Re: [liberationtech] FW: NSA Admits: Okay, Okay, There Have Been A Bunch Of Intentional Abuses, Including Spying On Love Interests | Techdirt

2013-08-24 Thread coderman
On Sat, Aug 24, 2013 at 5:21 AM, michael gurstein wrote: > Okay, so we have a few joke "abuses" to divert attention but what about the > intentional non-abuses and the non-joke ones... what this demonstrates is two fold: first, that any motive which may arise, no matter how petty, has resulted

Re: [liberationtech] Standalone JS apps vs. browser extensions, which is better?

2013-08-24 Thread Griffin Boyce
On 08/24/2013 05:13 PM, Francisco Ruiz wrote: > > My encryption app, PassLok, is currently in the shape of a standalone, > static web page with two text boxes where users copy and paste plain > or encrypted messages. I am considering the possibility of making a > browser extension version out of it

Re: [liberationtech] Standalone JS apps vs. browser extensions, which is better?

2013-08-24 Thread Eduardo Robles Elvira
Hello Francisco: We have the same dilemma in our online decision-taking software (Agora voting). Browser extensions are more secure by being more static i.e. the code is not loaded visiting a website. In general, this is a problem of trust. If you're doing client-side encryption you have multiple

[liberationtech] Standalone JS apps vs. browser extensions, which is better?

2013-08-24 Thread Francisco Ruiz
My encryption app, PassLok, is currently in the shape of a standalone, static web page with two text boxes where users copy and paste plain or encrypted messages. I am considering the possibility of making a browser extension version out of it, probably along the lines of myMail-crypt or Mailvelope

Re: [liberationtech] Announcing Scramble.io

2013-08-24 Thread Nicolai
On Fri, Aug 23, 2013 at 06:22:02PM -0400, Tom Ritter wrote: > SSL is Secure and Memorable, but highly centralized. (It is secure > because you have to prove ownership of a name to get a certificate for > it.) > This technique is Secure and Decentralized - but not memorable. Agreed regarding scra

[liberationtech] Free Feedspot RSS Reader Pro subscription to Stanford researchers, practitioners, and journalists

2013-08-24 Thread Anuj Agarwal
Hello! My name is Anuj. I'm Founder of Feedspot - A Google Reader+Google Alerts replacement. Researchers, Practitioners, Bloggers and other professionals use it to keep up with their favorites news sites and blogs. http://www.feedspot.com Feedspot is an Informa

Re: [liberationtech] Announcing Scramble.io

2013-08-24 Thread Ralph Holz
Hi, > Off the top of my head, other techniques that make the same tradeoff are: > - Tor Hidden Services, as you mentioned > - SSH & OpenPGP fingerprints (here's my fingerprint, no matter where > you find it, that's my identifier) > - YURLs http://www.waterken.com/dev/YURL/httpsy/ > - From the

[liberationtech] FW: NSA Admits: Okay, Okay, There Have Been A Bunch Of Intentional Abuses, Including Spying On Love Interests | Techdirt

2013-08-24 Thread michael gurstein
Okay, so we have a few joke "abuses" to divert attention but what about the intentional non-abuses and the non-joke ones... Unless the NSA folks are just a bunch of love sick adolescents without plans for after retirement or some aspirations for making a killing in the stock market or that the way

Re: [liberationtech] Announcing Scramble.io

2013-08-24 Thread Michael Rogers
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi DC, Thanks for the reply. Responses to your responses inline. ;-) On 23/08/13 21:51, DC wrote: > The hash format (first 80 bits of SHA-1, encoded base32) is the > same as Onion URLs use. How do they avoid preimage attacks? (I > thought generating

[liberationtech] New Email: davidwo...@gmail.com

2013-08-24 Thread oaks
You have emailed to o...@mindfreedom.org I no longer work for mindfreedom. My personal email is: davidwo...@gmail.com Please make a note of that. Because of my disabilities I'll do my my best to read emails, but I may not be able to respond personally. For more info see the August 22nd 2013 ent

Re: [liberationtech] NSA Admits: Okay, Okay, There Have Been A Bunch Of Intentional Abuses, Including Spying On Love Interests | Techdirt

2013-08-24 Thread Karel BĂ­lek
I secretly hoped that is an Onion article. On Sat, Aug 24, 2013 at 6:46 AM, coderman wrote: > LOVEINT!!! > > oh god this alone makes it all worth it,,, thank you Snowden! > > P.S. setup a bitcoin donation address. > > best regards, > > > > > On Fri, Aug 23, 2013 at 9:21 PM, Yosem Companys wrote:

Re: [liberationtech] NSA Admits: Okay, Okay, There Have Been A Bunch Of Intentional Abuses, Including Spying On Love Interests | Techdirt

2013-08-24 Thread coderman
On Fri, Aug 23, 2013 at 10:25 PM, James S. Tyre wrote: > Best summary: https://twitter.com/slworona/status/370946271646711809 indeed; this codename gives the lie to all the congressional testimony, to all the claims of controls and judiciary oversight, to all the attestations of full compliance.

Re: [liberationtech] Announcing Scramble.io

2013-08-24 Thread Randolph D.
Hi DC, your problem has already benn solved, the AES end.to.end key can (and is often ) be transferred in a GnuPG like secured environment, e.g. like http://goldbug.sf.net - a full p2p decentral Email client - is using it. Does your service use a central approach? as only client side is secure, yo