Re: [liberationtech] Piratebrowser?

[Tom Ritter]

For those interested, I'll point to the tor-talk thread:
https://lists.torproject.org/pipermail/tor-talk/2013-August/thread.html#29331

This does seem very focused on bypassing censorship - not providing
anonymity.  The tiny FAQ at the bottom:
"While it uses Tor network, which is designed for anonymous surfing,
this browser is intended just to circumvent censorship — to remove
limits on accessing websites your government doesn't want you to know
about. "

Some other random stats for the curious.

Tor v0.2.3.25 (git-17c24b3118224d65)
Vidalia 0.2.21 (QT 4.8.1)

# Configured for speed
ExcludeSingleHopRelays 0
EnforceDistinctSubnets 0
AllowSingleHopCircuits 1

# Exclude countries that might have blocks
ExcludeExitNodes {dk},{ie},{gb},{nl},{be},{it},{cn},{ir},{fi},{no}

#Selected user prefs
user_pref("browser.startup.homepage", "http://6kkgg7nth3sbuuwd.onion";);
user_pref("general.useragent.override", "PB0.6b Mozilla/5.0 (Windows
NT 6.1; WOW64; rv:23.0) Gecko/20100101 Firefox/23.0");

-tom
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] From Snowden's email provider. NSL???

[Tom Ritter]

On 10 August 2013 11:43, Michael Rogers  wrote:
> If we assume that app stores aren't going away any time soon, we need
> to address this problem: How can a user who downloads an app from an
> app store be satisfied that it was built from published source code?
>
> We might also think about how to solve the problem for apps downloaded
> through browsers.
>
> Verifiable builds are necessary but not sufficient here - they allow
> an expert auditor to tell whether the binary she downloaded was built
> from the published source, but an attacker might target the binaries
> downloaded by certain other users without alerting the auditor. So we
> also need a way for a non-expert user to tell whether the binary she
> downloaded matches the one that was audited.


Not having published in any app store, I'd like to know if my
assumptions here are incorrect.

I *think* that app stores take a binary you upload and run their
static and dynamic checks on that.  They then publish that binary
without modification.  (Indeed, how could they modify it?  You sign it
with your key.)  In that case, I think a verifiable build system ala
Gitian would work well.

The trust web is such that knowledgeable users can replicate a build
to a hash.  That hash is what anyone downloads via the App Store, and
less knowledgeable users, but users running rooted phones, can pull
the binary off and check the hash.  That hash is what's signed by the
developer's private signing key.  The app store can't substitute a
different binary (no developer signing key), users can verify that the
app was what the developer produced (via pulling the binary and
checking the hash), and advanced users can verify that what the
developer produced is what they produce via the replicable build
process.

-tom
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] From Snowden's email provider. NSL???

[Ben Laurie]

On 10 August 2013 16:43, Michael Rogers  wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 09/08/13 17:43, Reed Black wrote:
>> CryptoCat is served up by the Chrome app store. Do you have
>> control over what binary gets distributed to who? Does any assurace
>> exist beyond the app store's own signing validation?
>>
>> I thought this was like webmasters and third-party script
>> inclusions. They will be blind if Google or DoubleClick are
>> compelled to selectively swap out the scripts they serve to
>> millions of third-party sites.
>
> If we assume that app stores aren't going away any time soon, we need
> to address this problem: How can a user who downloads an app from an
> app store be satisfied that it was built from published source code?
>
> We might also think about how to solve the problem for apps downloaded
> through browsers.
>
> Verifiable builds are necessary but not sufficient here - they allow
> an expert auditor to tell whether the binary she downloaded was built
> from the published source, but an attacker might target the binaries
> downloaded by certain other users without alerting the auditor. So we
> also need a way for a non-expert user to tell whether the binary she
> downloaded matches the one that was audited.
>
> PGP signatures and hashes aren't currently usable by non-experts, and
> signatures or hashes published through the same channel as the binary
> can be tampered with in the same way as the binary.
>
> Something along the lines of Certificate Transparency might be useful
> here: a public log of software names, versions, and hashes, which a
> browser or other download tool can use to verify downloaded binaries
> without any manual steps needing to be taken by the user. Software
> publishers would be responsible for adding entries to the log for
> their own software and monitoring the log for entries added by anyone
> else.

FWIW, the Certificate Transparency code already has (primitive)
support for Binary Transparency:
https://code.google.com/p/certificate-transparency/source/browse/src/server/blob-server.cc.

Patches, as always, welcome.

>
> Cheers,
> Michael
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.4.10 (GNU/Linux)
>
> iQEcBAEBAgAGBQJSBl+QAAoJEBEET9GfxSfMlVAIAJ/JEwbbZBdihiuUT6PEas9v
> Bs/eOnr/+/oTvjVJc/OJvcSHXWr8ne97N3kGzBrQsS6HdiDoxZdUMC/9S+WGLQuG
> boMD1MJH2qpPQzA7yG0ZDKWUodg+IvHZosC50ahC+su6zZ176Ic/8v4zzDDxnzF5
> zLqtY/jhZSrvmdaWixx4yznmrWbOXo1zxb+ulSDZWZ4TIHZKC+890d4CVGDzFNjY
> Yzyz0E3BRX7Ctkbt2dW/EqhBPKsG0FtMzwCsFMa6xPIUp5Ykf0YpQ0WF4n/sTJaO
> 8bY3HyAtxBAma/gZccDLP1OEkjPdaf27cxJNbcSoAYeKy4cqCOMWWXL/gLbuZqo=
> =QkIa
> -END PGP SIGNATURE-
> --
> Liberationtech is a public list whose archives are searchable on Google. 
> Violations of list guidelines will get you moderated: 
> https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
> change to digest, or change password by emailing moderator at 
> compa...@stanford.edu or changing your settings at 
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[Tom O]

In fairness to Gates, his main focus is tackling malaria and finding a
vaccine for it. This is something where money is, in general, the main
requirement for the most part.

Famine, clean water, political instability are not easily solved by money.

On Sunday, August 11, 2013, h0ost wrote:

>
> There are two big problems with Gates' position (at least).
>
> 1. The solution of massive social issues such as, famine and clean
> water, are definitely beyond the reach of single individuals.  As
> wealthy as Gates is, his resources are nothing when compared to the
> resources of states.  Thus far in history, famine and clean water have
> been provided exclusively through broad, deliberate, and conscious
> application of state power.  This is not the domain of bratty and
> wealthy individuals, who think they can take on the mission of states.
>
> 2. Famine is not caused by a lack of knowledge. It is caused by larger,
> overarching political issues such as, civil war, imperialism and
> colonialism, massive natural disasters and ineffective response to such
> disasters.
>
> The solution has to be political, not a function of knowledge, or the
> cash of wealthy individuals.
>
> Bono doesn't understand this, and neither does Gates.  Thus, their
> efforts are essentially meaningless on a global scale. Or, some might
> argue, actually harmful.
>
> On 08/10/2013 05:38 PM, Richard Brooks wrote:
> > Nadim,
> >
> > I think it is good that Bill Gates is working to
> > solve health issues that have been ignored because
> > the people involved are mainly poor and dark
> > complected.
> >
> > I think freedom of information, though, may be
> > more important than you think. Take, for example,
> > The Gambia, one of the poorest countries on Earth
> > with all of the problems you mentioned.
> >
> > Oddly enough, the dictator running the country seems to be
> > making a lot of money off the country's mineral riches
> > while letting the majority of the people rot in poverty.
> > It is not a coincidence that many of the poorest countries
> > are the least well governed. Those governments also
> > tend to have very restrictive information controls.
> >
> > In many ways, creating freer access to information may
> > do more to to help some of these problems than anything
> > else. Once people can know what is going on and control
> > their destiny, they may be able to find a way out of
> > poverty. Once dark complected people have money, the
> > medical industry may be willing to invest in solving
> > their problems and invest less in botox and erectile
> > dysfunction medicines.
> >
> > -Richard
> >
> > On 8/10/2013 7:48 AM, Nadim Kobeissi wrote:
> >> I actually agree with Bill Gates here. If I had his money, I would make
> sure people have clean water, toilets, condoms, before even starting to
> consider working on Internet access.
> >>
> >> Sure, his comments are "below the belt" as Andrés says below, but this
> is only because he is unfairly attacking a noble, unrelated project. But
> the question he raises is: if you have unlimited money and want to tackle
> what you perceive as a human rights necessity, what do you go for?
> >>
> >> From my perspective of the world, the Internet should be on the bottom
> of this list. Sure, it should *be* on the list, but people who think that
> it's a priority really need to examine the kind of awful problems that the
> world has right now. No water, no food, no shelter, no hygiene, no toilets,
> no education, no condoms, no medication… all of those things need to be
> solved before we start worrying about the lack of Internet.
> >>
> >> Michael Glassman notes (also earlier in this thread):
> >> "Famine is not caused by lack of food but by lack of knowledge about
> access and location to food - something I believe is much more easily
> overcome through Internet access perhaps."
> >>
> >> It doesn't just work like that, I don't think. You don't just open
> Internet access and fund Internet centres and expect knowledge problems to
> work themselves out. Basic necessities need to be fulfilled first, and in
> that scenario, that deeply includes education. And in order to focus on
> education, you're going to need less malaria and more shelter, toilets and
> hygiene… I hope I'm making my point clearly here.
> >>
> >> This is a super interesting issue! I guess I'm going to stick to the
> conservative side here, though. The Internet is the current human rights
> issue for developed regions of the Middle East and North Africa (and
> deservedly so!!), but in some other parts of the world, we're just not
> there yet. There are more basic problems to solve, and this is only a
> testament to how harsh the world can be.
> >>
> >> NK
> >>
> >>
> >>
> >> On 2013-08-09, at 7:25 PM, Kyle Maxwell  wrote:
> >>
> >>>
> http://www.theguardian.com/technology/2013/aug/09/bill-gates-google-project-loon
> >>>
> >>> ===
> >>>
> >>> Bill Gates criticises Google's Project Loon initiative
> >>>
> >>> Former Microsoft chief

Re: [liberationtech] Lavabit, Silent Circle both shut down

[h0ost]

On 08/10/2013 11:37 AM, Arjen Kamphuis wrote:

> 
> No unplanned outages in over 7.5 years with my provider. Another thing
> they do well alongside watches and chocolate ;-)
> 
> (disclaimer: I have no relationship with any internet service provider
> other that as a satisfied customer)

Hi Arjen,

May I ask what Swiss providers would you recommend?
Thanks.
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[h0ost]

There are two big problems with Gates' position (at least).

1. The solution of massive social issues such as, famine and clean
water, are definitely beyond the reach of single individuals.  As
wealthy as Gates is, his resources are nothing when compared to the
resources of states.  Thus far in history, famine and clean water have
been provided exclusively through broad, deliberate, and conscious
application of state power.  This is not the domain of bratty and
wealthy individuals, who think they can take on the mission of states.

2. Famine is not caused by a lack of knowledge. It is caused by larger,
overarching political issues such as, civil war, imperialism and
colonialism, massive natural disasters and ineffective response to such
disasters.

The solution has to be political, not a function of knowledge, or the
cash of wealthy individuals.

Bono doesn't understand this, and neither does Gates.  Thus, their
efforts are essentially meaningless on a global scale. Or, some might
argue, actually harmful.

On 08/10/2013 05:38 PM, Richard Brooks wrote:
> Nadim,
> 
> I think it is good that Bill Gates is working to
> solve health issues that have been ignored because
> the people involved are mainly poor and dark
> complected.
> 
> I think freedom of information, though, may be
> more important than you think. Take, for example,
> The Gambia, one of the poorest countries on Earth
> with all of the problems you mentioned.
> 
> Oddly enough, the dictator running the country seems to be
> making a lot of money off the country's mineral riches
> while letting the majority of the people rot in poverty.
> It is not a coincidence that many of the poorest countries
> are the least well governed. Those governments also
> tend to have very restrictive information controls.
> 
> In many ways, creating freer access to information may
> do more to to help some of these problems than anything
> else. Once people can know what is going on and control
> their destiny, they may be able to find a way out of
> poverty. Once dark complected people have money, the
> medical industry may be willing to invest in solving
> their problems and invest less in botox and erectile
> dysfunction medicines.
> 
> -Richard
> 
> On 8/10/2013 7:48 AM, Nadim Kobeissi wrote:
>> I actually agree with Bill Gates here. If I had his money, I would make sure 
>> people have clean water, toilets, condoms, before even starting to consider 
>> working on Internet access.
>>
>> Sure, his comments are "below the belt" as Andrés says below, but this is 
>> only because he is unfairly attacking a noble, unrelated project. But the 
>> question he raises is: if you have unlimited money and want to tackle what 
>> you perceive as a human rights necessity, what do you go for?
>>
>> From my perspective of the world, the Internet should be on the bottom of 
>> this list. Sure, it should *be* on the list, but people who think that it's 
>> a priority really need to examine the kind of awful problems that the world 
>> has right now. No water, no food, no shelter, no hygiene, no toilets, no 
>> education, no condoms, no medication… all of those things need to be solved 
>> before we start worrying about the lack of Internet.
>>
>> Michael Glassman notes (also earlier in this thread):
>> "Famine is not caused by lack of food but by lack of knowledge about access 
>> and location to food - something I believe is much more easily overcome 
>> through Internet access perhaps."
>>
>> It doesn't just work like that, I don't think. You don't just open Internet 
>> access and fund Internet centres and expect knowledge problems to work 
>> themselves out. Basic necessities need to be fulfilled first, and in that 
>> scenario, that deeply includes education. And in order to focus on 
>> education, you're going to need less malaria and more shelter, toilets and 
>> hygiene… I hope I'm making my point clearly here.
>>
>> This is a super interesting issue! I guess I'm going to stick to the 
>> conservative side here, though. The Internet is the current human rights 
>> issue for developed regions of the Middle East and North Africa (and 
>> deservedly so!!), but in some other parts of the world, we're just not there 
>> yet. There are more basic problems to solve, and this is only a testament to 
>> how harsh the world can be.
>>
>> NK
>>
>>
>>
>> On 2013-08-09, at 7:25 PM, Kyle Maxwell  wrote:
>>
>>> http://www.theguardian.com/technology/2013/aug/09/bill-gates-google-project-loon
>>>
>>> ===
>>>
>>> Bill Gates criticises Google's Project Loon initiative
>>>
>>> Former Microsoft chief says low-income countries need more than just
>>> internet access
>>>
>>> ===
>>>
>>> Google's Project Loon initiative wants to provide internet access for
>>> the developing world from a network of balloons floating in the
>>> stratosphere. Former Microsoft boss Bill Gates isn't keen on the idea.
>>>
>>> "When you're dying of malaria , I suppose you'll look up and see that
>>> balloon, and I'm n

Re: [liberationtech] Piratebrowser?

[Travis McCrea]

I know that Pirate Linux started as a Pirate Party of Canada project, however, 
I am unsure if it is still being maintained. Though anyone who would like to 
help us out we would obviously be greatly appreciative of it.  

On 2013-08-10, at 6:02 PM, lilo wrote:

> On 10/08/2013 23:32, Mikael "MMN-o" Nordfeldth wrote:
>> On 2013-08-10 19:50, Al Billings wrote:
>>> In a WTF moment for me personally, a preconfigured Firefox 23 with
>>> Tor has come out from the Piratebay.
>> 
>>> http://piratebrowser.com/
>> 
>> I haven't quite followed the latest Mozilla security announcements
>> (just installed the latest version when it hit my apt repository), but
>> is this version patched with the vulnerabilities that were abused
>> against Tor users?
>> 
>> Especially as it seems to only be for Windows, which apparently was
>> the in practice insecure Firefox platform.
> 
> 
> https://piratelinux.org/start/
> 
> 
> :-)
> 
> 
> 
> -- 
> lilo
> http://wiki.debian.org/LILO
> 
> -Da grande faro' il cattivo esempio, questo e' uno stage formativo-
> bit in rebels
> GnuPG/PGP Key-Id: 0x5D172559
> FINGERPRINT: AB62 DC0E 3CB3 2B83 6333 5DF4 9674 A4B3 5D17 2559
> server: pgp.mit.edu
> 
> 
> -- 
> Liberationtech is a public list whose archives are searchable on Google. 
> Violations of list guidelines will get you moderated: 
> https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
> change to digest, or change password by emailing moderator at 
> compa...@stanford.edu or changing your settings at 
> https://mailman.stanford.edu/mailman/listinfo/liberationtech

-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Piratebrowser?

[lilo]

On 10/08/2013 23:32, Mikael "MMN-o" Nordfeldth wrote:
> On 2013-08-10 19:50, Al Billings wrote:
>> In a WTF moment for me personally, a preconfigured Firefox 23 with
>> Tor has come out from the Piratebay.
> 
>> http://piratebrowser.com/
> 
> I haven't quite followed the latest Mozilla security announcements
> (just installed the latest version when it hit my apt repository), but
> is this version patched with the vulnerabilities that were abused
> against Tor users?
> 
> Especially as it seems to only be for Windows, which apparently was
> the in practice insecure Firefox platform.


https://piratelinux.org/start/


:-)



-- 
lilo
http://wiki.debian.org/LILO

-Da grande faro' il cattivo esempio, questo e' uno stage formativo-
bit in rebels
GnuPG/PGP Key-Id: 0x5D172559
FINGERPRINT: AB62 DC0E 3CB3 2B83 6333 5DF4 9674 A4B3 5D17 2559
server: pgp.mit.edu


-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[Richard Brooks]

Nadim,

I think it is good that Bill Gates is working to
solve health issues that have been ignored because
the people involved are mainly poor and dark
complected.

I think freedom of information, though, may be
more important than you think. Take, for example,
The Gambia, one of the poorest countries on Earth
with all of the problems you mentioned.

Oddly enough, the dictator running the country seems to be
making a lot of money off the country's mineral riches
while letting the majority of the people rot in poverty.
It is not a coincidence that many of the poorest countries
are the least well governed. Those governments also
tend to have very restrictive information controls.

In many ways, creating freer access to information may
do more to to help some of these problems than anything
else. Once people can know what is going on and control
their destiny, they may be able to find a way out of
poverty. Once dark complected people have money, the
medical industry may be willing to invest in solving
their problems and invest less in botox and erectile
dysfunction medicines.

-Richard

On 8/10/2013 7:48 AM, Nadim Kobeissi wrote:
> I actually agree with Bill Gates here. If I had his money, I would make sure 
> people have clean water, toilets, condoms, before even starting to consider 
> working on Internet access.
> 
> Sure, his comments are "below the belt" as Andrés says below, but this is 
> only because he is unfairly attacking a noble, unrelated project. But the 
> question he raises is: if you have unlimited money and want to tackle what 
> you perceive as a human rights necessity, what do you go for?
> 
> From my perspective of the world, the Internet should be on the bottom of 
> this list. Sure, it should *be* on the list, but people who think that it's a 
> priority really need to examine the kind of awful problems that the world has 
> right now. No water, no food, no shelter, no hygiene, no toilets, no 
> education, no condoms, no medication… all of those things need to be solved 
> before we start worrying about the lack of Internet.
> 
> Michael Glassman notes (also earlier in this thread):
> "Famine is not caused by lack of food but by lack of knowledge about access 
> and location to food - something I believe is much more easily overcome 
> through Internet access perhaps."
> 
> It doesn't just work like that, I don't think. You don't just open Internet 
> access and fund Internet centres and expect knowledge problems to work 
> themselves out. Basic necessities need to be fulfilled first, and in that 
> scenario, that deeply includes education. And in order to focus on education, 
> you're going to need less malaria and more shelter, toilets and hygiene… I 
> hope I'm making my point clearly here.
> 
> This is a super interesting issue! I guess I'm going to stick to the 
> conservative side here, though. The Internet is the current human rights 
> issue for developed regions of the Middle East and North Africa (and 
> deservedly so!!), but in some other parts of the world, we're just not there 
> yet. There are more basic problems to solve, and this is only a testament to 
> how harsh the world can be.
> 
> NK
> 
> 
> 
> On 2013-08-09, at 7:25 PM, Kyle Maxwell  wrote:
> 
>> http://www.theguardian.com/technology/2013/aug/09/bill-gates-google-project-loon
>>
>> ===
>>
>> Bill Gates criticises Google's Project Loon initiative
>>
>> Former Microsoft chief says low-income countries need more than just
>> internet access
>>
>> ===
>>
>> Google's Project Loon initiative wants to provide internet access for
>> the developing world from a network of balloons floating in the
>> stratosphere. Former Microsoft boss Bill Gates isn't keen on the idea.
>>
>> "When you're dying of malaria , I suppose you'll look up and see that
>> balloon, and I'm not sure how it'll help you. When a kid gets
>> diarrhoea, no, there's no website that relieves that," Gates told
>> Business Week, in an interview about the work of the Bill & Melinda
>> Gates Foundation.
>>
>> "Certainly I'm a huge believer in the digital revolution. And
>> connecting up primary-healthcare centres, connecting up schools, those
>> are good things. But no, those are not, for the really low-income
>> countries, unless you directly say we're going to do something about
>> malaria."
>>
>> Gates also questioned Google's commitment to projects in developing
>> countries through its Google.org arm and related initiatives.
>>
>> "Google started out saying they were going to do a broad set of
>> things. They hired Larry Brilliant, and they got fantastic publicity,"
>> said Gates. "And then they shut it all down. Now they're just doing
>> their core thing. Fine. But the actors who just do their core thing
>> are not going to uplift the poor."
>>
>> Project Loon was announced in June as Google launched a pilot scheme
>> with 30 balloons above New Zealand, providing internet access through
>> receivers on the ground.
>>
>> "We believe that it might actuall

Re: [liberationtech] Piratebrowser?

[Al Billings]

Those were patched in the release *before* the last. In other words, no one 
running a current browser, whether TBB or standard Firefox, was vulnerable at 
the time of the attack. Only out of date users were. 

-- 
Al Billings
http://makehacklearn.org


On Saturday, August 10, 2013 at 2:32 PM, Mikael "MMN-o" Nordfeldth wrote:

> I haven't quite followed the latest Mozilla security announcements
> (just installed the latest version when it hit my apt repository), but
> is this version patched with the vulnerabilities that were abused
> against Tor users?


-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Piratebrowser?

[Mikael "MMN-o" Nordfeldth]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 2013-08-10 19:50, Al Billings wrote:
> In a WTF moment for me personally, a preconfigured Firefox 23 with
> Tor has come out from the Piratebay.
> 
> http://piratebrowser.com/

I haven't quite followed the latest Mozilla security announcements
(just installed the latest version when it hit my apt repository), but
is this version patched with the vulnerabilities that were abused
against Tor users?

Especially as it seems to only be for Windows, which apparently was
the in practice insecure Firefox platform.

- -- 
Mikael "MMN-o" Nordfeldth
XMPP/mail: m...@hethane.se
http://blog.mmn-o.se/
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/

iQEcBAEBAgAGBQJSBrFWAAoJEMW3RSLxX/nuowEH/jpf0upacdwy6IJG9L/FRnqM
nDu1TyiHQ0C3YEMzywQmzsGk8ij1FTLwdalKl/kLvTI9O54bykYVWV6pF7lG0WRX
cRpIPO15dAO9wfy/K5/f2obCDgd4zB0xYf9MqE1aZowCbWel3mbMVEWQK6VKUwAm
fHMZRTNnMFDRCJ61lSptG1uTTYBqar9QZ3boICZCom/DyITeN4pC2VGCD3GVC3AH
9wuAP066jYGBom2r0d0/MyDiETIyTWKlyoTUoNakcQslwLPgnxoihzf8k3oDqYNA
yinQ5fWEox9K8JzHQfOq+Y1aZ1x2ZrF3YVQpaq1U7C/4pB5+qSq0nn/jdY3D1kg=
=iliF
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Lavabit, Silent Circle both shut down

[Arjen Kamphuis]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi Ralph,

On 08/10/2013 06:48 PM, Ralph Holz wrote:
> On 08/10/2013 05:37 PM, Arjen Kamphuis wrote:
>> There are many high quality hosting providers in Switserland who 
>> do great work at a range of cost-levels. I moved my mailserver
>> to one of them in early 2006 when it data-retention was on its
>> way to be implemented in Europe in the wake of the London
>> Bombings. Germany has since abolished data-retention because it
>> is not compatible with their constitution so that might also be a
>> place worth looking at.
> 
> This is interesting as I recall some year ago it was still said
> that their VPN providers logged the connections going through them.
> Do you know if that is still the case?

I'm sure some of them will. Could not talk about any specific cases
(i'm not privvy to any operational info). Would never completly trust
any single company to not do some logging. But you can ask what their
policy is and ask to have that in writing. You should not rely on a
single company for all VPN connections. Have alternatives ready to go
or mix & match, preferbly in different countries.

I also personally prefer to actually meet the technical people of any
serviceprovider I work with, makes for much more pleasant support
relationship. This works best with smaller companies.


- -- 
Met vriendelijke groet/With kind regards,
Arjen Kamphuis
Gendo B.V.

Main: +31 20 891 0330
mail: ar...@gendo.ch

gendo.ch(website)
gendo.nl/blog/arjen (Dutch blog)
gendo.ch/en/blog/arjen  (English blog)

about.me/arjenkamphuis (social media)

files.gendo.nl/keys/ar...@gendo.ch.asc (public key)
PGP fingerprint:
55FB B3B7 949D ABF5 F31B BA1D 237D 4C50 118A 0EC2

Gendo BV Wibautstraat 150, 1091 GR Amsterdam The Netherlands
P please consider the environment before printing this email

This e-mail message and its attachments are subject to the disclaimer
published at the following website of Gendo:
http://www.gendo.nl/disclaimer Gendo B.V. is registered with the trade
register in The Netherlands under number 28116864.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=hUse
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Cloud hosting in Iceland

[h0ost]

On 08/10/2013 01:48 PM, Al Billings wrote:
> This seems a good week to mention a coop that some people I know,
> like Eleanor Saitta, are trying to start (I'm in the group, actually)
> to do various kinds of cloud hosting, especially email, on a server
> farm in Iceland. We're trying to gather the initial set of people and
> do funding before it is built.
> 
> http://moonlet.is/
> 
> 
> 

Just for other people's info.  There are at least two prominent hosting
services based in Iceland: Greenqloud (greenqloud.com) and 1984 Hosting
(1984hosting.com)

Both base their servers in Iceland (i.e. they are not resellers, using
hardware based outside of the country).
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

[liberationtech] Piratebrowser?

[Al Billings]

In a WTF moment for me personally, a preconfigured Firefox 23 with Tor has come 
out from the Piratebay.  

http://piratebrowser.com/ 

-- 
Al Billings
http://makehacklearn.org

-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

[liberationtech] Cloud hosting in Iceland

[Al Billings]

This seems a good week to mention a coop that some people I know, like Eleanor 
Saitta, are trying to start (I'm in the group, actually) to do various kinds of 
cloud hosting, especially email, on a server farm in Iceland. We're trying to 
gather the initial set of people and do funding before it is built.  

http://moonlet.is/ 

-- 
Al Billings
http://makehacklearn.org

-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Lavabit, Silent Circle both shut down

[Ralph Holz]

Hi Arjen,

On 08/10/2013 05:37 PM, Arjen Kamphuis wrote:
> There are many high quality hosting providers in Switserland who
> do great work at a range of cost-levels. I moved my mailserver to
> one of them in early 2006 when it data-retention was on its way to
> be implemented in Europe in the wake of the London Bombings.
> Germany has since abolished data-retention because it is not
> compatible with their constitution so that might also be a place
> worth looking at.

This is interesting as I recall some year ago it was still said that
their VPN providers logged the connections going through them. Do you
know if that is still the case?

Ralph

-- 
Ralph Holz
I8 - Network Architectures and Services
Technische Universität München
http://www.net.in.tum.de/de/mitarbeiter/holz/
Phone +49.89.289.18043
PGP: A805 D19C E23E 6BBB E0C4  86DC 520E 0C83 69B0 03EF
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] From Snowden's email provider. NSL???

[Michael Rogers]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/08/13 17:43, Reed Black wrote:
> CryptoCat is served up by the Chrome app store. Do you have
> control over what binary gets distributed to who? Does any assurace
> exist beyond the app store's own signing validation?
> 
> I thought this was like webmasters and third-party script
> inclusions. They will be blind if Google or DoubleClick are
> compelled to selectively swap out the scripts they serve to
> millions of third-party sites.

If we assume that app stores aren't going away any time soon, we need
to address this problem: How can a user who downloads an app from an
app store be satisfied that it was built from published source code?

We might also think about how to solve the problem for apps downloaded
through browsers.

Verifiable builds are necessary but not sufficient here - they allow
an expert auditor to tell whether the binary she downloaded was built
from the published source, but an attacker might target the binaries
downloaded by certain other users without alerting the auditor. So we
also need a way for a non-expert user to tell whether the binary she
downloaded matches the one that was audited.

PGP signatures and hashes aren't currently usable by non-experts, and
signatures or hashes published through the same channel as the binary
can be tampered with in the same way as the binary.

Something along the lines of Certificate Transparency might be useful
here: a public log of software names, versions, and hashes, which a
browser or other download tool can use to verify downloaded binaries
without any manual steps needing to be taken by the user. Software
publishers would be responsible for adding entries to the log for
their own software and monitoring the log for entries added by anyone
else.

Cheers,
Michael

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJSBl+QAAoJEBEET9GfxSfMlVAIAJ/JEwbbZBdihiuUT6PEas9v
Bs/eOnr/+/oTvjVJc/OJvcSHXWr8ne97N3kGzBrQsS6HdiDoxZdUMC/9S+WGLQuG
boMD1MJH2qpPQzA7yG0ZDKWUodg+IvHZosC50ahC+su6zZ176Ic/8v4zzDDxnzF5
zLqtY/jhZSrvmdaWixx4yznmrWbOXo1zxb+ulSDZWZ4TIHZKC+890d4CVGDzFNjY
Yzyz0E3BRX7Ctkbt2dW/EqhBPKsG0FtMzwCsFMa6xPIUp5Ykf0YpQ0WF4n/sTJaO
8bY3HyAtxBAma/gZccDLP1OEkjPdaf27cxJNbcSoAYeKy4cqCOMWWXL/gLbuZqo=
=QkIa
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Lavabit, Silent Circle both shut down

[Arjen Kamphuis]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 08/09/2013 09:44 PM, Kyle Maxwell wrote:
> On Fri, Aug 9, 2013  wrote:
>> On Fri, 09 Aug 2013  wrote:
>> 
>>> Repeat after me: Iceland is *not* a data haven.
>> 
>> [citation needed]
> 
> Shouldn't it be the other way around? If somebody claims that a 
> nation-state possesses specific properties that distinguish it
> from others, shouldn't the burden of proof lie on the person making
> such a claim?

Don't know about Iceland. Even the Green-party interior Minister had
some strange ideas about porn-filtering:
http://www.gendo.ch/en/blog/arjen/icelandic-porn-filter-is-overkill
After the last election the conservatives have taken over and things
have not improved.

Switserland however has a strong and brand new constitution
(https://en.wikipedia.org/wiki/Swiss_Constitution) designed to protect
citizens *against* the power of the state. The .ch TLD was the only
Wikileaks domain that never went down in the initial 2010 onslought by
the US governments (when .org and various EU TLD's were taken offline).

There are many high quality hosting providers in Switserland who do
great work at a range of cost-levels. I moved my mailserver to one of
them in early 2006 when it data-retention was on its way to be
implemented in Europe in the wake of the London Bombings. Germany has
since abolished data-retention because it is not compatible with their
constitution so that might also be a place worth looking at.

There is no need to reinvent any wheels on Iceland or in space ;-)

Of course most confidentiality is still obtained by using GPG on a
secure system. But not having your server/service taken down by a
foreign government for the serious crime of journalism or civic
engagement is very nice.

No unplanned outages in over 7.5 years with my provider. Another thing
they do well alongside watches and chocolate ;-)

(disclaimer: I have no relationship with any internet service provider
other that as a satisfied customer)


- -- 
Met vriendelijke groet/With kind regards,
Arjen Kamphuis
Gendo B.V.

Main: +31 20 891 0330
mail: ar...@gendo.ch

gendo.ch(website)
gendo.nl/blog/arjen (Dutch blog)
gendo.ch/en/blog/arjen  (English blog)

about.me/arjenkamphuis (social media)

files.gendo.nl/keys/ar...@gendo.ch.asc (public key)
PGP fingerprint:
55FB B3B7 949D ABF5 F31B BA1D 237D 4C50 118A 0EC2

Gendo BV Wibautstraat 150, 1091 GR Amsterdam The Netherlands
P please consider the environment before printing this email

This e-mail message and its attachments are subject to the disclaimer
published at the following website of Gendo:
http://www.gendo.nl/disclaimer Gendo B.V. is registered with the trade
register in The Netherlands under number 28116864.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=a3hD
-END PGP SIGNATURE-
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Cryptocat Hackathon, NYC, August 17-18!

[Nadim Kobeissi]

Hi everyone,
I just wanted to share the happy news that the Cryptocat Hackathon has a 
sign-up rate composed of more than 35% women so far. This is really awesome.

Having more women participating in such events may help bridge the gender gap 
in the tech scene. I'm glad that for some reason Cryptocat is attractive to 
both genders. I think it has something to do with the focus on accessibility 
and the fact that cats are appealing to everyone, no matter your gender! :3

Let's hope for a 50% women sign-up rate next time!

https://twitter.com/cryptocatapp/status/366219529577168898

NK

On 2013-08-07, at 11:36 PM, Kyle Maxwell  wrote:

> https://github.com/cryptocat/cryptocat naturally! :D
> 
> On Wed, Aug 7, 2013 at 3:09 PM, Anthony Papillion
>  wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA512
>> 
>> On 08/07/2013 12:10 PM, Nadim Kobeissi wrote:
>>> (Moving on from my very, very expensively made point?)
>>> 
>>> Dear Libtech,
>>> 
>>> Cryptocat, in collaboration with OpenITP, will be hosting the very
>>> first Cryptocat Hackathon weekend in New York City, on the weekend
>>> of the 17th and 18th of August 2013! We're going to have a coding
>>> track as well as a *special track for journalists*, so please
>>> spread the word!
>>> 
>>> https://blog.crypto.cat/2013/08/cryptocat-hackathon-august-17-18-new-york-city/
>>> 
>>> Join us on August 17-18 for the Cryptocat Hackathon and help
>>> empower people worldwide by improving useful tools and discussing
>>> the future of making privacy accessible. This two day event will
>>> take place at the OpenITP offices, located on 199 Lafayette Street,
>>> Suite 3b, New York City.
>>> 
>>> Tweet: https://twitter.com/cryptocatapp/status/36515529735183974
>> 
>> This is exciting, Nadim. I'm nowhere near NYC but would be interested
>> in contributing code if the time arose. I apologize for doing
>> absolutely no research on this at all before asking (again, time) but
>> where can I grab the latest CryptoCat source?
>> 
>> Thanks!
>> Anthony
>> 
>> 
>> 
>> -BEGIN PGP SIGNATURE-
>> 
>> iQIcBAEBCgAGBQJSAqleAAoJEAKK33RTsEsVjhAQAITJLjOwwHbVAHGdLRdvVELG
>> wkSDD8wdfeIk2x9k2slAIIpB8T8DYZk6jC3z/McKC4BbQNqZ4nbi5CaABDJDJIyb
>> eoJiNASgQLnPWk9lh3WbkArJhDZLM4dtF59DbVTLo/OiNn6rwgC4tWlcMWifNMCU
>> 57N/FdVVjc3VpTTpbewr4+XqfGlA7QB2G+oG/khvHhtK9tyzbul2PIQtIrdeSgQI
>> JqRUtHf9z3cyzg4Z/ohQgeTWHbLD+UDF5Vqi6pzFv00C745SkL0EjBpADzbiGayg
>> swKJleXxQYRTxJmdo/s/U52w1p/H1wEsAeeM6qOIz3zIOHg0xiU0Ufjy32JB0iDL
>> wJDrzm4BML56sWS3DdJY+7/ZdPcj2KanOWNo4KWFbcsbYYFgeWPrOhASt/QMDyOD
>> C/IUYKGqiv0HfqT4RUOxJV1ZqreXaYtTg6dxgY7I55rAlKDUcoJ/dtZULgwBspDV
>> FgGAyWRCIEDT+cmZOJbvgrTYRH2bKZT59XiAcp+g4d7KtRKvX0GijHcscNqbPFRL
>> iC3vuAIqlwzP94zXey9HTRjzf18NZmQ0py5C6Y2TDXIoZosHLUd+3JQ8EpoidE/B
>> UW80ymdMrFl0n39vaD8XihsjbLFQyN1Ei+4wtHvRIvNJa60fOg3LR8lz+AMQ4B6r
>> IfMVjMR/a3KU09wYjSpZ
>> =AtB1
>> -END PGP SIGNATURE-
>> --
>> Liberationtech list is public and archives are searchable on Google. Too 
>> many emails? Unsubscribe, change to digest, or change password by emailing 
>> moderator at compa...@stanford.edu or changing your settings at 
>> https://mailman.stanford.edu/mailman/listinfo/liberationtech
> 
> 
> 
> -- 
> @kylemaxwell
> --
> Liberationtech list is public and archives are searchable on Google. Too many 
> emails? Unsubscribe, change to digest, or change password by emailing 
> moderator at compa...@stanford.edu or changing your settings at 
> https://mailman.stanford.edu/mailman/listinfo/liberationtech

-- 
Liberationtech is a public list whose archives are searchable on Google. 
Violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[Glassman, Michael]

Hi Nadim,

You are right, this is a very interesting and extremely controversial issue.  
Can you give people this basic necessities they need in life like food and 
clean water and then start building from there?  It is sort of a Malowian 
hierarchy of needs perspective - and this would probably put the Internet 
higher in the hierarchy, making sure you have taken care of the other needs 
first so they could realize the possibilities of the Internet.  But really, how 
often has this type of top down intervention worked?  And when it hasn't 
worked, why hasn't it worked?  Is it because the people being affected really 
didn't have a clear picture of what was going on.

I am wondering if one of the issues the Internet is raising with us is that 
these fulfillment of basic needs and a real understanding of what is happening 
in our lives are much more integrated and intertwined than we usually treat 
them in interventions, and you really can't get long term success in one 
without the other.  There is a line of social action that has taken this 
approach long prior to the Internet referred to as Participatory (Action) 
Research (sometimes with the modifier libratory to differentiation from other 
similarly named initiatives).  I think they make an extraordinarily good 
argument about how one without the other can be damaging.

You of of course make a very good point about how you cannot parachute in 
Internet based intelligence, what some (including me) have called Open Source 
Intelligence.  But one of the most interesting studies, or observations, I have 
read in the last few years in Sugata Mitra's Hole in the Wall experiment.  He 
just put Internet access in a poor neighborhood in Delhi and watched what 
happened.  It was amazing what these children were able to do intuitively.  I 
think this is an idea that would be well worth pursuing and perhaps this is 
where Google is going.

Michael

From: liberationtech-boun...@lists.stanford.edu 
[liberationtech-boun...@lists.stanford.edu] on behalf of Nadim Kobeissi 
[na...@nadim.cc]
Sent: Saturday, August 10, 2013 7:48 AM
To: liberationtech
Subject: Re: [liberationtech] Bill Gates on Project Loon vs malaria

I actually agree with Bill Gates here. If I had his money, I would make sure 
people have clean water, toilets, condoms, before even starting to consider 
working on Internet access.

Sure, his comments are "below the belt" as Andrés says below, but this is only 
because he is unfairly attacking a noble, unrelated project. But the question 
he raises is: if you have unlimited money and want to tackle what you perceive 
as a human rights necessity, what do you go for?

>From my perspective of the world, the Internet should be on the bottom of this 
>list. Sure, it should *be* on the list, but people who think that it's a 
>priority really need to examine the kind of awful problems that the world has 
>right now. No water, no food, no shelter, no hygiene, no toilets, no 
>education, no condoms, no medication… all of those things need to be solved 
>before we start worrying about the lack of Internet.

Michael Glassman notes (also earlier in this thread):
"Famine is not caused by lack of food but by lack of knowledge about access and 
location to food - something I believe is much more easily overcome through 
Internet access perhaps."

It doesn't just work like that, I don't think. You don't just open Internet 
access and fund Internet centres and expect knowledge problems to work 
themselves out. Basic necessities need to be fulfilled first, and in that 
scenario, that deeply includes education. And in order to focus on education, 
you're going to need less malaria and more shelter, toilets and hygiene… I hope 
I'm making my point clearly here.

This is a super interesting issue! I guess I'm going to stick to the 
conservative side here, though. The Internet is the current human rights issue 
for developed regions of the Middle East and North Africa (and deservedly 
so!!), but in some other parts of the world, we're just not there yet. There 
are more basic problems to solve, and this is only a testament to how harsh the 
world can be.

NK



On 2013-08-09, at 7:25 PM, Kyle Maxwell  wrote:

> http://www.theguardian.com/technology/2013/aug/09/bill-gates-google-project-loon
>
> ===
>
> Bill Gates criticises Google's Project Loon initiative
>
> Former Microsoft chief says low-income countries need more than just
> internet access
>
> ===
>
> Google's Project Loon initiative wants to provide internet access for
> the developing world from a network of balloons floating in the
> stratosphere. Former Microsoft boss Bill Gates isn't keen on the idea.
>
> "When you're dying of malaria , I suppose you'll look up and see that
> balloon, and I'm not sure how it'll help you. When a kid gets
> diarrhoea, no, there's no website that relieves that," Gates told
> Business Week, in an interview about the work of the Bill & Melinda
> Ga

Re: [liberationtech] [guardian-dev] An email service that requires GPG/PGP?

[Richard]

On Fri, Aug 09, 2013 at 05:07:26PM -0400, Tim Prepscius wrote:
> If you'd like to help me that would be cool..
> 
> My take on this is this:  (these are are not all my ideas, can't take
> full credit)
> 
> 
> We want to get to a state where an e-mail server is easy to set up.
> And runs with *non governmental* issued ssl certificates.
> Where it provides web-mail (think gmail), iPhone and android.

how do you make webmail with PGP end to end encryption? I assume you
could do PGP in javascript but it would be trivially easy for the server
to steal the users secret keys in that case.


Richard

---
Name and OpenPGP keys available from pgp key servers

-- 
Liberationtech is a public list whose archives are searchable on Google. 
Persistent violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[Nadim Kobeissi]

I actually agree with Bill Gates here. If I had his money, I would make sure 
people have clean water, toilets, condoms, before even starting to consider 
working on Internet access.

Sure, his comments are "below the belt" as Andrés says below, but this is only 
because he is unfairly attacking a noble, unrelated project. But the question 
he raises is: if you have unlimited money and want to tackle what you perceive 
as a human rights necessity, what do you go for?

From my perspective of the world, the Internet should be on the bottom of this 
list. Sure, it should *be* on the list, but people who think that it's a 
priority really need to examine the kind of awful problems that the world has 
right now. No water, no food, no shelter, no hygiene, no toilets, no education, 
no condoms, no medication… all of those things need to be solved before we 
start worrying about the lack of Internet.

Michael Glassman notes (also earlier in this thread):
"Famine is not caused by lack of food but by lack of knowledge about access and 
location to food - something I believe is much more easily overcome through 
Internet access perhaps."

It doesn't just work like that, I don't think. You don't just open Internet 
access and fund Internet centres and expect knowledge problems to work 
themselves out. Basic necessities need to be fulfilled first, and in that 
scenario, that deeply includes education. And in order to focus on education, 
you're going to need less malaria and more shelter, toilets and hygiene… I hope 
I'm making my point clearly here.

This is a super interesting issue! I guess I'm going to stick to the 
conservative side here, though. The Internet is the current human rights issue 
for developed regions of the Middle East and North Africa (and deservedly 
so!!), but in some other parts of the world, we're just not there yet. There 
are more basic problems to solve, and this is only a testament to how harsh the 
world can be.

NK



On 2013-08-09, at 7:25 PM, Kyle Maxwell  wrote:

> http://www.theguardian.com/technology/2013/aug/09/bill-gates-google-project-loon
> 
> ===
> 
> Bill Gates criticises Google's Project Loon initiative
> 
> Former Microsoft chief says low-income countries need more than just
> internet access
> 
> ===
> 
> Google's Project Loon initiative wants to provide internet access for
> the developing world from a network of balloons floating in the
> stratosphere. Former Microsoft boss Bill Gates isn't keen on the idea.
> 
> "When you're dying of malaria , I suppose you'll look up and see that
> balloon, and I'm not sure how it'll help you. When a kid gets
> diarrhoea, no, there's no website that relieves that," Gates told
> Business Week, in an interview about the work of the Bill & Melinda
> Gates Foundation.
> 
> "Certainly I'm a huge believer in the digital revolution. And
> connecting up primary-healthcare centres, connecting up schools, those
> are good things. But no, those are not, for the really low-income
> countries, unless you directly say we're going to do something about
> malaria."
> 
> Gates also questioned Google's commitment to projects in developing
> countries through its Google.org arm and related initiatives.
> 
> "Google started out saying they were going to do a broad set of
> things. They hired Larry Brilliant, and they got fantastic publicity,"
> said Gates. "And then they shut it all down. Now they're just doing
> their core thing. Fine. But the actors who just do their core thing
> are not going to uplift the poor."
> 
> Project Loon was announced in June as Google launched a pilot scheme
> with 30 balloons above New Zealand, providing internet access through
> receivers on the ground.
> 
> "We believe that it might actually be possible to build a ring of
> balloons, flying around the globe on the stratospheric winds, that
> provides Internet access to the earth below," explained project lead
> Mike Cassidy at the time, suggesting speeds could eventually match
> today's 3G networks.
> 
> "As a result, we hope balloons could become an option for connecting
> rural, remote, and under-served areas, and for helping with
> communications after natural disasters. The idea may sound a bit crazy
> – and that's part of the reason we're calling it Project Loon – but
> there's solid science behind it."
> 
> Google has worked with organisations trying to tackle healthcare in
> developing countries through its Google for Nonprofits initiative,
> with case studies on its website for Direct Relief International ,
> Unicef and Charity: Water outlining some of its efforts.
> 
> Meanwhile, Google.org's webpage for its Crisis Response activities
> makes prominent use of a photo of someone using their mobile phone in
> the aftermath of a disaster in Haiti, supplied by the Bill & Melinda
> Gates Foundation.
> 
> Gates' views on malaria are heartfelt, though. It's described as a
> "top priority" for the Foundation , which has so far committed nearly
> $2bn (£1.3bn) in grants tow

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[LilBambi]

That is an excellent point, Michael!!

Also, there are many ways to help people. And not everyone has to do
the same thing. People help where they can or feel comfortable. Being
made to feel they have to try to fit someone else's model is never the
best way for folks to do what their hearts lead them to do.

Each area has its place. There is a real need for the things that the
Gates foundation is doing, and just as much a need for knowledge --
and -- the possible ways of making money online (Entrepreneurship)
that could help to raise the bar for some folks in these countries
dealing with famine and disease. It may just help them gain back some
feeling of control and make strides in overcoming the helplessness of
famine and disease.

And there is always a place for the many small organizations that also
are trying to help in these areas. The need is great.

No amount of giving, or types of giving should be poopoo'd unless they
are a scam or the percentages are so low getting to the actual cause
as to make it useless and makes the donor's money wasted. The big
thing to me is that wherever I give, it has to be able to do as much
as it can with the money I give. That it mostly goes to the cause
itself.

On Sat, Aug 10, 2013 at 7:32 AM, Glassman, Michael  wrote:
> I think it might be important to realize that access to information and
> famine and disease are not mutually exclusive to each other.  For instance
> if Amartya Sen (the Nobel award winning economist) analysis is right famine
> is not caused by lack of food but by lack of knowledge about access and
> location to food - something I believe is much more easily overcome through
> Internet access perhaps.  Dysentery is caused both by lacking access to to
> potalble water and by not trusting or assimilating methods for water
> purification (e.g., convincing individuals to use precious resources on
> boiling water).  Even when clinics are built the individuals have a hard
> time absorbing them into their everyday lives.
>
> What Google is doing may do more to help the problems Gates is talking about
> than one off helicopter drops.  Or it may not.  But to consider eradication
> of famine and disease as separate from information seems more destructive
> than constructive.
>
> Michael
> 
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Persistent violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

[liberationtech] Anonymous’ Secret Presence In The U.S. Army

[David Johnson]

Very interesting interview with an active-duty Army captain who claims to be 
part of Anonymous ... and he says there are others in the military like him.

http://www.buzzfeed.com/justinesharrock/anonymous-secret-presence-in-the-us-army



[AJAM]

David V. Johnson
Online Opinion Editor

435 Hudson Street, Suite 400
New York, NY 10014

Direct line: 917 819 8454

http://america.aljazeera.com/



Notice: This email is intended only for the use of the individual or entity 
named above and may contain information that is confidential and privileged. If 
you are not the intended recipient, you are hereby notified that any 
dissemination, distribution or copying of this email is strictly prohibited. 
Opinions, conclusions and other information in this message that do not relate 
to the official business of our firm shall be understood as neither given nor 
endorsed by it.
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Persistent violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Bill Gates on Project Loon vs malaria

[Glassman, Michael]

I think it might be important to realize that access to information and famine 
and disease are not mutually exclusive to each other.  For instance if Amartya 
Sen (the Nobel award winning economist) analysis is right famine is not caused 
by lack of food but by lack of knowledge about access and location to food - 
something I believe is much more easily overcome through Internet access 
perhaps.  Dysentery is caused both by lacking access to to potalble water and 
by not trusting or assimilating methods for water purification (e.g., 
convincing individuals to use precious resources on boiling water).  Even when 
clinics are built the individuals have a hard time absorbing them into their 
everyday lives.

What Google is doing may do more to help the problems Gates is talking about 
than one off helicopter drops.  Or it may not.  But to consider eradication of 
famine and disease as separate from information seems more destructive than 
constructive.

Michael

From: liberationtech-boun...@lists.stanford.edu 
[liberationtech-boun...@lists.stanford.edu] on behalf of Tom O 
[winterfi...@gmail.com]
Sent: Friday, August 09, 2013 11:25 PM
To: a...@acm.org; liberationtech
Subject: Re: [liberationtech] Bill Gates on Project Loon vs malaria

I think project LOON serves Googles purpose well.

Whether it's altruistic, I'll wait and see.

Certainly disease and famine are a more important and pressing concern in 
Africa. I will happily stand with Bill & Melinda re this.

I don't think the two issues are comparable, which is where I think Bill goes 
wrong in his criticism.

On Saturday, August 10, 2013, Andrés Leopoldo Pacheco Sanfuentes wrote:
Those comments by Bill Gates are no more than "blows below the belt."
Despicable.

He should complain about spending on "erectile dysfunction" (and so
many other "rich people ailments) research vs. eradication of malaria,
not Internet access, which also is a human right!

Best Regards | Cordiales Saludos | Grato,

Andrés L. Pacheco Sanfuentes
>
+1 (817) 271-9619


On Fri, Aug 9, 2013 at 12:23 PM, Richard Brooks 
> wrote:
> On 08/09/2013 12:25 PM, Kyle Maxwell wrote:>
> http://www.theguardian.com/technology/2013/aug/09/bill-gates-google-project-loon
>>
>> ===
>>
>> Bill Gates criticises Google's Project Loon initiative
>>
>> Former Microsoft chief says low-income countries need more than just
>> internet access
>>
>> ===
>
> On the one hand, clean drinking water is important and
> the fact that little work is done on malaria because it
> effects mainly poor people is disgusting.
>
> On the other hand, I've heard lots of people in the
> countries that would benefit from a cure for
> malaria this year asking about what they can do when
> their government shuts down the Internet. The idea
> that information can still go in or out against government
> wishes is important to them.
>
> I guess people may want to be healthy and free at the
> same time.
>
>
>
>
> --
> Liberationtech list is public and archives are searchable on Google. Too many 
> emails? Unsubscribe, change to digest, or change password by emailing 
> moderator at compa...@stanford.edu or changing your 
> settings at https://mailman.stanford.edu/mailman/listinfo/liberationtech
--
Liberationtech list is public and archives are searchable on Google. Too many 
emails? Unsubscribe, change to digest, or change password by emailing moderator 
at compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Persistent violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech

Re: [liberationtech] Revised Liberationtech List Guidelines

[Jillian C. York]

One (perhaps pedantic) comment:

A zero-tolerance policy implies zero tolerance, but is contradicted in #7,
where you state that *persistent* violations will get you moderated.

Either you have a zero-tolerance policy, or you have a second-, third-, and
fourth-chance policy.  Which is it?


On Fri, Aug 9, 2013 at 8:05 PM, Yosem Companys wrote:

> A few days ago, we sent a call for suggestions on how to improve the
> management of the Liberationtech list to prevent further flaming.  Thanks
> to all those of you who submitted your suggestions.
>
> After reviewing these, we found that they generally called for the same
> thing:  List subscribers want a stricter enforcement of Liberationtech
> guideline #3, that is, "Please keep discussions constructive and civil. We
> have a zero-tolerance policy for anyone who posts inflammatory, extraneous,
> or off-topic messages."
>
> We will do so.  But, to make the guideline more explicit, we also decided
> to amend the guidelines as a whole to specify the consequences resulting
> from this type of behavior.  The new guidelines have been posted at
> https://mailman.stanford.edu/mailman/listinfo/liberationtech and are
> listed at the end of this message.
>
> To increase the likelihood that everyone will be aware of the list
> guidelines, we have also amended the footer to read as follows:
> "Liberationtech is a public list whose archives are searchable on Google.
> Persistent violations of list guidelines will get you moderated:
> https://mailman.stanford.edu/mailman/listinfo/liberationtech.
> Unsubscribe, change to digest, or change password by emailing moderator at
> compa...@stanford.edu."  New subscribers already receive the list
> guidelines when they first subscribe to the list and in their monthly
> reminders.
>
> Should you have any questions or concerns, please feel free to direct them
> to me at compa...@stanford.edu.  If you'd like to discuss the list
> guidelines further, please do not do that here.  Instead, go to the
> liberationtech-policy list at
> https://mailman.stanford.edu/mailman/listinfo/liberationtech-policy and
> do so there.
>
> Thanks,
>
> Yosem, one of your moderators
>
>
>
> STANFORD LIBERATIONTECH GUIDELINES
>
> 1. Liberationtech is a public list, so anyone can join and read the
> archives, forward messages, or mirror the list without our knowledge. The
> list archives are searchable by search engines such as Google. As such, we
> urge you to use pseudonyms, fake email addresses, https, and anonymizer
> software, especially when discussing items of a sensitive nature. Two
> robust applications are:
>
> https://www.eff.org/https-everywhere
>
> And,
>
> https://www.torproject.org/
>
> 2. We urge you to use the list to ask for (or offer) advice, discuss
> issues, and share information.
>
> 3. All replies go to the entire list, so please keep "me too" replies to a
> minimum.
>
> 4. We forbid the sending of attachments, as these can be used to spread
> viruses or spyware. Instead, copy and paste your attachment into the
> message body, or upload and make it a public doc and share the link. For
> more info, please see:
>
> https://tibetaction.net/detach-from-attachments/
>
> 5. To maintain civil discourse, we have a zero-tolerance policy for anyone
> who posts ad hominems, or otherwise inflammatory, extraneous, or off-topic
> messages.
>
> 6. Please refrain from making hard product (or service) sells.
>
> 7. Persistent violations of guidelines 3 to 6 will get you moderated.
>
> 8. If you ever want to unsubscribe or change your options (eg, switch to
> or from digest mode, change your password, etc.), visit your subscription
> page.
>
> --
> Liberationtech is a public list whose archives are searchable on Google.
> Persistent violations of list guidelines will get you moderated:
> https://mailman.stanford.edu/mailman/listinfo/liberationtech.
> Unsubscribe, change to digest, or change password by emailing moderator at
> compa...@stanford.edu or changing your settings at
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>



-- 
*Note: *I am slowly extricating myself from Gmail. Please change your
address books to: jilliancy...@riseup.net or jill...@eff.org.

US: +1-857-891-4244 | NL: +31-657086088
site:  jilliancyork.com * | *
twitter: @jilliancyork* *

"We must not be afraid of dreaming the seemingly impossible if we want the
seemingly impossible to become a reality" - *Vaclav Havel*
-- 
Liberationtech is a public list whose archives are searchable on Google. 
Persistent violations of list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu or changing your settings at 
https://mailman.stanford.edu/mailman/listinfo/liberationtech