Re: [liberationtech] Do you have any thoughts on Matrix.org?

2017-07-09 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On Thu, 6 Jul 2017 23:36:32 -0700
Yosem Companys  wrote:

> I hadn't seen it before. It describes itself as "An open network for
> secure, decentralized communication." See: http://matrix.org/

One of the criticisms of Matrix protocol server implementations is that, by
default all activity is logged to disk in a SQLite database.  The privacy and
safety implications of this are considerable.

- -- 
The Doctor [412/724/301/703/415]

PGP ID/fingerprint: 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

The lamp of Diogenes eventually went out.

-BEGIN PGP SIGNATURE-
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=1z+Z
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing the moderator at 
zakwh...@stanford.edu.


Re: [liberationtech] DRL Internet Freedom pages hit the memory hole

2017-01-30 Thread The Doctor
https://www.humanrights.gov/dyn/issues/internet-freedom.html is showing up
right now.  I did a quick visual comparison to the latest copy at the
Archive, and they seem to match up.

---
The Doctor [412/724/301/703/415]
https://drwho.virtadpt.net <http://drwho.virtadpt.net>
"I am everywhere."

No PGP signature, so this may not be me.  Is it?

On Mon, Jan 30, 2017 at 8:32 AM, Griffin Boyce 
wrote:

> Hi all,
>
>   This morning, a colleague visited the DRL website only to find that the
> content had been deleted.  I checked another page and found it had was no
> longer available.
>
> - https://www.state.gov/netfreedom/index.htm
> - https://www.humanrights.gov/issues/internet-freedom/
>
>   So... yeah... That's bad.  =(  Guess the fascists figured out this whole
> "free speech" thing wasn't working out for them.
>
> ~Griffin
>
> --
> Accept what you cannot change, and change what you cannot accept.
> PGP: 0x03cf4a0ab3c79a63
> --
> Liberationtech is public & archives are searchable on Google. Violations
> of list guidelines will get you moderated: https://mailman.stanford.edu/m
> ailman/listinfo/liberationtech. Unsubscribe, change to digest, or change
> password by emailing moderator at compa...@stanford.edu.
>
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] DRL Internet Freedom pages hit the memory hole

2017-01-30 Thread The Doctor
Pages and data are disappearing faster than we can archive them.  Did
anybody notice the page for the Judicial Branch vanished from whitehouse.gov
yesterday?

---
The Doctor [412/724/301/703/415]
https://drwho.virtadpt.net <http://drwho.virtadpt.net>
"I am everywhere."

No PGP signature, so this may not be me.  Is it?

On Mon, Jan 30, 2017 at 8:54 AM, Jayne Cravens 
wrote:

> On 2017-01-30 08:32, Griffin Boyce wrote:
>
>> Hi all,
>>
>>   This morning, a colleague visited the DRL website only to find that
>> the content had been deleted.  I checked another page and found it had
>> was no longer available.
>>
>> - https://www.state.gov/netfreedom/index.htm
>> - https://www.humanrights.gov/issues/internet-freedom/
>>
>
> Thank goodness for archive.org!
>
> http://web.archive.org/web/20161120012233/http://www.humanri
> ghts.gov/dyn/issues/internet-freedom.html
>
> http://web.archive.org/web/20161203214623/http://www.humanri
> ghts.gov/dyn/issues/internet-freedom.html
>
> I notice the search function on the DRL website doesn't work - it says
> these pages are there, but when you click on the link -  nope.
>
> ---
> <><><><><><><><><><><><><><><><>
> Ms. Jayne Cravens MSc
> Portland, Oregon, USA
>
> The web site - http://www.coyotecommunications.com
> The email - j...@coyotecommunications.com
> Me on Twitter, other social networks, & my blog:
> http://www.coyotecommunications.com/me/jayneonline.shtml
>
> Author: The Last Virtual Volunteering Guidebook
> More about the book, and how to buy it
> (as a paperback or as an e-book):
> http://www.energizeinc.com/store/1-222-E-1
>
> <><><><><><><><><><><><><><><><>
>
> --
> Liberationtech is public & archives are searchable on Google. Violations
> of list guidelines will get you moderated: https://mailman.stanford.edu/m
> ailman/listinfo/liberationtech. Unsubscribe, change to digest, or change
> password by emailing moderator at compa...@stanford.edu.
>
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] White House Comment Line shut down!

2017-01-29 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On Fri, 27 Jan 2017 19:58:40 -0500
Griffin Boyce  wrote:

>I thought the bit about facebook messenger was odd, but it REALLY DOES 
> ask you to send the white house a facebook message.  That's insane, but 
> I guess on par with the level of insanity of the past week.  I'm 
> heartened by the swift action of activists fighting back. <3

Something smells fishy about this.

By using FB Messenger, you implicitly expose your FB profile (or whatever
you've not been able to make private).  That would be an ideal way of
figuring stuff out about the commenter.  Keep in mind that personality
analytics figured heavily into the last election...

Something about this is making my heat sinks crawl.

- -- 
The Doctor [412/724/301/703/415]

PGP ID/fingerprint: 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Murphy had a wife and son, what happened to them?"

-BEGIN PGP SIGNATURE-
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=V9m1
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] secure voice options for china?

2015-02-12 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 02/12/2015 01:06 PM, Brian Behlendorf wrote:

> And this is why even people who care about their privacy still use 
> Skype.

Bad actors go to extraordinary, stupid lengths to restrict access and
put surveillance measures in place.  Hours rivalling that of Silicon
Valley startups are spent fine tuning each and every last measure to
make sure that almost nothing sneaks past.  There is no magick wand
that the other side of the game can wave to bypass them like a gentle
breeze.  Circumvention and counter-net.surveillance are hard, and if
the other side doesn't bring its A game to match, it's just not going
to happen.  We may as well roll over and show our bellies.

- -- 
The Doctor [412/724/301/703/415] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

It's better to burn out than it is to rust.

-BEGIN PGP SIGNATURE-
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=TnYi
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Facebook available as a Tor hidden service

2014-10-31 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 10/31/2014 10:46 AM, Robert W. Gehl wrote:

> In the end, I don't get why FB is doing this, other than to look
> hip.

It may raise the hair on the backs of some of our necks, but
protestors have been known to find one another and organize actions
using Facebook.  Facebook setting up a Tor hidden service would not
facilitate anonymity (perhaps pseudnonymity, if one were to set up a
dedicated FB account) but it would certainly help implement
circumvention of traffic or DNS filtering.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

On the Internet, nobody knows you're a bot.

-BEGIN PGP SIGNATURE-
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=IjSy
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Time validation for 2-step verification codes

2014-08-27 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 08/27/2014 10:08 AM, Nadim Kobeissi wrote:

> 2. Your journalist friends would be very well-advised to use an app
> [2] instead of SMS codes. By using an authenticator app, they will
> be able to obtain codes without using SMS and even with their phone
> completely not connected to a network.

Authenticator software can also be run on isolated machines and still
be useful.  I've been playing around with this a little in my spare
time while developing OPSEC strategy:

https://github.com/gbraad/html5-google-authenticator

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"THAT. WON'T. WORK. EITHER."

-BEGIN PGP SIGNATURE-
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=otcB
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.



Re: [liberationtech] Surviving the Coming Data Purge

2014-08-25 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 08/24/2014 04:41 PM, Al Billings wrote:
> No offense but those things aren’t contained in my email.

Just because they are not found in yours does not mean they are not in
the e-mail correspondence of others.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

PRESS PLAY ON TAPE

-BEGIN PGP SIGNATURE-
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=8vDu
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.



Re: [liberationtech] economic cost of lost emails.

2014-08-25 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 08/24/2014 12:40 PM, J.M. Porup wrote:

> Something P2P, maybe blockchain-based, might work. Convincing
> people of the reality and urgency of the threat is another matter.

Making local copies is not ornerous.  It can be as simple as hitting
^s to save a page, or printing it to a file.  Or it can be as complex
as using Scrapbook to make an instant local copy of a page.  It's a
habit that has to be gotten into, but is well worth it.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

PRESS PLAY ON TAPE

-BEGIN PGP SIGNATURE-

iQIcBAEBCgAGBQJT+6X8AAoJED1np1pUQ8RkiO8P/08s8NnYjS/U9Hc5HOjUxVgr
ol9Qv1LSpY/WMtzvTTY0EFDs8CfrMEQ0Ak8pva/pPuhiH61Fq13E3fPXHHiTwSOe
XKiaejSotsURZvchIcPoaoUIMUZVcNlwUQekIoHKqTYWI3hP9N63uQ8k1UZlkhav
QfjTdlW6pVdMBBBp+aphWkM1dU4LBIOe4pSWv05UCISbKB6MyHUvZi9zcXFZho1c
fhs7N87VD5ZMC/ypSFD5VA1bZxreqfivtEKt/YjoNzMdcRgAAXxyQt/Hs3NroZPX
dqXtx4OXmPbqXdg1nqj3H/S1V+/6oRrSTXTYIuRBNCrIm6xhqDNeB1feEl0cFbR2
w6lsROrwx/LeLvK2cJQA/q4YNHOr5oWZ5b4IawOsgZSK2KH5gpjVJGxWTE/k+iTs
gl13ud3GDh7cvHS2vrse8Ef2/0A0BwgE2i8jv3EH8jBJI8vojDeErEXUDYlr56mh
nf+3HRnfQdIYJ9oEfReYxICWcadn/qv/SxIP3b8BE9vQI0Ufov5uK1g9NMnhD249
9KzO3lvlikddJRbnSYinmi8LwJwjOR8oBIEMbAWuEY23RHXWjUC5/IzcGCd3B0jd
eGatrGPwzBR3TAua9C1MCYBz7ZT+FMOUHHU+gEdP58g9v3Ean8jWb6GYsDItMG8/
ScQ8M/4SuT3aE2LmTbwR
=uK0s
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.



Re: [liberationtech] Thought experiment for Independence Day...

2014-07-15 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 07/11/2014 03:57 PM, Aymeric Vitte wrote:

> I don't see any technical reason why the service could not be
> released as you suggest inside browsers (yacy.example.com), and why
> in a next step browsers could not contribute to store and share
> data.

It's not a technical problem, it's a people problem.  There needs to
be an incentive to get people to set up YaCy nodes and make them
available to anyone who wants to plug some search terms into them.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Unpleasant dreams!" --Elvira, Mistress of the Dark(tm)

-BEGIN PGP SIGNATURE-
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=dwm8
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.



Re: [liberationtech] Thought experiment for Independence Day...

2014-07-08 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 07/04/2014 08:09 AM, Doug Schuler wrote:

> How easy would it be to develop a ?Public Google? that was 
> distributed across tens of thousands of computers similar to the 
> way that the SETI@home project uses the cycles of computers all 
> over the world?

YaCY (http://yacy.net/) does a pretty good job of that, in my
observation.  I've been running a node for a couple of years to
contribute to the network.  It seems to run slightly better on Windows
but does well on a Linux box.

One drawback that I've observed is that there aren't very many
publically accessible YaCy nodes out there.  It isn't (yet) as if you
can plug yacy.example.com into your browser (or your provider's
frontpage) and run searches.  The perception, thus, is that one must
run their own YaCy node to search via the YaCy network, and not many
people seem willing to do that just to search for stuff on the Web
every day.

A fixable problem, to be sure.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Pills for breakfast. I'm so science fictional." --Doktor Sleepless

-BEGIN PGP SIGNATURE-

iQIcBAEBCgAGBQJTvDAkAAoJED1np1pUQ8RkmiEP/RjmbIRaLz5YdXZJLLZhZYnB
MW/TsvXEQwpU4n5qOrIwqljWZwTjnhWgaCbi//0ySw7DeUSyv0kfr8OPBaD2X1Ao
36fKwxfM923WjUNnMoFRmNK+0ppDrl9x6Sx3NxSCTEWkUnvun+DjpiYVJ9pDUTKF
5BX7s9vrHxYKwFY30HtaOlTkeHCcbcDYxV1K73wjq3S7VFmSohDS8W21Ss4lP2nD
Z71DhGJcZlzdiE6pmzxC8FVVT0oneKAoPzrJsYAQmSLxZtnJtu35gcTioZWetOLH
UFOZ4fKkFcnpNn6GYRbmNkfUNPKKTVHI5kQ3Maj4Mm7TWSLfu0Vh7KPIFTAL7OIP
F3CZvybdjwmVLho3M5gKG6ROTLOkCP0T+GZYLMBQtwJnmSOyflW3ALvzMPggDm28
5DmH0dLpP29JBqzG5+uN4RSPATlOufk5FCJSWlHZ6t1N3kMro22qFQFsk3MTtrCB
7KTzeG6ARxwXpGt9WKHSk3rkysHfuJfliNP53sbwyjUpS8vmEqauYy4vt9gfzXJF
nwJZwq4EyLnpoTRMLMg/5HeLR2OWwRYmeuA3P7XBnRfy6DH/wjIg7A/3t6jRb6l0
AMk9yJHgy5YdxiotETN3JBMvN8HaDtCRttXlZIh5YF/I8JZMJsT37+utSynRaQdy
I/As7x223efO92gXQPLw
=4tL/
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.



Re: [liberationtech] Mapping out physical surveillance across a city

2014-06-24 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 06/24/2014 06:16 AM, Cody Tarrant wrote:

> Is anyone aware of any public project that maps out physical 
> surveillance done on a city-wide scale?

http://survapp.co/

Securicams in Boston, MA: http://privacysos.org/map

Securicams in Buffalo, NY:
https://maps.google.com/maps/ms?gl=us&ie=UTF8&t=h&oe=UTF8&msa=0&msid=102215082017479040190.000438c2f775228813fee

http://www.mediaeater.com/cameras/

Google search: "security camera maps"

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Quidquid latine dictum sit, altum viditur.

-BEGIN PGP SIGNATURE-
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=2sv4
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Out of US VPS suggestions

2014-03-10 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 03/07/2014 04:07 PM, Cypher wrote:

> Can anyone suggest any locations and/or providers?

I've had some success with 1984.is, in Iceland.  Clean builds, and had
no trouble building on top of the VMs provided.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

I didn't believe in reincarnation the last time, either.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEAREKAAYFAlMeIRwACgkQO9j/K4B7F8E7awCaAsapXlR0zQVsP08McvhB0SPC
lfkAn1WKXla9JddrygFO2oanwyRU+5DA
=FSa8
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Wash DC Hackathon | Jan 11 | Need advice

2013-12-02 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/02/2013 02:09 PM, Jack Whitsitt wrote:
> It's also probably worth pinging Refresh DC http://refresh-dc.org

HacDC, also: http://hacdc.org/

Public discussion list: blabber (at) hacdc (dot) org

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"I'm not the Eater of Souls, I'm just his administrative assistant."

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlKdDaIACgkQO9j/K4B7F8E0vQCgyf3zCX1T5PDkPd9Qa5DGqL8Z
iOcAn0R743oQxgEez28z7UuxX31ohI7G
=pH4x
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Fwd: Firefox OS with built in support for OpenPGP encryption

2013-09-13 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/12/2013 06:06 PM, Stefan wrote:
> But... PGP/GPG on a smartphone? Are you sure, that you want that?

There is enough demand for it that Symantec has published some mobile
apps (though they require Symantec's encryption infrastructure
software to function).  If there wasn't, they wouldn't have spent the
time and money developing it:

https://itunes.apple.com/us/app/symantec-mobile-encryption/id450235714?mt=8

https://play.google.com/store/apps/details?id=com.symantec.pgpviewersymantec&hl=en

https://www.symantec.com/business/support/index?page=content&id=TECH199169

While it might not be a good idea, the software's out there (and
presumably in use).

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

When I was a kid, I was someone's imaginary friend.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIzXAIACgkQO9j/K4B7F8FLHACeM3BpZyE/tr9+4mRHxePJoeVq
P1sAn3jD+oNO7U1sl4m2Y620NgB8A7bC
=Pwc7
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Linux distribution on encrypted USB?

2013-09-12 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/11/2013 03:20 PM, Moon Jones wrote:

> one large encrypted space. So the packs added are put inside the 
> encrypted drive. I'd say the libs and executables are fine out in
> clear,

For folks that have not yet gone poking around inside a copy of TAILS
installed on a USB key, Moon refers to the contents of the file
filesystem.squashfs, which contains the guts of TAILS (the Debian
install and basic configuration files).  You can list the contents of
it with the following command:

[drwho@windbringer live]$ unsquashfs -ls filesystem.squashfs | less

It is worth noting that, if an unprivileged user can list the contents
of the file, an unprivileged user (an attacker) can potentially unpack
the contents of the file, tamper with them, and then repack them.  I
do not know if there are any measures to detect alteration of this
file when TAILS boots, I haven't taken the time to go poking around
inside the initrd.img or initrd2.img files (used by the kernel when
TAILS boots) to see if there is anything of that sort.  A cursory
examination of the contents of the syslinux/ directory does not show
anything of that sort.

> but the configs should be on the encrypted drive. Along with
> something

Some of the system's configuration are.  If the user runs `apt-get
update` on a running copy of TAILS, the data will be stored in the
encrypted partition in the apt/ directory.  CLAWS configs are stored
in claws-mail/.  The live-persistence.conf file has me somewhat
curious; it is a text file which maps directories in the running
system to subdirectories of the encrypted partition.  For example:

/home/amnesia/Persistentsource=Persistent

Where "source=Persistent" seems to reference a directory called
Persistent/ in the root of the encrypted partition.  It seems possible
that one could edit this file to add additional lines to this file
which would cause some number of files in other directories to be kept
here instead (/etc, perhaps).  I haven't tried this, but it seems like
a useful experiment to carry out.  A little poking around on the TAILS
website did not reveal anything specific to that file, but I didn't
look terribly hard.

> like tripwire data, or at least some fingerprints and a file list
> to confirm the libs haven't turn against you overnight.

AIDE would be ideal for this, one would think.  It is much more
lightweight than Tripwire, and could be set to run at boot or login time.

> Yes. I did the same upgrade and it worked in an instant. I was so
> happy everything was ok. If I recall well, only three upgrades can
> be done, than I'll have to migrate the data by hand. Anyway, going
> from 0.19 to

Was this experience, or is it documented anywhere?

> Only that on an older than Tails 0.17 I fired up Synaptic and did
> some «cleanup», removing everything I did not want. Than I put some
> software I needed. And in the end I have broken the whole distro. I
> did nothing exotic. I have not add foreign repositories. And it did
> not work. So I'm trying to avoid customising Tails for every day
> use.

TAILS does seem to be somewhat problematic in this respect.  For
example, I tried to install a couple of Firefox plugins that I find
very useful (Scrapbook and Calomel-SSL, if anyone is interested) and
they didn't persist across reboots.  A little irritating, but perhaps
it's for the best.

> I was thinking for my everyday system portable from one computer
> to another without touching the installed hard drive. The config
> is different. And I'm afraid to break stuff.

This makes me wonder just how much abuse TAILS can really take before
it breaks down...

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"No other race in the universe goes camping.  Celebrate your
uniqueness." --Jack Harkness

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIx5+sACgkQO9j/K4B7F8FfGgCdENnIdiRkXuDLFHvjP/kDLdRs
bp4An3A+keDdMDUyiK6VALoG8EYomJtM
=byVf
-END PGP SIGNATURE-
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] iPhone 5S Fingerprint and Records (Was: iPhone5S and 5th amendment)

2013-09-11 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/10/2013 05:57 PM, Bill Woodcock wrote:

> Coming soon to a checkpoint near you:  3D printing in gummi-bear
> material.

Or lifting one of the owner's fingerprints from the device in question
and using it to unlock the phone.

A question that hasn't been asked yet (to my knowledge, anyway): Will
any of the iProduct copying devices available to LEOs bypass the 5S'
fingerprint reader?

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

File not found: A)bort, R)etry, M)assive heart attack?

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIwoY0ACgkQO9j/K4B7F8F5fgCdE/QoChZiXpthbGgc/C++hL3h
A9oAnAtIBG2uC8Q0HxeM26qkZF54LnAc
=MWN8
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Linux distribution on encrypted USB?

2013-09-11 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/11/2013 02:33 AM, Moon Jones wrote:

> Yes, Tails seems to be the solution here as well. It has a very
> elegant way of handling this with its encrypted storage. But, in
> this case, it's rather limited upgrade-wise.

In what sense?

At least insofar as being able to access the encrypted storage
partition of a USB install of TAILS is concerned, so long as you don't
repartition the device it should just work.  I've tested this a few
times (upgrading a USB key from TAILS v0.19 to TAILS v0.20) and the
data's been accessible every time.

Were you referring to something else (namely, potentially needing to
repartition the device if the distro grows too large to be accomodated
by previous installs)?

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

END OF LINE

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIwokgACgkQO9j/K4B7F8GM1wCfRd3w/Aqe0bHz8LrPZrO48vht
fRUAoLM69KhnFWBf1iQgnpv8XwILG74k
=P5Ve
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] quid pro quo

2013-09-11 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/10/2013 03:27 PM, Lucas Gonze wrote:


This may be illustrative:

https://www.eff.org/deeplinks/2007/10/qwest-ceo-nsa-punished-qwest-refusing-participate-illegal-surveillance-pre-9-11

http://www.businessinsider.com/the-story-of-joseph-nacchio-and-the-nsa-2013-6

http://www.washingtonpost.com/wp-dyn/content/article/2007/10/12/AR2007101202485.html

http://www.wired.com/threatlevel/2007/10/qwest-ceo-not-a/

http://dailycaller.com/2013/06/13/jailed-qwest-ceo-claimed-that-nsa-retaliated-because-he-wouldnt-participate-in-spy-program/

Cooperate, and say out of jail (and make lots of money).  Don't
cooperate, don't make lots of money and possibly wind up in jail.



Probably, yes.  Whether or not that matters anymore is a different
question.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

File not found: A)bort, R)etry, M)assive heart attack?

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIwoOYACgkQO9j/K4B7F8FiyACeNcwWFofNRT4mXDKIADJYybO0
4YQAnRjVARSlS3aA6WgbbCNRFDZTl7y0
=vHXV
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Small size static HTML hosting with no ads and tor friendly

2013-09-10 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/07/2013 08:14 AM, Moon Jones wrote:

> I want to do some microsites. All static. HTML plus a few
> optimised graphics. A few megabytes each. But I don't want ads. And
> it should be done over Tor. It's not about FBI/NSA, but about
> having less data shed around.

It might be worth examining some static site generators, like Jekyll
(http://jekyllrb.com/), StaticMatic
(https://github.com/staticmatic/staticmatic), or Bonsai
(http://tinytree.info/).  Even ikiwiki (http://ikiwiki.info/) might
fit that category if enough of the plugins are turned off.  Edit
static files, commit locally, push to site via HTTPS.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Your memories are fiction.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIvbHsACgkQO9j/K4B7F8E5gACeNU/nqlFAZYPeqZbftLZal5hl
Q1gAoMiONX43KLQJ9XNm8gV+qJuu0lT9
=aBX/
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Other distros like Ubuntu Privacy Remix?

2013-09-03 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/03/2013 08:10 AM, Moon Jones wrote:

> But the idea sounds good. Yet I could not find anything like it.
> Tails comes close, but the network is enabled.

In TAILS, networking is disabled until you use the NetworkManager
applet to specifically enable it.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"What does it do?  How well does it do it?" --Sean Kennedy

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlImEoAACgkQO9j/K4B7F8HKjQCfY6J6hEusZbZyGLZi5brmzIEo
PcgAnjF6uL189Vi0zzW6ivXYM9vdFyYi
=xpgl
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] BitMessage crackdown

2013-08-27 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/23/2013 06:55 PM, Randolph D. wrote:

> http://www.chronicles.no/2013/08/bitmessage-crackdown.html

In other words, one person ran a phishing expedition against
BitMessage users.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"What the hell has happened here?" --Peter Watts

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIcz40ACgkQO9j/K4B7F8HHrgCeOWNnlUTloJanhjvYO3PYmesx
HUoAoLKF7pnQDZ/ZiEfGsbBmrjcFJ+Zu
=PQ14
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Announcing Scramble.io

2013-08-27 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/23/2013 06:22 PM, Tom Ritter wrote:

>> $ dig ns chocolatine.org +short 
>> uz5qry75vfy162c239jgx7v2knkwb01g3d04qd4379s6mtcx2f0828.ns.chocolatine.org.
>>
>>
>> 
uz5cjwzs6zndm3gtcgzt1j74d0jrjnkm15wv681w6np9t1wy8s91g3.ns.chocolatine.org.
> I feel compelled to point out the precedence here.  This is a 
> problem known as Zooko's Triangle:
...
This was a problem (sort of) early in the days of instant messaging,
when IM handles tended away from memorability as they grew in
popularity.  Letting users set local aliases for IM buddies helped
with that.  Automatic addition to a local address book + buddy
aliasing seems like a potential solution.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"What the hell has happened here?" --Peter Watts

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIczygACgkQO9j/K4B7F8GqKgCfRzcqZlknBGz6mmqepNfyZEf3
YlwAoNbl82GJbCUzltzwATlii9pF332R
=aC+/
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Announcing Scramble.io

2013-08-23 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/23/2013 12:43 PM, Griffin Boyce wrote:

> It should give an option to continue anyway, tbh.

At this time, it does not.  Blank canvas.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Time is the fire in which we burn.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIXkmIACgkQO9j/K4B7F8E3iwCfQXh8kYeirS3UmMP5s6UrU66q
2iAAoLe+CrBbvGUoAxuI8rujE4PY6kDt
=UJWj
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Announcing Scramble.io

2013-08-23 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/23/2013 04:53 AM, DC wrote:

> Feel free to try it out! https://scramble.io/

scramble.io does not play nicely with the Tor Browser Bundle:

"Sorry, you'll need a modern browser to use Scramble.
Use Chrome >= 11, Safari >= 3.1 or Firefox >= 21"

Problematic.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Time is the fire in which we burn.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIXjNoACgkQO9j/K4B7F8EVqACgmLg0fx6AUWOcmTQZvwFB7Qpu
+KEAn3kbrAr5Kd71fS4vCI7RDElX02mF
=QBHa
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Bradley Manning's sentence: 35 years for exposing us to the truth

2013-08-22 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/21/2013 04:59 PM, Shelley wrote:
> Sure, but I think Manning has a zero chance of obtaining a pardon.

Examples needed to be made to dissuade anybody else from doing
something similar.  Manning was the example.  There will probably be
another such example in four or five years, after most people have
forgotten and gone on with their lives.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"It appears my producers set this up.  They set /me/ up." --Anthony
Bourdain

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIWSqcACgkQO9j/K4B7F8FsLgCgvTLia6mx1hXaQ+ZFcHraHGK8
qqMAnRyJykQQLCHMmXEj11e83wO1gESY
=miRw
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Seeing threats, feds target instructors of polygraph-beating methods

2013-08-21 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/19/2013 10:42 PM, Tom Ritter wrote:

> ESPECIALLY when polygraphs aren't actually accepted by the courts,
> as far as I know.

They are still a requirement for some security clearances, though
(TS/SCI/LP).  Perhaps someone high up the food chain is afraid that
someone who passed the lifestyle poly will pull a Snowden in the
relatively near future.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"The futuristic is paradoxically familiar." --William Gibson

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIVAZsACgkQO9j/K4B7F8EJlwCeJpMBHFLWGGMHX8mrHvQQP/F5
9coAni1TMwMBY8HnnafjUmNOxXN3OZty
=cpTh
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] [Dewayne-Net] Are Hackers the Next Bogeyman Used to Scare Americans Into Giving Up More Rights?

2013-08-14 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/13/2013 05:37 PM, Bernard Tyers - ei8fdb wrote:
> Haven't "hackers" always been portrayed in a way to scare people? *
> If it's not dDoSing script kiddies, its zombie network owning
> Latvian mafias..

Or SysOPs using their BBSes to move satellites around.  I still have
that bit of comedy gold tacked to the wall in my office.

> If this *is* the case, how can General Alexander go to Blackhat
> 2013 and say (paraphrasing) "we (CIA) use the same tools as you do.
> Help us
protect America
> by teaching us rad haxoring skills."?

Statistically speaking, a small number of people in the audience at
Blackhat watching him are likely to throw their hats and CVs into the
ring for a chance at a job.  It probably wouldn't have the greatest
success rate, but anymore any help one can get is welcome.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"That which doesn not kill us makes us stranger." --Trevor Goodchild

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIL3bUACgkQO9j/K4B7F8GnfgCgstkQNmwbeOR+Vj9GT91gLIeU
N90AniWl7NofutNQ7/S2vgfC4rh5wvtx
=fpXB
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.


Re: [liberationtech] Freedom Hosting, Tormail Compromised // OnionCloud

2013-08-06 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/06/2013 10:18 AM, Pavol Luptak wrote:

> The question is how FBI gained access to Freedom Hosting? What kind
> of exploits did they use?

Freedom Hosting offered web hosting services to people that asked for
it, yes?

A hypothesis I've seen floating around (without evidence, that's all
it is) is this: The FBI asked for and received web space on Freedom
Hosting.  They uploaded an app that they knew had a couple of
vulnerabilities that allowed for server side code execution and used
them to compromise other sites on that machine.  No need to send
ninjas to raid the cookie jar when you can say, "Mother, may I?"

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Livin' la vida alpha test.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlIBNJAACgkQO9j/K4B7F8GoOgCg6tLxg4LDf08CX64XsLTBQvlj
kmQAn34OwraBqPwY8EH+rt2O1QLd6zC8
=eZ9N
-END PGP SIGNATURE-
--
Liberationtech list is public and archives are searchable on Google. Too many 
emails? Unsubscribe, change to digest, or change password by emailing moderator 
at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


[liberationtech] Byzantium Linux v0.5b (Sleep Deprivation) is out!

2013-07-22 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

I haven't had much time to get the word out aside from a couple of
posts here and there, so here's the official heads-up: v0.5 beta of
Byzantium Linux is out.  Here are some of the changes we've made to
the distro:

* Added SSL support for Groundstation.  Also updated to latest
version.
* Added responsive web design elements to all user-facing web pages.
* Updated software to latest stable bugfixes
* Native hard drives are no longer mounted at boot-time.
* Fixed captive portal to be more reliable.
* Added the ability for users to re-attempt configuration in the
event the first try fails by clicking an icon on the desktop.

URL of official announcement:
http://project-byzantium.org/byzantium-v0-5b-sleep-deprivation/

Downloads: http://project-byzantium.org/download/

As always, if you run into any bugs or have suggestions for new
features, please open a ticket on our bug tracker:
https://github.com/Byzantium/Byzantium/issues?page=1&state=open

Share and enjoy!

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"You don't heal a broken heart by pretending it's not broken." --Penn
Jillette

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHtPXwACgkQO9j/K4B7F8HdrACgnIPVtVkKkhlHFm+SUW6iU3GB
dlMAoOWTmDX5bCpAb9B347ZF2owMAjX7
=lbRU
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Traffic Analysis Countermeasures

2013-07-19 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 07/18/2013 11:51 AM, Charles Allhands wrote:
> Thanks for the link! Is there a reason why mix networks aren't
> commonly used? I see mixminion hasn't been worked on in years.

One possible factor may be that many people are less interested in
anonymity of communications (i.e., sending e-mail) and more interested
in anonymity of net.access these days.  I doubt that there is only one
factor contributing to the general lack of advancement in this field,
though.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

As long as the music's loud enough, we won't hear the world falling apart.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHpdD4ACgkQO9j/K4B7F8EyKgCeO5DIqu9Nz3RmQl0K0ervLSHJ
GgkAn2/+Ngc3cDAkZcOyMI1DbyMOBF/F
=Rn5i
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] How to contact hacktivists?

2013-07-17 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 07/17/2013 10:42 AM, Yosem Companys wrote:

> I am also curious to know please - what is the situation with 
> hacktivists?  How do you find them?

It is certain that at least a few of them are monitoring this mailing
list in some capacity.  All things considered, not the worst way to
get the message out...

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

The last time I saw Elvis, he sat between Bigfoot and I aboard the UFO.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHm5vgACgkQO9j/K4B7F8FuGwCfZIDVRzcfpu/8BP9MRTxkpRxs
yJkAn0r2YWZWk6S0jIRAWuxB9wxgmfIe
=taOb
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Travellers' mobile phone data seized by police at border

2013-07-16 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 07/16/2013 09:52 AM, David Edmondson wrote:

> How easy is it to replace a device in a new country?
> 
> In the UK I can easily walk into various stores and pay £20 for a 
> (possibly network locked) phone, no questions asked.
> 
> Is it that easy if I land in the US? France? Germany? China?

Pre-paid cellular (and smart-) phones are reasonably easy to get in
stores in the States.  Bare-bones candybar phones that can only make
and receive phone calls and sometimes send and receive text messages
can be purchased for $20-$40us (GSM, with SIM).  Pre-paid smartphones
cost correspondingly more (starting around $100us).  They must be
activated online with a valid e-mail address.  More and more stores
are starting to lock them up on the rack or display them behind the
counter, meaning some form of interaction with store personnel to buy
them (I do not know how you feel about that, your call).  It is
decreasingly possible to purchase them at self-checkout lines, they
will refuse to register and flip on the "call a clerk" light.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

When I was a kid, I was an imaginary playmate.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHlYKEACgkQO9j/K4B7F8Hq9wCg3xXkOM2y0xUFhPY0zASqCLYa
P9wAoPd1b4CaZkY3SivQocX6gAvVfYxH
=7CFb
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Postal mail monitoring

2013-07-03 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 07/03/2013 02:11 PM, Matt Johnson wrote:

> I thought this might be of interest to this list, especially to
> anyone who thought they could be safe by not using digital
> communications.

It would be interesting to correlate this against reports of people
whose mail sometimes comes opened and resealed after leaving the
custody of the sender, or just opened following certain events.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Sephiroth was once tech support for Shin-Ra.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHUbp8ACgkQO9j/K4B7F8GdhACgzMVYeIJC/nKxmaIFVn1gaFsK
vq8AnjRMTwLirg/fNDDpE32vHZiKuisb
=M+Zo
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Terry Winograd and Evgeny Morozov

2013-07-03 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 07/02/2013 06:50 PM, Doug Schuler wrote:

> And not to be churlish, but of course language did not solve all of
> our problems. But as in the parable you mentioned, It did help
> humankind dominate nature ? lions included.

Talking to a lion doesn't help when it has you in its mouth.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Become a producer of experiences, not a consumer." --Terrence McKenna

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHUO0QACgkQO9j/K4B7F8GIYwCeL3HjQf715t/VWmXc+t9QPwXb
Xq0AnixN13EA6fk12clYa6M3E9mj7cub
=aGL+
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] A community wireless mesh grows in Oakland, California.

2013-07-03 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 07/02/2013 03:34 PM, R. Jason Cronk wrote:
> Is anybody going to be attending the PETS conference next week who
> is familiar with current work/research in the area of wireless
> mesh networks? I'm very interested in getting together and learning
> more about the current state of affairs.

I can't make it, but I'm active in that problem space.  Are there any
questions that I can answer?

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Become a producer of experiences, not a consumer." --Terrence McKenna

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHUOmQACgkQO9j/K4B7F8Fl+gCfaadOMQxbJECGLTYvdzlXUK6+
Eh4AoIFKt5Tapwp5GMr9VPrtINRe1RYB
=vnok
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] DuckDuckGo vs Startpage [was: Help test Tor Browser]

2013-06-26 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/24/2013 09:16 PM, Daniel Sieradski wrote:
> Has there ever been any effort to create an open source search
> engine that is entirely transparent in both its software and
> practices? (dmoz.org
doesn't count!)

...YaCY?

http://yacy.de/

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"These ribs might be the Buzz Rickson's jacket of _Spook Country_."
- --William Gibson

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHLKBMACgkQO9j/K4B7F8EB0gCgiVrvOP48LZ6wRSpyS7KUUwRF
6SEAnjBBYIO4lOmEXCx11sQRbH6ppzIc
=PvpM
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] to encrypt or not to encrypt?

2013-06-22 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/21/2013 07:18 PM, Eleanor Saitta wrote:

> ...and for any kind of business-related organizational work, much
> of the time, wherein you do get plenty of actual high-value
> information.

Engineering discussions are often had over e-mail, not just out of
convenience but because messages are archived, indexed, and referred
to in lieu of notes.  Same with organizational planning and strategy.
 Don't forget documents being e-mailed back and forth...

> Because we're unlikely to move businesses off email any time soon 
> (and I include NGO- and much of organized activist-land here), we
> do in the end need to do something for it.

The private sector, too.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Sendmail isn't evil, it's job security.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHFx5QACgkQO9j/K4B7F8GKngCgjvCorYJI8Y+L6qFnT/gh4peo
qL4An0yu6tn5p/WthpCt6wY8rDHw6Jnp
=yBhS
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] to encrypt or not to encrypt?

2013-06-21 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/21/2013 11:41 AM, dan mcquillan wrote:

> how would list members answer the question 'to encrypt or not to
> encrypt'?

Assumption: Your traffic is being recorded.
Assumption: You can't transmit anything without leaking at least one
bit ("You're transmitting something.")

Case: Don't encrypt.
- - Your traffic is being captured.
- - This means all of your plaintext traffic has been captured and is
being data mined.
Outcome: You're branched.

Case: Encrypt.
- - Your traffic is being captured.
- - Whatever cleartext traffic you send has been captured and is being
data mined.
- - Cleartext metadata is being data mined.  This means packet headers
(IP address, TCP or UDP port, nature of connection (TCP session setup,
TCP session teardown)) and whatever message metadata or routing
information (SMTP headers) is being datamined.
- - Whatever cyphertext traffic you send has been captured.
- - The cyphertext remains cyphertext - packet payloads, e-mail
contents, what have you remain unknown.
Outcome: The attacker knows that you encypt some volume X of your
traffic, of which some subvolume Y can be characterized as traffic of
type Z and the rest may or may not be recognizable as being related to
Z or some other protocol Q  that can't be characterized yet.

Most favorable outcome: Encrypt.

In comparison...

Perfect outcome: Don't transmit anything.  Just give up.  But then,
why are you on this mailing list?

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

The future belongs to the brave.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHEhk8ACgkQO9j/K4B7F8G/OACgkEiUWH0ZVdnrfxfGcTO7FLRZ
KJgAoNG+VkPCFGr4sbOTX13fu1SCOzc9
=8zTD
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


liberationtech@lists.stanford.edu

2013-06-18 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/17/2013 10:53 PM, Eric S Johnson wrote:

> Agreed. Even my 13-year-old's using it. I do wish something as easy
> existed for MS Outlook users. Symantec Desktop Encryption works
> well and is much more powerful but is also much harder to use
> (besides costing much more!).

It's also very finicky - while it does disk encryption quite well,
sometimes the e-mail and file encryption bits freak out and Do the
Wrong Thing(tm).  Complaints about it stacked up at the DC cryptoparty
last year.

That said, I've been using and teaching GPG4win
(http://www.gpg4win.org/) for about a year now.  It includes GpgOL
(GPG for Outlook), and attempts to accomplish the same tasks as
Enigmail (and mostly succeeds).

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

SEARCH PARTY ATTACKED BY MONSTER

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlHAmcAACgkQO9j/K4B7F8E4ywCeNZrztH3URxjKbyIwRP1SaQR/
UUoAn2xX/b6V/PjLoy8nMJBs0Ka6NY0+
=NnA1
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] diseconomies of scale

2013-06-17 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/14/2013 03:24 PM, Lucas Gonze wrote:
> It occurs to me that Prism exclusively targets large providers.
> This suggests that it relies on economies of scale. Which suggests
> a defense against Prism: use small providers, because there are
> diseconomies of scale.

There is a problem with that: Traffic to and from small providers has
to traverse the networks of the tier-II and tier-I providers to go any
appreciable distance.  We already know that at least some of the
peering points are backdoored - Naurus hardware, if I recall
correctly.  So, even if someone sets up a status.net instance that,
let's say for example a subset of this mailing list starts using
instead of Twitter because it's smaller, all of that traffic is still
probably going to pass through a location that's snaffling copies of
every packet.  It might not see every bit of traffic to and from that
site, but enough traffic might be picked up to get an idea of what's
happening there and whether or not a closer look is warranted.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

This message has been brought to you by Rule 85 of the Internet.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG/VvgACgkQO9j/K4B7F8Hc/QCgnnPC4KFv0zOITmYsv+/1ex5t
46oAoLBOydS7BY0XAgAcIYby2KOZM+lK
=NlUh
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Secure and Cheap Provider in Sweden or Iceland?

2013-06-14 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/13/2013 02:51 PM, Lorenzo Franceschi Bicchierai wrote:

> In lieu of the recent NSA leaks, I'm going to transfer my website
> to a new provider in either Sweden or Iceland (because well, you
> never know). Griffin Boyce suggested I use moln.is
> <http://moln.is>, do you guys have any other suggestion? Any other
> kind of advice?

1984.is have been very helpful to colleagues of mine.  The boxen over
there are said to be very stable.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Fail fast.  Fail hard.  Move on.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG7OTEACgkQO9j/K4B7F8FLfACeIRXIIS6f3HB+rhGH208ngoVZ
p6gAoM5fWzN+vMGv3QutWx0WpjawS273
=9AiG
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] FW: [Ottawadissenters] Infinite Romeo: The Secret Government Program to Manipulate Dating Sites

2013-06-13 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/13/2013 07:51 AM, michael gurstein wrote:
> Now we know?

"Kevin Flynn..."

Hee hee hee...

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"So light your candles, and may SERVER protect us all." --Sean Kennedy VI

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG53r8ACgkQO9j/K4B7F8HYbgCfXqWrWW9BI1F4f4zU0y2Nk5N2
dqcAmgP16nfQCltay6jDGycXOQffJTam
=sjDT
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Guardian reporter delayed e-mailing NSA source because crypto is a pain

2013-06-13 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/12/2013 03:17 PM, Jonathan Wilkes wrote:

> That comes from a user's obvious lack of understanding about why a 
> user might want privacy/anonymity, which comes from a failure on
> the part of the security community to adequately explain the 
> negative effects of ignoring the problem.
...


Thank you.  This is some of what I was looking for in an answer.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Injected with a poison!  We don't need that anymore..." --Praga Khan

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG53esACgkQO9j/K4B7F8FimACg79tw9teAAjFjnxGLByLFgDjh
/twAn3eJn0NTUGBtS78wTP64GDDd6geB
=MyGe
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Internet blackout

2013-06-12 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/12/2013 06:49 AM, Mrs. Y wrote:
> What about Project Byzantium? http://project-byzantium.org/

We know Project Byzantium is out there and being deployed in the field
by people who aren't us.  We've done trainings and briefed potential
users on what it does and does not do as well as potential threats.
We haven't gotten any feedback from Byzantium Linux users of the form
"We're setting up meshes in /foo/ and using it for /bar/..." but are
curious about it.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"What does it do?  How well does it do it?" --Sean Kennedy

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG4mm0ACgkQO9j/K4B7F8FxSgCdG+QbOhpPGVRYX5DUikfoj+EZ
zfAAn16DmDxMPphb5Wkayck2b0P4HDaS
=eZgg
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Guardian reporter delayed e-mailing NSA source because crypto is a pain

2013-06-12 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/12/2013 04:53 AM, Paul Bernal (LAW) wrote:
> This all rings very true for me: I'm a legal academic, and barely a
> geek, and in reality I barely ever use crypto. I was at the Privacy
> Law Scholars
Conference
> in Berkeley last week when the PRISM story broke, and we had a
special session
> at the end of the conference to talk about what we knew - and
someone asked
> about 'user-friendly crypto' and there was a kind of laugh/cheer
around the room.
> Everyone knows we want it, no-one believes it's there.

All of this said, I have a few questions.

First, why are the two mouse clicks required to run the Tor Browser
Bundle considered to onerous to use by many people?

Seriously.  I get this a lot.  They won't use it because it takes two
mouse clicks.

Why has nobody given GPGtools for MacOSX (https://gpgtools.org/) a
spin, commented on its UI, and made suggestions to the project?  Five
mouseclicks and a bit of typing and a keypair is generated and
uploaded to the keyserver network.  It even plugs into Mail.App and
adds a button to encrypt outbound mail.

Or GPG4win (http://gpg4win.org/) for that matter - nine mouseclicks
and you have a public keypair.  It even plugs into MS Lookout (I know,
I know.. the idea brings the gorge to the back of my throat as well,
but people still use it).  Where are the UI critiques and suggestions
for improvement?  All I see is "Crypto is too hard."

Enigmail plugs into Thunderbird and has a keypair generation wizard.
I haven't used it but it's there
(http://www.enigmail.net/documentation/quickstart-ch2.php).

For crying out loud, what will it take?  Baking this stuff into
MovieOS?  True AGI doing it completely transparently for us?

Developing software is hard, and it's not done in a vacuum.
Developers need feedback from the users so we know what we are or are
not doing correctly so we can fix it.  "Crypto is too hard," helps nobody.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"I don't want to go off on a rant, but..." --Dennis Miller

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG4mdAACgkQO9j/K4B7F8Fm3QCeP7Gz8UBQ+Dkt5QhW4pSBRU0k
p84AnRvb1B1BuAaKW97g+W2IJDfs7nFS
=p2vA
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Guardian reporter delayed e-mailing NSA source because crypto is a pain

2013-06-12 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/11/2013 09:56 PM, Kate Krauss wrote:

> This is the beauty of cryptoparties--people can sit next to you and
> talk you through it. Thanks, Asher Wolf. That is often all it
> takes.

I think it's time for another wave of cryptoparties.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"What does it do?  How well does it do it?" --Sean Kennedy

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG4lsYACgkQO9j/K4B7F8HsEACg23MSzO17Soz8PPotj5C5fHaW
8pAAn1IS/P6c/mrAWZ31zFCDi4hpZPbO
=jJt1
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] NSA whistleblower revealed

2013-06-10 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/09/2013 08:40 PM, Raven Jiang CX wrote:

> than us. My guess is that asylum in Iceland is ideal if everything 
> worked out, but he doesn't think it is strong enough to resist
> U.S. pressure.

Hypothetically speaking, would being granted asylum /really/ prevent
extraordinary rendition?  It sort of follows that if someone is
sufficiently honked off at someone to warrant their getting a squad
(in-house, third party, whatever) to gank someone, throw a black sack
over their head, and haul them off to a secret prison then a little
thing like political asylum isn't much of a deterrent.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"For my next trick: anvils."  --Harry Dresden
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG2B0UACgkQO9j/K4B7F8HjAQCfWO0AdJP9gBPh1bXAoYDYe6oq
MREAoLz+Cn+4X1oZukgtfcpPZcmRmo7y
=s4rW
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] NSA whistleblower revealed

2013-06-10 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/09/2013 06:04 PM, Anthony Papillion wrote:

> Still, I have to wonder why he didn't go somewhere like Iceland. To
> me, that would have been a no-brainer.

He would probably have had to make at least one, possibly more
layovers in the United States by doing so.  It's been mentioned that
his home has already been visited by LEA's, meaning that they were
looking for him already.  That implies that LEAs elsewhere on US soil
were keeping eyes open for him just in case he tried flying eastward
rather than westward.  In such a scenario, "agents looking for
someone" + "layover in the US" could very likely == "arrested"

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

TOYNBEE IDEA IN Kubrick's 2001 RESURRECT DEAD ON PLANET JUPITER

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG2BSMACgkQO9j/K4B7F8FEaACg7qwRoif3bjKJbzAh8ZuQDe+a
cMoAoJZmnX068X1ndFTvaj2iF6yjWvXg
=gn+g
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] NSA whistleblower revealed

2013-06-10 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/09/2013 05:43 PM, Matt Johnson wrote:
> I have to say going to Hong Kong for free speech and safety seems
> like a very odd choice to me. What was he thinking?

The articles state that he was assigned to and living in Hawaii.  It
is possible that he caught the first flight out of US territory
available to him at that time - Hong Kong.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

TOYNBEE IDEA IN Kubrick's 2001 RESURRECT DEAD ON PLANET JUPITER

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlG2BIoACgkQO9j/K4B7F8EU5gCghGluvYEXYSBPWr1CHXeHYf6u
mSwAoIDbYrRasjB2MWm58f2Xr22oxihJ
=6Xct
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Stop promoting Skype

2013-06-07 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/07/2013 03:23 AM, Nadim Kobeissi wrote:
> STOP PROMOTING THE INTERNET

Internet?  I've been posting to this mailing list with a bottle of
ink, a hamster, and a tarot deck!

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Rhythm compensates.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlGyCxsACgkQO9j/K4B7F8E2IACgjBEiuN3wtnfO1SksTZANMtlI
in8AoMbSPww6yR4ERSS9/SDRZwi0shdn
=Vcy9
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Why Metadata Matters

2013-06-07 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/06/2013 02:39 PM, Buddhadeb Halder wrote:
> It is really interesting! However, I have some basic and silly
> questions? 1. How does metadata work?

Start by reading up on Call Detail Records.  They're probably the most
accessible form of comms metadata (which is saying something...)

https://en.wikipedia.org/wiki/Call_detail_record

(more for the references than the article itself)

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Rhythm compensates.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.20 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlGyCfAACgkQO9j/K4B7F8H6xwCeMIW5lWYiVTZ4ay1V9HpH/fvo
h/sAoKEYyzwJs+XZkxNdO7MJ67Ld1E36
=e303
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] New Yorker debut's Aaron Swartz's 'Strongbox.'

2013-05-17 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 05/16/2013 01:37 PM, Griffin Boyce wrote:
> Kevin Poulsen  wrote:
>> Shava Nerad  wrote:
>>> Nadim Kobeissi  wrote:
>>>> Jacob Appelbaum  wrote:
>>>>> Sarah Lai Stirland:
> 
> My god, literally *everyone* lurks on libtech.
> 
> currently sitting with six people who *all* lurk here,

Hee hee hee.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"That which doesn not kill us makes us stranger." --Trevor Goodchild

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlGWZ6oACgkQO9j/K4B7F8HRxwCfS0D/Aj81FvcgUWjBSfv0GX37
+fIAn0vUv82ksAkLHYS/DIBTM8JfTKbR
=hOCv
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Learning

2013-04-17 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 04/16/2013 02:56 PM, Landon Hurley wrote:
> Small nitpick, but only PGP (probably a better alternative is gpg) 
> really deals with email encryption. Truecrypt is for files and FDE.
> I

PGP Desktop does full disk encryption:
https://www.symantec.com/encryption
https://www.symantec.com/encryption-desktop-pro

CSU@Long Beach's public docs on it:
http://daf.csulb.edu/offices/its/networkservices/pgp/whole_disks.html

UIC's public FAQ on PGP Desktop's FDE:
http://www.uic.edu/depts/accc/security/pgp/pgpfaq.html

But be mindful of this:
http://www.darkreading.com/sophoslabs-insights/another-zero-day-for-symantec-pgp-wde/240145658

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

SERVER forgives.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlFuznEACgkQO9j/K4B7F8FdTgCggxgy82mCCE8Ojl2jQpvrPpXC
YTsAn3x2emvtAGSw/bRdjwHWc7zHNUzN
=F7x/
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Why Bluecoat?

2013-04-10 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 04/06/2013 12:14 PM, Kate Krauss wrote:
> To me, the real question is, /If/ Bluecoat, why are things going so
> well for them when they are a 45 minute drive from activists in
> San Francisco? Happy to explain--off this list--what this means in
> terms of political strategy and offline, nonviolent direct action.
> 
For entities that are looking for the sort of capability Bluecoat
equipment offers, this is free advertising for them.

"Bluecoat's surveillance and censorship gear is so good, not only did
the Syrian government deploy it but it worked well enough to make
those damned techno-hippies angry!  Must be good stuff!  Let me Google
their sales site..."

Bad publicity is still publicity.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

A little booty house is good for the soul.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlFlwNIACgkQO9j/K4B7F8G/0gCg83RyEgUHcB8BGtFo01mBAc+q
Q7wAnjRVxDevYBPjvNdPbVZboa1ep1Bu
=kGQI
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Can HAM radio be used for communication between health workers in rural areas with no cell connectivity?

2013-03-08 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 03/07/2013 01:58 PM, Bernard Tyers - ei8fdb wrote:

> Can you give me some examples of what you mean?

I have been in touch with a number of ham radio communities that are
working on community wireless-type projects which either have solvable
problems but do not want any help (or solutions), or which are only
interested in building them for their use and no one else's.  Either
way, they have been, to date, uninterested in collaborating or in
opening the networks they build for anyone else to use.  Hence,
'uninterested in liberation technologies' (of the sorts talked about
on this mailing list).

> I would not say we amateur radio people are all human rights
> activists, but most

I will grant you that.

> people I have worked with have been involved in using amateur
> radio
for public
> good.

Most of the ones I have met have been interested in amateur radio, but
I honestly cannot speak to the number who have explicitly mentioned
working for the public good.  The ARES and RACES members I know near
home certainly are (they are why I studied for my ticket, incidentallly).

> Like I said, I am obviously biased, but I have not encountered the
> "ham culture" you mention, but I don't doubt it exists.

I have encountered it where I live, unfortunately.  I know there are
hams out there who work otherwise, and would very much like to meet
more of them.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Hawaiian shirts should cause pain upon the mind." --Sean Kennedy

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlE6FI4ACgkQO9j/K4B7F8GloACglaFoEQTMpYUVR/mNVL+VDulO
8RkAn1djjfhYVWB6dfQnZ/VFCWuvkCOg
=WmgG
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Can HAM radio be used for communication between health workers in rural areas with no cell connectivity?

2013-03-07 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 03/07/2013 03:02 AM, Eugen Leitl wrote:

> The whole ham culture and liberation technologies do not really 
> mix.

Unfortunately, this has been my experience as well.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

On the Internet, nobody knows you're a Perl script.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlE4wnkACgkQO9j/K4B7F8F2qACfRm+tUqHlqHyAlgULR38xaoJi
72QAoKaSIQ4wPu35TDERa/WVpIse0hal
=hHz/
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Can HAM radio be used for communication between health workers in rural areas with no cell connectivity?

2013-03-07 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 03/06/2013 05:41 PM, Sky (Jim Schuyler) wrote:

> The Byzantium Project folks (wi-fi mesh) have some amateur
> operators among their numbers and might also have opinions on how
> easy it is to

We do.

> get folks licensed, and also on "edge" connections of mesh and
> other

I can't speak for Haxwithaxe, but I took two weekend classes for the
Tech class licensing exam (total time: sixteen hours) and re-read the
course materials twice (http://www.kb6nu.com/tech-manual/), and passed
the exam on the first try.  I'm friends with a couple of hams in the
DC metroplex who aced all three exams (Technician, General, and Extra)
in one shot and know more about amateur radio and RF theory off the
tops of their heads than I do.

> networks to amateurs (which is severely limited by law). My take is
> that even though hams tend to think it's easy to get a license,
> there are significant (maybe psychological) barriers to entry.
> Maybe it's just

I think it depends on the ham you talk to.

Before taking the exam I studied the ARRL's official Tech class study
guide off and on for a couple of years (and did the practice sets for
every chapter) and it was easily the most difficult exam I've ever
studied for.  Then again, I'm a coder and not particularly skilled
with electronics (I thought operating systems and compiler theory were
easy).

That one has to study to take the amateur radio licensing exams puts a
lot of people off.  They just don't want to put in the effort "to sit
around talking to people."  I got that a lot from non-hackers when I
was studying for the exam in late 2011 and early 2012.  There is also
the (largely correct) perception that amateur radio equipment is very
expensive.  A lot of it is.  HT's (hand-held portable units) are much
less expensive (and getting cheaper - thank you, Baofeng) but the
common response is still "I don't want to sit around studying when I
could just talk on the phone."

> that mobile phones provide so many of the same benefits without
> the licensure hassle?

One definitely has to put in much less work up front to be allowed to
chat on a cellphone.

> Some of the people on this list know how wi-fi can be provisioned
> over fairly long distances using high-gain antennas and mesh
> software. It

Project Byzantium does.  We've done it around DC and in New York
City.  Do you have any specific questions on this topic?  Do you have
any specific questions pertaining to amateur radio and wi-fi (because
there is a bit of overlap)?

> seems to me that this might be an interesting way to go about
> getting real Internet connectivity. I've been on the list a couple
> of years and

That may be why so many community wireless projects in the States draw
fire from telecom companies, but that's a rant for another mailing
list (such as IS4CWN).

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

On the Internet, nobody knows you're a Perl script.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlE4wigACgkQO9j/K4B7F8HJdgCeKhobX6jleUjl3Ze8bSomqR+A
Ha8AnAjsBlpyOTzIUFEvP7MluTWQYBdc
=//Qw
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Efficient digital one-way communication

2013-03-04 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 03/03/2013 09:25 AM, Jens Christian Hillerup wrote:

> I basically just wanted to throw it out here. Does anybody have 
> experience in modulating data? Has this kind of digital one-way 
> communication been done in an activist setting before? Does it
> make sense to kick off a project aimed at creating a easily usable
> system capable of modulating and demodulating data at modest
> bitrates (>15KB/s)?

Project Byzantium did some research on it a few years back.  We tried
AX.25 over FRS, GMRS, and modulated laser light.  Legality aside (we
took steps to mitigate interference, but it still should be mentioned)
they're not useful for datacomm (especially in emergencies).  Amateur
radio, while having a higher barrier to entry, seems to present a more
feasible set of implementations.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Tceles B hsup?  A magic spell?"

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlE1FLUACgkQO9j/K4B7F8ENXwCg8rwSjfwzbF9T0Tky5G9nQTm5
a4QAn2XUgmBI94x4FlNY9d0/QKeWz/yn
=shit
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Designing the best network infrastructure for a Human Rights NGO

2013-03-01 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 02/28/2013 03:35 PM, anonymous2...@nym.hush.com wrote:
> Thanks, yes I also have seen young and old people use linux but
> I've also seen hundreds of people trained to use it and as soonas
> they have to
update a package
> in Linux, get confused and reach for a windows machine.

Oh.  Just like the Windows users who are being confronted with "Hey -
update me!" pop-ups for Adobe Flash and Java and ignoring them because
they think they're going to wreck their workstations?  It's been a fun
week for that in the salt mines.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"I'm not the Eater of Souls, I'm just his administrative assistant."

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlEw3YoACgkQO9j/K4B7F8FxDgCeIV/8GFqlNCe9NuSUmRaDao1/
2gUAoK2d+Ww8yzHb8x+q8KfcMhVbC0sx
=N54V
-END PGP SIGNATURE-
--
Too many emails? Unsubscribe, change to digest, or change password by emailing 
moderator at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] advice on securing a new computer

2013-01-28 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/28/2013 08:17 AM, Eric S Johnson wrote:



hidemyass.com?

They cooperated with US law enforcement on the Lulzsec case.  There is
little to suggest that they would not cooperate with other entities if
they felt they had to (or thought they could benefit from doing so,
for that matter).

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Tell Walter it's on!"

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlEGvA4ACgkQO9j/K4B7F8G1lQCgoHO1Exz/GZzo4Xdy/aVeaE3z
jqEAn1JP3nXPZx9BiStED0TpgVZNXL4X
=enD9
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] advice on securing a new computer

2013-01-28 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/28/2013 08:17 AM, Eric S Johnson wrote:

> about a VPN which helped an LEA catch a serial axe murderer. I 
> mean, a proxy/VPN service which seems to have "betrayed" its 
> customers, or its customers' traffic, to an LEA, in a manner which 
> 90% of this list would agree is "wrong" (not legal or illegal,
> just wrong).

hidemyass.com?

They cooperated with US law enforcement on the Lulzsec case.  There is
little to suggest that they would not cooperate with other entities if
they felt they had to (or thought they could benefit from doing so,
for that matter).

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Tell Walter it's on!"

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlEGvBMACgkQO9j/K4B7F8FKJACePTHOxhzQiuPQ9L/JLOI4dxeP
vPgAnRZr5lvjXoDw2AYvYNWfvd6EVEmH
=X1fJ
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Iran can develop the software to control social networks?

2013-01-17 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/17/2013 11:27 AM, Amin Sabeti wrote:

> *Is Iran capable of developing the software it would need to
> control social networks?* 
> http://storify.com/smallmedia/is-iran-capable-of-developing-the-software-it-woul

Iran?
> 
I do not know.

Contractors hired by the government of Iran?  Very likely.

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Squeal like a dialup for daddy!" --Jason

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlD4ODUACgkQO9j/K4B7F8FAvwCg7tghan3vmcjBbxkZFHpFx0RN
cqcAnRuNT4XbWRvRWKnF2HBN2+9qIXi0
=0iGH
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Safe app like Dropbox?

2013-01-07 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/06/2013 03:50 PM, John Adams wrote:
> Why don't you just get around the problem entirely and use
> Dropbox's storage for encrypted disk images?

There are other ways of doing so as well.  Media collections on blogs,
for example.

> If you have data sufficiently encrypted, it doesn't matter how it's
> stored.

Unless it takes forever and a day to download an encrypted volume of
files and tools from where you've stashed it.  It's a bit of a gamble
as to whether or not a 256 megabyte (or even 512 megabyte) TrueCrypt
volume will download in anything like a reasonable amount of time.
Found that one out the hard way late last year.

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Yeah, that's a bleepin' dead alien, all right."

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlDrIJMACgkQO9j/K4B7F8FvJgCg5u1NWvKymEaNHfBvr+FZSnLi
98kAoKIqDvA1dvpoR1S8j+G635ODhYA9
=876i
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Modern FIDONET for net disable countries?

2012-12-31 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/31/2012 09:38 AM, Griffin Boyce wrote:
> At HOPE this summer I talked a bit about a wireless mesh concept
> that would allow people to communicate without internet access or
> phone access. The real problem with a BBS is that it's trivial to
> take down.  In most countries, one call to the phone company can
> suspend a phone number 'pending investigation.'

The FidoNET protocol can be used for more than just dialup BBSes.  It
is a protocol for bundling the contents of message queues (subs),
transmitting them somehow (not necessarily over dialup), synchronizing
a local message queue (sub) with messages it doesn't already have, and
occasionally adding files to file bases.  It's being used by BBSes on
the Net that are not dialup but still want to synchronize themselves;
more precisely, the BinkP protocol
(https://en.wikipedia.org/wiki/Binkp) is being used because it assumes
a reliable connection, whereas the FidoNET protocol does not.

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Why, yes, I do speak fluent Aklo."

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlDiAtUACgkQO9j/K4B7F8FVpQCdHZjrXPy7qpP9L18VggParDaS
FPcAn35nYlhwNhz6ROW3v82EZNwJOz4I
=HmSr
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Modern FIDONET for net disable countries?

2012-12-28 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/27/2012 11:54 AM, Jerzy Łogiewa wrote:

> I wonder, is some FIDONET type service existing for countries where
> all telecom is disabled? Kind of "sneakernet" for large packets of
> messages to
be delivered.

There are a couple of projects like that right now, but I do no know
how much action they are seeing.

https://github.com/sanity/tahrir

https://github.com/endymion/sneakernet

Project Byzantium has considered using this to synch the datastores of
unlinked meshes via sneakernet:
https://github.com/campadrenalin/EJTP-lib-python

Also, the FidoNET protocol is alive and well:

http://sourceforge.net/projects/fidoip/

http://control.zcu.cz/~flidr/fido/

> 1- I write message to [username, address or hash], encrypt with
> public/private pair. 2- Trusted "sneakernet" collector with some
> software physically arrives and grabs my message, updates my 'ball'
> (or blob?) of crypted messages, in
case other
> sneakernet collector comes.

That would be doable.  I am playing with something like that for CouchDB.

> 3- Maybe when delivery is 100% confirmed this gets added to ball so
> it can be pruned?

Say, if originating nodes get their packets back (the distribution
cycle is complete), and expire the message?

> And so on. Bitcoin style blockchain confirmation seems useful?

That might not be a good idea.  Not only would it result in a list
that can be used to identify nodes, but it also increases overhead and
complexity.  Perhaps 'best effort' is the way to go about this.

It would be useful to determine the capabilities of existing
implementations to see how  many reimplementations of wheels could be
avoided.

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Nondeterminism means never having to say you're wrong.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlDeIwgACgkQO9j/K4B7F8HUCACg8bYUyJLpICmEUIUxZ1rPVhtB
CsQAn0QYRuBTD4H4sM4/PJY/z6OudM96
=LG8L
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Call for Open Letter on Skype

2012-12-26 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/22/2012 02:02 PM, Uncle Zzzen wrote:

> Best case scenario they still won't be open source, so what do we
> expect from them really, good intentions?

There is no reason to expect that anything good for anyone other than
them will come from such a letter.  Not with this on deck:

http://appft.uspto.gov/netacgi/nph-Parser?Sect1=PTO2&Sect2=HITOFF&p=1&u=%2Fnetahtml%2FPTO%2Fsearch-bool.html&r=1&f=G&l=50&co1=AND&d=PG01&s1=20110153809&OS=20110153809&RS=20110153809

http://www.theregister.co.uk/2011/06/29/microsoft_skype/

https://www.computerworld.com/s/article/9218002/Microsoft_seeks_patent_for_spy_tech_for_Skype

It would make no sense at all for them to do the work to file a patent
on CALEA intercept of Skype traffic and then not do anything with it.

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"We can't stop here, this is tentacle country!"

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlDbVdQACgkQO9j/K4B7F8GGFQCgx5QPVcv3jTIU2FVenLi3R1GI
DlIAnRrQg2gt8Mzq3sELWngMtP1NGMZA
=BJaD
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] was: Forbes recommends tools for journalist; is now: depressing realities

2012-12-20 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/19/2012 02:41 PM, James S. Tyre wrote:

> http://www.uscourts.gov/Multimedia/Cameras/NorthernDistrictofCalifornia.aspx?video_uuid=tg
>
> 
d2h877&categoryId=48197%20
> 
> Sadly, a proprietary format that won't play well with Linux.

The video in question is an .mp4 file.  Firefox v17.0.1 supports
playing it back (or at least, I'm watching it right now) and I don't
have any video playback plugins installed or running.

The DownloadHelper Firefox add-on is merrily downloading the video to
a file on my hard drive at this time at the same time
(ue8827m7_rs04jin1_h264_298K.mp4, thus sayeth the uscourts.gov
webserver), where it can be saved for posterity and played back in
Microsoft's media player, VLC, or what have you.

- -- 
The Doctor [412/724/301/703] [ZS|Media]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"One should always be a little improbable." --Oscar Wilde

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlDTOqMACgkQO9j/K4B7F8EMJQCcCA5FoaBlBapoUR/7ykMeDQQP
YgQAoONUnzdny4J/mpn6lFlkLVQ+GOv3
=lm+S
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Announcing finalists (and soon winners) for the Access Tech Innovation Prize

2012-12-07 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/06/2012 01:45 PM, Gustaf Björksten wrote:

> The finalists of the Access Technology Innovation Prize have been 
> announced. The projects selected by the judges as finalists are:
> 
> Blackout Resilience Award: Briar, Linux en Caja + BogotaMesh + 
> RedPaTodos + Hackbo, Project Byzantium, RePress - Greenhost

Project Byzantium is honored and excited to have been selected as one
of the finalists for the Blackout Resilience Award.  We hope we're
chosen, but would like to take this time to wish all of the finalists
in every category the best of luck.  Whomever is chosen in each
category is most certainly doing excellent work.  One of us will see
everyone in New York in a couple of days!

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Logic is a pretty flower that smells bad.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEARECAAYFAlDCKWUACgkQO9j/K4B7F8HrywCfVE4EKRuPR6MDWB1uWyyqd11F
Py8AoMcamN9/J4Fm76d4N5mL6LAv7mN/
=nYiF
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Censorship hardware - BLUECOAT IN SYIA

2012-12-03 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/03/2012 04:15 PM, Pierre Romera wrote:

> Is there someone who knows which kind of data are generated by
> such equipment (ProxySG ) ? If so, how can we read it ?
> Thanks.

Here is what one of the entries in the logs look like:

2011-07-25 00:00:00
113
 - - -

OBSERVED "unavailable"
http://ads.handycafe.com/adv.php?l=sy&rndID=34664 200 TCP_NC_MISS
GET text/html;%20charset=utf-8 http adserving.cpxinteractive.com 80
/st ?ad_type=iframe&ad_size=160x600§ion=306277 -
"Mozilla/4.0 (Windows NT 6.1); Gecko/20100101 Firefox/4.0.1; 10;
Windows NT 6.1; SV1; handyCafeCln/3.3.21)" 
1025 458 -

If you search for "Telecomix blue coat logs" you'll find sagans of
other examples.

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"We could be readin' a book." --Huey, _The Boondocks_

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlC9GtcACgkQO9j/K4B7F8Gh/wCg7w+tikh3B2Ed/cy3gdlxH/XS
2rEAoKmpmLxWUSGbAhb26OeLBk2Ix5BL
=p1j0
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Censorship hardware - BLUECOAT IN SYIA

2012-12-03 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/01/2012 03:16 PM, Bernard Tyers - ei8fdb wrote:
> True - it would be useful for a journalist to make some enquiries
> as to the outcome of that investigation. My guess would be
> nothing.

'Nothing' lines up with the buzz I've heard in those circles.  "We're
working on it."

> That means 3/4 chassis are either a) being held as spares, which
> would be possible but slightly strange in normal circumstances, but
> I guess these are
not normal
> circumstances, b) lost/faulty/out-of-service, or c) being used in
some other location.

My guess would be 'c', due to the fact that there are multiple ISPs
that seem to be filtering certain things.

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

The scar is not the wound.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlC8/7cACgkQO9j/K4B7F8GUZgCfe/HFXeLciFn4dnD/EOlRrGEC
4/kAoLNFk+V/D73Z1X+uhlsFRQ+DW2ys
=P7wV
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] China just blocked Google.com

2012-11-30 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 11/11/2012 12:01 AM, Christopher Lueg wrote:
> ... and gmail keeps misclassifying liberationtech emails as spam 
> overridden numerous times so it's not once off it's systematic.

Interestingly, I just noticed something similar.  My spiders noticed
that my Libtech folder was a little empty today.  Going through my
Spam folder manually, the last 28 messages posted to Libtech were
misclassified as Spam.

Strange.  Watch your junk folders, folks, you might be missing a few
things...

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Fail fast.  Fail hard.  Move on.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlC5CysACgkQO9j/K4B7F8GnpwCfex7oM/xxh9GaBctL5VFnUUP9
FFEAnAnA88GgaVTXrSeQSX9p8vK67rh4
=ppuZ
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Syrian Internet Is Off The Air

2012-11-30 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 11/29/2012 04:16 PM, Karin Kosina wrote:

> Is any of you actually able to reach any of those networks? They
> appear to be unreachable to me.

Negative.

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Fail fast.  Fail hard.  Move on.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlC5CjEACgkQO9j/K4B7F8GF9ACgg8ZFkzlLj/d4tRzfYqVDMIM7
CpgAnR3IgN/DHoAVj502W9Gu90DX5ryj
=AvQB
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Stanford Bitly Enterprise Account

2012-11-16 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 11/16/2012 09:17 AM, Alex Comninos wrote:

> Bitly collects information about accesses (such as clicks) of
> every shortened URL created through the Services. This information
> includes,

I'm sorry, but no chance.  Given what some folks discuss on this
mailing list, that's a risk that some folks might not want to take
(but without a good option to not use shortened URLs, that number
would likely be higher).

> Surely it would be better to chose a service that retains as
> little metrics and analytics as possible?

Why not just post full URLs, so we have at least some idea of what
might be on the other end of a link?  Then we can click or not,
depending on personal decision.

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

It is dark here.  You are likely to be eaten by a grue.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlCmq5AACgkQO9j/K4B7F8H9bwCgpiGcOoIgXPJ/GiZCzpXx2bos
pusAnideax1XJ8eCowPjc0iRS1Ihw6EZ
=6TRZ
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Fwd: Presenting the new Lorea distribution: Foxglove

2012-11-08 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 11/08/2012 05:19 PM, Yosem Companys wrote:
> So is Lorea meant to be a social web alternative?  How is it
> different from Tent.io?

tent.io is a protocol on top of which applications can be developed.
Lorea is a web application (a suite of applications, really) that one
can download, install on a web server, and immediately begin using.

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

All great wisdom is found in taglines.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlCcUXEACgkQO9j/K4B7F8GBTACg7Gg2j32ZPN04IJuw/s3zFarY
+WwAn01DzK+WIKy+mAcOy8ugBVFlxNwj
=3P6x
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Fwd: Presenting the new Lorea distribution: Foxglove

2012-11-08 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 11/07/2012 02:46 PM, ale fernandez wrote:

> I'm certainly using it like mad since it came out, both bug
> finding as well as actually filling in assemblies - I'm in an
> assembly run cooperative and using lorea is really important as a
> shared place to work, and I think in general it complements the
> in-person aspect of assemblies really well.

For the curious, Lorea is built on top of Elgg (http://elgg.org/) with
a bunch of plugins slotted in (source:
https://lorea.org/?page_id=147).  I've been considering standing up an
instance of it for a project I'm working with on the side.  From your
interaction with the package, what do you think of its capabilities?
In particular, the granularity of its profiles and what user privacy
looks like from the outside?

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"These eyes can do more than see."

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlCb9PAACgkQO9j/K4B7F8EHMQCg8ide9IkXo5pf/YX5iek1+8MB
PtIAoL6eaFnO88iXSv8o3JW4hsp9fWcX
=ICwZ
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] JournalistSecurity Spam List

2012-11-06 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 11/05/2012 10:11 PM, Nadim Kobeissi wrote:
> It's not unlike the people at Journalistsecurity.net to unfailingly
> annoy me with ther antics, but is anyone else being subscribed to
> their "email update list" and being re-subscribed every time they
> unsubscribe?

Funnily enough...

Now that you mention it, yes.  I just received a second subscription
confirmation to one of my other addresses.

- -- 
The Doctor [412/724/301/703] [ZS (MED)]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"My faith protects me.  My Kevlar helps." --Michael Carpenter, _Death
Masks_

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlCZe2UACgkQO9j/K4B7F8GemACaA3FdyRYJ5vMcPmXFso7fZdn0
d8sAn1zfRQA6Rp88bv+8REtZ9czyIXRw
=Olsn
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Online Journalists on the Frontlines

2012-10-15 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 10/14/2012 03:18 AM, Asher Wolf wrote:

> If you nominate a particular conference, we could try to arrange to
> have people present who'd be willing to talk about about some
> crypto-tools that may be helpful for journalists.

Or if a particular geographic location is named, local groups (NGOs
and otherwise) could be asked about running a cryptoparty for journalists.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Don't yadda, yadda the Lord, Harry.  It's disrespectful." --Michael,
_Grave Peril_

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlB8fyQACgkQO9j/K4B7F8GibQCg2uRbpjoqLRWHlm5vTyMyYdU2
8O4AoMBrEJeDXGIC1/BhfsRn1aAepqJP
=nee9
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] CryptoParty Handbook

2012-10-11 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 10/10/2012 06:10 AM, Julian Oliver wrote:

> Seth, your comments about the Quantum Crypto text are excellent
> and, on looking more closely, factually correct. I personally don't
> think such material has a place in a handbook like this but with
> your clarifications it will at least render it great reference
> material. Your comments about journaled file-systems and
> shredders/wipers were super and so will be added to the next
> edition.

I think that quantum crypto needs to be explained in the 'book, at
least at a high level.  In some discussions I've had with people about
crypto, someone's always brought up "Quantum computers broke all
crypto anyway, so there's no reason to do all of this," followed by a
mostly uphill fight to convince them that there's no reliable evidence
that there are quantum computers at Ft. Meade pwning us all.

In other words, some solid ground to stand on when the trolls come
'round (and the do).  I've forked the repo on Github and when I get
some time this weekend I'll start working on some stuff.

> Missing chapters like Threat Modeling (introducing it to newbies,
> first of all)

This.  So much this.

> need to be written, as well as an unintimidating reference table
> for strength of encryption by type and threat context. This is
> something that came up in

I think there is some pretty reliable research out there that can be
referenced in the 'book.

> Still, I don't think it justifies those few security pros clumsily
> (and somewhat destructively) writing off the book entirely. Rather
> than being black and white

More 'dead duck' discussions, I take it?

> when it comes to security it's far more constructive to let people
> into the process of learning to think for themselves by
> understanding such particular risks; to be aware, agile and
> vigilant. Security itself is a process in constant

Toolkits, not cookbooks.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Sing loud!

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlB3IkYACgkQO9j/K4B7F8EXMACgryyoLanzR9QkyYK9LYRkqu6p
JSYAni4rpH18lvs0uE6IsoD7zeuQFS0k
=Ocm4
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] best practices - roundup

2012-10-11 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 10/09/2012 03:03 PM, Lindsay Beck wrote:

> Thanks for compiling these resources! Another great tool that is
> perfect for traveling is TAILS, which stands for The Amnesiac
> Incognito Live System
...

For what it's worth, I was traveling OCONUS last week and was using
TAILS v0.12.1 installed on a microSD card (the laptop in question was
booted from a USB adapter).  I'm very impressed with how well it
works, and as a general purpose "I need to get stuff done in an
untrustworthy environment" it did an excellent job.  I've yet to write
an article on the specifics because I'm still digging out at work, but
when I do I'll get the link out there.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

Sing loud!

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlB3G9AACgkQO9j/K4B7F8GjiQCgliQdwzjS2GyU2hpk9Jp6GD80
YGMAoO1REt/EEWvjF+UST56XYTCjv0er
=zM+i
-END PGP SIGNATURE-
--
Unsubscribe, change to digest, or change password at: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech


Re: [liberationtech] Single board mini computers as circumvention tools

2012-06-25 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/23/2012 07:21 AM, Frank Corrigan wrote:
> Does anyone know of any research being done on the use of low-cost 
> single board mini computers to run the likes of online
> circumvention tools like VPN, Tor, Gibberbot etc

DJ Palombo touched on a few of these issues in his presentation at
CarolinaCon earlier this year.

https://blip.tv/carolinacon/episode-6158272

- -- 
The Doctor [412/724/301/703] [ZS]

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"Learning is its own reward.  Nothing I can say is better than that."
- --Michael Hart

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk/opIUACgkQO9j/K4B7F8FCYwCgyFQPVlL0aedT3p+vAdz4CoUm
rGgAoMGFQPbWS6Xd2AIXmbijQRwv/tba
=JmrE
-END PGP SIGNATURE-
___
liberationtech mailing list
liberationtech@lists.stanford.edu

Should you need to change your subscription options, please go to:

https://mailman.stanford.edu/mailman/listinfo/liberationtech

If you would like to receive a daily digest, click "yes" (once you click above) 
next to "would you like to receive list mail batched in a daily digest?"

You will need the user name and password you receive from the list moderator in 
monthly reminders. You may ask for a reminder here: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Should you need immediate assistance, please contact the list moderator.

Please don't forget to follow us on http://twitter.com/#!/Liberationtech


Re: [liberationtech] FB-like "Twitter-connect" soon. How can we avoid all this tracking?

2012-06-04 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 05/30/2012 01:50 PM, Bernard Tyers - ei8fdb wrote:

> Does anyone have an opinion on the browser plugin Ghostery? [3] It 
> "seems" to allow web browser users to block these cross site
> tracking bugs, however I have not yet tested Ghostery fully.
> According to their website:
...
I've been using Ghostery for over a year and it seems to do what it
says on the tin.  I've deployed it on all of my workstations at home
and also at work as basic security.  It even updates its ruleset over
Tor if you're using it with the TBB (confirmed with tcpdump).

> Has anyone tested this plugin to see what information is leaked
> back to Ghostery servers?

When last I checked with tcpdump (about sixteen months ago) I saw no
such leakage.

- -- 
The Doctor [412/724/301/703] [ZS]

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"You're messin' with my Zen thing, man." --Kevin Flynn, _Tron Legacy_

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk/NCwsACgkQO9j/K4B7F8EfBACfbpXG0cI3j400tp9pP0T8C2+x
8kkAmgP2/SmMc/mYJqBnuFCLpbP48p0E
=zuvQ
-END PGP SIGNATURE-
___
liberationtech mailing list
liberationtech@lists.stanford.edu

Should you need to change your subscription options, please go to:

https://mailman.stanford.edu/mailman/listinfo/liberationtech

If you would like to receive a daily digest, click "yes" (once you click above) 
next to "would you like to receive list mail batched in a daily digest?"

You will need the user name and password you receive from the list moderator in 
monthly reminders. You may ask for a reminder here: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Should you need immediate assistance, please contact the list moderator.

Please don't forget to follow us on http://twitter.com/#!/Liberationtech


Re: [liberationtech] Flame | sKyWIper - 'the son of stuxnet' -

2012-05-30 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 05/30/2012 02:59 AM, Eugen Leitl wrote:

Disclaimer: I haven't gotten my hands on a copy of Flame to take
apart yet.

>> They also compare it with Stuxnet. All bullocks?
> Yes.

Stuxnet was designed to wreck centrifuges.  As far as is known right
now, destructive functionality (aside from torching a machine it's on
when commanded to, presumably to cover its tracks) hasn't been
mentioned in any accounts of Flame thus far.

> "Sounds like something a defense contractor would do." "Let's make 
> it easily scriptable"

That's pretty forward thinking for a defense contractor.  Unusually so.

> After having looked at the text strings and screenshots: "that 
> looks like it was done by Americans"

The thing that jumped out at me in this regard are the names of some
of the modules: 'gator' isn't a diminutive of 'alligator' one hears
often outside of the US.  'beetlejuice' isn't common heard outside of
the States, either (the movie's not often thought of these days;
astronomy buffs tend to call 'betelguise' 'betelguise' unless they're
talking to little ones).

- -- 
The Doctor [412/724/301/703] [ZS]

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

/b/: Where even Lain fears to tread.

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk/GOdYACgkQO9j/K4B7F8FwDwCdGI28Qexxj/CgAx1u0LhXsYv1
8HgAoOe7A6myRMk5/jR07tNeQcWdfXeh
=dgUM
-END PGP SIGNATURE-
___
liberationtech mailing list
liberationtech@lists.stanford.edu

Should you need to change your subscription options, please go to:

https://mailman.stanford.edu/mailman/listinfo/liberationtech

If you would like to receive a daily digest, click "yes" (once you click above) 
next to "would you like to receive list mail batched in a daily digest?"

You will need the user name and password you receive from the list moderator in 
monthly reminders. You may ask for a reminder here: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Should you need immediate assistance, please contact the list moderator.

Please don't forget to follow us on http://twitter.com/#!/Liberationtech


Re: [liberationtech] Privacy-minded search engines?

2012-05-02 Thread The Doctor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 05/01/2012 10:12 AM, ale fernandez wrote:
> I wonder if the distributed ones Seeks and yacy are any good for
> privacy?

YaCy markets itself as being protective of users' privacy:

http://yacy.net/en/Philosophy.html

There is no ToC on this page, so search for "The advantages of
decentralized".

- -- 
The Doctor [412/724/301/703]

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"What bothers me is, nothin' does."

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk+hZ7wACgkQO9j/K4B7F8ETZgCfcLR34treZi670AzGQnz2enAk
wUcAn3YRBSh/PwTUaINYn5gbSGXpk/pN
=d/Ag
-END PGP SIGNATURE-
___
liberationtech mailing list
liberationtech@lists.stanford.edu

Should you need to change your subscription options, please go to:

https://mailman.stanford.edu/mailman/listinfo/liberationtech

If you would like to receive a daily digest, click "yes" (once you click above) 
next to "would you like to receive list mail batched in a daily digest?"

You will need the user name and password you receive from the list moderator in 
monthly reminders. You may ask for a reminder here: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Should you need immediate assistance, please contact the list moderator.

Please don't forget to follow us on http://twitter.com/#!/Liberationtech