digitalcourage.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Diese Instanz wird betrieben von Digitalcourage e.V. für die Allgemeinheit. Damit wir das nachhaltig tun können, erheben wir einen jährlichen Vorausbeitrag von 1€/Monat per SEPA-Lastschrifteinzug.

Server stats:

857
active users

#e2ee

11 posts9 participants0 posts today
Replied in thread

@ticho @delta @torproject isn't that related to that "#blockchain-based" #AntisocialNetwork?

  • Having real #E2EE & decoupling the #message from #transport mechanism is key when communicating behind enemy lines and facing massive #SIGINT deployments against oneself.

Stuff like The "#OfflinePGP method" are really important skill for everyone!

youtube.com/watch?v=vdab4T_CoN8

Replied in thread

@soatok That's what bothers me with @Tutanota. They lack manual key verification since the beginning, meaning they can MITM all encrypted exchanges without anyone noticing, it was reported to them almost 8 years ago (github.com/tutao/tutanota/issu), and they are still claiming to be "the most secure email provider" (one example here: tuta.com/blog/gnoppix-open-sou) 😩 I appreciate what they are trying to accomplish, but a bit of humility would be much appreciated.

The client does not expose key verification to the user, all users of Tutanota must trust Tutanota to not provide forged keys and perform an MITM attack, this defeats the whole security model of Tu...
GitHubManual key verification · Issue #768 · tutao/tutanotaBy llebout

"Politicians wanting to undermine encryption must understand that by doing so, they will weaken encryption for everyone. There is no way to build a “secure backdoor.” […] If a vulnerability exists, the question is when it will be found. If a master key is created, the question is when it will be stolen."

tuta.com/blog/opinion-signalga

TutaSignalgate 2.0 proves it - there’s no such thing as a “Backdoor for the Good Guys Only” | TutaSensitives data fell into the hands of criminals because US officials were using a non-encryption version of the popular chat app Signal.
Continued thread

Step 3: turned off #iCloud syncing of calendar, notes, contacts etc. in favour of local syncing (first time via USB from my mac Mini, then after that by WiFi). Clunky, but works. Might switch to an alternative #E2EE service, like Proton or fastmail, soon

DJ Slope's #YouTube ban, likely triggered by an automated #Google Drive flag, is a warning about over-reliance on big tech. One misstep can erase your digital life. To protect #privacy and control, self-host whenever possible, avoid centralizing data, use end-to-end encrypted tools, and keep services separate. Don’t wait for a ban to realize how fragile your online presence really is.

youtube.com/watch?v=H9zU00_I_H

"WhatsApp's intervention [in the Apple encryption case] shows the breadth of concern about the threat to privacy and security."

Many voices must be heard to "understand the full impact of what the Home Office is trying to do" with people's ability to access encrypted services in the UK.

🗣️ @jim, ORG's Exec Director.

bbc.co.uk/news/articles/cgmjrn

The WhatsApp app displayed on a phone screen
BBC NewsWhatsApp backs Apple in its legal row with the UK over user dataThe messaging app says the UK government's demands over data access could set a "dangerous precedent."

We said our #zeitkapsl desktop app would launch by June 7 – and we delivered. 🎉

Time to rescue those old hard drives from the closet and enjoy EU-based, end-to-end encrypted backups with a slick UI + link or QR sharing.

For better privacy, we used to stash our photos away on external drives too… but let’s be honest: we rarely looked at them again. It was just too tedious.

Not anymore -> Download: zeitkapsl.eu/en/downloads/