Techrights logo

IRC: #techrights @ FreeNode: Sunday, August 04, 2019

Join us now at the IRC channel.

<--Firee has quit (Quit: lolmoi)Aug 04 00:00
MinceRhttps://img.pr0gramm.com/2019/07/22/db2251a08349e7bb.jpgAug 04 00:18
MinceRhttps://full.pr0gramm.com/2019/07/22/bfaf9383b57e1c7d.jpgAug 04 00:34
<--zerogue has quit (Quit: Goodbye Cruel World)Aug 04 02:22
-->zerogue (~irc@nullstruct.com) has joined #techrightsAug 04 02:27
---MinceR gives voice to zerogueAug 04 02:50
schestowitzMrGreenFriendd: hiAug 04 03:03
MrGreenFrienddhiAug 04 03:03
schestowitzI suppose anonymity isn't the most important thingAug 04 03:07
schestowitzas if's known we spoke to EricAug 04 03:07
schestowitzthat is not the secretAug 04 03:07
schestowitzSo encryption-wise, well... if documents were already shown in court, then too the contents are not secretAug 04 03:08
MrGreenFrienddJami also has VoIPAug 04 03:13
schestowitzI used to do VoIP moreAug 04 03:15
schestowitzin this case we need to transmit files mostly and text can be done over IRC, unless there's more condidential stuffAug 04 03:16
MrGreenFrienddit is 2019, i think everything should be E2EE  :)  I'm just trying to helpAug 04 03:16
schestowitzvoip can be harder to take notes offAug 04 03:21
schestowitzpgp is for text and attachmentsAug 04 03:21
-viera/#techrights-Tux Machines: Games: Drift Into Eternity, Moonlighter - Between Dimensions DLC, MiniGolf Maker, Godot Vulkan Progress http://www.tuxmachines.org/node/126588 [https://pleroma.site/objects/868c28fe-dbcf-4077-901c-af48a18d1741]Aug 04 03:27
-viera/#techrights-Tux Machines: kate-editor.org Update http://www.tuxmachines.org/node/126589 [https://pleroma.site/objects/6ed8c17d-fe5f-4a61-8bc7-bbe4cde69122]Aug 04 03:30
MrGreenFrienddAFAIK, Signal works on Tablets & Android emulators: can use a seperate device with any phone number that can get SMS or call (e.g. landline)Aug 04 03:31
MrGreenFrienddhttps://signal.org/android/apk/Aug 04 03:32
-TechrightsBot-tr/#techrights-signal.org | NO TITLEAug 04 03:32
schestowitzif it's on a phone, then it cannot be secureAug 04 03:32
schestowitzI spoke to Eric about itAug 04 03:33
schestowitzEven SignalAug 04 03:33
schestowitzwhich strictly requires a phone numberAug 04 03:33
MinceRSignal insists on their software only being accessible in a form build by them via google playAug 04 03:33
MinceRi wouldn't trust such a form of "secure" communicationsAug 04 03:33
schestowitzVault7 shows the agents, CIA in this case, bypass the encryptionAug 04 03:33
schestowitzat the OS levelAug 04 03:33
MinceRs/ld/lt/Aug 04 03:34
MrGreenFrienddi haven't used this, but AFAIK  Signal works with Anbox:    https://anbox.ioAug 04 03:35
-TechrightsBot-tr/#techrights-anbox.io | Anbox - Android in a BoxAug 04 03:35
schestowitzI could never install a nboxAug 04 03:37
schestowitzI tried some months agoAug 04 03:37
schestowitzAndroid itself is not secure, it's never built to be secureAug 04 03:37
schestowitzthere are other means by which to transmit documentsAug 04 03:38
schestowitzand it's possible to compress the files with a passwordAug 04 03:38
<--mmu_man has quit (Ping timeout: 245 seconds)Aug 04 03:38
-viera/#techrights-Tux Machines: Events: DebCamp, Vintage Computer Festival West, Ubucon Europe http://www.tuxmachines.org/node/126590 [https://pleroma.site/objects/a072a188-4315-4eed-933c-055a08bbac7e]Aug 04 03:39
-viera/#techrights-Tux Machines: Porting wine to amd64 on NetBSD http://www.tuxmachines.org/node/126591 [https://pleroma.site/objects/4700d595-63a3-4d7b-b93a-6d1e1de24669]Aug 04 03:41
MrGreenFrienddMinceR, i haven't done this but here are the instructions.   u r saying this doesnt work?  https://github.com/signalapp/Signal-Android/wiki/How-to-build-Signal-from-the-sourcesAug 04 03:45
-TechrightsBot-tr/#techrights-How to build Signal from the sources · signalapp/Signal-Android Wiki · GitHubAug 04 03:45
MinceRnoAug 04 03:46
MinceRi'm saying when f-droid attempted to host their software, they came up with some bullshitAug 04 03:47
MinceRhttps://github.com/signalapp/Signal-Android/issues/281Aug 04 03:47
-TechrightsBot-tr/#techrights-Not yet published on F-Droid · Issue #281 · signalapp/Signal-Android · GitHubAug 04 03:47
-viera/#techrights-Tux Machines: AMD Radeon GCN Offloading Support For OpenMP/OpenACC On The Way For GCC 10 http://www.tuxmachines.org/node/126592 [https://pleroma.site/objects/7c5a3c08-1a4d-4409-a078-ca3f7debce28]Aug 04 03:50
MrGreenFrienddschestowitz,  i thought that Vault7 exploits do not apply to Anbox or https://www.android-x86.org?  i'm guessing: CIA would simply pressure companies to   add binary-blobs to their software,  or worse exploit the baseband-firmware--- neither which apply for Andbox/Android-86Aug 04 03:51
-TechrightsBot-tr/#techrights-www.android-x86.org | Android-x86 - Porting Android to x86Aug 04 03:51
schestowitztrueAug 04 03:51
schestowitzBut Eric would probably not use AnboxAug 04 03:52
schestowitzyesterday we spoke about phones not being secureAug 04 03:52
schestowitzas for Anbox, after I had generated a Android app I tried to install Anbox without successAug 04 03:52
schestowitzI think pgp would work best if he needs strictly private chatAug 04 03:53
schestowitzhttp://techrights.org/2019/01/28/another-call-for-epo-leaks/Aug 04 03:53
-TechrightsBot-tr/#techrights-techrights.org | Another Call for EPO Leaks | TechrightsAug 04 03:53
schestowitzhttp://techrights.org/2017/06/17/epo-whistleblowing-guidelines/Aug 04 03:54
-TechrightsBot-tr/#techrights-techrights.org | European Patent Office (EPO) Whistleblowing Guidelines | TechrightsAug 04 03:54
schestowitzhttp://techrights.org/2017/06/20/whistleblowing-guidelines-part-2/Aug 04 03:54
-TechrightsBot-tr/#techrights-techrights.org | European Patent Office (EPO) Whistleblowing Guidelines: Motivation and Impact of Leaks | TechrightsAug 04 03:54
schestowitzhttp://techrights.org/2017/12/29/epo-whistleblowers/Aug 04 03:54
-TechrightsBot-tr/#techrights-techrights.org | Another Option for EPO Whistleblowers | TechrightsAug 04 03:54
schestowitzmore tips thereAug 04 03:54
MrGreenFrienddMinceR, yeh, it does seem like a bullshit reason why Moxie doesnt want Signal in Fdroid.  However, i still think Moxie/Signal is trustworthyAug 04 04:05
MrGreenFrienddMinceR, this is how i verify the Signal.apk  https://blog.torproject.org/mission-improbable-hardening-android-security-and-privacyAug 04 04:05
-TechrightsBot-tr/#techrights-blog.torproject.org | Mission Improbable: Hardening Android for Security And Privacy | Tor BlogAug 04 04:05
MrGreenFrienddMinceR, search that website for "tirefire" to find Signal-verification instructions  :)   "Even if Signal won't make the criterion for the official F-Droid repo (or wherever that tirefire of a flamewar is at right now)"  Aug 04 04:09
MinceR:)Aug 04 04:11
schestowitzMinceR: he worked for FBAug 04 04:16
schestowitzthey put a back door in everythingAug 04 04:16
schestowitzhe's compromisedAug 04 04:16
schestowitzthey keep private keys on serversAug 04 04:16
schestowitzbut that aside, we probably don't need Signal for thisAug 04 04:16
schestowitzthere are other, possible simpler methods for passing text and filesAug 04 04:17
schestowitzanonymity isn't required in this caseAug 04 04:17
MrGreenFrienddschestowitz, who is "he"?  moxie worked for facebook??Aug 04 04:18
acer-boxhttps://en.wikipedia.org/wiki/Moxie_MarlinspikeAug 04 04:20
-TechrightsBot-tr/#techrights-en.wikipedia.org | Moxie Marlinspike - WikipediaAug 04 04:20
acer-box"Between 2014 and 2016, Marlinspike worked with WhatsApp, Facebook, and Google to integrate the Signal Protocol into their messaging services."Aug 04 04:20
<--schestowitz has quit (Quit: Konversation terminated!)Aug 04 04:20
-->schestowitz (~roy@unaffiliated/schestowitz) has joined #techrightsAug 04 04:21
schestowitzpasted from another PCAug 04 04:21
schestowitzas I had copy-paste issuesAug 04 04:21
MrGreenFrienddoh, u mean FB paid him to use his Signal-protocol in WhatsApp.  yeh , i know about that, but that doesnt mean that Signal is compromised.  Aug 04 04:21
schestowitzanyway, they let the network be compromised by intentionally weak networks that have back door/government accessAug 04 04:21
schestowitzWhatsApp is compromisedAug 04 04:22
schestowitzthe governments can request access to it, and do...Aug 04 04:22
schestowitzbut that's not the point anywayAug 04 04:22
schestowitzEric needs something simpler than VoIPAug 04 04:22
---MinceR gives voice to schestowitzAug 04 04:23
MrGreenFrienddi like to think that FB/whatsapp used Moxie to get good PR, to make WhatsApp 2.0 (with Signal Protocol).  and then as soon as Moxie walked out the door.  FB  changed WhatsApp to 2.0.1 (now with backdoor)  hahahaAug 04 04:24
schestowitzthey'll say it's to comply with the lawAug 04 04:24
schestowitzand guess where these serves are located anyway (NSL)Aug 04 04:25
oiaohmschestowitz: its when whatsapp changed to signal saw the 5 eyes asking for backdoor access.Aug 04 04:26
oiaohmBefore that it was server client so  able to get man in middle quite simple.Aug 04 04:26
schestowitzMrGreenFriendd: our main mitm threat here is MicrosoftAug 04 04:33
schestowitzas they might want to get advanced knowledge of what's being publishedAug 04 04:33
schestowitzto suppress or refuteAug 04 04:33
schestowitznot the government is the threat here, the overlap between it and corporations notwithstandingAug 04 04:33
MrGreenFrienddi'm sure u guys have seen this, but this shows Signal is pretty well battle-tested:  when Signal was required by a USA Federal Grand Jury - Supoena,  to provide data associated with phone numbers including:  name, addresses, phone numbers, email addresses, payment, IP logs, cookies, account history, etcAug 04 04:37
MrGreenFrienddSignal only gave up the:  time of: account creation & last connection!   And fought the "gag order" and won (with help of ACLU)    https://www.aclu.org/blog/national-security/secrecy/new-documents-reveal-government-effort-impose-secrecy-encryptionAug 04 04:39
-TechrightsBot-tr/#techrights-www.aclu.org | New Documents Reveal Government Effort to Impose Secrecy on Encryption Company | American Civil Liberties UnionAug 04 04:39
MrGreenFrienddhttps://signal.org/bigbrother/eastern-virginia-grand-jury/Aug 04 04:39
-TechrightsBot-tr/#techrights-signal.org | NO TITLEAug 04 04:39
schestowitzit's possible they already have the dataAug 04 04:40
schestowitzbut they need to make it seem legalAug 04 04:40
schestowitzParallel ConstructionAug 04 04:40
MrGreenFrienddschestowitz,  u mean by exploit 'endpoints'  yeh, but that is diff problemAug 04 04:40
schestowitzesp. when using a phone with its proprietary baseband OSAug 04 04:40
MrGreenFrienddi agree, but that is out of Signal's scope, it is just an app-- not an OS..  it seems like the most secure Android OS is GrapheOS, but yeh, still same "blackbox problem" of the basebandOS   https://GrapheneOS.orgAug 04 04:43
-TechrightsBot-tr/#techrights-GrapheneOS.org | GrapheneOSAug 04 04:43
MrGreenFrienddhttps://www.reddit.com/r/GrapheneOS/   it is CopperHeadOS "reincarnated" (same dev)Aug 04 04:44
-TechrightsBot-tr/#techrights-www.reddit.com | GrapheneOSAug 04 04:44
schestowitzwhy  not PGP?Aug 04 04:44
-viera/#techrights-Tux Machines: Security: GitHub (Microsoft) Lawsuit, LibreOffice FUD From Microsoft Tim, Slackware Patch/Upgrade and Debian LTS http://www.tuxmachines.org/node/126593 [https://pleroma.site/objects/2bf0e0f2-7539-4f77-a3a3-89446b308baf]Aug 04 04:47
MrGreenFrienddschestowitz,  PGP is clunky to use, and leaks tons of metadata (over email),  has no VoIP,  no ephemeral (disappearing) messages,  no "perfect forward secrecy",   really crappy 'key-stretching' for protecting privkeys  & symmetric encryption,  Aug 04 04:50
MinceRPGP is also vulnerable to social engineering downgrade attacksAug 04 04:51
schestowitzmetadata does not give away much in this caseAug 04 04:51
schestowitzit's public knowledge I speak to EricAug 04 04:51
MinceR(subtly break messages until a correspondent gives up and switch to unencrypted)Aug 04 04:51
schestowitzit's just the contents of our exchange that would be better off, strategically, not seen by a third party, notably Microsoft and its lawyersAug 04 04:52
MrGreenFrienddi love Moxie's quote:  "In the 1990s, I was excited about the future, and I dreamed of a world where everyone would install GPG. Now I’m still excited about the future, but I dream of a world where I can uninstall it."  https://moxie.org/blog/gpg-and-me/Aug 04 04:52
-TechrightsBot-tr/#techrights-moxie.org | NO TITLEAug 04 04:52
schestowitzhe competes with itAug 04 04:53
schestowitzand EFF helps him, on their payrollAug 04 04:53
schestowitzwhile FUDing PGPAug 04 04:53
schestowitzlike they did with efailAug 04 04:53
schestowitzthey never corrected themselvesAug 04 04:53
schestowitzthey assume html web pages as 'emails'Aug 04 04:53
schestowitz(eff run by hipsters now that the founder is dead)Aug 04 04:56
-viera/#techrights-Tux Machines: today's howtos and programming bits http://www.tuxmachines.org/node/126594 [https://pleroma.site/objects/2f26f6b8-60e6-44b4-a607-3eff7eb1a8ca]Aug 04 04:56
<--en__ has quit (Ping timeout: 268 seconds)Aug 04 04:57
-viera/#techrights-Tux Machines: today's leftovers http://www.tuxmachines.org/node/126595 [https://pleroma.site/objects/98bed0a9-d300-4ff6-98c7-6f321b079711]Aug 04 04:58
MrGreenFrienddschestowitz, i know PGP+email still "works", but it is 2019, we should be using something *better*.  I'm here to help Eric & you.   i'm just brainstorming on alternativesAug 04 05:03
schestowitzSignal needs a phone numberAug 04 05:04
schestowitzI don't have thatAug 04 05:04
MrGreenFrienddoh,i thought u had a landlineAug 04 05:04
schestowitzI doAug 04 05:05
-viera/#techrights-Tux Machines: Links 4/8/2019: GNU Guile 2.9.3 and Wine Staging 4.13 http://techrights.org/2019/08/03/wine-staging-4-13/ [https://pleroma.site/objects/cbf07c89-ff5c-484b-a30e-48efb8464efe]Aug 04 05:05
MrGreenFrienddwhat are your guys opinion on KeyBase?  looks like solid crypto, but kinda bloated program  https://keybase.io/Aug 04 05:06
-TechrightsBot-tr/#techrights-keybase.io | KeybaseAug 04 05:06
schestowitzcurl -s https://updates.signal.org/desktop/apt/keys.asc | sudo apt-key add -Aug 04 05:06
schestowitzecho "deb [arch=amd64] https://updates.signal.org/desktop/apt xenial main" | sudo tee -a /etc/apt/sources.list.d/signal-xenial.listAug 04 05:06
-TechrightsBot-tr/#techrights- ( status 404 @ https://updates.signal.org/desktop/apt )Aug 04 05:06
schestowitzsudo apt update && sudo apt install signal-desktopAug 04 05:06
schestowitzMrGreenFriendd: I have keybaseAug 04 05:07
schestowitzlooks like signal has their own repoAug 04 05:07
schestowitza tad off for free swAug 04 05:07
schestowitz*oddAug 04 05:07
schestowitzusually blobs do thisAug 04 05:07
schestowitzfrom https://signal.org/download/Aug 04 05:08
-TechrightsBot-tr/#techrights-signal.org | NO TITLEAug 04 05:08
MrGreenFrienddhttps://blog.cryptographyengineering.com/2014/08/13/whats-matter-with-pgp/Aug 04 05:08
-TechrightsBot-tr/#techrights-blog.cryptographyengineering.com | What’s the matter with PGP? – A Few Thoughts on Cryptographic EngineeringAug 04 05:08
schestowitzMrGreenFriendd: I will do another story about the subject shortlyAug 04 05:08
scientesschestowitz, as XRevan86 has pointed out Signal also requires identification by designAug 04 05:09
schestowitzpgp now hides subject linAug 04 05:09
schestowitzlineAug 04 05:09
schestowitznot identity of messenger unless they use remailersAug 04 05:09
schestowitzbut if set up, then afaik seeing message contents is difficultAug 04 05:09
schestowitzunless one uses Windows or some other OS with back doorsAug 04 05:09
scientesyouth is wasted on the youngAug 04 05:10
schestowitzfascinates me that Signal does not just give debian repos the code with checksums and allAug 04 05:11
MrGreenFrienddschestowitz, why not use KeyBase, instead of PGP+email?Aug 04 05:11
schestowitzyou're left having to trust the binaries Signal provides, it seemsAug 04 05:11
schestowitzand it's in the USAug 04 05:11
schestowitz(where there are crypto extort restrictions, their government conflates programs with grenades etc.)Aug 04 05:11
scientesalso signal hires only people that live in the USAug 04 05:11
scienteseven though its telecomuteAug 04 05:12
schestowitzMrGreenFriendd: that's possibleAug 04 05:12
MrGreenFrienddor Jami?Aug 04 05:12
schestowitzRing?Aug 04 05:12
scientesthey <s>probably</s> have links to the  NSAAug 04 05:12
schestowitzhttps://www.youtube.com/watch?v=wwRYyWn7BEoAug 04 05:13
-TechrightsBot-tr/#techrights-Linus Torvalds was approached by NSA for backdoor in Linux - Nils Torvalds (father of Linus) - YouTubeAug 04 05:13
schestowitzEven Torvalds (Oregon, same as Eric afaik) was approached by the NSA, according to his dadAug 04 05:13
scientesthose people at the NSA are crazyAug 04 05:14
scientesthey burn so much coalAug 04 05:14
scientesand they are full of delusionsAug 04 05:14
schestowitzimperialism mindsetAug 04 05:14
schestowitzgotta know what 8 billion people say all the timeAug 04 05:14
scientescatAug 04 05:14
scientescatsAug 04 05:14
scientescatsAug 04 05:14
scientescatsAug 04 05:14
schestowitzwatch how they spied on Assange even in the toiletsAug 04 05:14
MinceR>but it is 2019, we should be using something *better*Aug 04 05:15
MinceRCables?Aug 04 05:15
schestowitzthey had to have lawyer meetings in the ladies' looAug 04 05:15
scientesthe people at the NSA aren't worth the air they breatheAug 04 05:15
schestowitzjust to have better chance of confidential strategy-buildingAug 04 05:15
scientes<schestowitz> watch how they spied on Assange even in the toiletsAug 04 05:15
scientesreallyAug 04 05:15
scientescreepy bastardsAug 04 05:15
scientesassange is a martyrAug 04 05:15
schestowitzSpanish media wrote about the spying at the embassyAug 04 05:15
schestowitzEl Pais iircAug 04 05:16
scientesPaįsAug 04 05:16
scientesPaísAug 04 05:16
schestowitzthere's an accent thereAug 04 05:16
MrGreenFrienddschestowitz, yes,  SFLphone == Ring == Jami (they just love changing their name  haha)Aug 04 05:16
schestowitzbut I don't have a keyboard for itAug 04 05:16
MinceRalso, Tox over Tor, and even Ricochet if someone updates it :>Aug 04 05:17
schestowitzI use GB/EN keyboardAug 04 05:17
scientesyeah I finialy set up caps lock as composeAug 04 05:17
scientesI have a portugeese keyboard in en_US modeAug 04 05:17
scientesso the keys are labled all wrongAug 04 05:17
schestowitzMrGreenFriendd: I haven't use sip in agesAug 04 05:17
MrGreenFrienddschestowitz, Jami has VoIP, but no disappearing messages.   KeyBase has disappearing messages, but no VoIPAug 04 05:17
schestowitzwife and I used to use itAug 04 05:17
scientesthe spanish market all uses portugeese keyboards to reduce costAug 04 05:18
scientesschestowitz, i use it to call the USAug 04 05:18
schestowitzMrGreenFriendd: why not put it all in compressed encrypted archive, then mail it to me with the password separately?Aug 04 05:18
MinceRwasn't Ring the one that demanded to have root so it could fuck with the package manager and install packages before it would start building, without even telling the user what it wanted to install?Aug 04 05:19
MinceRworst build process i've ever seenAug 04 05:19
schestowitzsame ring?Aug 04 05:21
schestowitzI read something bad 2 days agoAug 04 05:21
schestowitzabout a different ringAug 04 05:21
MinceR¯\_(ツ)_/¯Aug 04 05:21
oiaohmMinceR: that is no the worst I have seen with ring build process but its well and truely up there.    Worst one I found not only wanted to screw with the package manager also added a kernel module to alter the scheduler to reduce it build time.Aug 04 05:21
MinceRlolAug 04 05:22
schestowitznot amazon's ringAug 04 05:22
schestowitzhttps://npmccallum.gitlab.io/post/do-not-use-ring-or-rustls/Aug 04 05:23
-TechrightsBot-tr/#techrights-npmccallum.gitlab.io | Do Not Use ring (or rustls)Aug 04 05:23
schestowitz(differnt ring)Aug 04 05:23
schestowitz"Aug 04 05:23
schestowitzMight I also mention that ring’s implementation doesn’t use blinding during RSA signing? Nor have they merged the latest attack mitigations for pkcs1_encode() from BoringSSL. It is easy to be fast when you’re insecure.Aug 04 05:23
schestowitzThen there’s the fact that they don’t do security embargoes. All disclosures are zero days. Never mind the fact that GitHub gives the ability to do all this sanely.Aug 04 05:23
schestowitzI’m willing to work around (and patch) some of these issues. But if I can’t contribute without a shakedown, what’s the point?Aug 04 05:23
schestowitzDon’t use ring.Aug 04 05:23
schestowitzUnfortunately, this means that rustls is now stuck. They are built on top of ring and are widely used in the Rust community. So I can’t recommend rustls until ring fixes its problems.Aug 04 05:23
oiaohmMinceR: that kernel module altered the scheduler to give almost 100 percent of cpu time to the build.   This was one of the research programs that is complet ass.Aug 04 05:23
schestowitzDon’t use rustls.Aug 04 05:23
schestowitz"Aug 04 05:23
schestowitzAlso another ringAug 04 05:23
schestowitzhttps://www.techdirt.com/articles/20190730/17171242684/amazon-has-already-roped-200-police-departments-into-ring-doorbell-surveillance-promotional-scheme.shtmlAug 04 05:24
-TechrightsBot-tr/#techrights-Amazon Has Already Roped 200 Police Departments Into Its Ring Doorbell Surveillance/Promotional Scheme | TechdirtAug 04 05:24
schestowitzhttps://www.businessinsider.com/amazon-says-200-us-police-departments-partner-with-ring-2019-7Aug 04 05:24
-TechrightsBot-tr/#techrights-www.businessinsider.com | Amazon says 200 US police departments partner with Ring - Business InsiderAug 04 05:24
oiaohmschestowitz: https://jami.net/  this was called ring.Aug 04 05:25
-TechrightsBot-tr/#techrights-jami.net | JamiAug 04 05:25
schestowitzhttps://www.vice.com/en_us/article/evy3yz/amazon-is-using-prime-day-to-lock-people-into-a-giant-surveillance-network-xyzAug 04 05:25
-TechrightsBot-tr/#techrights-Amazon Is Using Prime Day to Lock People into a Giant Surveillance Network - VICEAug 04 05:25
scientesschestowitz, that happened to me with libgcryptAug 04 05:25
scientesthe maintained decided to hold my patches ransomAug 04 05:25
schestowitzhaAug 04 05:25
scientespartially because I reported a security problemAug 04 05:25
schestowitzhttps://www.vice.com/en_us/article/j5wyjy/amazon-told-police-it-has-partnered-with-200-law-enforcement-agenciesAug 04 05:26
-TechrightsBot-tr/#techrights-Amazon Told Police It Has Partnered With 200 Law Enforcement Agencies - VICEAug 04 05:26
schestowitzhttps://www.techdirt.com/articles/20190725/16252942657/amazons-free-doorbell-cameras-only-cost-law-enforcement-agencies-their-dignity-autonomy.shtmlAug 04 05:26
-TechrightsBot-tr/#techrights-Amazon's Free Doorbell Cameras Only Cost Law Enforcement Agencies Their Dignity And Autonomy | TechdirtAug 04 05:26
scientesschestowitz, wow, what a piece of shitAug 04 05:26
scientespay to mergeAug 04 05:26
schestowitzhttps://www.vice.com/en_us/article/mb88za/amazon-requires-police-to-shill-surveillance-cameras-in-secret-agreementAug 04 05:26
-TechrightsBot-tr/#techrights-Amazon Requires Police to Shill Surveillance Cameras in Secret Agreement - VICEAug 04 05:26
schestowitzin short, the name "Ring" is ruinedAug 04 05:27
schestowitzI can see why one might want to renameAug 04 05:27
schestowitzthe above are all weeks/days oldAug 04 05:27
schestowitzfrom my short-term notes/dbAug 04 05:27
oiaohmschestowitz: jami/ring.cx early build process was a kind of a ass with needing package manager access  to so call make it simpler for end users to build.Aug 04 05:28
oiaohmschestowitz: that was fixed later.Aug 04 05:28
oiaohmschestowitz: yes there are fair too many things named ring and while they are named ring they seam to have a history of turning out to be defective in someway.Aug 04 05:29
schestowitzit has a bad ring to itAug 04 05:29
MrGreenFrienddMinceR,  BTW, here is another way of verifying Signal*.apk's  signing cert:  (i just tried it, didnt work)  $   apksigner verify --print-certs Signal*.apk  # https://gist.github.com/nolanlawson/aae1735f54012da8538adf05817a01a7Aug 04 05:30
-TechrightsBot-tr/#techrights-gist.github.com | How to check Signal APK SHA256 fingerprint · GitHubAug 04 05:30
schestowitzgithub = nsaAug 04 05:32
scientesschestowitz, I'll start timbre-ing peopleAug 04 05:32
schestowitzowned by the company that kick-started PRISMAug 04 05:32
schestowitzhttp://techrights.org/wiki/index.php/Microsoft_and_the_NSAAug 04 05:32
-TechrightsBot-tr/#techrights-techrights.org | Microsoft and the NSA - TechrightsAug 04 05:32
schestowitznow they push for automatic updates in githubAug 04 05:32
oiaohmMicrosoft did not kick start PRISM.   PRISM starts when Unix operating systems were still dominate in places like the NSA.Aug 04 05:33
schestowitzsame company that gives NSA zero-days wants to modify your code in an unsupervised fashion :-)Aug 04 05:33
oiaohmAssisted is valid.Aug 04 05:33
schestowitzno, PRISM documents show it started with Microsoft as first memberAug 04 05:33
schestowitzlater they added Skype, shortly after buying itAug 04 05:33
scientesthat's why Facebook bought WhatsAppAug 04 05:34
schestowitzwas it ukrainian?Aug 04 05:34
scientesmust. eliminate. threats. of. democracy.Aug 04 05:34
schestowitzor just the former dev/founderAug 04 05:34
schestowitzbuom?Aug 04 05:34
scientesits why they try to install shitty public transit systems in South America and Central America tooAug 04 05:35
schestowitzMoxie was complicit in luring people into whatsapp with fb back doorsAug 04 05:35
scienteseven though they are expensive and provide worse serviceAug 04 05:35
schestowitzI'm sure they paid him well for thatAug 04 05:35
schestowitzlike they paid StamosAug 04 05:35
scientesIts not anything besides WhatsApp is usable in South America eitherAug 04 05:36
scientesbecause they are corrupt with the telecomsAug 04 05:36
oiaohmschestowitz: yes Microsoft first memember in 2007.    https://en.wikipedia.org/wiki/SIGINT_Activity_Designator   The spying program that Prism comes out of starts in 2005.Aug 04 05:37
-TechrightsBot-tr/#techrights-en.wikipedia.org | SIGINT Activity Designator - WikipediaAug 04 05:37
schestowitznot with that nameAug 04 05:38
schestowitzor scopeAug 04 05:38
<--MrGreenFriendd has quit (Ping timeout: 258 seconds)Aug 04 05:38
oiaohmscope the 2005 document list objectives covering everything of PRISM.Aug 04 05:38
oiaohmIt just took them 2 years to get the first party to play ball.Aug 04 05:38
oiaohmschestowitz: big complex spying programs like prism don't in fact start up quickly.    NSA came up with the idea 2 years before.   Microsoft decide to cooperate possilbe after a year or 2 of presure then everything went down hill from there.Aug 04 05:42
-->MrGreenFriend (~MrGreenFr@104.200.129.212) has joined #techrightsAug 04 05:43
---ChanServ gives channel operator status to schestowitzAug 04 05:46
-->en__ (~x003n@unaffiliated/x003n) has joined #techrightsAug 04 05:46
---schestowitz gives voice to MrGreenFriendAug 04 05:46
scientesschestowitz, PR-for-pay is really only a github problem tooAug 04 05:47
scientesif you use the linux development model it is impossibleAug 04 05:47
MrGreenFriendcan someone please PM me the scrollback?  the last line i see is:   schestowitz> later they added Skype, shortly after buying iAug 04 05:48
scientesMrGreenFriend, this channel is publically loggedAug 04 05:48
MrGreenFriendlink?Aug 04 05:49
schestowitzpastedAug 04 05:49
schestowitzpmAug 04 05:49
MrGreenFriendgot ur PM, thanksAug 04 05:50
oiaohmscientes: Linux foundation would be able to do PR for pay not that I recommend it at all.Aug 04 05:50
schestowitzMrGreenFriend:  not in real timeAug 04 05:50
schestowitzand with 1-4 months delayAug 04 05:50
scientesoiaohm, yeah but Linus wouldn't put up with that shitAug 04 05:50
scientesand neither would the other developersAug 04 05:50
oiaohmscientes: PR for pay generally does not work.Aug 04 05:50
oiaohmscientes: so it fairly much flushing money down tollete.Aug 04 05:50
scientes> tollete.Aug 04 05:51
scientesSpanish Toilet?Aug 04 05:51
scientestoilettéAug 04 05:51
oiaohmMy mind just scrambed it.Aug 04 05:52
scientesI just blocked that ring developerAug 04 05:52
scientesand reported himAug 04 05:52
scientesnot as if that will do any goodAug 04 05:52
scientesPR for pay is a great way to earn trust and get jobs /sarcasmAug 04 05:52
oiaohmscientes: ring as in what.Aug 04 05:53
oiaohmscientes: too many things called ring.Aug 04 05:53
scientesoiaohm, https://npmccallum.gitlab.io/post/do-not-use-ring-or-rustls/Aug 04 05:53
-TechrightsBot-tr/#techrights-npmccallum.gitlab.io | Do Not Use ring (or rustls)Aug 04 05:53
scientesPR-for-payAug 04 05:53
MrGreenFriendschestowitz> MrGreenFriendd: why not put it all in compressed encrypted archive, then mail it to me with the password separately?"   huh?  what program are u talking about here? PGP?Aug 04 05:53
scienteslibgcrypt is also kinda shitty software, while it was easy to patch, the API sucksAug 04 05:54
scientesZinc is the best APIAug 04 05:55
<--oiaohm has quit (Read error: Connection reset by peer)Aug 04 05:55
scientesok, its not shitty, its just a poor API designAug 04 05:55
-->oiaohm (~oiaohm@unaffiliated/oiaohm) has joined #techrightsAug 04 05:55
oiaohmscientes: the rust ring developer asking for money is lot better than what we had with openssl where the developer did not ask for money and just let the backlog grow.Aug 04 05:57
oiaohmHe could have biased on donation and told noone as well.Aug 04 05:58
scientesI would rather the latterAug 04 05:58
scientesthe maintainer has every right to just not maintain itAug 04 05:59
oiaohmin my eyes the maintainer has the right to ask for money to maintain as well.Aug 04 05:59
scienteshe does, but it is very anti-social behaviorAug 04 06:00
scientesand if it is a go project, then they even have the path that the software usesAug 04 06:00
scientesit is reasonable to expect money to speed up workAug 04 06:00
oiaohmhe need money to put food in table as well.   Short of money does not make people very social.Aug 04 06:01
scientesoiaohm, drug dealers have to eat too, you knowAug 04 06:01
<--MrGreenFriend has quit (Ping timeout: 245 seconds)Aug 04 06:01
scientesoiaohm, and no, he lives in the US, where you do not need money to eayAug 04 06:01
oiaohmExactly money is kind of excuse for all kinds of evil.Aug 04 06:01
scientesthe government will give you money for freeAug 04 06:01
scientes*give you food for freeAug 04 06:02
oiaohmReally people have taken offence to him asking for money most are not thinking about is there some company that could employee him so he did not need to.Aug 04 06:03
scientesI mean yeah no-one should take offenseAug 04 06:03
scientesthey should just ignore him and work around himAug 04 06:03
oiaohmor assist him out of problem.Aug 04 06:03
scientesthat's not possibleAug 04 06:03
scientessuch people are never worth dealing withAug 04 06:03
-->MrGreenFriend (~MrGreenFr@104.200.129.212) has joined #techrightsAug 04 06:04
scientesI much prefer Ulrich Drepper to thatAug 04 06:04
oiaohmSome ways he open about it so its not like the one biasing on donation and not telling anyone.   So a person like that can be handled because they are not fibbing.Aug 04 06:05
---schestowitz gives voice to MrGreenFriendAug 04 06:05
scientesbiasing on donations is to be assumedAug 04 06:05
scientesthat doesn't mean to have to be an anti-social assholeAug 04 06:05
scienteshe acted without cultureAug 04 06:06
scientesI've done the sameAug 04 06:06
scientesbut it isn't okAug 04 06:06
oiaohmhe is telling everyone he has a backlog he is not paid to work on the code.  Aug 04 06:06
oiaohmand he truefully bias based on donations.Aug 04 06:07
oiaohmNothing here should be offensive.Aug 04 06:07
oiaohmSometimes we don't like to hear the truth about the state of development.Aug 04 06:07
scientesyeah you are rightAug 04 06:08
oiaohmLets say some party that was using the code decided to pay him a job to maintain the project he would not need mention backlog.Aug 04 06:08
scienteshe just should have more tact about itAug 04 06:08
oiaohmMore tact maybe.  But at least he is truthful about the state of the project.Aug 04 06:09
oiaohmYou can work with truthful.Aug 04 06:09
MrGreenFriendhttps://OnionShare.org   &  https://github.com/warner/magic-wormhole   are cool for sharing files, but only work 'synchronously' (i.e. Alice & Bob both online at same time)Aug 04 06:09
-TechrightsBot-tr/#techrights-OnionShare.org | OnionShareAug 04 06:09
-TechrightsBot-tr/#techrights-GitHub - warner/magic-wormhole: get things from one computer to another, safelyAug 04 06:10
oiaohmYou cannot really work with a maintainer that says this project is perfect and it a broken nightmare.Aug 04 06:10
scienteshehehehe so trueAug 04 06:10
scientesits not a bug, its a feature!Aug 04 06:10
oiaohmYes its not a bug its a feature is another option a maintainer can decide to take when they don't have enough hours to maintain.  I class that is far worse than asking for money.Aug 04 06:11
MrGreenFriend<schestowitz> like they paid Stamos"   Who is Stamos & what was he paid for?Aug 04 06:11
-->n003l (~x003n@unaffiliated/x003n) has joined #techrightsAug 04 06:13
oiaohmscientes: a lack of tact you can work with.   There are many more who fib(like bug is feature...) or hide it that you really cannot employ because you can never trust them not to fib to their employer.Aug 04 06:13
oiaohmIt upsets people when they hear that free software is not exactly free.  Someone has to pay so it develops.Aug 04 06:14
scientessoftware libreAug 04 06:14
scientesand then Amazon just rapes software libreAug 04 06:15
scientesso it becomes software with a gaping assholeAug 04 06:15
<--en__ has quit (Ping timeout: 245 seconds)Aug 04 06:15
MrGreenFriendwhen u guys say "Software Libre" or "Software Freedom",  is those both the same meaning as "Libre Software"?Aug 04 06:17
*scientes has too much work to do, and still took the Sabbath offAug 04 06:17
scientesMrGreenFriend, yes, but in Spanish the adjective comes afterAug 04 06:17
scientesSo free software becomes software libreAug 04 06:18
scientesbut you could also loan-word it into libre softwareAug 04 06:18
MrGreenFriendaww, ok.  yes, i agree that "Free Software" is a bad choice of words.... i bet 100 years from now, people will still be confused by its meaning.   i usually say "FOSS" instead, cuz that easily redirects the readers to the FOSS wikipedia siteAug 04 06:19
MrGreenFriendhttps://en.wikipedia.org/wiki/Free_and_open-source_softwareAug 04 06:20
-TechrightsBot-tr/#techrights-en.wikipedia.org | Free and open-source software - WikipediaAug 04 06:20
schestowitz[06:11] <MrGreenFriend> <schestowitz> like they paid Stamos"   Who is Stamos & what was he paid for?Aug 04 06:24
schestowitzlook it up, FB's CSOAug 04 06:24
MrGreenFriendsome funny jokes by "Free Software" detractors:  "Free as in 'Mattress'. because it has lots of bugs."   "Free as in 'Puppy'. Because u have to babysit it every step of the way"Aug 04 06:24
schestowitzMicrosoft-handled bloggers say thatAug 04 06:25
schestowitzto keep stigmaAug 04 06:25
schestowitzof lack of hygiene etc.Aug 04 06:25
MrGreenFriendi know i know, i love FOSS, but i just think it's funny (because we always have to say "Free as in 'Speech', not 'Beer'."  for the next 100 years  :)Aug 04 06:27
MrGreenFriendschestowitz, is "freeware" a correct term for the Dell Restore CD's?Aug 04 06:34
schestowitznoAug 04 06:35
schestowitzbut...Aug 04 06:35
schestowitzI am writing about this at this very momentAug 04 06:35
MrGreenFriendbecause that is another strong claim:  "the first man to go to jail for sharing freeware"Aug 04 06:35
schestowitzI had those 2 decade agoAug 04 06:35
schestowitzCompaqAug 04 06:35
MrGreenFriends/jail/prisonAug 04 06:35
schestowitzfreeware doesn't have this EULAAug 04 06:35
MrGreenFriendso then what would u call it, instead of 'freeware'?Aug 04 06:36
<--n003l has quit (Remote host closed the connection)Aug 04 06:42
MrGreenFriendbtw, here is FB adblocker for firefox/chromium:  https://github.com/tiratatp/facebook_adblockAug 04 06:43
-TechrightsBot-tr/#techrights-GitHub - tiratatp/facebook_adblock: An open-source Facebook Adblocker Chrome extensionAug 04 06:43
schestowitzads?Aug 04 06:53
schestowitzwhat's that? :-)Aug 04 06:53
MrGreenFriend:)   so, then i we'll use KeyBase with you?   but what about VoIP?Aug 04 07:01
schestowitzMrGreenFriend: here is my outlineAug 04 07:01
schestowitzYou are here ☞ <b>Part 4</b>: Aug 04 07:01
schestowitz<b>Part 5</b>: Microsoft's War on the Right to Repair (One's Own Computers) Makes Lundgren an 'Enemy' to MicrosoftAug 04 07:01
schestowitz<b>Part 6</b>: Damage Control Mode: Satya Nadella Fleeing Lundgren After Realising What Microsoft Had DoneAug 04 07:01
schestowitz<b>Part 7</b>: Slander and Libel From Microsoft (Demonising the Victim)Aug 04 07:01
schestowitzyou might want to pass this onAug 04 07:01
schestowitzI haven't written these yetAug 04 07:01
schestowitzand any more info on this can help, photos includedAug 04 07:02
schestowitzI am now writing Aug 04 07:02
schestowitzPart 4Aug 04 07:02
schestowitzstill untitleAug 04 07:02
schestowitzstill untitledAug 04 07:02
MrGreenFriendi can call MrGreen right now,  on Signal ;)    if u need me to ask him anythingAug 04 07:03
schestowitzask him about the outlineAug 04 07:05
schestowitz<h3>Overview</h3>        Aug 04 07:05
schestowitz<b>Part 1</b>: [cref 118744]Aug 04 07:05
schestowitz<b>Part 2</b>: [cref 118780]Aug 04 07:05
schestowitz<b>Part 3</b>: [cref 119045]Aug 04 07:05
schestowitz<h3>Microsoft's Declaration of War on Recyclers</h3>Aug 04 07:05
schestowitzYou are here ☞ <b>Part 4</b>: Aug 04 07:05
schestowitz<b>Part 5</b>: Microsoft's War on the Right to Repair (One's Own Computers) Makes Lundgren an 'Enemy' to MicrosoftAug 04 07:05
schestowitz<b>Part 6</b>: Damage Control Mode: Satya Nadella Fleeing Lundgren After Realising What Microsoft Had DoneAug 04 07:05
schestowitz<b>Part 7</b>: Slander and Libel From Microsoft (Demonising the Victim)Aug 04 07:05
schestowitz<h3>The Legal Aftermath</h3>Aug 04 07:05
schestowitz<em>Pending review and research</em>Aug 04 07:05
schestowitzcref means existing article reference (it's the CMS ID)Aug 04 07:05
MrGreenFriendok, i'll forward that to himAug 04 07:06
MrGreenFriendwhat is your KeyBase name?Aug 04 07:07
schestowitz"Schestowitz" I thinkAug 04 07:11
-->Firee (~Firee@unaffiliated/firee) has joined #techrightsAug 04 07:13
schestowitzadd <b>Part 8</b>: Similar High-Profile 'Bargains' (Aaron Swartz and Marcus Hutchins)Aug 04 07:14
MrGreenFriendokAug 04 07:21
-->x003n (~x003n@unaffiliated/x003n) has joined #techrightsAug 04 07:38
schestowitzMrGreenFriend: part 4 done http://techrights.org/2019/08/04/reducing-microsoft-profits/Aug 04 07:40
-TechrightsBot-tr/#techrights-techrights.org | Microsoft Being Microsoft, Bullying Everyone Who Reduces Microsoft’s Profits | TechrightsAug 04 07:41
schestowitzdepending on how much material gets sent to me, we may be able to do a couple dozen partsAug 04 07:41
schestowitzthese are still exploratory and intoductoryAug 04 07:41
schestowitznot the gory, gritty-gritty details like testimoniesAug 04 07:41
-viera/#techrights-Tux Machines: Microsoft Being Microsoft, Bullying Everyone Who Reduces Microsoft's Profits http://techrights.org/2019/08/04/reducing-microsoft-profits/ [https://pleroma.site/objects/3dac5d89-c03a-417a-b776-81ff40a9cdce]Aug 04 07:42
<--zerogue has quit (Quit: Goodbye Cruel World)Aug 04 07:55
MrGreenFriendWow, nice article. Thank YouAug 04 07:56
MrGreenFriendMinceR> also, Tox over Tor, and even Ricochet if someone updates it :>"  MinceR, Ricochet still works great, and its Tor binary can be easily updated:  https://www.privacytools.io/software/im/#ricochetTor    Aug 04 08:05
-TechrightsBot-tr/#techrights-Instant Messaging | privacytools.ioAug 04 08:05
MrGreenFriendrm ~/ricochet/tor && ln -s ~/tor-browser_en-US/Browser/TorBrowser/Tor/tor ~/ricochet/torAug 04 08:06
MrGreenFriendMinceR, Ricochet is 'synchronous'  :(  https://cwtch.im   is based on Ricochet and is 'asynchronous'  (but i couldn't get it to run)Aug 04 08:07
-TechrightsBot-tr/#techrights-cwtch.im | CwtchAug 04 08:07
schestowitzhttps://mobile.twitter.com/CEOmrGreen/status/1156037248543936512?p=vAug 04 08:29
-TechrightsBot-tr/#techrights-mobile.twitter.com | TwitterAug 04 08:29
schestowitzMe: "Now my case is over the stress should subside and i can fina..."Aug 04 08:29
schestowitzMy Lawyer: "Just a friendly reminder that you need to pack up your entire apartment, say bye to all your friends, then move across the fucking sea. Sometime this week would be good."Aug 04 08:29
schestowitzEric LundgrenAug 04 08:29
schestowitz@CEOmrGreenAug 04 08:29
schestowitzReplying to Aug 04 08:29
schestowitz@MalwareTechBlogAug 04 08:29
schestowitzSo true.. hahaAug 04 08:29
schestowitzmate wrote to tell meAug 04 08:29
schestowitz"Aug 04 08:29
schestowitzAs mentioned, I'd encourage Lundgren to not let M$ have too much leadAug 04 08:29
schestowitztime. They are powerful and noisy but slow, make than an advantage.Aug 04 08:29
schestowitz"Aug 04 08:29
schestowitzMrGreenFriend: maybe you can relay thisAug 04 08:30
MrGreenFriendschestowitz, i don't want to pressure him too much. he is really busy.  i'm here mainly trying to help with the encryption  :)Aug 04 08:45
schestowitzyes, I knowAug 04 08:59
schestowitzno hurry anywayAug 04 08:59
schestowitzit's not time-sensitiveAug 04 08:59
schestowitzat least unless or until Microsoft ramps up the defamatino againAug 04 09:00
schestowitz(my friends thinks we need to not give them time or advance knowledge of what we publish)Aug 04 09:00
schestowitzthe chapter headings are a giveaway, but I might do two more Chapter before MondayAug 04 09:00
schestowitzwell, parts, nof chaptersAug 04 09:01
schestowitzso if they defame him, it'll coincide with parts about their defamationAug 04 09:01
-viera/#techrights-Tux Machines: #Android Leftovers http://www.tuxmachines.org/node/126596 [https://pleroma.site/objects/e31f16b2-7001-4816-9778-8f5c5c70655c]Aug 04 09:02
MrGreenFriendit's up to him, not me---  (so don't print any of my quotes, please)  but i think it should be tied into the whole Software Freedom movement.  e.g.  http://en.swpat.org/wiki/Software_is_mathAug 04 09:09
-TechrightsBot-tr/#techrights-Software is math - software patents wiki (en.swpat.org)Aug 04 09:09
-->mmu_man (~revol@vaf26-2-82-244-111-82.fbx.proxad.net) has joined #techrightsAug 04 09:12
MrGreenFriendhahaha, i was searching for this *exact* Eben Moglen video to show u.  and u already put it on your website, 8 years ago!  ;)    http://techrights.org/2011/05/03/moglen-on-monopolies-for-algorithms/Aug 04 09:29
-TechrightsBot-tr/#techrights-techrights.org | Eben Moglen Explains Why Software Patents Should Not Exist | TechrightsAug 04 09:29
<--mmu_man has quit (Ping timeout: 245 seconds)Aug 04 09:51
-viera/#techrights-Tux Machines: Today in Techrights http://www.tuxmachines.org/node/126597 [https://pleroma.site/objects/01284895-a04a-412a-8118-f5ba1c6fdd45]Aug 04 10:05
<--amarsh04 has quit (Quit: Konversation terminated!)Aug 04 10:06
-->amarsh04 (~amarsh04@118.211.39.107) has joined #techrightsAug 04 10:14
-viera/#techrights-Tux Machines: #KDE Usability & Productivity: Week 82http://www.tuxmachines.org/node/126598 #gnu #linux [https://pleroma.site/objects/3bb84524-c708-4405-962c-3ab56716c58f]Aug 04 10:36
-->MrGreenFriendd (~MrGreenFr@104.200.129.212) has joined #techrightsAug 04 11:10
<--MrGreenFriend has quit (Ping timeout: 272 seconds)Aug 04 11:13
-viera/#techrights-Tux Machines: Manjaro Linux Team Responds To LibreOffice Versus FreeOffice In Upcoming Version 18.1 http://www.tuxmachines.org/node/126599 [https://pleroma.site/objects/083b7044-bb56-49b2-8d2e-207f8d354488]Aug 04 12:28
-viera/#techrights-Tux Machines: Software developer imprisoned in Iran after developing open-source software is now free http://www.tuxmachines.org/node/126600 [https://pleroma.site/objects/8cce25a4-fc9d-4bea-b5a7-62aa7b9ff7e6]Aug 04 13:57
-viera/#techrights-Tux Machines: Databases and Data With FOSS (Ish) http://www.tuxmachines.org/node/126601 [https://pleroma.site/objects/62346af7-5a7b-488b-a0ea-6b4f4bde487c]Aug 04 14:06
-viera/#techrights-Tux Machines: Programming: GopherCon, TensorFlow, GSoC, SQL and GCC http://www.tuxmachines.org/node/126602 [https://pleroma.site/objects/2e49a4ef-5b79-4fc0-8be4-abce91bc694a]Aug 04 14:27
-viera/#techrights-Tux Machines: Ubuntu and Debian: Stephan Fabel, DebConf, Debian's Kotlin and MATE 1.22 http://www.tuxmachines.org/node/126603 [https://pleroma.site/objects/085ab6ad-5626-4450-8a38-4e2f0dd414ca]Aug 04 14:40
-viera/#techrights-Tux Machines: The Latest Openwash Parade (Companies Pretending to be Open) http://www.tuxmachines.org/node/126604 [https://pleroma.site/objects/96d6403d-6c9e-4f6e-86f7-8fdca978be75]Aug 04 14:47
-viera/#techrights-Tux Machines: Open Hardware/Modding: Raspberry Pi, Open Hardware Month, Alibaba/Pingtouge and AbilityLab http://www.tuxmachines.org/node/126605 [https://pleroma.site/objects/eacb3e8c-f16a-4c4e-b444-6f6102a4b69e]Aug 04 14:52
---MinceR gives voice to MrGreenFriendd oiaohm Firee amarsh04Aug 04 15:11
---MinceR gives voice to x003nAug 04 15:11
MinceR04 090755 <+MrGreenFriend> MinceR, Ricochet is 'synchronous'  :(  https://cwtch.im   is based on Ricochet and is 'asynchronous'  (but i couldn't get it to run)Aug 04 15:11
-TechrightsBot-tr/#techrights-cwtch.im | CwtchAug 04 15:11
MinceRnice findAug 04 15:11
MinceRi'll have to check it outAug 04 15:11
MinceRMrGreenFriendd: will ricochet use the new, longer onion addresses for itself if someone updates the Tor in it?Aug 04 15:21
MinceR(audio:important) https://imgur.com/gallery/Jm4zwMB   ( https://i.imgur.com/mstz5Ry.mp4 )Aug 04 15:35
-TechrightsBot-tr/#techrights-It took me forever to find this with sound - Album on ImgurAug 04 15:35
MrGreenFrienddMinceR,  No, AFAIK, i have only seen Ricochet use the old shorter onion addresses. even with Tor 0.4.0.5  on a new install of Ricochet.   Ricochet is  even easier to install now that it is in the  Debian/Ubuntu repos (this uses ur system's installed Tor, so remember to update that Tor package)Aug 04 15:43
MinceRpityAug 04 15:51
-viera/#techrights-Tux Machines: Security: DEF CON 2019, EU Bug Bounty, Buttercup, FUD and Capital One http://www.tuxmachines.org/node/126606 [https://pleroma.site/objects/dedb0325-2284-48a0-a740-0d5a9a060a2b]Aug 04 15:57
-viera/#techrights-Tux Machines: FOSS and Finance http://www.tuxmachines.org/node/126607 [https://pleroma.site/objects/ff767980-a653-4706-8be1-9a846ee1134c]Aug 04 16:01
-viera/#techrights-Tux Machines: OSS Leftovers http://www.tuxmachines.org/node/126608 [https://pleroma.site/objects/20b98bfe-5f6c-4719-9e33-52e7cd1bb0f9]Aug 04 16:03
MrGreenFrienddMinceR,  that is a good question... Hmmm. u should be able to add 'HiddenServiceVersion 3' to your torrc file, to get the longer addresses... ill try itAug 04 16:03
MrGreenFrienddhttps://tor.stackexchange.com/questions/17378/what-is-up-with-these-longer-onion-addressesAug 04 16:03
-TechrightsBot-tr/#techrights-tor.stackexchange.com | hidden services - What is up with these longer onion addresses? - Tor Stack ExchangeAug 04 16:03
MinceRnicAug 04 16:06
MinceReAug 04 16:07
-viera/#techrights-Tux Machines: Server: Cloud Native Computing Foundation (CNCF), IBM/Red Hat and Hyperledger http://www.tuxmachines.org/node/126609 [https://pleroma.site/objects/4e276a58-479f-4779-a9d4-e4e11a6e2408]Aug 04 16:08
-viera/#techrights-Tux Machines: today's leftovers http://www.tuxmachines.org/node/126610 [https://pleroma.site/objects/c0e62953-308b-4198-ae09-a002ae60759c]Aug 04 16:10
<--rianne__ has quit (Ping timeout: 248 seconds)Aug 04 16:21
MinceR(audio:important) https://vid.pr0gramm.com/2019/07/22/de95442a0a1839c2.mp4Aug 04 16:22
<--pedro4 has quit ()Aug 04 16:22
-->rianne__ (~rianne@host81-152-239-135.range81-152.btcentralplus.com) has joined #techrightsAug 04 16:25
-viera/#techrights-Tux Machines: Links 4/8/2019: Many Openwashing Examples, Dragonchain 'Goes Open Source' http://techrights.org/2019/08/04/dragonchain-goes-open-source/ [https://pleroma.site/objects/87d3f107-45be-4fa1-8402-74efb397116e]Aug 04 16:27
-viera/#techrights-Tux Machines: Intel clarifies on US$200 Intel Xe GPUs, new Linux driver signals Xe iGPU+dGPU multi-GPU support http://www.tuxmachines.org/node/126611 [https://pleroma.site/objects/fceffab5-1662-4ed8-ab3b-121b830f37cf]Aug 04 16:28
MrGreenFrienddMinceR,  i give up.  maybe, u also have to add 'HiddenServicePort' & 'HiddenServiceDir' to torrc; i don't know.   but u have a great question.  the guys in #tor probly know how to enable the longer addresses in Ricochet.   https://trac.torproject.org/projects/tor/wiki/doc/NextGenOnions    https://2019.www.torproject.org/docs/tor-onion-service.html.en#four Aug 04 16:33
-TechrightsBot-tr/#techrights-trac.torproject.org | doc/NextGenOnions – Tor Bug Tracker & WikiAug 04 16:33
-TechrightsBot-tr/#techrights-2019.www.torproject.org | Tor Project: Onion Service Configuration InstructionsAug 04 16:33
MinceRicAug 04 16:33
-viera/#techrights-Tux Machines: today's howtos http://www.tuxmachines.org/node/126612 [https://pleroma.site/objects/31de1b76-0ea6-48f1-81e1-fabefa99042d]Aug 04 16:39
MinceRhttps://img.pr0gramm.com/2019/07/26/b91bb935e44e5298.pngAug 04 16:45
DaemonFC[m]I got a "SmartyKat triple tower" scratching post for the cats at Walmart.Aug 04 16:53
DaemonFC[m]It was rated two stars on their app by some guy who didn't read the box, which says "remove the bolt and washer from the middle post and insert into base". He commented that he "had to keep taking them back because there were no bolts and washers in any of them".Aug 04 16:53
MinceRlolAug 04 16:55
MinceRSmartyKat needs a SmartyHumanAug 04 16:55
-->titanbiscuit (~tbisk@91.203.70.189) has joined #techrightsAug 04 16:59
MinceRhttps://i.imgur.com/xzDTr8E.jpgAug 04 17:10
---MinceR gives voice to rianne__ titanbiscuitAug 04 17:10
MrGreenFrienddhttps://v.redd.it/523wlztlnid31/DASH_480Aug 04 17:19
MrGreenFrienddfunny linux memeAug 04 17:19
MinceRlolAug 04 17:24
-->mmu_man (~revol@vaf26-2-82-244-111-82.fbx.proxad.net) has joined #techrightsAug 04 17:36
oiaohmDaemonFC[m]: I did see a batch of scratching posts under a different brand in Australia that had the same kind of instruction but had shipped boltless.Aug 04 17:51
oiaohmDaemonFC[m]: replacement bolt taped on outside of box.Aug 04 17:51
DaemonFC[m]Someone in China was probably "dealt with" for that.Aug 04 17:52
DaemonFC[m]Oh, I used to pack pet cages. Sometimes I'd just toss in two instruction manuals or more because we just printed those out in the office as necessary and they stuck together onn my safety gloves.Aug 04 17:54
DaemonFC[m]Rather than getting yelled at for not meeting my quota, I decided to print out more instruction manuals than I needed at the beginning of my shift.Aug 04 17:54
DaemonFC[m]I figured that none of the customers would complain if they happened to get two or three sets of instructions in the box. Aug 04 17:54
oiaohmChina if the company did not pay the extra change for QA bad luck them.Aug 04 17:55
DaemonFC[m]One time, I was getting close to the end of my shift and I didn't have as many pages getting stuck together as I usually did, so the last pet cage got a stack of like 15 instruction manuals.Aug 04 17:55
DaemonFC[m]And then I tossed it on the pallet. Aug 04 17:55
---MinceR gives voice to mmu_manAug 04 17:55
DaemonFC[m]The supervisors were screaming bloody murder at people who packed one of two pet cages below their quota, and all of them were trying to peel the instructions apart and taking like 5-6 seconds per cage to do it sometimes.Aug 04 17:56
DaemonFC[m]I found that I could easily do 6-8 more cages per shift if I just didn't bother making sure that each one got exactly one instruction manual. Aug 04 17:56
oiaohmOr the extra QA charge for repacking in case missed item.Aug 04 17:56
DaemonFC[m]So the only person not getting bitched out was me. Aug 04 17:56
DaemonFC[m]*one or twoAug 04 17:56
oiaohmDaemonFC[m]: china you have to pay for the person to bitch at staff for mistakes.Aug 04 17:57
oiaohmIf you don't bad things happen.Aug 04 17:57
oiaohmI really do think with these scratching posts here in Australia they were done as cheap as possible and in china you do that you get goofed product.Aug 04 17:58
DaemonFC[m]I figured that it was better for the company anyway to pay a penny or two extra per cage for excess instruction manuals several times during a shift than it was to pay me $12 an hour (2004) to stand there and peel the instructions apart to make sure no extra ones went in the box. Aug 04 17:58
oiaohmDaemonFC[m]: being walmart product with the stuff they get from china they could have cut same stupid conner.Aug 04 17:58
DaemonFC[m]If I had to stop and peel and spend 6 minutes per shift doing this, then they paid $1.20 + my benefits and employment taxes, per shift (so maybe $1.80-ish) so I could stop and peel the instructions apart.Aug 04 17:59
oiaohmGenerally double the amount you paid for your rough total cost.Aug 04 18:00
scientesDaemonFC[m], how much do you pay in rent?Aug 04 18:00
scientes(if you don't mind me asking)Aug 04 18:00
DaemonFC[m]We had an inkjet printer set on economy mode with cheap bulk paper and toner. So if I threw even 40-50 extra sets of instructions in per shift, then that only cost the company about 15-20 cents.Aug 04 18:01
DaemonFC[m]When my boss finally saw me doing this, I explained it to him as a cost savings for the company and he told everyone to quit worrying about how many instructions went in as long as there was at least one copy per box.Aug 04 18:01
oiaohmDaemonFC[m]: boss smart would not have cared if each item got less than 5 and greater than 1 instruction manuals.Aug 04 18:01
oiaohmwhere you put like 15 in that was excessive.Aug 04 18:02
oiaohmDaemonFC[m]: you will notice a lot of china products come with black and white laser printed manuals.   That for the simple reason they are less likely to self glue to themselves.Aug 04 18:03
DaemonFC[m]I explained that if we had 68 people packing cages between the shifts, and each one saved $1.80 of time at the cost of 20 cents of extra instruction manuals, then the company saved about $109 a day total in productivity, which was the cost of one person for an 8 hour shift.Aug 04 18:03
oiaohmBasically not using injet would have reduced the sticking as well.Aug 04 18:04
DaemonFC[m]15 being excessive.Aug 04 18:05
DaemonFC[m]Yes, but it was funny. Aug 04 18:05
DaemonFC[m]Someone out there bought a dog cage and had 15 instruction manuals fall out all over the place,Aug 04 18:05
oiaohmDaemonFC[m]: they had the paper to line the bottom of the cage.Aug 04 18:06
-->MrGreenFriend (~MrGreenFr@104.200.129.212) has joined #techrightsAug 04 18:09
<--MrGreenFriendd has quit (Read error: Connection reset by peer)Aug 04 18:09
DaemonFC[m]One time, I was unloading a truck from China and found a singing cigarette lighter.Aug 04 18:12
DaemonFC[m]Went back a few rows.Aug 04 18:12
DaemonFC[m]Found a pack of Chinese cigarettes.Aug 04 18:12
DaemonFC[m]Went back some more and found the guy's wallet.Aug 04 18:12
DaemonFC[m]Everything fell out of someone's pockets and then got shipped across the ocean and to Indiana.Aug 04 18:12
DaemonFC[m]I was concerned that eventually we'd find him too.Aug 04 18:12
schestowitzMrGreenFriend: Microsoft's War on the Right to Repair (One's Own Computers) Makes Lundgren an 'Enemy' to #Microsoft http://techrights.org/2019/08/04/righttorepair/ #righttorepairAug 04 18:27
schestowitzjust nowAug 04 18:27
schestowitzI want to speed up a bitAug 04 18:27
schestowitzbefore Microsoft comes up with too much spinAug 04 18:27
-TechrightsBot-tr/#techrights-techrights.org | Microsoft’s War on the Right to Repair (One’s Own Computers) Makes Lundgren an ‘Enemy’ to Microsoft | TechrightsAug 04 18:27
schestowitzgetting ahead of their gameAug 04 18:27
-viera/#techrights-Tux Machines: Microsoft's War on the Right to Repair (One's Own Computers) Makes Lundgren an 'Enemy' to #Microsoft http://techrights.org/2019/08/04/righttorepair/ #righttorepair [https://pleroma.site/objects/27531584-49b4-48a3-9261-dabb33e16a89]Aug 04 18:30
-viera/#techrights-Tux Machines: #Android Leftovers http://www.tuxmachines.org/node/126613 [https://pleroma.site/objects/af1b1c58-d2f3-44b3-b173-1d48a70fa8ee]Aug 04 18:30
---MinceR gives voice to MrGreenFriendAug 04 19:55
MinceR(audio) https://imgur.com/gallery/FZSbzDj   ( https://i.imgur.com/dnCvI3h.mp4 )Aug 04 19:56
-TechrightsBot-tr/#techrights-Kitty on the run - Album on ImgurAug 04 19:56
MinceRhttps://i.imgur.com/CL8x6As.pngAug 04 20:05
DaemonFC[m]schestowitz: According to the guy who repaired my Galaxy S8+, the S10 is the nastiest Samsung phone to try to repair so far.Aug 04 20:06
DaemonFC[m]He says that it is possible, but it requires a lot of work to get it open and replace parts, and that he had to charge more because it eats up so much of his time.Aug 04 20:06
MinceRsamsung really went downhill sometime around the note 3Aug 04 20:07
DaemonFC[m]They don't even want you to replace the battery because it means they don't get to sell you a new phone every 2 years when the battery starts getting really flaky. Aug 04 20:07
MinceRthere hardly are any smartphones with user-replaceable batteries anymoreAug 04 20:07
MinceReven LG stopped making themAug 04 20:07
DaemonFC[m]If you replace the battery even once, you might be able to use the phone for 5 years, and maybe even some months past that.Aug 04 20:08
DaemonFC[m]Which would be horrible for sales of new phones.Aug 04 20:08
DaemonFC[m]These newer phones are just really flaky to begin with, MinceR Aug 04 20:08
DaemonFC[m]They're well over $1,000 US now and they've never been less reliable.Aug 04 20:08
DaemonFC[m]Many fail before they're even close to bumping up against 2 years.Aug 04 20:09
MinceRhttps://i.imgur.com/0zKH0.jpgAug 04 20:37
MinceRhttps://ircz.de/p/1907039Aug 04 21:19
-TechrightsBot-tr/#techrights-ircz.de | IRCZ makes your life worth living Post objectAug 04 21:19
<--gde33 has quit (Quit: KVIrc 4.9.3 Aria http://www.kvirc.net/)Aug 04 21:33
MinceRhttps://ircz.de/p/19070274Aug 04 22:00
-TechrightsBot-tr/#techrights-ircz.de | IRCZ makes your life worth living Post objectAug 04 22:00
<--Firee has quit (Quit: lolmoi)Aug 04 22:01
MinceRhttps://img.pr0gramm.com/2019/06/05/5f18d1e311de95b1.jpgAug 04 22:33
<--titanbiscuit has quit (Ping timeout: 248 seconds)Aug 04 23:16
-->titanbiscuit (~tbisk@91.203.70.189) has joined #techrightsAug 04 23:22
MinceRhttps://ircz.de/p/19070271Aug 04 23:26
-TechrightsBot-tr/#techrights-ircz.de | IRCZ makes your life worth living Post objectAug 04 23:26
---MinceR gives voice to titanbiscuitAug 04 23:26
DaemonFC[m]https://www.americanbanker.com/articles/capital-one-systems-breached-by-seattle-woman-us-saysAug 04 23:30
-TechrightsBot-tr/#techrights-www.americanbanker.com | Capital One systems breached by Seattle woman, U.S. says | American BankerAug 04 23:30
scienteshaha, you got pwned by a woman!Aug 04 23:30
DaemonFC[m]Capital One moved customer data to Amazon cloud where it was breached by a former Amazon employee who knew of a vulnerability.Aug 04 23:30
scientesoh geeze, that is badAug 04 23:31
DaemonFC[m]No, she got pwned.Aug 04 23:31
DaemonFC[m]She got caught and faces 5 years and $250,000 in fines.Aug 04 23:31
scientesand what punishment for Amazon and Capital One?Aug 04 23:31
DaemonFC[m]I'm guessing that Capital One reaches out to the 100,000 people who are now at lifetime risk for Identity Theft and offers them 12 months of credit monitoring.Aug 04 23:32
-->gde33 (~gde33@84-106-24-118.cable.dynamic.v4.ziggo.nl) has joined #techrightsAug 04 23:50
MrGreenFriendschestowitz, thanks for that article.  one point that would need fact-checking:  The M$ logo was *not* on the restore discs. (i only see the Dell logo. You?)  Here is a photo of it   https://www.extremetech.com/computing/268300-man-gets-15-month-prison-sentence-microsoft-windows-restoreAug 04 23:59
-TechrightsBot-tr/#techrights-Man Gets 15-Month Sentence for Selling Windows Restore Discs - ExtremeTechAug 04 23:59

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!