11.17.20

Regaining Control Over Infrastructure With Decentralisation and Trusted Encryption

Posted in Free/Libre Software, GNU/Linux at 11:46 am by Dr. Roy Schestowitz

Clown computing isn’t about security but lack of it (you’ve been compromised the moment you migrated to ‘the clown’)

Cloud Mass / rain is coming

Summary: Considering some recent developments in the GnuPG project, there are growing reasons for concern; recently we’ve been studying what alternatives to it already exist and are sufficiently mature; there are other betrayals or cases of divergence from a strict trust model and the issue needs to be brought up a lot more often

SOME of ours readers are security folks. They mostly agree with what we’ve published about conflating “fake trust” (authorisation from monopolies) with the user’s trust (in effect not outsourcing trust to some dodgy, military-connected firms) and the idea that encryption between node and server (e.g. Facebook user and Facebook servers) is somehow “privacy”, never mind if Facebook abuses all the data it gathers and moreover sells this data. This isn’t privacy. This is a joke. The media helps these monopolies mislead the public, leaving people utterly confused about what privacy even means. Google says it’s improving GMail privacy/security while harvesting, scanning and sharing with governments contents of E-mails. Is that privacy? Microsoft puts back doors in Windows (there’s evidence), but at the same time it claims to deliver “security updates”. What does security mean in this context? National security? As in US access to all of the files and communications of innocent people? Even on their own desktop/laptop?

But that’s where it gets even worse. Years ago the father of Linus Torvalds said very publicly that his son had been asked by the NSA to put back doors in Linux. Not only did the son not deny this; he turned a question about it into a joke, refusing to explain if he agreed or not. This is no way to establish or regain trust.

Bison comingRecently, in light of the Guix petition, we’ve received some mail alarming us about GnuPG (it is among the signatures there, in effect seeking the ousting of Richard Stallman from the GNU Project — a project that he founded).

“GnuPG is showing signs of compromise by outsiders,” a reader recently told us. “I think we need to start looking at alternatives before the spyware starts to (inevitably) creep in. If [Werner] Koch can accommodate Yubico, he can accommodate the NSA and friends.”

The Yubico Authenticator is developed on Microsoft (NSA/PRISM) servers with proprietary software and the product itself isn’t trustworthy; it's proprietary itself. Yubikey is expensive snakeoil which raises the access barrier, both technically and fiscally (how many in poor African countries would shed a grand or two for a bunch of glorified “keys”?). Who stands to benefit? Probably the deep-pocketed (state-subsidised) surveillance giants that have redefined “security” and “privacy” their own way (they want us to assume they’re guardians of both, not agents or facilitators of digital imperialism).

In the coming days we shall be writing about, then exploring, a plethora of alternatives. They do exist, not many people use these, and the media certainly isn’t giving them the publicity they deserve. A lot of media coverage is nowadays up for sale; those who raise more money can dominate publishers or even so-called ‘influencers’ in social control media (to get paid-for ‘endorsements’).

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

This post is also available in Gemini over at:

gemini://gemini.techrights.org/2020/11/17/trust-models/

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Over 1,000 EPO Workers Initiate Legal Challenge Against the EPO's Attack on Salaries (in Defiance of Assurances Made to Workers Who Relocate to Another Country With Whole Families)

    The EPO’s attack on workers and pensioners isn’t going ahead without challenge; while the “Mafia” (what EPO workers call the management) loots the organisation it takes away money from the workers — i.e. from besieged folks who do all the work and face growing workloads during a pandemic



  2. Who is Richard Stallman?

    Reproduced with permission



  3. IRC Proceedings: Tuesday, April 13, 2021

    IRC logs for Tuesday, April 13, 2021



  4. Links 13/4/2021: FreeBSD 13.0 Final, Slackware 15.0 GNU/Linux Beta Release and OpenMandriva Lx 4.3 Plans

    Links for the day



  5. IBM Stroking the Masters

    IBM continues to diminish its weakly-supported thesis about the word “Master” being inadequate in all contexts and IBM’s front group, the Linux Foundation, has just promoted more of that same self-serving agenda in the corporate media (screenshot below from 5 minutes ago)



  6. The 'Stallman Support' Web Site and How You Can Support Truth, Not Just Software Freedom

    The Stallman Support Dot Org Web site (stallmansupport.org, "In Support of Richard Stallman“), endorsed by Stallman himself, sets the record straight while the corporate media keeps peddling lies and distortions



  7. An Examination of Correspondence Between the Tweedledum-Tweedledee Duo, Lutz and Ernst

    A quick look at the letters and E-mails sent back and forth from the current VP5 and former VP5 of the EPO, Europe’s second-largest institution that the German government has let exist outside the rule/reach of any law



  8. EPOLeaks on Misleading the Bundestag -- Part 16: An Inimitable Duo

    How the efforts to reform the EPO's data protection framework were derailed by the actions of Lutz and Ernst



  9. How the GNU Operating System Really Started (Almost a Decade Before Linux Came Out)

    Later this year Linux turns 30, but Linux is just a component added to the GNU Operating System, developed a very long time earlier based on the design of UNIX (the mainstream media likes to distort that part of history); here’s the creator of the GNU Operating System, telling me his story here in the United Kingdom (we did many clips like these and this one seems very timely)



  10. Richard Stallman: The Other Things I Have to Say I Put on Stallman.org... Reject the Idea That You Have to Accept Something Like Facebook

    Transcript below



  11. An Ode to Dr. Ernst

    THE BUDGET is right...



  12. During Pandemic, With Rising Inflation, Corrupt EPO Management With Its 'Shadow Budget' Cracks Down on Education and Childcare Allowance

    While hoarding and misusing money (by basically granting lots of patents that ought not be granted) the management of the EPO hides it aside, then proceeds to crushing salaries and benefits of staff, even pensioners



  13. IRC Proceedings: Monday, April 12, 2021

    IRC logs for Monday, April 12, 2021



  14. In Support of Richard Stallman Normalizing Truth, Reason, Dialogue: Introduction

    Reproduced with permission.



  15. Lunduke: Stallman & The FSF Respond To The Mob!

    A video response in support of RMS



  16. Links 12/4/2021: RSS Guard 3.9.2 and IBM-Funded Hacks Keep Attacking RMS

    Links for the day



  17. EPOLeaks on Misleading the Bundestag -- Part 15: Different Strokes for Different Folks

    Dr. Ernst and Raimund Lutz colluded to protect EPO management from a much-needed investigation; Ernst has since then been rewarded with a do-nothing job by António Campinos



  18. EPO President Campinos Lying to JURI

    Benjamin Henrion recorded today's hearing and uploaded it. “Campinos,” according to him, claims that (to paraphrase) “London [is] irrelevant to get UPCA running” (that’s very obviously a lie), so what we have here is António Campinos lying on behalf of the entire EPO, just as Benoît Battistelli did. Campinos has decided to “have fun,” we’ve been told, speaking of UPCA “upper law” (which is meaningless junk) at around 51:00. He clearly didn’t come prepared and he mumbles a lot. What awful leadership for what was supposed to be the best of Europe’s science…



  19. Supporting RMS With a Meme!

    As the saying goes, a picture is worth a thousand words.



  20. If You Want to Support a Real Community...

    We’ve just mentioned the fake 'community' of openSUSE and now it’s time to examine what Fedora has truly become under IBM



  21. OpenSUSE Hates Your Freedom, But It Loves the Proprietary Software Reseller That Is the True 'Master' of OpenSUSE

    OpenSUSE is inclusive of Microsoft and other companies that attack human rights and [cref 141916 enable nationalists]; but apparently what bothers OpenSUSE very, very much is the people who started the operating system SUSE is selling



  22. Links 12/4/2021: Lagrange 1.3.2, Linux 5.12 RC7

    Links for the day



  23. IRC Proceedings: Sunday, April 11, 2021

    IRC logs for Sunday, April 11, 2021



  24. EPOLeaks on Misleading the Bundestag -- Part 14: The Notorious Revolving Door

    The Benoît Battistelli-António Campinos shuffle left some people in the EPO’s upper management better off; they’re being rewarded for complicity, so there’s no incentive to do the right thing but to do the wrong thing



  25. Links 11/4/2021: GnuPG 2.3.0, Linux 5.13 Additions

    Links for the day



  26. All EPO Articles Are Available Over Gemini Protocol

    For lighter and more privacy-preserving access to Techrights use the Gemini capsule instead of the Web site



  27. Judge and JURI

    The Committee on Legal Affairs, a.k.a JURI, meets the EPO tomorrow (in 24 hours); will abuses by António Campinos and Benoît Battistelli be brought up?



  28. EPOLeaks on Misleading the Bundestag -- Part 13: The Failed Promise of a “Good Governance” Guru…

    Before becoming an absent-minded Vice-President of António Campinos Christoph Ernst was posing as the very opposite of what he would become



  29. Gemini Gateways for IPFS

    The World Wide Web is fine for a lot of things, but for controversial publications and publications that invoke the 'wrath' of corporations/states/plutocracy we must look beyond the traditional protocols, choosing decentralised means and self-hosted means of publication (instead or at the very least in conjunction)



  30. Challenging Times for EPO Management

    A discussion of the status quo at Europe's second-largest (but scarcely-understood) institution, subjected to a JURI hearing tomorrow afternoon


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts