11.17.20

Regaining Control Over Infrastructure With Decentralisation and Trusted Encryption

Posted in Free/Libre Software, GNU/Linux at 11:46 am by Dr. Roy Schestowitz

Clown computing isn’t about security but lack of it (you’ve been compromised the moment you migrated to ‘the clown’)

Cloud Mass / rain is coming

Summary: Considering some recent developments in the GnuPG project, there are growing reasons for concern; recently we’ve been studying what alternatives to it already exist and are sufficiently mature; there are other betrayals or cases of divergence from a strict trust model and the issue needs to be brought up a lot more often

SOME of ours readers are security folks. They mostly agree with what we’ve published about conflating “fake trust” (authorisation from monopolies) with the user’s trust (in effect not outsourcing trust to some dodgy, military-connected firms) and the idea that encryption between node and server (e.g. Facebook user and Facebook servers) is somehow “privacy”, never mind if Facebook abuses all the data it gathers and moreover sells this data. This isn’t privacy. This is a joke. The media helps these monopolies mislead the public, leaving people utterly confused about what privacy even means. Google says it’s improving GMail privacy/security while harvesting, scanning and sharing with governments contents of E-mails. Is that privacy? Microsoft puts back doors in Windows (there’s evidence), but at the same time it claims to deliver “security updates”. What does security mean in this context? National security? As in US access to all of the files and communications of innocent people? Even on their own desktop/laptop?

But that’s where it gets even worse. Years ago the father of Linus Torvalds said very publicly that his son had been asked by the NSA to put back doors in Linux. Not only did the son not deny this; he turned a question about it into a joke, refusing to explain if he agreed or not. This is no way to establish or regain trust.

Bison comingRecently, in light of the Guix petition, we’ve received some mail alarming us about GnuPG (it is among the signatures there, in effect seeking the ousting of Richard Stallman from the GNU Project — a project that he founded).

“GnuPG is showing signs of compromise by outsiders,” a reader recently told us. “I think we need to start looking at alternatives before the spyware starts to (inevitably) creep in. If [Werner] Koch can accommodate Yubico, he can accommodate the NSA and friends.”

The Yubico Authenticator is developed on Microsoft (NSA/PRISM) servers with proprietary software and the product itself isn’t trustworthy; it's proprietary itself. Yubikey is expensive snakeoil which raises the access barrier, both technically and fiscally (how many in poor African countries would shed a grand or two for a bunch of glorified “keys”?). Who stands to benefit? Probably the deep-pocketed (state-subsidised) surveillance giants that have redefined “security” and “privacy” their own way (they want us to assume they’re guardians of both, not agents or facilitators of digital imperialism).

In the coming days we shall be writing about, then exploring, a plethora of alternatives. They do exist, not many people use these, and the media certainly isn’t giving them the publicity they deserve. A lot of media coverage is nowadays up for sale; those who raise more money can dominate publishers or even so-called ‘influencers’ in social control media (to get paid-for ‘endorsements’).

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Censorship at the EPO is Counterproductive, Rendering the Censored Publications More Seductive and Censored People More Disgruntled

    The efforts to gag Techrights or to intimidate us have all been unfruitful; in a sense, they encouraged us to focus on EPO scandals even more and arguably invoked the 'Streisand Effect' at the EPO (most workers read this site, no matter what their bosses say)



  2. EPO Management Has No Plans Other Than Granting Loads of Invalid Patents (e.g. Software Patents) to Pocket Fees and Then Grift/Gamble With the Money

    The EPO does not know what the hell it’s doing; it’s more of that magical festival-like thinking, as if running a patent office is Eurovision



  3. Links 1/12/2020: KDE Plasma 5.20.4, GNU Octave 6.1, OpenZFS 2.0, and PinePhone KDE Community Edition

    Links for the day



  4. [Meme] Public Servants Who Only Serve Themselves and Their Predecessors (Who Gave Them the Job)

    The Benoît Battistelli-appointed António Campinos (an old friend of his) isn’t just covering up the EPO‘s financial scams but contributes to these; when will this house of cards (arse-covering) fall and will that take a special (independent) investigator?



  5. Censored EPO Publication: Battistelli Can Have His Multi-Billion Euro EPO Scam, So Why Can't Campinos Too?

    Mr. Campinos, seeing what Mr. Battistelli has managed to get away with (the Commission approves, having been infiltrated by friends of the ringleaders), piggybacks or follows the steps of his appointer by blasting almost a billion euros on a worthless project with no real purpose and the Central Staff Committee (CSC) warns it has "very high risk of mismanagement and fraud"



  6. Staff Representation of the EPO Explains to EPO Management That It's Breaking the Law, Robbing the Staff, and Lying to Staff

    Human rights, basic dignity and labour protections of EPO staff are routinely violated and the staff is also being robbed based on false pretenses; the staff representatives write to refute "[t]he Office’s report [which] has been made available on the Intranet"



  7. European Commission's Thierry Breton Covers Up EPO Corruption For His Friend Benoît Battistelli

    Thierry Breton is the sort of official who causes people to vote for Brexit (or similar exits from the EU); he’s enthusiastically defending EPO corruption and he also calls for constitutional violations in many member states — all in the name of patent maximalism (Team UPC’s coup attempt)



  8. IRC Proceedings: Monday, November 30, 2020

    IRC logs for Monday, November 30, 2020



  9. Links 30/11/2020: GhostBSD 20.11.28, Nitrux 1.3.5, Linux 5.10 RC6, GNOME Circle, Microsoft Collapses Again in Web Server Share

    Links for the day



  10. Alternatives to the World Wide Web, to HTML, to HTTP/S, and to the Internet

    Looking around the Web (yes, the Web) for alternatives to the Web (and the stack underneath the Web), we're finding that IPFS is mature and robust enough for our needs



  11. Management of the EPO Dragged to the International Labour Organisation Over Its Assault on the Right to Strike

    Opinion on strikes challenged by the Central Staff Committee of Europe's second-largest organisation; if strike rights are almost abolished there, what hope is there for the rest of Europe?



  12. [Meme] Management of the EPO Cannot Let the Staff Breathe or Smell Freedom

    Working for the EPO means giving up on one’s human rights; that’s the sort of conclusion many workers have reached



  13. “ViCo” is Nothing New (Not Even the Acronym), Done on 9/11 Last Year, Been Possible as Long as the EPO Has Existed

    Contrary to what many people are led to believe, the EPO isn't embracing innovation, it's just embracing COVID-19 and leveraging lock-downs (de facto house arrest to some) to impose an illegal practice on EPO staff and EPO stakeholders



  14. Release: Early Letters and Documents About Financial Hoax Disguised as EPO 'Study'

    It was over a year ago that staff representation at the EPO expressed concerns about what would later enrage workers — seeing that based on unscientific fabrications the EPO would take away what had been promised to them



  15. IRC Proceedings: Sunday, November 29, 2020

    IRC logs for Sunday, November 29, 2020



  16. Managing IP: Puff Pieces Galore for the EPO's Dictatorship (Complete With Buzzwords and PR Stunts)

    By giving a platform to notorious patent trolls and ‘engaging’ with the EPO‘s dictator (whom only 3% of EPO staff trusts) Managing IP is sort of giving away its real agenda, which isn’t journalism but conducting or assisting misinformation campaigns



  17. Links 29/11/2020: Genode OS Framework 20.11, Linux 5.11 Kernel Changes, and Latest in KDE Itinerary

    Links for the day



  18. Sincere Thoughts About Outreachy

    Outreachy's role in the Free software community and inclusion in the FSF's High Priority Projects, as seen from the eyes of a female coder from a minority group; she used to work for the Free Software Foundation (FSF) and she expresses concerns about what Outreachy has become



  19. Free Software Under Tyranny of Codes of Conduct as the Western Equivalent of Blasphemy Law (Corporations as the New Religion/Sponsors as Deities)

    The free speech crisis in Free software communities has enabled expulsion of opinionated people whose opinions truly matter; in their place we now have companies that bomb people, sometimes even kidnapping children and sterilising women because nothing says “Ethics” like naked fascism and corporate domination everywhere



  20. Release: 4 More Documents and Letters About the Financial Siege at Europe's Second-Largest Institution

    Documents disputing the accuracy of the "hoax" from António Campinos and the Mercers



  21. One Year Ago: The Last EPO Demonstration Before COVID-19

    About a year ago staff of the EPO apparently had its last protest (in front of the Isar building) before staff got ‘herded’ into homes, where workers became more isolated and even illegally spied on



  22. [Meme] Unified Patent Court Agreement (UPCA) is an Attack on Europe and the European Businesses That Don't Do Litigation

    Litigation lawyers and patent zealots want to set Europe ablaze with legislation that they themselves crafted; thankfully, however, they face constitutional obstacles, no matter how many politicians they bamboozle and buy



  23. Reasons EPO Staff Decided to Go on Strike This Year (Before or Until Coronavirus Prevented It)

    An year-old letter from the Staff Union of the European Patent Office (SUEPO) to the President of the EPO; 7 reasons for going on strike are enumerated



  24. EPO Can Save Money by “Dropping Events Like the Inventor of the Year, Reducing the Number of Managers, Throwing Less Money at Consultants or Bringing the Boards of Appeal Back into Office Buildings.”

    Constructive suggestions from EPO staff, made just over a year ago and assembled into a letter to their EPO colleagues



  25. The Real Fate of the UPC 'Stunt' in Germany Will be Known Next Month (or Next Year) and There Are Substantial Constitutional Barriers in the Way

    Contrary to what Team UPC wants people to think, UPC(A) isn’t a “done deal” in Germany; they never actually addressed the substance of complaints and with help from Benoît Battistelli‘s friends in the Commission they’re just attempting a blatant coup



  26. Microsoft Removes Free Software From GitHub Again, This Time for Motion Picture Association (MPA)

    GitHub is proving to be more of a censorship site than a code-sharing site; with the GitHub takeover Microsoft became a 'censorship police' or force of occupation against its ideological competition; just weeks after the YouTube-DL debacle and further take-downs seeking to 'protect' broken DRM schemes (by banning code) we can see that Microsoft isn't defending developers at all; it's just protecting the interests of MPA, RIAA and other Biden circles from the interests of the general population, which sometimes circumvents perfectly circumventable 'DRM' schemes



  27. IRC Proceedings: Saturday, November 28, 2020

    IRC logs for Saturday, November 28, 2020



  28. Help Make Techrights (and Other Technology-Centric Sites) More Robust to Censorship by Setting Up More IPFS Nodes

    We’re trying to improve the site’s availability (ensuring it can never be offline) and make it more censorship-resistant; people who adopt IPFS can make that happen while tackling the “bloated Web” and “centralised Internet” issues — all at the same time



  29. Microsoft Loves Linux and Android Apps Running on Windows Instead of GNU/Linux and Android Devices

    Microsoft loves Linux, they say; but as Microsoft's former VP James Allchin put it: "If you're going to kill someone there isn't much reason to get all worked up about it and angry -- you just pull the trigger [...] We need to smile at Novell while we pull the trigger."



  30. Links 28/11/2020: RenderDoc 1.11, GNOME 40 Scrolling Horizontally

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts