Recent searches

No recent searches

Search options

Only available when logged in.
shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

268
active users

shakedown.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0

#lavabit

0 posts0 participants0 posts today
Replied in thread
Kevin Karhan :verified:

@signalapp no it's not.

Being a #centralized, #SingleVendor & #SingleProvider solution subject to #CloudAct makes you inherently vulnerable by your own choice and thus trivial to shutdown compared to real #E2EE with #SelfCustody of all the keys and true #decentralization as well as #SelfHosting (i.e. #PGP/MIME [see @delta / #deltaChat et. al.] and #XMPP+#OMEMO [see @monocles / #monoclesChat et. al.]!)

And don't even get me started on you collecting #PII (espechally #PhoneNumbers) for no valid reason, (thus violating #GDPR & #BDSG)...

But yeah, I'll be patient to shout "#ToldYaSo" to your annoying cult of fanboys!

YouTubeWe Tried Signal's MobileCoin So You Never Have To...By Techlore
#toldyaso
Replied in thread
Kevin Karhan :verified:

@GrapheneOS @signalapp only time will tell, but right now I've been correct about #CryptoAG, #LavaBit, #EncroChat, #ANØM, etc.

So farewell...

Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)@GrapheneOS@grapheneos.social It doesn't change the fact that #security requires #transparency and thus full access & reproduceability from source. To give you a good example, *source-available* #Tarsnap demonstrates that stuff is truly securely encrypted by enabling #SelfCustody of keys *and* thus show they can't decrypt anything! - You may call me paranoid, but having *'massive trust issues'* saved not only my own life more often than I'd be able to disclose so you may see this as a 'survivorship bias', but we'll only see #MassSurveillance becoming impossible when people ain't just *users* of some big-ass platform that can be easily targeted once it becomes *inconvenient* for it's host nation, but actually push for #decentralization and #TechLiteracy. *"Just use A, B, C & D, E, F"* is the real threat as it sugfests people a [false sense if security]( https://grapheneos.social/@GrapheneOS/113047066349052609 ). - Just like a dresh #TechInspection doesn't prevent one to hose an engine due to lack of oil! Collecting any #PII [*IS the illicit activity*]( https://grapheneos.social/@GrapheneOS/113047045993549018 ) NO MATTER the excuse... - You may [choose ignorance]( https://grapheneos.social/@GrapheneOS/113047083361853248 ) but like with #LavaBit, #EncroChat & #ANØM I tend to turn out to be right all along. Sooner or later the #Enshittification of #Signal will reach a point where you'd rethink and consider apologizing...
#thxbye#EOD
Replied in thread
Kevin Karhan :verified:

@GrapheneOS It doesn't change the fact that #security requires #transparency and thus full access & reproduceability from source.

To give you a good example, source-available #Tarsnap demonstrates that stuff is truly securely encrypted by enabling #SelfCustody of keys and thus show they can't decrypt anything!

  • You may call me paranoid, but having 'massive trust issues' saved not only my own life more often than I'd be able to disclose so you may see this as a 'survivorship bias', but we'll only see #MassSurveillance becoming impossible when people ain't just users of some big-ass platform that can be easily targeted once it becomes inconvenient for it's host nation, but actually push for #decentralization and #TechLiteracy.

"Just use A, B, C & D, E, F" is the real threat as it sugfests people a false sense if security.

  • Just like a dresh #TechInspection doesn't prevent one to hose an engine due to lack of oil!

Collecting any #PII IS the illicit activity NO MATTER the excuse...

Sooner or later the #Enshittification of #Signal will reach a point where you'd rethink and consider apologizing...

GrapheneOS MastodonGrapheneOS (@GrapheneOS@grapheneos.social)@kkarhan@infosec.space @h3artbl33d@exquisite.social @arikb@mastodon.sdf.org @tails@fosstodon.org @tails_live@venera.social Please stop leaving replies to our threads with advice. PGP and OTR are obsolete. You're giving people bad advice with a large number of comments on our threads. If you won't stop doing it yourself, we'll deal with it.
TrendingLive feeds
About