Posts by yawnbox@disobey.net
(DIR) Post #AYcyzXCbYzxCT0LDlo by yawnbox@disobey.net
2023-08-11T15:54:29Z
0 likes, 0 repeats
#Veilid talk in Track 1 #DEFCON #DEFCON31 #privacy
(DIR) Post #AYcyzY1eVCmr1KDzKy by yawnbox@disobey.net
2023-08-11T16:10:15Z
0 likes, 0 repeats
"what if the cloud was everywhere [mobile phones] and not just Jeff Bezos""it's like if Tor and IPFS and had sex"written in Rustan overlay networkno external services, all internal network, no dns#Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYcyzYtXGrt9iRR1KC by yawnbox@disobey.net
2023-08-11T16:15:29Z
0 likes, 0 repeats
veilid-server can be run by power users to contribute, sounds like something @EmeraldOnion can runbootstrap uses DNS... to download keysso clearly not made for censorship resistance, poor design, easily defeated #Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYcyzZq1lOg0dqnjUm by yawnbox@disobey.net
2023-08-11T16:24:25Z
0 likes, 0 repeats
doesn't roll its own crypto (cough telegram cough)VLD0, will be VLD1 is upgraded"Argon2" is hopefully Argon2id??is supporting crypto-agility for easy upgrading of the crypto systems(crypto=cryptography)#Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYcyzazzRqEwF2TCfA by yawnbox@disobey.net
2023-08-11T16:31:55Z
0 likes, 0 repeats
"built a better DHT" - Veilid DHT, nodes can opt out of hosting DHT#Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYcyzcGKkYuKA17lmC by yawnbox@disobey.net
2023-08-11T16:36:34Z
0 likes, 0 repeats
"private routing"safety route is like a guard node, oknot clear on route selection protocol"you have to surveil the whole network..." ok so not anywhere near mixnet... legacy design"existing hop count is like tor"#Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYcyzdJuojMnRPo8zw by yawnbox@disobey.net
2023-08-11T16:41:13Z
0 likes, 0 repeats
"no IP address..." uhhhh idk what the're talking aboutRust Crates will be published on Gitlab#Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYcyzeZu8lkbLIIQYi by yawnbox@disobey.net
2023-08-11T16:43:53Z
0 likes, 0 repeats
release party at 8pm tonightpost talk questions after this talk due to time#Veilid #DEFCON #DEFCON31 #privacy #humanrights
(DIR) Post #AYdrpjXwJBoxKney48 by yawnbox@disobey.net
2023-08-11T22:51:34Z
0 likes, 1 repeats
someone lost their onion #DEFCON #DEFCON31
(DIR) Post #AZ45wGs0TpUH238FaS by yawnbox@disobey.net
2023-08-24T00:12:07Z
0 likes, 1 repeats
@OffTheHook @VeilidNetwork wow..."the NSA runs X [@torproject] exit nodes" was stated on @2600 Off The Hook as a fact, re #veilid it is not ok for folks within the privacy community to be spreading harmful disinformationwas literally just discussed (made fun of?) at #CCCamp23 by Tor Project https://media.ccc.de/v/camp2023-57172-a_guided_tour_through_tor_network_health_and_performance
(DIR) Post #AaggPzpj2D9pzjeOpM by yawnbox@disobey.net
2023-10-12T07:50:56Z
0 likes, 0 repeats
@EU_Commission ππ» universal ππ» basic ππ» income ππ»
(DIR) Post #AbAQmqiLBAS4QFkUoi by yawnbox@disobey.net
2023-10-26T16:17:45Z
0 likes, 0 repeats
@thenewoil this is terrible advice
(DIR) Post #AbF2gVBCu8AWmtUVrk by yawnbox@disobey.net
2023-10-28T21:41:14Z
0 likes, 0 repeats
@thenewoil sure!at the very beginning, they state "phone anonymity" which is a categorically false assumption when they clearly want to have a phone number in use with a baseband processor (cell phone)achieving an "an off-the-grid phone" is impossible when the specified threat actor (the building of an over-generalized threat model) is the US federal government. this is the most dangerous part of this article, and the premise for the articlemany issues contribute to this, including Obama's Executive Order changes to 12333 broadening which agencies have access to raw signals intelligence"the federal government traced my phone number back to me and blocked me from communicating with incarcerated people" - it doesn't matter what phone number is calling incarcerated people (jails), the State or the Feds will simply block a number, no surveillance required, therefore any notion of privacy is not necessary and will only be temporary and can trivially be addressed with getting a new phone numbershe enlisted an "IT support specialist" which, i'm sorry, does not have the expertise to address issues of cell phone surveillance"In order to make an anonymous purchase" - that's hilariously false. using cash to buy a SIM card is not adequate. SIMs are trivially tracked back to point of sale, city cops accessing video recordings of these purchases are trivial let alone the fedsa pre-paid SIM, while temporary, might achieve the goals or protecting against - "the reader used my phone number to do a reverse look-up search, and found my address"but they don't clearly link that specific threat to that specific response, and doesn't go into any detail how to safely maintain that phone number. pre-paid SIMs cannot have longer-term security mechanisms put in place like Account Takeover Protection, and if this person plans on keeping this number long term, most people will resort to using digital payments to maintain it. they don't go into any detail here which is critical
(DIR) Post #AbLML6PYKMTcJ5a4wK by yawnbox@disobey.net
2023-10-28T21:49:34Z
0 likes, 0 repeats
@thenewoil the entire section of "Wipe the Phone" is categorically false and for many different reasonswiping an iPhone does not change hardware identifiersonce an iPhone (or any cell phone) does register (a tie between a SIM and an IMEI and the physical location of these things, the physical location tied to the physical location of other cell phones, etc) it's trivial for a threat actor such as "the feds" to quickly determine where this phone is and who uses is. pre-paid SIMs have higher scrutiny too (more surveillance) by intelligence agencies because there's no hard ID tied to the devices.plainly put, you cannot have anonymity with a cell phone, especially when the defined threat actor is the US federal governmentmaybe it's possible to do all these things for making a single phone call "anonymously" (still hugely debatable) and then burning the phone. but this article does not do that whatsoever. they insinuate that this elementary planning will support anonymity long term, and the target audience is journalists. crazy
(DIR) Post #AbLMLIQhduWja8DAOm by yawnbox@disobey.net
2023-10-28T22:00:48Z
0 likes, 0 repeats
@thenewoil if you'd like to read a technically detailed article looking at having a "secure" communications device for journalists, one that can have aspects of "anonymity" if done correctly, i'd recommend my article that i maintain and check facts with folks in the security and privacy fields"How to Use an iPad as a Secure Calling and Messaging Device"https://yawnbox.com/blog/how-to-use-an-ipad-as-a-secure-calling-and-messaging-device/but this is not for making legacy phone calls, that is a unique challenge
(DIR) Post #AbbfMNxqcxELWY7ZgW by yawnbox@disobey.net
2023-11-08T11:11:14Z
0 likes, 3 repeats
Aaron Swartz would have been 37 years old today."You literally aught to be asking yourself, all of the time, what is the most important thing I can be working on, in the world, right now? and if youβre not working on that, why arenβt you?"you can watch, for free, "The Internet's Own Boy: The Story of Aaron Swartz" on Archive.orghttps://archive.org/details/TheInternetsOwnBoyTheStoryOfAaronSwartz
(DIR) Post #AdDkLOMebDnekVyoxU by yawnbox@disobey.net
2023-12-26T22:03:32Z
0 likes, 2 repeats
Do you know anyone in or around #Seattle #PNW that wants a free #sailboat* AND can move it to a new location before end of week?i've run out of time, and the marinas nearest its location don't have room for me.*1978 Newport 30
(DIR) Post #Ai3U9t51v3hXTJcqbQ by yawnbox@disobey.net
2024-05-18T13:44:46Z
0 likes, 0 repeats
here's a taste of a blog post i'm going to publish soon, trying to bring about some simplification and understanding around passkeys compared to YubiKeys#fido #fido2 #webauthn #passkey #passkeys #yubikey #yubikeys #passwordless #auth #authenticaation #okta #identity #infosec #security
(DIR) Post #AieXpvTrYu37Pkkvlg by yawnbox@disobey.net
2024-06-06T11:29:57Z
0 likes, 1 repeats
people much less privileged than you depend on your #vote
(DIR) Post #AixK16RK0AmEngOBN2 by yawnbox@disobey.net
2024-06-15T15:24:42Z
0 likes, 1 repeats
can anyone recommend a book about intimacy that takes into account neurodiversity?@actuallyautistic #neurodiverse #adhd #autism