Mastodawn

@Em0nM4stodon but I got the ID of all the users that are on my server 😥

@leberschnitzel @Em0nM4stodon ?

@jarinks ?

@leberschnitzel wdym by that? like gov ids?

@jarinks yes

Nini 2d ago

@leberschnitzel @jarinks How come? I know it's only four other people but it is interesting.

@nini @jarinks it's just me

Nini 2d ago

@leberschnitzel @jarinks Ohhhh, haha!

@leberschnitzel @nini LOL

@leberschnitzel you should delete that part of the db, storing that kind of sensitive data is extremely dangerous

@jarinks I never said it's stored on a server

Crovanian 1d ago

@leberschnitzel it’s stored on a shelf. And their gnoggin! Nothing more digitally secure than that!

Manic Emo Dream Ghoul 1d ago

@leberschnitzel Is it
in your wallet hahaha

Mx Jay Baker 2d ago

@Em0nM4stodon This. 100%!

βrυɲϋs 2d ago

@Em0nM4stodon ... for social media ok... but is it safe for p0rn ?

(joking of course)

Jean-Baptiste Fidélia 2d ago

@brunus @Em0nM4stodon Wait what? Id for porn watching now? This is totally unacceptable!
😉🤣

Netzblockierer 2d ago

@jeantranscene @brunus @Em0nM4stodon I'd not be surprised if that wa real.

#TLDR: NO!

Netzblockierer (@[email protected])

@[email protected] *Refuse* to ID *ANYWHERE* as a matter of principle! - No exceptions…

LGBTQIA+ and Tech

kkarhan 2d ago

@Netzblockierer @jeantranscene @brunus @Em0nM4stodon " #AgeVerification " is a huge issue, and in " #AdultEntertainment " this is the reason #CreditCarda got big online…

- I know this from past employers who worked with the latter…

Maggie Maybe 2d ago

@Netzblockierer @jeantranscene @brunus @Em0nM4stodon I use my passport card when I am asked for ID in person because it doesn’t have my address on it. The bartender doesn’t need to know where I sleep at night. I actively don’t want him to have that information.

derekheld 1d ago

@maggiejk @Netzblockierer @jeantranscene @brunus @Em0nM4stodon oh that’s good, I never thought I could use a passport card as a privacy tool.

Davi Ottenheimer 2d ago

@Em0nM4stodon a little biometric resistance history, if it helps: https://www.flyingpenguin.com/this-day-in-1381-biometric-age-verification-leads-to-beheadings/

This Day in 1381: Biometric Age Verification Leads to Beheadings | flyingpenguin

https://www.youtube.com/watch?v=OPtzRQNHzl0

Netzblockierer 2d ago

@flyingpenguin @Em0nM4stodon just copy fingerprints from asshole politicans!

Worked 20+ years ago…
- Still works today!

CCC Anleitung Fingerabdruck fälschen

YouTube

I agree with you.

But how, in plain English terms, do we convey this to people that don't care?

@jbjrkng Here's a thread with some arguments I wrote to my own government about the issue (there is also additional resources in the last post of the thread): https://infosec.exchange/@Em0nM4stodon/116726910929195900

Em :official_verified: (@[email protected])

A thread to Stop ID Surveillance from coming to Canada ⛔️🧵 Yesterday, I sent a long letter to the Canadian Prime Minister Mark Carney, the Culture Minister Marc Miller, and the leaders of all other major federal parties in Canada. I sent this letter to voice my concerns about the upcoming bill that is planned to be introduced today at 5 p.m. ET, to propose a ban of social media for children, therefore requiring all social media platforms to identify every adults accessing it. This is a long thread of what I wrote (mute me for one hour if you don't want to see it). Feel free to copy any parts you want to share in your own letter of opposition sent to your representatives this week. Here's how to find their contact information: https://www.ourcommons.ca/members/en/search (1/9) #StopIDSurveillance #Privacy #HumanRights #AgeVerification #CanPoli #Canada

Infosec Exchange

divVerent 2d ago

@jbjrkng @Em0nM4stodon "The system doesn't accept my ID."

You know, wrong lighting, bad camera, not enough flash, too much flash, not enough proprietary code in the camera software... or ID not American enough.

𐑮𐑨𐑛𐑦𐑒𐑩 ·𐑦𐑒𐑕𐑡𐑱 2d ago

@jbjrkng @Em0nM4stodon

Base building is hard. Usually the approach with this kind of thing is building credibility by helping people with their problems first and then inviting them to participate in additional maybe more challenging actions.

Boycott campaigns can work, but they need a cleary defined objective and a strong base building strategy that can carry the movement through to some defined conclusion. Historically tech is really bad at this since we don't really try to build labor power or any kind of collective organization that resonates with the masses tho.

DSM 2d ago

What percentage of social media accounts do you think are AI bots? Could AI takeover dormant accounts? 🤔🤨😳

@dsmasterson Not if you use a long, complexe, and unique password with a second factor of authentication. Which is something everyone should do for all their accounts.

DSM 2d ago

Copycat accounts that look like you but change one character in the username.

@dsmasterson But that can still happen whether your account is dormant or not.

DSM 1d ago

@Em0nM4stodon but, if you’re dormant, you’re less likely to notice. The sheriff on social media is extremely overtaxed.

Maggie Maybe 1d ago

@dsmasterson @Em0nM4stodon this happened to a friend of mine, and the fake account was selling porn. She was so freaked out that her boss at her important job would think she was selling porn she sat down with him to let him know what was happening. He was actually really supportive and told her he wouldn’t judge her if she had an only fans or something. She managed to get the account shut down but only because it literally copied everything off of her Instagram.

The only difference was that they used an uppercase I instead of a lower case L so the username looked exactly the same as hers.

Cassandrich 2d ago

@Em0nM4stodon @dsmasterson Doesn't help when Facebook's support chatbot just resets account credentials for anyone who asks.. 🙃

Nini 2d ago

@Em0nM4stodon I will not submit.

nieuemma 2d ago

@nini @Em0nM4stodon

We need a face scan and photo ID in order to confirm your refusal.

If you change your mind and want to return, you can always come back with a face scan and photo ID.

Codey McCodeface 1d ago

@Em0nM4stodon @nini I will not hit Submit

A.Minion 2d ago

I've often wondered it this has any bearing on the security of important accounts. I started naming those accounts with something other than my Email.

Wim Turnhout 🇺🇦 🍉 🇵🇸 🇦🇴 🇭🇺2d ago

@Em0nM4stodon It is not so hard, because there are very few social media. The majority is obscene, unlawful, a-social, vindictive, addictive, harmful and commercial. You can do without and above all, the need for datacenters will drop significantly.

Layan🍉ayoub🇵🇸2d ago

@Em0nM4stodon You are offering a practical solution that requires everyone's commitment for change to occur.

Carlos Solís 2d ago

Those that don't comply will be the minority, and both politicians and companies count on that - they will be eventually coerced into complying by being shut out of vital tasks, and eventually deemed criminals for being unable to comply with legally mandated government paperwork.

Cassandrich 2d ago

@csolisr That's not how things went down on Discord. Why don't you stop demotivational concern trolling when you don't have anything constructive to offer?

Carlos Solís 2d ago

Because Discord was one single site with viable alternatives, so the market logic was still able to pressure them. This is an all-out attack on every single website at once, sponsored simultaneously by the government and the companies, and with actual criminal sanctions for non-compliance - boycotting will eventually become legally impossible. The only feasible remedy is to pressure the governments themselves to change the law.

Michał "rysiek" Woźniak · 🇺🇦2d ago

@csolisr it's not "boycotting", it's adding as much friction to the process as possible. And "eventually legally impossible" is not "currently legally impossible".

KevinOnEarth 2d ago

@csolisr
I do have a govt-registered ID for when I need to interact with govt services. When done, I sign out, shut down browsers, clear data, change VPN IP then fire up normally again.

Maggie Maybe 1d ago

@csolisr back in 2021 when I wanted to get a Covid vaccine from the Rite Aid down the road from me the only way to make an appointment was with a Google account (and they didn’t take walk ins). There was no way I was connecting my Google account to Rite Aid even though I’m sure it’s all owned by Peter Thiel at this point anyway. I ended up going to the National Guard site at the dead mall.

There are also a whole bunch of businesses that don’t have Customer service addresses on their website, you can only contact them through Facebook or Twitter or Instagram, so I guess I just don’t do business with those businesses.

Starraven 2d ago

I have already posted on Facebook that should that be required, I will not be back, and posted the throwaway email address I used to register as a means for my friends to contact me.

@starraven This is the way 👍

KevinOnEarth 2d ago

@starraven @Em0nM4stodon
I quit FB/Meta years ago already.
Never missed it tbh.

Mensch, Marina 2d ago

@Em0nM4stodon never use biological markers like finger print, iris scans, face scans or such. Once in the system, always in the system.
And IDs, passports etc can be stolen so easily. One might give them to the criminals right away for identity abuse.

@energisch_ @Em0nM4stodon

Brokar 1d ago

That's what i tell everybody. You can change a password or a username but you can't change your face or your fingerprints. Once the biometric data gets abused you're screwed and you cannot do anything about it.
So don't.

Mensch, Marina 1d ago

@Brokar exactly 👍 @Em0nM4stodon

woe2you 1d ago

@Brokar @energisch_ @Em0nM4stodon Error: your face cannot be the same as your last 5 faces.

Mensch, Marina 1d ago

@woe2you some even lost it ;-) @Brokar @Em0nM4stodon

acffh morst 1d ago

@Brokar @energisch_ @Em0nM4stodon
three-factor (multi factor) authentication was taught to me as
1 something you know (password)
2 something you have (fob or authenticator object)
3 something you ARE (fingerprint, Iris scan, heartbeat signature)

#3 can't be changed so of course it's the most dangerous to just hand over

Mensch, Marina 1d ago

@morst maybe the 3rd again could be something you can remember ? I would not give any biometrical data if I can avoid it. With some bureaucratic papers it is not avoidable. Just think of passport pictures. Which are enough to abuse in criminal hands these days. @Brokar @Em0nM4stodon

Hasufin 1d ago

@Brokar @energisch_ @Em0nM4stodon Also under US law you can be forced to "provide" your biometrics (in other words, a cop can grab your hand and forcibly scan your fingerprint) but you cannot be forced to provide a password.

@Brokar @energisch_ @Em0nM4stodon

Call Me Sam

1d ago

@Hasufin The law is still catching up to technology. Some good information here (California is leading the way)
https://www.americanbar.org/groups/law_practice/resources/law-technology-today/2019/can-police-force-you-to-unlock-your-cell-phone/

Can Police Force You to Unlock Your Cell Phone?

A California judge has ruled that—in certain situations—people have a right to keep the contents of their phones private.

LukefromDC 2d ago

@Em0nM4stodon I've had to warn that ALL my online accounts including this one might become irregularily updated if SIM card ID registration is imposed in the US. The FCC has posted essentially a request for comment on this.

I SHOULD be able to service this account either by wifi or by foreign data-only tourist SIMS, but if neither is possible I will walk away from the Internet rather than risk verifying everything I've ever written with ID