Rocket Oct 21, 2025
Em 

Today October 21st is
Global Encryption Day! 🔒🎉

This is a good time to remember that encryption is essential to online security and digital privacy.

Despite some governments pushing hard to weaken it, we must remind them that we all need encryption, and especially end-to-end encryption, to stay safe online 💚

Privacy is a human right
and end-to-end encryption is one of the best tool we have to enforce that right.

https://www.privacyguides.org/articles/2025/04/11/encryption-is-not-a-crime/

#GlobalEncryptionDay #Encryption #E2EE #Privacy #RootForE2EE

Encryption Is Not a Crime

Encryption is not a crime, encryption protects us all. Encryption, and especially end-to-end encryption, is an essential tool to protect everyone online. Attempts to undermine encryption are an attack to our fundamental right to privacy and an attack to our inherent right to security and safety.

Privacy Guides
Oct 21, 2025 at 4:08pmWeb
Show threadEpic NullOct 21, 2025
@Em0nM4stodon Encryption is the primary way of completing many tasks people aren't aware of... like verifying a website's identity or handling bluetooth pairing.
Show threadPierre-YvesOct 21, 2025
@Em0nM4stodon Thanks for the reminder. Ransomware sent to all my contacts 🔒
Show threadderekOct 22, 2025
@Em0nM4stodon I've installed #CryptPad, and #Nextcloud, #immich as well as other services on #encrypted #ZFS on my #linux server. Nextcloud was a bit of a pain, CryptPad was painless, Immich, yeah kind of a real pain. But if you want help getting off of BigTech and supplying your own services, controlled by you, encrypted by you, #AMA.
Show threadMike RoachOct 22, 2025
@derek Out of curiosity, what made Immich a pain? I set that up a year or so ago using docker compose and it was pretty turnkey.
Show threadderekOct 22, 2025

@mroach Mainly it was because I already had postgresql and redis running natively on the server I wanted to run immich on. So it took some (fairly annoying) effort to figure out vector libraries to install into postgres so that immich would be happy, then sort out which "non-standard" configuration options I needed to set in the env file to let it use my existing services.

I didn't want to run dockerized versions of postgresql and redis when I had them already running, so that was really where the "pain points" came in. It wasn't necessarily pain, just research and trial-and-error to get it working in a way it wasn't built to run.

I have Nextcloud, Cryptpad, and others, along with dependencies running all "natively" (i.e. not dockerized) on the same machine, so I wanted to try not to duplicate services if I could avoid it. If I had started from scratch on a fresh install and no other services already running, I'm sure it would have been much easier.

Show threadderekOct 22, 2025

@mroach I have found this to be a recurring issue with some Open Source projects - they assume you have nothing else already running on your server and are starting from ground zero.

I'm trying to run _everything_ on the same server. Maybe I'm nuts, but I only have so much hardware ... so I'm willingly offering any help to anyone who wants to do a similar thing.

If I can contribute to the project documentation as well, I'd be happy to, but I honestly haven't looked into how to do that so that's totally on me.

Show threadDaniël Franke Oct 22, 2025

@derek @Em0nM4stodon I've done the same (with some other services) on a single node kubernetes "cluster", but also added tailscale, so that I can reach all my services from anywhere in the world without needing exposed ports on the internet.

Oddly, once k8s was set up and using zfs as its storage provider, all the other services have been painless to set up, but that might also have something to do with me managing services both on bare metal, VMs, and on k8s for decades now.

I am willing to answer any questions for people who are considering self hosting or are stuck in any way.

Show threadFossmanOct 22, 2025

@Em0nM4stodon Yes, great time to get off legacy unencrypted calls and SMS texts, especially after the #SaltTyphoon, incident, and get on a data plan to use with #e2ee apps/protocols like #Signal, #Matrix, #XMPP, #DeltaChat, #SimpleX, #Briar, etc.

A phone number is now your surveillance #citizenID number now, so do not share it even with others as they will only upload it to their Big tech address books.

Also, threat actors don't need QuantumComputing to to break e2ee when they can get it from you copilot or other #clientsidescanning AI they are putting to protect the children, of course.

In general, e2ee on proprietary, closed source operating systems like Microsoft Windows and Google Android sort of misses the point.

Thanks for reading my rant, and please feel free to suggest improvements :)

Show threadToby KurienOct 22, 2025
@opensourceopenmind @Em0nM4stodon although #SimpleX is VC funded, by Jack Dorsey no less https://simplex.chat/blog/20240814-simplex-chat-vision-funding-v6-private-routing-new-user-experience.html
SimpleX network: the investment from Jack Dorsey and Asymmetric, v6.0 released with the new user experience and private message routing.

Show threadhaiseOct 24, 2025
@tobykurien @opensourceopenmind @Em0nM4stodon and sadly the founder/creator is a elmo musk lover and is deep into far right propaganda the app/protocol is technically great at least only one weirdness is link previews dont go through socks proxy even if you have the proxy enabled in simplex which they dont seem to think is a problem https://github.com/simplex-chat/simplex-chat/issues/5122#issuecomment-2452413524 which is confusing with how much effort they've clearly gone into protecting as much metadata as they can
Simplex link previews connects directly to the website when sending links, switch to using SOCKS proxy. · Issue #5122 · simplex-chat/simplex-chat

Is there an existing issue for this? I have searched the existing issues Platform Android OS version Android 12 App version 6.1.1 F-Droid Current Behavior Proxy enable Preview link enable Test leak...

GitHub
Show threadcursecatsupdairyOct 22, 2025
@opensourceopenmind @Em0nM4stodon
"A phone number is now your surveillance #citizenID number now, so do not share it"
immediately suggests a service that requires a phone number to sign up 🤡
Show threadFossmanOct 22, 2025

@cursecatsupdairy @Em0nM4stodon You mean Signal, yes you're right, I don't love it - but closest to a WhatsApp replacement for normies. Not my preferred messenger.

To be fair to Signal though, once you register/activate your account, you can discard that number (can be mobile or landline, including virtual) and never need it again or need to share it.

Still they should remove that requirement as getting a number anonymously is becoming more and more difficult.