Re: [liberationtech] New messenger to replace Adium and Pidgin

2015-11-01 Thread Travis Biehn 
"It works with all your old contacts."

Oh boy, is that being touted as a feature?

Travis

On Fri, Oct 30, 2015, 6:18 AM carlo von lynX 
wrote:

> Oh, at the last Tor developer meeting I heard that this project
> was looking for a new name since it doesn't make sense to wear
> "Tor" in it as if that was a quality endorsement.
>
> On Thu, Oct 29, 2015 at 03:43:58PM -0400, Kate Krauss wrote:
> > Today, Tor is releasing a beta version of Tor Messenger. Compared to
> > Adium or Pidgin (you can use your jabber address and all your
> > contacts)--it's pretty easy to use and much safer. It's in beta,
>
> Thanks for developing a tool that is less bad than Adium or Pidgin,
> but we should really move away from federation and its terrible
> lack of protection for the social graph.
>
> With Ricochet becoming more widespread as the *real* Tor way
> of doing IM, end-to-end using hidden services, why should an
> old-fashioned OTR/XMPP client/server less secure tool be
> promoted as *THE* Tor Messenger? It's just highly inappropriate.
>
> I had suggested to call it "WAM" as in "Wrong Architecture
> Messenger". Please let me know which more appropriate name I
> can feature on http://secushare.org/comparison as a forth
> best practice recommendation... *after* Ricochet, Tox and
> Retroshare.
>
> Thanks.
>
> Sorry for trolling, but I can't help saying things.
>
>
> --
>   E-mail is public! Talk to me in private using encryption:
>  http://loupsycedyglgamf.onion/LynX/
>   irc://loupsycedyglgamf.onion:67/lynX
>  https://psyced.org:34443/LynX/
> --
> Liberationtech is public & archives are searchable on Google. Violations
> of list guidelines will get you moderated:
> https://mailman.stanford.edu/mailman/listinfo/liberationtech.
> Unsubscribe, change to digest, or change password by emailing moderator at
> compa...@stanford.edu.
>
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] The missing awareness: SMTP Security Indicator in Email|WebMail clients

2015-11-01 Thread fauno 
"Fabio Pietrosanti (naif) - lists"  writes:

> - KNOW if emails being received from Mr. X has been in-transit encrypted.

there's a thunderbird addon called "paranoia" that does this

-- 
http://endefensadelsl.org
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

[liberationtech] announcement: Call for Papers - ECPAM'2015 & EEEW-PAM'2015/Submission Deadline/websites

2015-11-01 Thread Camelia Voinea 
CfP: Eastern European Research Group on Political Attitudes and Mentalities 
announces the 4th Edition of the EPAM Conference Series:Annual European 
Conference on Political Attitudes and Mentalities, ECPAM'2015, 4th Edition, 
University of Bucharest, Romania (virtual conference)Eastern European 
Exploratory Workshop on Political Attitudes and Mentalities, EEEW-PAM'2015, 2nd 
Edition, University of Bucharest, Romania (virtual workshop)Paper/Abstract 
Submission Deadline: November 20th, 2015.Details at: European Conference on 
Political Attitudes and Mentalities ECPAM  
|   |
|   |  |   |   |   |   |   |
| European Conference on Political Attitudes and Mentaliti...European Political 
Analysis Association (EPSA) |
|  |
| View on sites.google.com | Preview by Yahoo |
|  |
|   |


 ===Camelia Florela Voinea, Ph.D.  Associate 
Professor  Political Sciences, International Relations and Security Studies 
Department  Political Science Faculty  University of Bucharest, Romania  Office 
Address: #8, Spiru Haret Street, Bucharest 010175  E-mail(s): 
camelia.voi...@fspub.unibuc.ro , camelia_voi...@yahoo.com  Home Page: 
https://sites.google.com/a/fspub.unibuc.ro/conf-univ-dr-camelia-florela-voinea/ 
 You can access my papers on SSRN at: http://ssrn.com/author=2103805-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] The missing awareness: SMTP Security Indicator in Email|WebMail clients

2015-11-01 Thread malte 
Quoting Fabio Pietrosanti (naif) - lists (2015-10-31 20:02:21)

> so, the in-transit email encryption problem isn't yet solved.
> 
> The uses of opportunistic encryption with SMTP STARTTLS help, but also
> this is out of the end-user control.

I think mail providers should stop accepting starttls opportunisticly,
but should start requiring it.

mailbox.org does it via the @secure.mailbox.org aliases, I do it in
general (f*ck you Dreamhost, I don't want your shabby unencrypted mail),
others might follow.

For Postfix it's really just setting

smtpd_tls_security_level = encrypt
and
smtp_tls_security_level = encrypt
(instead of "may")

in /etc/postfix/main.cf


Sincerely,

Malte
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

[liberationtech] Reminder: 2nd Annual International Conference on Communication and Management (ICCM2016)

2015-11-01 Thread Dr Margarita Kefalaki_COMinG 
Hello to you all the members of lists.stanford.edu mailing list!

Just a Reminder about the

2nd Annual International Conference on Communication and Management
(ICCM2016) 
organized in Athens, 
Greece, 
9 -12 May 2016.

For more information visit
http://coming.gr/index.php/call-for-papers/

Please share it!
Thank you!

Margarita 
Dr Margarita Kefalaki, President 
Communication Institute of Greece
URL: http://coming.gr/   
Address: Artemidos 12, Moschato, 18345
E-mail: m...@coming.gr , Tel.: +30 6989478611


-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] The missing awareness: SMTP Security Indicator in Email|WebMail clients

2015-11-01 Thread Rich Kulawiec 
On Sun, Nov 01, 2015 at 12:32:37PM -0300, fauno wrote:
> there's a thunderbird addon called "paranoia" that does this

Correction: there's a Thunderbird addon called "Paranoia" that pretends
to do this.  Everyone should know by now that you can't trust any
"Received" headers other than those written by your own MTA.  (They might
be accurate and truthful; they might be partially wrong; they might
be complete fabrications.)

Paranoia's own documentation says:

"Click on the emoticon and you'll see a list of connections
which were made before this message arrived in your inbox,
and state of encryption of each of them."

Which means that Paranoia makes the mistake of trusting headers that
can't be trusted.

---rsk
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

Re: [liberationtech] The missing awareness: SMTP Security Indicator in Email|WebMail clients

2015-11-01 Thread carlo von lynX 
Let's frame the threat models. Bulk collection probably does 
not include using OS backdoors so the suggestion to use mutt
on BSD isn't wrong, but not necessary to move a step forward.

On Sun, Nov 01, 2015 at 05:39:29PM +0100, ma...@wk3.org wrote:
> I think mail providers should stop accepting starttls opportunisticly,
> but should start requiring it.

Whereas man-in-the-middling SMTP federation connections
(same problem as with XMPP and IRC networks) may be rather
cheap: How do mail servers check certificates? Do they
pin them down? Do they accept anything valid? Do they
ignore certificate validity? What if anything went wrong
during interserver-TLS. Will the end-user ever find out?
Do the new "Received" headers really reflect such info
and how would you explain what certain headers mean to
the end user?.. given the "Received" headers are accurate,
as questioned in previous mail. And then you may bump
into mail providers that use inconsistent certificates
like it happened for us who developed "Certificate Patrol"
to find out that the majority of our potential users can't
handle the frequent amount of questionable https 
connections the industry confronts them with, given such
freedoms in the broken X.509 standard TLS is built upon.

Yes, mail providers should require STARTTLS, but it leaves
a dozen insecurities up in the air which are structural
to the very bad protocol standards we have. It's less work
to design a new mail system from scratch than to reduce
the insecurities of SMTP from 31 to 30.


-- 
  E-mail is public! Talk to me in private using encryption:
 http://loupsycedyglgamf.onion/LynX/
  irc://loupsycedyglgamf.onion:67/lynX
 https://psyced.org:34443/LynX/
-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.

[liberationtech] announcement: EQPAM New Issue! EQPAM Volume 4 Issue No 4 (October 2015) - Table of Contents/Website

2015-11-01 Thread Camelia Voinea 
EQPAM Volume 4, Issue No. 4, October 2015                  Table of Contents: 
Peer Reviewed Paper(s)
Ringo Ossewaarde"Living Off Dead Premises: The Persistence of Enlightenment 
Mentalities in the Making of Social Science"   
.    pp. 1-14     
Kyriakos Mikelis"Realist Stronghold in the Land of Thucydides? -  Appraising 
and Resisting a Realist Tradition in Greece"   
.    pp. 15-32     

Book Review(s)   

Vincent Azoulay“Pericles of Athens”Book Review by Kostas A. Lavdas 
..
   pp. 33-37
European Quarterly of Political Attitudes and Mentalities

|   |
|   |  |   |   |   |   |   |
| European Quarterly of Political Attitudes and Mentalitie...Online Peer-Review 
Journal of Research in Political Analysis, Modeling and Simulation |
|  |
| View on sites.google.com | Preview by Yahoo |
|  |
|   |



===Camelia Florela Voinea, Ph.D.  Associate 
Professor  Political Sciences, International Relations and Security Studies 
Department  Political Science Faculty  University of Bucharest, Romania  Office 
Address: #8, Spiru Haret Street, Bucharest 010175  E-mail(s): 
camelia.voi...@fspub.unibuc.ro , camelia_voi...@yahoo.com  Home Page: 
https://sites.google.com/a/fspub.unibuc.ro/conf-univ-dr-camelia-florela-voinea/ 
 You can access my papers on SSRN at: http://ssrn.com/author=2103805-- 
Liberationtech is public & archives are searchable on Google. Violations of 
list guidelines will get you moderated: 
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, 
change to digest, or change password by emailing moderator at 
compa...@stanford.edu.