Mastodawn

@signalapp @Mer__edith Thanks for being strong in your privacy oriented stance.

Paul Jun 17, 2024

@signalapp @Mer__edith When will politicians learn that you can't un-invent mathematics?

@pauld @signalapp @Mer__edith Mathematics won't help the vast majority of average users.

AJCxZ0 Jun 17, 2024

@pauld That the legislators fail to appreciate facts or their consequences will likely remain irrelevant as long as persuasion works, i.e. as long as legislators remain human.

Hypothetical or real cases in which the ability of the good guys to intercept the communications of the bad guys resulting in a desirable outcome strongly persuades that doing so is for the greater good, but the consequences of failing to do so, e.g. the dying captive relative or sex-trafficking drug-dealing paedophile
terrorist, are maximally persuasive. Consider how effective it would be on you.

We know that compromising privacy generally does not serve the greater good, that real cases are almost always solved by competent law enforcement work or @briankrebs, that the abuse by the incorrectly presumed "good guys" is not just inevitable, but consistently and substantially harmful, that actual cases of broken encryption are almost never instrumental in saving the day, and that legislation only affects the law-abiding while the criminals can always ignore that law too and use technology which works.
The challenges are how to articulate sufficiently persuasively and how to do so consistently every time a legislator is caused to imagine their child chained in a basement or a dirty bomb in their district.

@schneierblog said it better: https://www.schneier.com/blog/archives/2019/12/scaring_people_.html

Scaring People into Supporting Backdoors - Schneier on Security

Jargoggles Jun 17, 2024

@pauld @signalapp @Mer__edith
It's worse, they want the impossible - a backdoor that only good guys can use and bad guys can't.

albeit Jun 17, 2024

@signalapp wow

David Chisnall (*Now with 50% more sarcasm!*)Jun 17, 2024

@signalapp @Mer__edith Time once again for the reminder of how little code is required to implement end to end encryption over an insecure channel and therefore how easily it is for bad people to evade stupid laws like this that cause immediate harm to everyone else.

GitHub - davidchisnall/banning-e2ee-is-stupid: Do you think banning end-to-end encryption is plausible? Think again.

Do you think banning end-to-end encryption is plausible? Think again. - davidchisnall/banning-e2ee-is-stupid

GitHub

@david_chisnall @signalapp @Mer__edith Nice for a few geeks but not for the general public

@david_chisnall @signalapp @Mer__edith

Ed Davies Jun 17, 2024

@project1enigma

Exactly, they're not suggesting that the general public would use this. In fact, the point is that the general public wouldn't use this.

And not “a few geeks” specifically, either, but rather those who these laws are ostensibly targetting - those exchanging CSAM or organizing terrorist operations or whatever who may or may not be geeks as a whole but probably have at least enough geeks available to help them set this up.

For many purposes they wouldn't even need any sort of public-key encryption; simple password-protected zip files with the password sent in a separate message, or perhaps by a separate channel, would be sufficient to bypass this scanning.

Likely, actually just putting the password in the message would be safe enough (I've done that in the past to get round enterprise email scanners disallowing .exe files).

@edavies @david_chisnall @signalapp @Mer__edith Yeah that's a point. Though weirdly not even all criminals are diligent enough to use techniques like this. Even the readily available ones like... Using pgp symmetrical file encryption, giving the passphrase in a phone call. Or asymmetrical, checking key fingerprints in a phone call or whatever.

@edavies @david_chisnall @signalapp @Mer__edith Or as you said, the same with zip

⊥ᵒᵚ⁄Cᵸᵎᶺᵋᶫ∸ᵒᵘ ☑️Jun 17, 2024

@david_chisnall @signalapp @Mer__edith oh, they'll come via the app stores first. Then OS that allow side loading. Then OS that allow unsigned apps. Then compilers.

#UnauthorizedBread

SpaceLifeForm Jun 17, 2024

@falken @david_chisnall @signalapp @Mer__edith

This. I have an OG Droid with a cross-compiled userland that runs an older gcc. I can not compile large programs though due to lack of ram.

But, useful for testing, especially to learn configure cache settings to use for the cross-compiler.

Cross-compiling is not for the faint of heart because configure will get things wrong very often.

Luna chan Jun 18, 2024

@david_chisnall @signalapp @Mer__edith It would be disastrous for banking and corporate communication.
Pretty much would be letting the Chinese cloners know all your trade secrets as they're gonna get them.

Rapha Mack Jun 17, 2024

@signalapp
@Bundesregierung @GrueneBundestag @eskensaskia Bitte! Setzen Sie sich für uns ein. Verschlüsselung ist die einzige Chance zu kommunizieren, wenn man in Gefahr ist.

@Mer__edith @k0r4nd

Patrick Breyer Jun 17, 2024

@signalapp @Mer__edith We still have one day to stop this #ChatControl mass surveillance madness, especially if you're from IT, FI, CZ, SE, SV, EST, GR, PT. Act NOW: https://www.patrick-breyer.de/en/council-to-greenlight-chat-control-take-action-now/

Council to greenlight Chat Control - Take action now!

[Update: Vote has been postponed to Thursday, keep up the pressure!] The Belgian EU Council presidency seems set to have bulk Chat Control searches of our private communications greenlighted by EU governments on Wednesday 19 Thursday 20 June. This confirms concerns that the proponents of Chat Con

Patrick Breyer

Ylönen Jun 18, 2024

@echo_pbreyer Please keep the Toots accessible and readable for all by not mixing the hashtags with the sentence you want people to read. "Don’t insert hashtags inline. Add hashtags at the end of a post caption, not in the middle of a sentence, as that creates interruptions for screen readers."
https://blog.hootsuite.com/inclusive-design-social-media/ 🙂 @signalapp @Mer__edith

Social Media Accessibility: Inclusive Design Tips for 2024

Inclusive design may seem like the domain of UX designers and web developers. But social media marketers should practice it, too.

Social Media Marketing & Management Dashboard

Patrick Breyer Jun 18, 2024

@paavi @signalapp @Mer__edith Why no inline hashtags?

Ylönen Jun 19, 2024

@echo_pbreyer @signalapp @Mer__edith I think that was clearly stated in the quote I included in my last reply. Let me reword that: a) it interrupts screen readers, which are something some people rely on frequently. The reason is accessibility. b) It makes it harder for dyslexic people to read the text.
I see no good arguments pro placing hashtags in-line. If you've got one, please tell me. The above mentioned are just two contra arguments and there are others that may be less important.

Patrick Breyer Jun 19, 2024

@paavi @signalapp @Mer__edith Should be possible to set screen readers to ignore the "#" sign? It's easier to promote hashtags if not hiding them below a message - plus there are the character limits.

Ylönen Jun 19, 2024

@echo_pbreyer It's easier to stick to accessibility recommendations than to fix this issue by altering software needed daily by people who depend on them and yet still have no control over the functions of the tools they depend on. This also in no way fixes the issue of the message being harder to read for dyslexic people.
Do I get a little bit of "Why should I alter my behaviour or actions?" here or what? @signalapp @Mer__edith

Fluffy Kitty Cat Jun 17, 2024

@signalapp @Mer__edith cryptography is important

#chatcontrol #Chatkontrolle #EU #masssurveillance #massenueberwachung #mailtemplate #mailvorlage

@leX 🤘🏻Jun 17, 2024

@signalapp

I prepared a mail text for German citizens to send to their representative:
https://metalhead.club/@schm43cky/112632505587161299

This might help some to just send out a mail, rather than helplessly doing nothing against the upcoming chat control proposal.

Edit: added some context and hashtags as this answer is being boosted quite a lot.

@Mer__edith

@leX 🤘🏻 (@schm43cky@metalhead.club)

Attached: 1 image Wer wg. der Chatkontrolle-Abstimmung eine Mail an unsere ständige Vertretung bei der Europäischen Union senden möchte, sich aber mit dem Mailtext schwer tut: vielleicht hilft meine Vorlage ein wenig. Sicher ist persönlich formulieren besser, aber mehr gleichtönende Stimmen sind hoffentlich lauter, als viele schweigende, die sich nicht ausgedrückt bekommen. Hier gibt es Betreff, Text und Mail-Adressat: https://cryptpad.fr/pad/#/2/pad/view/BD8dNsDAseXUc+nhu1EV6ALGWLnLyPnPyQuGsCSUUZk/embed/ #Chatkontrolle #MailVorschlag #EU #datenschutz #Erdmenger

Metalhead.club

RolingMetal Jun 17, 2024

@signalapp @Mer__edith

Dear Reader,

Thank you for signing our petition to the European Parliament to oppose the ‘Regulation laying down rules to prevent and combat child sexual abuse’ (CSA Regulation) and to pursue an alternative which is compatible with EU fundamental rights. Your support will make a difference! Want to do more?

• Send the petition to friends, acquaintances, or colleagues: https://crm.edri.org/stop-scanning-me.
• Share this video to raise awareness: https://www.youtube.com/watch?v=ViirnWnoreA.

We are also happy to confirm that we have processed your subscription to our supporters’ mailing list. We will share with you important information about collective actions and mobilisations. You can unsubscribe at any time by clicking on the unsubscribe link provided in the footer of the newsletter.

Privacy is part of EDRi’s DNA, so our newsletters contain zero tracking. The contact details you share with us to subscribe to newsletters and other mailing lists will be processed on our self-hosted CRM and never be shared with anyone outside EDRi. You can find more information in our privacy policy.

Thank you!
The team of EDRi

Children deserve a secure and safe internet | EDRi CiviCRM

Sérgio Machado Jun 17, 2024

@signalapp @Mer__edith would be preferable instead of this nonsense that EU start to take care and be more proactive at the sponsor ads 💩 by removing scammers and misleading info around Meta, X, MSN etc etc.

Luigi

Jun 17, 2024

@signalapp
I wonder if matrix instance are the same
@Mer__edith @SymfonyStation

#euparliament #chatcontrol

aproitz Jun 17, 2024

@signalapp @Mer__edith

This would be #devastating for #endtoendencryption.

Luna chan Jun 18, 2024

@signalapp @Mer__edith A vack door for the police and anti terror would end up getting exploited by criminals more than law enforcement.

Source:
https://european-pirateparty.eu/chatcontrol-eu-ministers-want-to-exempt-themselves/

Kevin Karhan

Jun 18, 2024

@signalapp @Mer__edith so will #Signal stop requesting #PII like #PhoneNumbers and refuse to comply with such #cyberfacist demands.

If not, why?
If yes, how?

@signalapp @Mer__edith

But ofc they want to exclude themself from the Chat controls.

#ChatControl: EU ministers want to exempt themselves | European Pirate Party

According to the latest draft text of the controversial EU Child Sexual Abuse Regulation proposal leaked by the French news organization Contexte, which the EU member states discussed, the EU interior ministers want to exempt professional accounts of staff of intelligence agencies, police and military from the envisaged scanning of chats and messages (Article 1

holgerpatzelt Jun 18, 2024

@signalapp @Mer__edith liebe @SPDEuropa @netzpolitik SPD vielleicht solltet ihr mal kurz nachdenken, wie ihr euch unterhalten und kommunizieren wollt, würde morgen die AfD die Macht übernehmen? Möglicherweise hilft Euch beim Nachdenken ein Besuch der Gedenkstätte für Politische Gefangene in Ausschwitz.
#privatsphaere im Netz ist in einer Demokratie vielleicht nur Luxus. Doch wie sicher ist Demokratie in Europa 2024?

L-Alchimiste.com Jun 19, 2024

@signalapp @Mer__edith
Cf the society of "smile, you are protected".
La société du souriez-vous-êtes-protégé

All details are there :
https://www.les-cris.com/pages-300-articles-de-CRIs/theme-040-Evol-generale/art-2024/cri-evolgen-240514-La-societe-du-souriez-vous-etes-protege.php

In french.
Sorry if not easy for you.

#cri_th_evolgen
#cri_th_regul_admin_numerique

Les CRIs : La société du souriez-vous-êtes-protégé.

Les-CRIs.com : des Constat-Reflexion-Impulsion (CRI) : publication d'articles, et animation de reflexion. Tous domaines, quand j'aime. L'évolutions de la société, l'argent, l'agricole, les institutions, le Kravail, l'énergie, le commerce, le numérique,... la nouvelle civilisation.

Les-CRIs

Dominik Jun 20, 2024

@signalapp @Mer__edith What are the plans if it passes? Like, what will Signal do?

(1/?)

@signalapp
> the new EU chat controls proposal for mass scanning is the same old surveillance with new branding

I don't disagree with anything @Mer__edith says in the linked blog post, but I think it misses the point. Yes, lack of technical knowledge among regulators makes the problem worse. But it's not the root cause of why the CSAM-scanning zombie refuses to die.

(2/?)

Let's zoom out a bit and look at the various motives for wanting "upload moderation". They include;

* genuine concerns for children harmed in the production of CSAM

* law enforcement who see E2EE as a limit on legitimate search powers

* the techlash, prompted by legitimate concern about the dodgy practices of digital technology companies

* knee-jerk pearl-clutching ("think of the children") by both conservatives on the hard right and crypto-conservative "liberals" on the centre-right

(3/?)

Most importantly IMHO, are the corporate DataFarmers. For whom robust privacy protection is bad for business, but compulsory automated message scanning is a whole new market. Both for their "cloud" services, and lucrative partnerships with spy agencies, both state and corporate (eg Palantir). As well as being a new source of MOLE food, especially useful if trained MOLEs ("AI") are judged to be derivative works under copyright law.

#MOLE: Machine Operated Learning Emulator