friendica.prankgo.de

Suche

Beiträge die mit privacy getaggt sind

Schon älter, trotzdem schlimm:
"Keine Angst: Der #Datenschutz ist uns ganz wichtig. Es geht uns um die Bewegungsprofile"
https://steiermark.orf.at/news/stories/2832980/
#privacy #surveillance
 
#fefe darüber, dass die europäische #Software-Industrie die #DSGVO-Chance nicht als solche genutzt hat und wir wieder von den Amerikanern rechts überholt werden:
https://blog.fefe.de/?ts=a299214a
#privacy
 
Just wrote a letter to Members of European Parliament from six countries asking them to reject Article 13. Two of them host my projects and I just like other four. I honestly believe things like Copyright Directive have global impact no matter where you live. You can write your own letter.

It is a bit too long and certainly not perfect.
Subj: Concerning Copyright Reform and Article 13

Dear Member of the European Parliament!

To make things clear from the start - I am not one of your constituents as I live in Russia. However recent developments concerning Article 13 of the copyright Directive will have global impact which will also directly affect me so I decided to reach out.

You are probably aware of the critique of Article 13. While these proposals might be acceptable to large platforms they will decimate smaller social services because the cost of implementing upload filters will be prohibitive. Also these technologies will have to be outsourced to existing Big Data giants (mostly US based corporations) which will not just raise costs but also affect independence of social services forced to use them.

But I am pretty sure you are already aware of all that.

What I am more worried about is the precedent EU is about to create. Let me be frank - these days EU is beacon of progress and humanitarian rights. When it comes to freedom, privacy, social rights the world looks at you. Article 13 goes against these values. If it gets implemented governments of the rest of the world will see it as a green light to follow with even harder censorship and other restrictions of freedom of speech and expression. And they will already have the technology pioneered by Article 13 compliance - which won't be working good, which will misfire, which will be expensive and most likely under control of corporations like Google and Facebook. And as recent history of my country shows - if there is a restrictive control tool in place, it will be misused at one point or another.

Also there will be economic consequences for European IT companies. Right now a lot of projects are hosted in EU because of legal stability and respect of human rights Europe provides. With Article 13 in place it will change and these projects will move out to minimize potential liability. I am hosting two Internet projects in EU space myself, one in Germany and one in Italy. Please think what makes European hosting companies different from the rest. Also consider the fact that currently there is very little pirated material openly hosted by them - EU companies are known for low tolerance for piracy.

Please consider the overwhelming amount of critique towards Article 13. A good selection of points is here: https://saveyourinternet.eu/statements/

As a part of World Wide Web community I ask you to reject Article 13 of the copyright Directive.

Sincerely Yours,
Alexander

#article13 #EU #copyrightreform #CensorshipMachine #SaveYourInternet #digitalresistance #copyright #privacy #freedom #activism
Breaking: The text of Article 13 and the EU Copyright Directive has just been finalised
 

European Copyright Reform: Article 13 puts alternative social networks at risk


If you live in the European Union, you have probably heard about the planned European Copyright Reform, and you are probably aware of its controversial Article 13.

The so-called Proposal for a Directive on copyright in the Digital Single Market intends to introduce new regulations around copyright. Article 13 would add new liability rules for online content-sharing service providers. While previously, providers could act on content that infringed copyright upon receiving a notice, the proposed regulations would render providers accountable for content as soon as it has been uploaded.

Effectively, this would put providers into a position where they have to implement strict upload filters to prevent users from uploading content that may infringe on someone else's copyright. This is dangerous, and it puts free speech, the diversity of opinions, and the internet as a whole at risk.

Article 13 previously contained rules to exclude platforms younger than three years, generating revenue of less than €10 million or with fewer than 5 million active users. Last week, however, a new draft was published, and the proposal now only excludes platforms matching all three of those conditions.

This is shocking. If Article 13 became a reality, everyone who operates a platform for users to publish content for more than three years would be 100% liable for everything happening on that platform, including content the operators are not even aware of. This makes operating an alternative social network effectively impossible.

For more details about the planned copyright reform, and information on how you can help, please check out saveyourinternet.eu. This does not concern just diaspora\* or your other favorite alternative social network. This concerns everyone. This is about health of the internet. Please #SaveYourInternet and fight against the #CensorshipMachine.

For reference, you will find below an open letter from diappora\* core team member Dennis Schubert, sent to those members of the European Parliament who currently support Article 13.
Dear Member of the European Parliament

The proposed Directive on copyright in the Digital Single Market has been the topic of discussions for many months now. In spite of many debates on this matter, not much progress has been made to address concerns of many respected experts, including many NGOs and even the United Nations' Special Rapporteur on Freedom of Expression, David Kaye[1]. According to my information, you are in the group of members of the European Parliament currently in favour of supporting this proposal, which is why I am reaching out to you to request you to reconsider the proposal, and especially consider the impact Article 13 will have on the Internet.

I am writing to you as a citizen of the European Union, but I am also reaching out to represent the many users and engineers behind alternative social networks. I am the project lead of diaspora*[2], an alternative, distributed social network based on free and open-source software. Together with similar projects such as Mastodon and Friendica, the world of alternative social media reaches over 2.5 million users on more than 4000 servers, including citizens who are part of your constituency.

Until now, the European Union has been seen as the epicentre of many efforts to build and maintain alternatives to large networks such as Facebook and Twitter. Many of these projects, their developers, and users are citizens of the European Union, and our projects enjoy great popularity among people as they are seen as privacy-friendly, local alternatives to the large systems built by American corporations. On many occasions in the past, European Union legislation has supported these projects and their principles, for instance with the recently implemented General Data Protection Regulation [4]to ensure high levels of data privacy for EU citizens.

Unfortunately, the planned copyright reform, and especially Article 13, will have an effect exactly opposite to supporting such projects and efforts.

The upload filters both explicitly described in and implied by the text on which you will be voting would force all online platforms to rely on technologies known to be error-prone, intrusive and legally questionable[5]. The proposal intends to hold providers of online platforms accountable for all content uploaded by users as soon as they have been published, contrary to the "notice and takedown" procedure currently in place, which allows providers to remove offending content upon receiving notice without the fear of legal repercussions.

For large platforms like Twitter and YouTube, this change would result in the implementation of stricter upload filters. Due to the technical natures of such systems and the strict liability regulations, those systems will be designed to block "too much", because blocking "too little" would put the provider at risk. Such over-cautious filters are a danger for users' freedom of speech, the diversity of opinions and creativity on the entire Internet, and would limit EU citizens' rights substantially.

Implementing Article 13 in its current form would be the end for smaller platforms and projects, as well as small and medium-sized businesses working on these or similar projects. Although in a previous revision of the proposal, platforms younger than three years, with revenue of less than €10 million, or with fewer than 5 million monthly active users would be excluded, a recent revision of the proposal now only excludes projects that meet all three of these conditions. For projects like diaspora*, which is significantly older than three years, this decision would result in all operators being responsible for every action their users do.

Non-profit projects like diaspora* are developed and maintained by people working voluntarily. Operators of servers running these software projects run those because they deem privacy important and want to provide an alternative to the large networks. They do not earn any money by doing this. The development, embedding and maintenance of infrastructure needed to filter copyright violations automatically requires a lot of resources, and implementing such solutions would thus simply be impossible.

If Article 13 became a reality, these projects and companies would not be able to comply with the new laws, so they could either cease to provide their services to European citizens and move their operations to a country outside the EU or stop their activities altogether. For Europe, especially as a community for strong privacy principles and independent, alternative solutions, this would be a huge step backwards and would make the established large networks, which quite regularly violate European principles, even more powerful.

With this, I am asking you to reject Article 13 of the Copyright Directive and to support all citizens who raise their voice for a free, open and diverse Internet.

Please do not use your vote to destroy the Internet.

Thank you.

Sincerely yours,

Dennis Schubert

[1]: https://www.ohchr.org/Documents/Issues/Opinion/Legislation/OL-OTH-41-2018.pdf
[2]: https://en.wikipedia.org/wiki/Diaspora_(software)
[3]: https://the-federation.info/
[4]: https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:02016R0679-20160504
[5]: https://static1.squarespace.com/static/571681753c44d835a440c8b5/t/58d058712994ca536bbfa47a/1490049138881/FilteringPaperWebsite.pdf

Standalone Open letter, English Version: https://schub.io/txt/europarl-article13-en.html
Standalone Open letter, German Version: https://schub.io/txt/europarl-article13-de.html
#diaspora #privacy #copyright #europe #article13
Home
 

Why you should seriously consider deleting WhatsApp from your phone - And if not, add Telegram and Signal to your phone to help others delete Whatsapp

You might want to consider ditching WhatsApp if you want to protect your private data, warns tech expert Toby Shapshak. Shapshak is the author of Stuff magazine and says the messaging app no longer offers enough security.

He says users should be wary of the Facebook-owned messaging app after the string of privacy threats, breaches and scandals facing the social media company.

Shapshak says Facebook has a history of exploiting data without the consent of users and could target the instant messaging service next.

Toby is echoing what many others are warning about. We've seen over many years that Facebook cannot be trusted with personal data (and they know they can do better) and integrating Whatsapp, Instagram and Facebook together clearly will result in "it can be done better" yet again. I know many people cannot delete Whatsapp (myself included as I have groups at work still using it) but what we can all do is install Telegram and Signal so that others can find it easier to leave Whatsapp if they wish to. It's often us who are holding other back from leaving as they don't find us on alternative messaging platforms.

"Facebook's real customer is not us the user. Facebook's real customer is the advertiser" — Toby Shapshak, Editor-in-chief - Stuff magazine. Think about that.... who is actually paying.

See http://www.capetalk.co.za/articles/337669/why-you-should-seriously-consider-deleting-whatsapp-from-your-phone

#whatsapp #facebook #privacy
 

Facebook to integrate Instagram, Messenger and WhatsApp - Raising Privacy and Anti-Trust Concerns

Many are concerned that this move may not improve the privacy concerns on Facebook Messenger and Instagram side as much as it may weaken the end-to-end encryption on Whatsapp. Many Whatsapp users do not use Facebook and want nothing to do with it. Will this interoperability not share information back to Facebook?

While E2E is a valuable security measure for users, it has the side effect of preventing Facebook from scanning messages as part of its advertising business. The technology has also come under attack from law enforcement organisations, since it hinders their ability to intercept suspect communications in real time.

On the anti-trust side, there is also a concern that this move may prevent the spin-off of Instagram and Whatsapp.

Matthew Green, a cryptography professor at Johns Hopkins University, said the change “could potentially be good or bad for security/privacy”. He added: “But given recent history and financial motivations of Facebook, I wouldn’t bet my lunch money on ‘good’.

See https://www.theguardian.com/technology/2019/jan/25/facebook-integrate-instagram-messenger-whatsapp-messaging-platforms

#facebook #privacy #whatsapp #Facebook #WhatsApp #Instagram #Socialmedia #Technology #Encryption #Apps #GDPR #MarkZuckerberg #Socialnetworking
 

European Copyright Reform: Article 13 puts alternative social networks at risk


If you live in the European Union, you have probably heard about the planned European Copyright Reform, and you are probably aware of its controversial Article 13.

The so-called Proposal for a Directive on copyright in the Digital Single Market intends to introduce new regulations around copyright. Article 13 would add new liability rules for online content-sharing service providers. While previously, providers could act on content that infringed copyright upon receiving a notice, the proposed regulations would render providers accountable for content as soon as it has been uploaded.

Effectively, this would put providers into a position where they have to implement strict upload filters to prevent users from uploading content that may infringe on someone else's copyright. This is dangerous, and it puts free speech, the diversity of opinions, and the internet as a whole at risk.

Article 13 previously contained rules to exclude platforms younger than three years, generating revenue of less than €10 million or with fewer than 5 million active users. Last week, however, a new draft was published, and the proposal now only excludes platforms matching all three of those conditions.

This is shocking. If Article 13 became a reality, everyone who operates a platform for users to publish content for more than three years would be 100% liable for everything happening on that platform, including content the operators are not even aware of. This makes operating an alternative social network effectively impossible.

For more details about the planned copyright reform, and information on how you can help, please check out saveyourinternet.eu. This does not concern just diaspora* or your other favorite alternative social network. This concerns everyone. This is about health of the internet. Please #SaveYourInternet and fight against the #CensorshipMachine.

For reference, you will find below an open letter from diappora* core team member Dennis Schubert, sent to those members of the European Parliament who currently support Article 13.
Dear Member of the European Parliament

The proposed Directive on copyright in the Digital Single Market has been the topic of discussions for many months now. In spite of many debates on this matter, not much progress has been made to address concerns of many respected experts, including many NGOs and even the United Nations' Special Rapporteur on Freedom of Expression, David Kaye[1]. According to my information, you are in the group of members of the European Parliament currently in favour of supporting this proposal, which is why I am reaching out to you to request you to reconsider the proposal, and especially consider the impact Article 13 will have on the Internet.

I am writing to you as a citizen of the European Union, but I am also reaching out to represent the many users and engineers behind alternative social networks. I am the project lead of diaspora*[2], an alternative, distributed social network based on free and open-source software. Together with similar projects such as Mastodon and Friendica, the world of alternative social media reaches over 2.5 million users on more than 4000 servers, including citizens who are part of your constituency.

Until now, the European Union has been seen as the epicentre of many efforts to build and maintain alternatives to large networks such as Facebook and Twitter. Many of these projects, their developers, and users are citizens of the European Union, and our projects enjoy great popularity among people as they are seen as privacy-friendly, local alternatives to the large systems built by American corporations. On many occasions in the past, European Union legislation has supported these projects and their principles, for instance with the recently implemented General Data Protection Regulation [4]to ensure high levels of data privacy for EU citizens.

Unfortunately, the planned copyright reform, and especially Article 13, will have an effect exactly opposite to supporting such projects and efforts.

The upload filters both explicitly described in and implied by the text on which you will be voting would force all online platforms to rely on technologies known to be error-prone, intrusive and legally questionable[5]. The proposal intends to hold providers of online platforms accountable for all content uploaded by users as soon as they have been published, contrary to the "notice and takedown" procedure currently in place, which allows providers to remove offending content upon receiving notice without the fear of legal repercussions.

For large platforms like Twitter and YouTube, this change would result in the implementation of stricter upload filters. Due to the technical natures of such systems and the strict liability regulations, those systems will be designed to block "too much", because blocking "too little" would put the provider at risk. Such over-cautious filters are a danger for users' freedom of speech, the diversity of opinions and creativity on the entire Internet, and would limit EU citizens' rights substantially.

Implementing Article 13 in its current form would be the end for smaller platforms and projects, as well as small and medium-sized businesses working on these or similar projects. Although in a previous revision of the proposal, platforms younger than three years, with revenue of less than €10 million, or with fewer than 5 million monthly active users would be excluded, a recent revision of the proposal now only excludes projects that meet all three of these conditions. For projects like diaspora*, which is significantly older than three years, this decision would result in all operators being responsible for every action their users do.

Non-profit projects like diaspora* are developed and maintained by people working voluntarily. Operators of servers running these software projects run those because they deem privacy important and want to provide an alternative to the large networks. They do not earn any money by doing this. The development, embedding and maintenance of infrastructure needed to filter copyright violations automatically requires a lot of resources, and implementing such solutions would thus simply be impossible.

If Article 13 became a reality, these projects and companies would not be able to comply with the new laws, so they could either cease to provide their services to European citizens and move their operations to a country outside the EU or stop their activities altogether. For Europe, especially as a community for strong privacy principles and independent, alternative solutions, this would be a huge step backwards and would make the established large networks, which quite regularly violate European principles, even more powerful.

With this, I am asking you to reject Article 13 of the Copyright Directive and to support all citizens who raise their voice for a free, open and diverse Internet.

Please do not use your vote to destroy the Internet.

Thank you.

Sincerely yours,

Dennis Schubert

[1]: https://www.ohchr.org/Documents/Issues/Opinion/Legislation/OL-OTH-41-2018.pdf
[2]: https://en.wikipedia.org/wiki/Diaspora_(software)
[3]: https://the-federation.info/
[4]: https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:02016R0679-20160504
[5]: https://static1.squarespace.com/static/571681753c44d835a440c8b5/t/58d058712994ca536bbfa47a/1490049138881/FilteringPaperWebsite.pdf

Standalone Open letter, English Version: https://schub.io/txt/europarl-article13-en.html
Standalone Open letter, German Version: https://schub.io/txt/europarl-article13-de.html
#diaspora #privacy #copyright #europe #article13
Home
 

European Copyright Reform: Article 13 puts alternative social networks at risk


If you live in the European Union, you have probably heard about the planned European Copyright Reform, and you are probably aware of its controversial Article 13.

The so-called Proposal for a Directive on copyright in the Digital Single Market intends to introduce new regulations around copyright. Article 13 would add new liability rules for online content-sharing service providers. While previously, providers could act on content that infringed copyright upon receiving a notice, the proposed regulations would render providers accountable for content as soon as it has been uploaded.

Effectively, this would put providers into a position where they have to implement strict upload filters to prevent users from uploading content that may infringe on someone else's copyright. This is dangerous, and it puts free speech, the diversity of opinions, and the internet as a whole at risk.

Article 13 previously contained rules to exclude platforms younger than three years, generating revenue of less than €10 million or with fewer than 5 million active users. Last week, however, a new draft was published, and the proposal now only excludes platforms matching all three of those conditions.

This is shocking. If Article 13 became a reality, everyone who operates a platform for users to publish content for more than three years would be 100% liable for everything happening on that platform, including content the operators are not even aware of. This makes operating an alternative social network effectively impossible.

For more details about the planned copyright reform, and information on how you can help, please check out saveyourinternet.eu. This does not concern just diaspora* or your other favorite alternative social network. This concerns everyone. This is about health of the internet. Please #SaveYourInternet and fight against the #CensorshipMachine.

For reference, you will find below an open letter from diappora* core team member Dennis Schubert, sent to those members of the European Parliament who currently support Article 13.
Dear Member of the European Parliament

The proposed Directive on copyright in the Digital Single Market has been the topic of discussions for many months now. In spite of many debates on this matter, not much progress has been made to address concerns of many respected experts, including many NGOs and even the United Nations' Special Rapporteur on Freedom of Expression, David Kaye[1]. According to my information, you are in the group of members of the European Parliament currently in favour of supporting this proposal, which is why I am reaching out to you to request you to reconsider the proposal, and especially consider the impact Article 13 will have on the Internet.

I am writing to you as a citizen of the European Union, but I am also reaching out to represent the many users and engineers behind alternative social networks. I am the project lead of diaspora*[2], an alternative, distributed social network based on free and open-source software. Together with similar projects such as Mastodon and Friendica, the world of alternative social media reaches over 2.5 million users on more than 4000 servers, including citizens who are part of your constituency.

Until now, the European Union has been seen as the epicentre of many efforts to build and maintain alternatives to large networks such as Facebook and Twitter. Many of these projects, their developers, and users are citizens of the European Union, and our projects enjoy great popularity among people as they are seen as privacy-friendly, local alternatives to the large systems built by American corporations. On many occasions in the past, European Union legislation has supported these projects and their principles, for instance with the recently implemented General Data Protection Regulation [4]to ensure high levels of data privacy for EU citizens.

Unfortunately, the planned copyright reform, and especially Article 13, will have an effect exactly opposite to supporting such projects and efforts.

The upload filters both explicitly described in and implied by the text on which you will be voting would force all online platforms to rely on technologies known to be error-prone, intrusive and legally questionable[5]. The proposal intends to hold providers of online platforms accountable for all content uploaded by users as soon as they have been published, contrary to the "notice and takedown" procedure currently in place, which allows providers to remove offending content upon receiving notice without the fear of legal repercussions.

For large platforms like Twitter and YouTube, this change would result in the implementation of stricter upload filters. Due to the technical natures of such systems and the strict liability regulations, those systems will be designed to block "too much", because blocking "too little" would put the provider at risk. Such over-cautious filters are a danger for users' freedom of speech, the diversity of opinions and creativity on the entire Internet, and would limit EU citizens' rights substantially.

Implementing Article 13 in its current form would be the end for smaller platforms and projects, as well as small and medium-sized businesses working on these or similar projects. Although in a previous revision of the proposal, platforms younger than three years, with revenue of less than €10 million, or with fewer than 5 million monthly active users would be excluded, a recent revision of the proposal now only excludes projects that meet all three of these conditions. For projects like diaspora*, which is significantly older than three years, this decision would result in all operators being responsible for every action their users do.

Non-profit projects like diaspora* are developed and maintained by people working voluntarily. Operators of servers running these software projects run those because they deem privacy important and want to provide an alternative to the large networks. They do not earn any money by doing this. The development, embedding and maintenance of infrastructure needed to filter copyright violations automatically requires a lot of resources, and implementing such solutions would thus simply be impossible.

If Article 13 became a reality, these projects and companies would not be able to comply with the new laws, so they could either cease to provide their services to European citizens and move their operations to a country outside the EU or stop their activities altogether. For Europe, especially as a community for strong privacy principles and independent, alternative solutions, this would be a huge step backwards and would make the established large networks, which quite regularly violate European principles, even more powerful.

With this, I am asking you to reject Article 13 of the Copyright Directive and to support all citizens who raise their voice for a free, open and diverse Internet.

Please do not use your vote to destroy the Internet.

Thank you.

Sincerely yours,

Dennis Schubert

[1]: https://www.ohchr.org/Documents/Issues/Opinion/Legislation/OL-OTH-41-2018.pdf
[2]: https://en.wikipedia.org/wiki/Diaspora_(software)
[3]: https://the-federation.info/
[4]: https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:02016R0679-20160504
[5]: https://static1.squarespace.com/static/571681753c44d835a440c8b5/t/58d058712994ca536bbfa47a/1490049138881/FilteringPaperWebsite.pdf

Standalone Open letter, English Version: https://schub.io/txt/europarl-article13-en.html
Standalone Open letter, German Version: https://schub.io/txt/europarl-article13-de.html
#diaspora #privacy #copyright #europe #article13
Home
Halle (Saale) 

Signal Messenger Has A Clever New Way To Shield Your Identity - A "sealed sender" Feature

A key part of what makes Signal the leading encrypted messaging app is its effort to minimize the amount of data or metadata each message leaves behind. The messages themselves are fully encrypted as they move across Signal's infrastructure, and the service doesn't store logs of information like who sends messages to each other, or when. On Monday, the nonprofit that develops Signal announced a new initiative to take those protections even further. Now, it hopes to encrypt even information about which users are messaging each other on the platform.

"While the service always needs to know where a message should be delivered, ideally it shouldn’t need to know who the sender is," Moxie Marlinspike, the creator of Signal, wrote on Monday. "It would be better if the service could handle packages where only the destination is written on the outside, with a blank space where the 'from' address used to be."

See https://www.wired.com/story/signal-sealed-sender-encrypted-messaging/

#signal #privacy #security #encryption #Signal #messaging
 
Signal Messenger Has A Clever New Way To Shield Your Identity - A "sealed sender" Feature

A key part of what makes Signal the leading encrypted messaging app is its effort to minimize the amount of data or metadata each message leaves behind. The messages themselves are fully encrypted as they move across Signal's infrastructure, and the service doesn't store logs of information like who sends messages to each other, or when. On Monday, the nonprofit that develops Signal announced a new initiative to take those protections even further. Now, it hopes to encrypt even information about which users are messaging each other on the platform.

"While the service always needs to know where a message should be delivered, ideally it shouldn’t need to know who the sender is," Moxie Marlinspike, the creator of Signal, wrote on Monday. "It would be better if the service could handle packages where only the destination is written on the outside, with a blank space where the 'from' address used to be."

See https://www.wired.com/story/signal-sealed-sender-encrypted-messaging/

#signal #privacy
 
(Anmerkung: interessante sache, habe ich heute mal ausprobiert)
♲ kaffeeringe.de (feed@kaffeeringe.de):
Bullshit-Web: Pi-hole filtert den Scheiß aus dem Netz
Mit Pi-hole kann man das heimische #Netzwerk von Trackern und #Reklame befreien. Wer noch einen Raspberry Pi herumliegen hat, sollte den dafür reaktivieren. Es lohnt sich.

Wer heutzutage eine kommerzielle Website aufruft, lädt nicht nur Text und Bilder. In der Regel rufen Spiegel Online & Co. Dutzende externer Dienste auf, um Reklame anzuzeigen, die Performance der Seite zu analysieren und die Daten an Datensammler weiterzugeben. So verdienen die ihr Geld.

The Bullshit Web



Nick Heer nennt das „The Bullshit Web“: All die Dinge, die moderne Webseiten enthalten, die für die Besucher aber wenig Nutzen haben:
„The vast majority of these resources are not directly related to the information on the page, and I’m including advertising. Many of the scripts that were loaded are purely for surveillance purposes: self-hosted analytics, of which there are several examples; various third-party analytics firms like Salesforce, Chartbeat, and Optimizely; and social network sharing widgets. They churn through CPU cycles and cause my six-year-old computer to cry out in pain and fury. I’m not asking much of it; I have opened a text-based document on the web.“

Man kann dagegen #AdBlocker einsetzen oder Plugins wie den Privacy Badger der EFF. Oder man setzt ein Stückchen weiter vorne im eigenen Netzwerk an und filtert direkt am Router.

Wie funktioniert Pi-hole?



Pi-hole ist eine Software für den Raspberry Pi, die DNS-Anfragen mit Block-Listen abgleicht und Anfragen von bekannten Trackern gar nicht erst weiterleitet.

Normalerweise fragen Browser einen #DNS-Server, unter welcher IP eine www-Adresse zu finden ist. So wie man im Telefonbuch nachgeschaut hat, welche Telefonnummer Frau Müller hat. Das macht der Browser nicht nur für zum Beispiel spiegel.de sondern auch für all die Reklame-Elemente und Tracker, die spiegel.de zusätzlich lädt.

Statt die Anfragen direkt an einen normalen DNS-Server zu stellen, leitet man die Anfrage an Pi-hole. Pi-hole schaut dann nach, ob die Adresse auf einer Liste bekannter Tracker und Reklame-Server auftaucht. Wenn nein, wird die Anfrage an einen richtigen DNS weitergeleitet. Wenn ja, stoppt Pi-hole die Anfrage.

Auf diese Weise hat Pi-hole heute ein gutes Viertel aller Internet-Zugriffe aus meinem Netzwerk gestoppt. Bei einem Viertel aller DNS-Anfragen ging es um Tracker oder Reklame!

Pi-hole installieren



Pi-hole zu installieren ist wirklich einfach: Du brauchst einen #RaspberryPi i samt Netzteil, SD-Karte und Netzwerkkabel. Die SD-Karte formatierst Du an Deinem richtigen Computer. Du lädst Dir NOOBS herunter, packst es aus und kopierst es auf die SD-Karte. Karte in den Raspi, Kabel dran, Monitor, Tastatur und Maus.

Nachdem der Raspi NOOBS gestartet hat, wirst Du gefragt, welches Betriebssystem Du installieren willst. Nimm Raspbian Lite – das reicht. Nach einer viertel Stunde ist Raspbian installiert und Du kannste den Raspi neu starten. Nachdem Raspbian gestartet ist, kannst Du Dich mit pi/raspberry einloggen.

Auf der Website von Pi-hole steht direkt, wie man die Software installiert. Einfach mit dem Befehl:
curl -sSL https://install.pi-hole.net | bash
Die Installation dauert einige Zeit. Ein paar mal wirst Du nach Einstellungen gefragt, aber die voreinstellten Settings sind ok.

Nach der Installation läuft auf dem Raspi ein Webserver mit den Einstellungen und des Statistiken. Wenn Du die IP des Raspis im Browser aufrufst, wirst Du dort hin geleitet.

Pi-hole als DNS-Server



Im Router musst Du zum einen einstellen, dass der Raspi immer die gleiche IP bekommt. Zum anderen stellst Du diese IP dann als primären DNS-Server ein.

Danach kannst Du Dir in der Statistik anschauen, wie Anfrage um Anfrage gefiltert wird. Dabei sind das natürlich nicht nur die Anfragen, die Du im Browser auslöst. Dein Smart-TV funkt nach Hause, die Apps auf Deinem Handy machen das, selbst der Treiber Deiner Grafikkarte macht das.

Bei mir werden zurzeit 26% aller DNS-Anfragen von Pi-hole abgefangen und bemerkt habe ich nichts – alle Seiten, die ich aufgerufen habe, funktionierten weiterhin ohne Probleme. Über ein Viertel aller Anfragen sind überflüssiger Scheiß! Scheiß, der Bandbreite verbraucht und Energie auf Servern und meinem Rechner! Macht das auch: Filter die Scheiße aus dem Netz!

Der Beitrag Pi-hole filtert den Scheiß aus dem Netz erschien zuerst auf kaffeeringe.de.

[l]

#Adblocker #privacy #DNS #RaspberryPi
Tracking‐​Wahnsinn bei Spiegel‐​Online
 
(Anmerkung: interessante sache, habe ich heute mal ausprobiert)
♲ kaffeeringe.de (feed@kaffeeringe.de):
Bullshit-Web: Pi-hole filtert den Scheiß aus dem Netz
Mit Pi-hole kann man das heimische #Netzwerk von Trackern und #Reklame befreien. Wer noch einen Raspberry Pi herumliegen hat, sollte den dafür reaktivieren. Es lohnt sich.

Wer heutzutage eine kommerzielle Website aufruft, lädt nicht nur Text und Bilder. In der Regel rufen Spiegel Online & Co. Dutzende externer Dienste auf, um Reklame anzuzeigen, die Performance der Seite zu analysieren und die Daten an Datensammler weiterzugeben. So verdienen die ihr Geld.

The Bullshit Web



Nick Heer nennt das „The Bullshit Web“: All die Dinge, die moderne Webseiten enthalten, die für die Besucher aber wenig Nutzen haben:
„The vast majority of these resources are not directly related to the information on the page, and I’m including advertising. Many of the scripts that were loaded are purely for surveillance purposes: self-hosted analytics, of which there are several examples; various third-party analytics firms like Salesforce, Chartbeat, and Optimizely; and social network sharing widgets. They churn through CPU cycles and cause my six-year-old computer to cry out in pain and fury. I’m not asking much of it; I have opened a text-based document on the web.“

Man kann dagegen #AdBlocker einsetzen oder Plugins wie den Privacy Badger der EFF. Oder man setzt ein Stückchen weiter vorne im eigenen Netzwerk an und filtert direkt am Router.

Wie funktioniert Pi-hole?



Pi-hole ist eine Software für den Raspberry Pi, die DNS-Anfragen mit Block-Listen abgleicht und Anfragen von bekannten Trackern gar nicht erst weiterleitet.

Normalerweise fragen Browser einen #DNS-Server, unter welcher IP eine www-Adresse zu finden ist. So wie man im Telefonbuch nachgeschaut hat, welche Telefonnummer Frau Müller hat. Das macht der Browser nicht nur für zum Beispiel spiegel.de sondern auch für all die Reklame-Elemente und Tracker, die spiegel.de zusätzlich lädt.

Statt die Anfragen direkt an einen normalen DNS-Server zu stellen, leitet man die Anfrage an Pi-hole. Pi-hole schaut dann nach, ob die Adresse auf einer Liste bekannter Tracker und Reklame-Server auftaucht. Wenn nein, wird die Anfrage an einen richtigen DNS weitergeleitet. Wenn ja, stoppt Pi-hole die Anfrage.

Auf diese Weise hat Pi-hole heute ein gutes Viertel aller Internet-Zugriffe aus meinem Netzwerk gestoppt. Bei einem Viertel aller DNS-Anfragen ging es um Tracker oder Reklame!

Pi-hole installieren



Pi-hole zu installieren ist wirklich einfach: Du brauchst einen #RaspberryPi i samt Netzteil, SD-Karte und Netzwerkkabel. Die SD-Karte formatierst Du an Deinem richtigen Computer. Du lädst Dir NOOBS herunter, packst es aus und kopierst es auf die SD-Karte. Karte in den Raspi, Kabel dran, Monitor, Tastatur und Maus.

Nachdem der Raspi NOOBS gestartet hat, wirst Du gefragt, welches Betriebssystem Du installieren willst. Nimm Raspbian Lite – das reicht. Nach einer viertel Stunde ist Raspbian installiert und Du kannste den Raspi neu starten. Nachdem Raspbian gestartet ist, kannst Du Dich mit pi/raspberry einloggen.

Auf der Website von Pi-hole steht direkt, wie man die Software installiert. Einfach mit dem Befehl:
curl -sSL https://install.pi-hole.net | bash
Die Installation dauert einige Zeit. Ein paar mal wirst Du nach Einstellungen gefragt, aber die voreinstellten Settings sind ok.

Nach der Installation läuft auf dem Raspi ein Webserver mit den Einstellungen und des Statistiken. Wenn Du die IP des Raspis im Browser aufrufst, wirst Du dort hin geleitet.

Pi-hole als DNS-Server



Im Router musst Du zum einen einstellen, dass der Raspi immer die gleiche IP bekommt. Zum anderen stellst Du diese IP dann als primären DNS-Server ein.

Danach kannst Du Dir in der Statistik anschauen, wie Anfrage um Anfrage gefiltert wird. Dabei sind das natürlich nicht nur die Anfragen, die Du im Browser auslöst. Dein Smart-TV funkt nach Hause, die Apps auf Deinem Handy machen das, selbst der Treiber Deiner Grafikkarte macht das.

Bei mir werden zurzeit 26% aller DNS-Anfragen von Pi-hole abgefangen und bemerkt habe ich nichts – alle Seiten, die ich aufgerufen habe, funktionierten weiterhin ohne Probleme. Über ein Viertel aller Anfragen sind überflüssiger Scheiß! Scheiß, der Bandbreite verbraucht und Energie auf Servern und meinem Rechner! Macht das auch: Filter die Scheiße aus dem Netz!

Der Beitrag Pi-hole filtert den Scheiß aus dem Netz erschien zuerst auf kaffeeringe.de.

[l]

#Adblocker #privacy #DNS #RaspberryPi
Tracking‐​Wahnsinn bei Spiegel‐​Online
 

Bullshit-Web: Pi-hole filtert den Scheiß aus dem Netz

(Anmerkung: interessante sache, habe ich heute mal ausprobiert)
Bullshit-Web: Pi-hole filtert den Scheiß aus dem Netz
Mit Pi-hole kann man das heimische #Netzwerk von Trackern und #Reklame befreien. Wer noch einen Raspberry Pi herumliegen hat, sollte den dafür reaktivieren. Es lohnt sich.

Wer heutzutage eine kommerzielle Website aufruft, lädt nicht nur Text und Bilder. In der Regel rufen Spiegel Online & Co. Dutzende externer Dienste auf, um Reklame anzuzeigen, die Performance der Seite zu analysieren und die Daten an Datensammler weiterzugeben. So verdienen die ihr Geld.

The Bullshit Web


Nick Heer nennt das „The Bullshit Web“: All die Dinge, die moderne Webseiten enthalten, die für die Besucher aber wenig Nutzen haben:
„The vast majority of these resources are not directly related to the information on the page, and I’m including advertising. Many of the scripts that were loaded are purely for surveillance purposes: self-hosted analytics, of which there are several examples; various third-party analytics firms like Salesforce, Chartbeat, and Optimizely; and social network sharing widgets. They churn through CPU cycles and cause my six-year-old computer to cry out in pain and fury. I’m not asking much of it; I have opened a text-based document on the web.“

Man kann dagegen #AdBlocker einsetzen oder Plugins wie den Privacy Badger der EFF. Oder man setzt ein Stückchen weiter vorne im eigenen Netzwerk an und filtert direkt am Router.

Wie funktioniert Pi-hole?


Pi-hole ist eine Software für den Raspberry Pi, die DNS-Anfragen mit Block-Listen abgleicht und Anfragen von bekannten Trackern gar nicht erst weiterleitet.

Normalerweise fragen Browser einen #DNS-Server, unter welcher IP eine www-Adresse zu finden ist. So wie man im Telefonbuch nachgeschaut hat, welche Telefonnummer Frau Müller hat. Das macht der Browser nicht nur für zum Beispiel spiegel.de sondern auch für all die Reklame-Elemente und Tracker, die spiegel.de zusätzlich lädt.

Statt die Anfragen direkt an einen normalen DNS-Server zu stellen, leitet man die Anfrage an Pi-hole. Pi-hole schaut dann nach, ob die Adresse auf einer Liste bekannter Tracker und Reklame-Server auftaucht. Wenn nein, wird die Anfrage an einen richtigen DNS weitergeleitet. Wenn ja, stoppt Pi-hole die Anfrage.

Auf diese Weise hat Pi-hole heute ein gutes Viertel aller Internet-Zugriffe aus meinem Netzwerk gestoppt. Bei einem Viertel aller DNS-Anfragen ging es um Tracker oder Reklame!

Pi-hole installieren


Pi-hole zu installieren ist wirklich einfach: Du brauchst einen #RaspberryPi i samt Netzteil, SD-Karte und Netzwerkkabel. Die SD-Karte formatierst Du an Deinem richtigen Computer. Du lädst Dir NOOBS herunter, packst es aus und kopierst es auf die SD-Karte. Karte in den Raspi, Kabel dran, Monitor, Tastatur und Maus.

Nachdem der Raspi NOOBS gestartet hat, wirst Du gefragt, welches Betriebssystem Du installieren willst. Nimm Raspbian Lite – das reicht. Nach einer viertel Stunde ist Raspbian installiert und Du kannste den Raspi neu starten. Nachdem Raspbian gestartet ist, kannst Du Dich mit pi/raspberry einloggen.

Auf der Website von Pi-hole steht direkt, wie man die Software installiert. Einfach mit dem Befehl:
curl -sSL https://install.pi-hole.net | bash
Die Installation dauert einige Zeit. Ein paar mal wirst Du nach Einstellungen gefragt, aber die voreinstellten Settings sind ok.

Nach der Installation läuft auf dem Raspi ein Webserver mit den Einstellungen und des Statistiken. Wenn Du die IP des Raspis im Browser aufrufst, wirst Du dort hin geleitet.

Pi-hole als DNS-Server


Im Router musst Du zum einen einstellen, dass der Raspi immer die gleiche IP bekommt. Zum anderen stellst Du diese IP dann als primären DNS-Server ein.

Danach kannst Du Dir in der Statistik anschauen, wie Anfrage um Anfrage gefiltert wird. Dabei sind das natürlich nicht nur die Anfragen, die Du im Browser auslöst. Dein Smart-TV funkt nach Hause, die Apps auf Deinem Handy machen das, selbst der Treiber Deiner Grafikkarte macht das.

Bei mir werden zurzeit 26% aller DNS-Anfragen von Pi-hole abgefangen und bemerkt habe ich nichts – alle Seiten, die ich aufgerufen habe, funktionierten weiterhin ohne Probleme. Über ein Viertel aller Anfragen sind überflüssiger Scheiß! Scheiß, der Bandbreite verbraucht und Energie auf Servern und meinem Rechner! Macht das auch: Filter die Scheiße aus dem Netz!

Der Beitrag Pi-hole filtert den Scheiß aus dem Netz erschien zuerst auf kaffeeringe.de.


#Adblocker #privacy #DNS #RaspberryPi
 

Furious Apple revokes Facebook's enty app cert after Zuck's crew abused it to slurp private data - But Facebook says it 'can do Better'.. or do they mean Differently

Facebook has yet again vowed to "do better" after it was caught secretly bypassing Apple's privacy rules to pay adults and teenagers to install a data-slurping iOS app on their phones.

The increasingly worthless promises of the social media giant have fallen on deaf ears however: on Wednesday, Apple revoked the company's enterprise certificate for its internal non-public apps, and one lawmaker vowed to reintroduce legislation that would make it illegal for Facebook to carry out such "research" in future.

The enterprise cert allows Facebook to sign iOS applications so they can be installed for internal use only, without having to go through the official App Store. It's useful for intranet applications and in-house software development work.

Facebook, though, used the certificate to sign a market research iPhone application that folks could install it on their devices. The app was previously kicked out of the official App Store for breaking Apple's rules on privacy: Facebook had to use the cert to skirt Cupertino's ban.

The VPN-based app is similar to one Facebook used to offer called Onavo Protect, which also logged and forward user activity to Facebook, but that app was specifically banned by Apple last year over privacy concerns.

Facebook wasn't able to get a similar app approved due to changes in Apple's rules, and so it used the aforementioned enterprise certificate program, run by Apple, that is only for internal-use apps to get around the restrictions, an investigation by TechCrunch this week revealed.

In Facebook's case, it knowingly broke those rules by encouraging third parties – including children – to download the app and use it. And it paid them to do so. And then, as its activity was exposed, embarked – yet again – on a series of half-truths and lies rather than acknowledge what it was really doing.

See https://www.theregister.co.uk/2019/01/30/facebook_apple_enterprise_certificate_revocation/

#deletefacebook #facebook #Apple #Facebook #Privacy
 

Want a bit of privacy? Got a USB stick? Welcome to TAILS 3.12 - Linux distro image seeks USB drive for private liaison. Discretion assured

The Linux distro for the security-conscious has been updated with a fresh USB installation method.

Hot on the heels of Apple's latest privacy blunder, The Amnesic Incognito Live System (TAILS) has emitted version 3.12.

The big news this time around is the arrival of a USB image alongside the usual ISO. ISOs, handy for burning to a DVD or spinning up a virtual machine, are not so good when it comes to one of TAILS' strengths – running Linux without a trace.

The faff of needing a couple of USB sticks and around three hours of spare time is gone with this release. A single 8GB USB stick is sufficient to handle the 1.2GB download and TAILS reckons that the whole process should take an hour and a half.

A swift download and burn to USB using Etcher and a user is up, running and able to enjoy the discretion afforded by the Debian-based distro and the Tor network.

See https://www.theregister.co.uk/2019/01/30/tails_3_12/

#tails #privacy #Linux
 

Backdoors

I just noticed that the little lock thingy in the address bar had the yellow triangle on it on this site. When you click on it, it says the connection is not secure. Why would that happen even temporarily? Must mean someone is snooping on here or something. Why would it need to change between strong and weak encryption?

#encryption #privacy
 

Staying off social media doesn’t protect your privacy, study claims - It's about what your friends share about you too

A new study into social media claims that privacy on such platforms is like “second-hand smoke” and is controlled by other people as much as the user. Researchers from the University of Vermont and the University of Adelaide have said it is possible to build a profile of a person from data gathered from the posts of eight or nine of their contacts.

The study also claims that even if a person leaves a social media platform such as Facebook or Twitter — or never even joined — the online posts of their friends can provide up to 95% of the “potential predictive accuracy” of a person’s future activities.

“You alone don’t control your privacy on social media platforms,” he said. “Your friends have a say, too.”

Which was why when your friends on Facebook got exploited by that rogue service, they ended up exposing a lot of your data that they had access to, or where they posted about you.

See https://techcentral.co.za/staying-off-social-media-doesnt-protect-your-privacy-study-claims/86783/

#privacy #socialmedia
Staying off social media doesn’t protect your privacy, study claims
 

Evaluating the GCHQ Exceptional Access Proposal

#backdoors #encryption #gchq #privacy
 

"Smart Lock" hell: forced electronic access conversion on 40,000 apartments in the US

So today, I spoke to both my landlady (in person) and a lawyer. This smart home migration apparently is covering my whole (nationwide) apartment co. So this will hit more of y'all. My landlady is super nice (and clearly has no say in this).
Lesley Carhart is in Chicago, and is looking for legal representation and support. #EFF won't take the case.

#InternetOfThings #InternetOfShit #Chicago #Privacy #Security #YaleLocks

https://twitter.com/hacks4pancakes/status/1086000837615382529?s=20

Twitter: Lesley Carhart on Twitter (Lesley Carhart)

 

Sharing Photos In Private Posts


When you share public posts, photos are transferred to users of other systems along with the text of the post. Occasionally a photo gets lost along the way, but that's no issue with authentication, but with federation.

Things change, when you share a private post with photos.

On Diaspora you can have EXIFs automatically removed from your photos in the settings section. You always upload a photo into a specific post. The photo is assigned a link and the photo is public. Yet the link to a photo contains a long string of random characters, so the photo is hard to find.

Friendica and Hubzilla have photo albums. So users can upload photos into posts or into photo albums. That means the access to a post and the access to photos are controlled independently. Friendica and Hubzilla also do not automatically remove EXIFs from photos. Depending on your settings EXIFs can reveal the time the photo was taken, the camera model and the location. EXIFs can be removed before uploading a photo.

If a friendica or Hubzilla user uploads a photo into a private post, the access to the photo will be private too. Unfortunately that doesn't work across networks. If a friendica user makes a private post with a private photo, Hubzilla and Diaspora users will see the text of the post, but will only see a placeholder instead of the photo. It's the same for Hubzilla users sending to friendica and Diaspora.

So what can Hubzilla or friendica users do, if they want to share a private post with a photo across the network?

They can upload the photo first and make it public, then the photo can be seen by anyone looking at their photo albums in their account. That may be fine if the photo shows something mundane that only becomes personal in the context of the post. They can upload the photo to some other place (Nextcloud, own website, PixelFed,...) and embed it into their private post. That means the photo will not show up in the albums of the account.

Hubzilla users can make their private post with photos accessible with a guest access token. That means they create a link that allows access to their channel and shows the private post with photos to anyone who has the link. They can set that guest access token to expire after a certain time. I have used this option and I think it's one of the coolest features of Hubzilla. The photos remain private and even if the link ends up in the wrong place, the access to the post has a time limit as an additional safety feature. In addition the token links to the channel, which means one will see all public posts and the private post(s) that are allowed with the token. In other words a visitor will end up looking at news and flower photos, scrolling, and not knowing what to look for unless he got some info what the post is supposed to be about and how old it is. If the token has expired, the post in question will just have vanished. All the other posts will still be there.

You'll find more notes about this topic here:

https://hubzilla.a-zwenkau.de/channel/anna?f=&cat=Decentralized

#Diaspora #friendica #Hubzilla #photos #privacy
 
I work in mobile app development and the technology out there to spy on you is pretty insane. There is a whole industry for snooping and reselling data. Here are some examples.

There are several SDKs (software development kits) that offer fingerprinting identity services. Meaning, when someone opens your app, it checks their device ID, IP address, GPS location, email address, etc. and makes a match to an identity. You then use this SDK to track their behavior in your app, such as purchases, interests, demographics, preferences, etc. This data is stored along with all the other apps that use the SDK. Now as an upsell, I can buy all of your behavior data from every other app that uses the same service. From the moment you install the app I know everything about you.

There are SDKs that don’t even offer a service, they just straight up pay the app maker to let their agent sit and collect data and send it up to their servers. Mostly location data.

My favorite is there’s an SDK that actually records the screen while you use the app, and the video gets sent up to the server for the app maker to see how you use their app in real time. It also tracks all of your views, swipes, and button presses tied to the video for analytics.

Basically, you should assume that every moment you are using an internet connected device, you are being observed, scrutinized, and analyzed so that someone can sell you more shit.

They are really good at this, and getting better every year. You think Facebook is listening to your microphone to serve you ads at the moment you are discussing a product? They don’t need to. They know you that well.

Edit: A lot of people are asking for specific examples of this monitoring tech. There are a ton of small players. So an example of location tracking is Tamoco. An example of behavior tracking is Branch.io (they don't advertise the data mining, but it's a back-end deal). And session monitoring is AppSee or HotJar. There are many more that I haven't heard of.

There are a ton of data resellers out there. They're typically small startups who buy and sell data, and they compete on having the most comprehensive and clean data sets. We get approached by a data reseller maybe once a month, either trying to buy our data or sell us data.

Edit: A lot of people are flippant about this idea because you "don't click on ads" or you "don't buy anything". There are people who aren't interested in just selling you products. How about voting for a particular political candidate, or for/against a ballot measure? How about selling you a particular world view? Propaganda is just like advertising, they're just selling you an idea instead of a product.
#android #ios #programming #development #app #apps #phone #smartphone #sdk #hotjar #facebook #appsee #branch.io #tamoco #surveillance #privacy #encryption
 
neuer älter