these allow not only <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a> but just work and I'd highly recommend <a href="https://infosec.space/tags/monocles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monocles</span></a> as a hoster which finances iself by users paying <em>and</em> allows <a href="https://infosec.space/tags/anonymous" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>anonymous</span></a> accoubts & payments including not just <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> but also <a href="https://infosec.space/tags/CashByMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CashByMail</span></a>!</li></ul><p>Considering the costs of even acquiring and upkeeping an <a href="https://infosec.space/tags/anonymous" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>anonymous</span></a> <a href="https://infosec.space/tags/SIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SIM</span></a>, I'd rather pay €2 p.m. for <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> and <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME-supported <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> with the option of self-custody than $2,50+ p.m. just to keep a phone number.</p><ul><li>Plus I don't run around with a <a href="https://infosec.space/tags/tracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tracking</span></a> device that could be used to <a href="https://infosec.space/tags/deanonymize" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deanonymize</span></a> me any second...</li></ul><p>Or is anyone here expecting <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> to <a href="https://infosec.space/@kkarhan/114220798961806961" rel="nofollow noopener" target="_blank">risk jail for life</a> amd not comply with <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a>?</p><ul><li>If <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> was as secure as advertised, it would've been shutdown like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> and <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a>!</li></ul><p>It <em>stenches</em> like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a>, because <em>NOTHING IS FOR FREE</em> and running a <a href="https://infosec.space/tags/VCmoneyBurningParty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VCmoneyBurningParty</span></a> is expensive...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://hachyderm.io/@osman" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>osman</span></a></span> If your <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> and/or <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> relies on <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> and/or <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> <a href="https://web.archive.org/web/20210908180219/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">risking jail <em>or worse</em></a>, you fucked up!</p><ul><li>If <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> was secure, it would've been shutdown like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> & <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a>. </li></ul><p>Seriously, to me <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> stenches <a href="https://infosec.space/tags/Honeypot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Honeypot</span></a> like <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> & <a href="https://infosec.space/tags/CryptoAG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoAG</span></a>. </p><ul><li>All Signal fans do is <a href="https://infosec.space/tags/FUD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FUD</span></a> <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME and#XMPP+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> which are truly <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralized</span></a> and allow real <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a> as well as <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> for complete control of all the data and keys...</li></ul><p>That's why I get people setup with it!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://meow.social/@Catwoman69y2k" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Catwoman69y2k</span></a></span> <span class="h-card" translate="no"><a href="https://dragonchat.org/@dragonfriend" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dragonfriend</span></a></span> most importantly:</p><p>Only with <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> of all the keys, <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a> of the entire infrastructure <em>and</em> everything being <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a>, one can assure (and [let it be] audit[ed] independently) that the <a href="https://infosec.space/tags/advertised" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>advertised</span></a> <a href="https://infosec.space/tags/promises" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>promises</span></a> are in fact true.</p><ul><li>All <a href="https://infosec.space/tags/centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>centralized</span></a>, <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleVendor</span></a> and/or <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleProvider</span></a> solutions - and yes that includes <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> as well (!!!) - are inherently insecure because they can be <em>forced into "cooperation"</em> - may it be with <a href="https://infosec.space/tags/Cyberfacism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberfacism</span></a> like <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> or <em><a href="https://web.archive.org/web/20210908180219/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">listeally a gun to their head</a></em>...</li></ul><p>Cuz not expecting <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> to break is the same level of <em>"<a href="https://infosec.space/tags/TrustMeBro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrustMeBro</span></a>!"</em> assurances as <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a>, <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a>, <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a>, <a href="https://infosec.space/tags/WhatsApp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WhatsApp</span></a> etc. do <a href="https://www.youtube.com/watch?v=8PW3O2mqTn8" rel="nofollow noopener" target="_blank">in their</a> <a href="https://infosec.space/tags/advetising" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>advetising</span></a> <a href="https://infosec.space/tags/lies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lies</span></a>! </p><ul><li>Remember: Corporations/Foundations/non-profits/... <em>don't have a right to be silent</em> , only individuals, and even then there are certain juristictions that have <a href="https://infosec.space/tags/KeyEscrow" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KeyEscrow</span></a> laws (i.e. <a href="https://infosec.space/tags/France" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>France</span></a>, <a href="https://infosec.space/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a>, <a href="https://infosec.space/tags/KSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KSA</span></a>, <a href="https://infosec.space/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>China</span></a>, <a href="https://infosec.space/tags/India" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>India</span></a>, <a href="https://infosec.space/tags/UK" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UK</span></a> , ...) in the books!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://kolektiva.social/@Mik3y" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mik3y</span></a></span> <span class="h-card" translate="no"><a href="https://mstdn.social/@samhainnight" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>samhainnight</span></a></span> <span class="h-card" translate="no"><a href="https://sfba.social/@karlauerbach" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>karlauerbach</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@alex_p_roe" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>alex_p_roe</span></a></span> <span class="h-card" translate="no"><a href="https://masto.ai/@Nonilex" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Nonilex</span></a></span> not to mention all the <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GAFAMs</span></a> and <a href="https://infosec.space/tags/TechBros" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechBros</span></a> who get to know that <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> means they'll have to integrate more <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/Backdors" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Backdors</span></a> and enable <a href="https://infosec.space/tags/BulkSurveillance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BulkSurveillance</span></a> or get shut down & jailed faster than they can say <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> or <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a>...</p><ul><li><a href="https://infosec.space/tags/NSAbook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NSAbook</span></a> / <a href="https://infosec.space/tags/StasiBook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StasiBook</span></a> automatically snitches DMs to <a href="https://infosec.space/tags/CPB" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CPB</span></a>!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@erebion" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>erebion</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.online/@inaruck" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>inaruck</span></a></span> genau das ist der Falsche Ansatz, da Threat Models sich ständig verschieben und nicht ausgegangen werden kann, dass es dabei bleibt.</p><ul><li>Das technisch sicherstmögliche auf verbreiteter Hardware & Systemen ist und bleibt <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> über <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a>, idealerweise an einen <a href="https://infosec.space/tags/OnionService" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OnionService</span></a>, weil damit echte <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCustody</span></a> echte <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>E2EE</span></a> machbar ist!</li></ul><p>Keine*r deloyed drölfzig Messenger oder migriert bedarfsweise User*innen umher.</p><ul><li>Anders als <a href="https://infosec.space/tags/zentralisiert" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>zentralisiert</span></a>|e & <a href="https://infosec.space/tags/propriet%C3%A4r" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>proprietär</span></a>|e Systeme (egal ob <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a>, <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a>, <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a>, <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a>, etc.) ist XMPP+OMEMO an sich sicher!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://hachyderm.io/@dalias" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dalias</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.laurenweinstein.org/@lauren" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lauren</span></a></span><br><span class="h-card" translate="no"><a href="https://troet.cafe/@pixelschubsi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>pixelschubsi</span></a></span> </p><p>Also the <a href="https://hachyderm.io/@dalias/113999748481227961" rel="nofollow noopener" target="_blank">blatant dismissal</a> of absolitely basic <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> & <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> is just flabberghasting.</p><ul><li>It's inherently wrong to <em>put all eggs in one basket</em> and <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> being not shut down like <a href="https://infosec.space/tags/SkyECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyECC</span></a> & <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> makes it just as sus as <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> / <a href="https://infosec.space/tags/OperationIronside" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationIronside</span></a> / <a href="https://infosec.space/tags/OperatioTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperatioTrøjanShield</span></a> and <a href="https://infosec.space/tags/CryptoAG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CryptoAG</span></a> / <a href="https://infosec.space/tags/MINERVA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MINERVA</span></a> / <a href="https://infosec.space/tags/RUBIKON" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RUBIKON</span></a>.</li></ul><p>Only <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>decentralized</span></a>, <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> & <a href="https://infosec.space/tags/OpenStandards" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenStandards</span></a> can actuall survive long-term and remain <a href="https://infosec.space/tags/secure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>secure</span></a>.</p><ul><li>Otherwise we'd all gaslight ourselves into ignoring the hard lessions we learned that bought us to the <a href="https://infosec.space/tags/Fediverse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fediverse</span></a> and why we ain't on <a href="https://infosec.space/tags/Shitter" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Shitter</span></a> or <a href="https://infosec.space/tags/tumblr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tumblr</span></a> or <a href="https://infosec.space/tags/BrownSky" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BrownSky</span></a> or <a href="https://infosec.space/tags/NSAbook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NSAbook</span></a> (any more)!</li></ul><p>It's the same reasons we use <a href="https://infosec.space/tags/PGPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGPG</span></a>/MIME & <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> and not <a href="https://infosec.space/tags/X400" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>X400</span></a> & <a href="https://infosec.space/tags/X25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>X25</span></a>!</p><ul><li>Unlike with <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> one doesn't has to trust the provider or app. <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> works regardless if you use <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> or <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gajim</span></a></span> or do <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a> and only trust code you wrote yourself...</li></ul><p>IOW: Think <em>"How can you weaponize Signal?"</em> and see what you csn do <em>just holding key people in contempt</em>...</p><ul><li>And I'm not even talkibg about <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> - <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Backdoors</span></a> and <a href="https://infosec.space/tags/MassSurveillance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MassSurveillance</span></a> alike <a href="https://infosec.space/tags/Room651A" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Room651A</span></a>, but just <em>duely submitted warrants</em> that <span class="h-card" translate="no"><a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mer__edith</span></a></span> <em>will comply with</em>... </li></ul><p>The less <a href="https://infosec.space/tags/info" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>info</span></a> a provider has, the less they can be forced to snitch upon customers.</p><ul><li>So even if you don't give a shit that <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> makes this a <em>"<a href="https://infosec.space/tags/CantUse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CantUse</span></a> & <a href="https://infosec.space/tags/WintUse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WintUse</span></a>"</em> (out of US-centrist privilegue to not comply <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> & <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BDSG</span></a>) for many, it's still dishonest.</li></ul><p><em>"<a href="https://infosec.space/tags/JustUseSgnal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JustUseSgnal</span></a>!"</em> is a form of <em>dangerous "<a href="https://infosec.space/tags/TechPopulism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechPopulism</span></a>"</em> aimed at bamboozling <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> <em>who don't know better</em>, abusing information asymetry to <em>pull rank</em> instead of investing the time and effort to *explain "how" and "why" this is indeed a good or bad idea.</p><ul><li>There's a reason why <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> doesn't include <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> and why I'll say it again that XMPP+OMEMO over <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> is the gold standard in terms of <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> and <a href="https://infosec.space/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> when it comes to <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a> that isn't <a href="https://infosec.space/tags/airgapped" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>airgapped</span></a> aka. <a href="https://www.youtube.com/watch?v=vdab4T_CoN8" rel="nofollow noopener" target="_blank"><em>"Airgapped PGP"</em></a>.</li></ul><p>The only ones that have a chance to beat that are <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deltaChat</span></a> but that's just <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eMail</span></a> in a nice UI...</p><ul><li>You may now laugh at me and think my <em>"<a href="https://infosec.space/tags/TinfoilHat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TinfoilHat</span></a> sits too tight"</em> but I'm shure sooner or later I'll be evidenced as <em>correct</em>...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.bund.de/@Zoll" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Zoll</span></a></span> wisst ihr was deutlich effektiver wäre?</p><p>Wenn das Zeug <a href="https://infosec.space/tags/legal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>legal</span></a> kontrolliert abgegeben würde (bspw. <a href="https://infosec.space/tags/Apotheke" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apotheke</span></a>) denn dann würden die Leute sich nicht Dreck reinkloppen sondern sauberen Stoff haben und <a href="https://infosec.space/tags/OrganisierteKriminalit%C3%A4t" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OrganisierteKriminalität</span></a> ginge leer aus.</p><p>Cc: <span class="h-card" translate="no"><a href="https://social.bund.de/@Bundesregierung" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Bundesregierung</span></a></span> @bmg@social.bund.de </p><ul><li>Weil anders ist der <em>"<a href="https://infosec.space/tags/Drogenkrieg" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Drogenkrieg</span></a>"</em> nicht gewinnbar!</li></ul><p>Apropos <em>"Hinweise aus dem Ausland"</em>, wird interessant wie das so <em><a href="https://infosec.space/tags/rechtstaatlich" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rechtstaatlich</span></a></em> aussieht...</p><ul><li>Siehe <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> & <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> / <a href="https://infosec.space/tags/operationIronside" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>operationIronside</span></a> / <a href="https://infosec.space/tags/OperationTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationTrøjanShield</span></a>…</li></ul>
Kevin Karhan :verified:USpol, #Trump, Cyberfacism
AngesagtLive-Feeds
Mastodon ist der beste Zugang, um auf dem Laufenden zu bleiben.
Du kannst jedem im Fediverse folgen und alles in chronologischer Reihenfolge sehen. Keine Algorithmen, Werbung oder Clickbaits vorhanden.
Konto erstellenAnmeldenZum Hochladen hereinziehen