Group items tagged

["Secure boot" is a technology described by recent revisions of the UEFI specification; it offers the prospect of a hardware-verified, malware-free operating system bootstrap process that can improve the security of many system deployments. Linux and other open operating systems will be able to take advantage of secure boot if it is implemented properly in the hardware. This document is intended to describe how the UEFI secure boot specification can be implemented to interoperate well with open systems and to avoid adversely affecting the rights of the owners of those systems while providing compliance with proprietary software vendors' requirements. To learn more about the recommendations please download the .PDF below. ]

I wound up joining this campaign at the urging of the ACLU after checking the Privacy Policy. The Reset the Net campaign seems to be endorsed by a lot of change-oriented groups, from the ACLU to Greenpeac to the Pirate Party. A fair number of groups with a Progressive agenda, but certainly not limited to them. The right answer to that situation is to urge other groups to endorse, not to avoid the campaign. Single-issue coalition-building is all about focusing on an area of agreement rather than worrying about who you are rubbing elbows with.  I have been looking for a a bipartisan group that's tackling government surveillance issues via mass actions but has no corporate sponsors. This might be the one. The reason: Corporate types like Google have no incentive to really butt heads with the government voyeurs. They are themselves engaged in massive surveillance of their users and certainly will not carry the battle for digital privacy over to the private sector. But this *is* a battle over digital privacy and legally defining user privacy rights in the private sector is just as important as cutting back on government surveillance. As we have learned through the Snowden disclosures, what the private internet companies have, the NSA can and does get.  The big internet services successfully pushed in the U.S. for authorization to publish more numbers about how many times they pass private data to the government, but went no farther. They wanted to be able to say they did something, but there's a revolving door of staffers between NSA and the big internet companies and the internet service companies' data is an open book to the NSA.   The big internet services are not champions of their users' privacy. If they were, they would be featuring end-to-end encryption with encryption keys unique to each user and unknown to the companies.  Like some startups in Europe are doing. E.g., the Wuala.com filesync service in Switzerland (first 5 GB of storage free). Compare tha

"This June 5th, I pledge to take strong steps to protect my freedom from government mass surveillance. I expect the services I use to do the same."

I wound up joining this campaign at the urging of the ACLU after checking the Privacy Policy. The Reset the Net campaign seems to be endorsed by a lot of change-oriented groups, from the ACLU to Greenpeac to the Pirate Party. A fair number of groups with a Progressive agenda, but certainly not limited to them. The right answer to that situation is to urge other groups to endorse, not to avoid the campaign. Single-issue coalition-building is all about focusing on an area of agreement rather than worrying about who you are rubbing elbows with.  I have been looking for a a bipartisan group that's tackling government surveillance issues via mass actions but has no corporate sponsors. This might be the one. The reason: Corporate types like Google have no incentive to really butt heads with the government voyeurs. They are themselves engaged in massive surveillance of their users and certainly will not carry the battle for digital privacy over to the private sector. But this *is* a battle over digital privacy and legally defining user privacy rights in the private sector is just as important as cutting back on government surveillance. As we have learned through the Snowden disclosures, what the private internet companies have, the NSA can and does get.  The big internet services successfully pushed in the U.S. for authorization to publish more numbers about how many times they pass private data to the government, but went no farther. They wanted to be able to say they did something, but there's a revolving door of staffers between NSA and the big internet companies and the internet service companies' data is an open book to the NSA.   The big internet services are not champions of their users' privacy. If they were, they would be featuring end-to-end encryption with encryption keys unique to each user and unknown to the companies.  Like some startups in Europe are doing. E.g., the Wuala.com filesync service in Switzerland (first 5 GB of storage free). Com

Direct P2P encrypted file syncing, no cloud intermediate, which should translate to far more secure exchange of files, with less opportunity for snooping by governments or others, than with cloud-based services. 

Re: Google. I don't know if it's the 'kiss of death" but they're definitely going to take a hit, particularly outside the U.S. BTW, I'm remembering from a few years back when the ODF Foundation was still kicking. I did a fair bit of research on the bureaucratic forces in the E.U. that were pushing for the Open Document Exchange Formats. That grew out of a then-ongoing push to get all of the E.U. nations connected via a network that is not dependent on the Internet. It was fairly complete at the time down to the national level and was branching out to the local level and the plan from there was to push connections to business and then to Joe Sixpack and wife. Interop was key, hence ODEF. The E.U. might not be that far away from an ability to sever the digital connections with the U.S. Say a bunch of daisy-chained proxy anonymizers for communications with the U.S. Of course they'd have to block the UK from the network and treat it like it is the U.S. There's a formal signals intelligence service collaboration/integration dating back to WW 2, as I recall, among the U.S., the U.K., Canada, Australia, and New Zealand. Don't remember its name. But it's the same group of nations that were collaborating on Echelon. So the E.U. wouldn't want to let the UK fox inside their new chicken coop. Ah, it's just a fantasy. The U.S. and the E.U. are too interdependent. I have no idea hard it would be for the Zoho folk to come up with desktop/side encryption/decryption. And I don't know whether their servers are located outside the reach of a U.S. court's search warrant. But I think Google is going to have to move in that direction fast if it wants to minimize the damage. Or get way out in front of the hounds chomping at the NSA's ankles and reduce the NSA to compost. OTOH, Google might be a government covert op. for all I know. :-) I'm really enjoying watching the NSA show. Who knows what facet of their Big Brother operation gets revealed next?

ZOHO is an Indian company with USA marketing offices. No idea where the server farm is located, but they were not on the NSA list. I've known Raju Vegesna for years, mostly from the old Web 2.0 and Office 2.0 Conferences. Raju runs the USA offices in Santa Clara. I'll try to catch up with him on Thursday. How he could miss this once in a lifetime moment to clean out Google, Microsoft and SalesForce.com is something I'd like to find out about. Thanks for the Wuala tip. You sent me that years ago, when i was working on research and design for the SurDocs project. Incredible that all our notes, research, designs and correspondence was left to rot in Google Wave! Too too funny. I recall telling Alex from SurDocs that he had to use a USA host, like Amazon, that could be trusted by USA customers to keep their docs safe and secure. Now look what i've done! I've tossed his entire company information set into the laps of the NSA and their cabal of connected corporatists :)

"Congratulations, you've got the latest version. If you find any bug or you'd like an enhancement, please report here or here. Many thanks! Main good news Script Surrogate replacement for googletagservices.com (thanks Guest and barbaz). Fixed XSS false positive in the new gmx.com webmail login and in other services (e.g. mail.com) using the same back-end. Better compatibility with script inclusion enforcers such as Require.js. Safer toStaticHTML() implementation (thanks .mario for reporting). Several XSS filter improvements (thanks Masato Kinugawa for reporting). CAPS-independent, finer-tuned version of the "Allow local links" feature."

"Congratulations, you've got the latest version. If you find any bug or you'd like an enhancement, please report here or here. Many thanks! Main good news Script Surrogate replacement for googletagservices.com (thanks Guest and barbaz). Fixed XSS false positive in the new gmx.com webmail login and in other services (e.g. mail.com) using the same back-end. Better compatibility with script inclusion enforcers such as Require.js. Safer toStaticHTML() implementation (thanks .mario for reporting). Several XSS filter improvements (thanks Masato Kinugawa for reporting). CAPS-independent, finer-tuned version of the "Allow local links" feature."

"Congratulations, you've got the latest version. If you find any bug or you'd like an enhancement, please report here or here. Many thanks! Main good news Script Surrogate replacement for googletagservices.com (thanks Guest and barbaz). Fixed XSS false positive in the new gmx.com webmail login and in other services (e.g. mail.com) using the same back-end. Better compatibility with script inclusion enforcers such as Require.js. Safer toStaticHTML() implementation (thanks .mario for reporting). Several XSS filter improvements (thanks Masato Kinugawa for reporting). CAPS-independent, finer-tuned version of the "Allow local links" feature."

"Today Android and iOS dominate the smartphone market, combining to provide the operating systems for more than 95 percent of smartphones. Still, not everyone is a fan of the Apple-Google mobile universe. If you're wary of Android's security shortcomings, tired of iOS's overly aggressive auto-correct, or interested in tapping out of the Apple vs. Google mobile war, however, you'll be pleased to know that a number of new open-source mobile OSs are slated to debut in the next year or so. From Canonical's Ubuntu to Firefox to Samsung, several big-name corporations and organizations will release their own open-source smartphone platforms this year. So grab your Tux the Linux Penguin gear and read on. "

Don't miss the slide with the names of the NSA-partner nations. Lots of E.U. member nations.

Very good info. Lucky me I came across your site by accident (stumbleupon). I have saved it for later. I Hate NSA's Surveilances. http://watchlive.us/movie/watch-Venus-in-Fur-online.html Howdy! I could have sworn I've visited this website before but after looking at many of the articles I realized it's new to me. Nonetheless, I'm certainly pleased I found it and I'll be book-marking it and checking back often. <

"As part of the contest we conducted recently, we got 160+ comments from the geeky readers who choose their favorite firewall. Based on this data, the top spot goes to.. drum roll please.."

Please let them know what you think.

"The stolen database holds 167 million records, of which 117 million include email addresses and passwords. By Jeff Goldman | Posted May 20, 201"

NSA and crew decide to delay and try later with CISA. The Internet strikes back again.

[The Federal Bureau of Investigation issued an alert on April 7 about the potential danger of Islamic State (ISIS) terrorists abusing vulnerabilities in the open-source WordPress blog and content management system software.]