2. Abandon all-singing all-dancing applications. They're enormous.
They use massive code bases which in turn use massive libraries. And to
borrow from the quoted passage above, they make it harder to peek under
the hood. So: no GUI. Don't tell me it can't be done -- I've done
it. Anyone
On Tue, Feb 12, 2013 at 09:01:37AM +0100, Andreas Bader wrote:
So why not create a own OS that is really small because of its security?
Chrome OS is small because it's cheap. If you were right then Android
was the most secure system. Aren't there any Android viruses? RedHat
seems to have less
Incidentally, NICTA are the same researchers hired by DARPA to make the
U.S. drone fleet safe from hackers. Looks like there might be some open
source tools emerging from the effort.
http://www.theregister.co.uk/2012/11/19/nicta_develops_drone_protection/
gf
On 2/13/13 6:54 AM, Eugen Leitl
On Wed, Feb 13, 2013 at 05:22:39PM +0700, Uncle Zzzen wrote:
Even if the average activist could master mutt (I use it regularly, and
still
feel like a noob :) ), it only applies to devices that have a keyboard.
We've used to have chording keyboards like
On 02/12/2013 12:46 AM, Rich Kulawiec wrote:
On Mon, Feb 11, 2013 at 05:54:19PM +0100, Andreas Bader wrote:
Don't you think that e.g. DSL (Damn Small Linux) has less code than Android?
I don't know. While I'm somewhat familiar with DSL, I don't use
Android and know very little about it. I
On Tue, Feb 12, 2013 at 10:01 AM, Andreas Bader noergelpi...@hotmail.de wrote:
So why not create a own OS that is really small because of its security?
http://dee.su/liberte-build
--
Maxim Kammerer
Liberté Linux: http://dee.su/liberte
--
Unsubscribe, change to digest, or change password at:
A good alternative for what use cases?
The problem I find with flat statements such as something like that would
be a good alternative to ChromeOS for activists is that it fails to
address what uses its providing a good alternative for. IE you fail to
demonstrate the threat model based on real
On 02/12/2013 06:41 PM, Brian Conley wrote:
A good alternative for what use cases?
The problem I find with flat statements such as something like that
would be a good alternative to ChromeOS for activists is that it
fails to address what uses its providing a good alternative for. IE
you fail
On Mon, Feb 11, 2013 at 12:54:27AM +0700, Uncle Zzzen wrote:
Obviously systems are too complex for most people to really figure out
what's exactly running on their computer, and modern systems (from smart
phones to unity) make it harder and harder for users (even power users)
to peek under the
On 02/11/2013 04:15 PM, Rich Kulawiec wrote:
On Mon, Feb 11, 2013 at 12:54:27AM +0700, Uncle Zzzen wrote:
Obviously systems are too complex for most people to really figure out
what's exactly running on their computer, and modern systems (from smart
phones to unity) make it harder and harder
Brian Conley:
snip
My point was for something off the shelf, I know of nothing better and as
far as it goes... I'd say it's a step up for a lot people who should be
using more secure IT technologies and methods than they are (such as some
journalists), and they can take that step with
Brian Conley:
On Wed, Feb 6, 2013 at 2:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
Brian Conley:
Micah,
Perhaps you can tell us the secret to convince all family members and
colleagues to become Linux hackers able to be completely self-sufficient
managing their own upgrades and
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
micah anderson:
I can't wait for the day when Google accidentally pushes an update
out that actually bricks their devices, because when that happens,
there is no way to simply reinstall the OS from scratch. --
Unsubscribe, change to digest,
Ali-Reza Anghaie a...@packetknife.com wrote:
A VZW employee was nice enough to reach out off list - wanted to remain
anonymous - says that the international SIMs they send for you to put in
overseas Nexus devices won't tether. Ever. No matter what I'm told
otherwise.
Anyhow.. enough of
Brian Conley:
Micah,
Perhaps you can tell us the secret to convince all family members and
colleagues to become Linux hackers able to be completely self-sufficient
managing their own upgrades and modifications indefinitely?
Stop supporting the use of non-free software? We're all part of the
T N:
The word Linux doesn't refer to anything, other than maybe the kernel.
Chrome OS is linux. But it's a massively stripped down distribution that
has a radical design, including the fact that it will ONLY run if all of
the cryptographic checks are verified from the root of trust. That
On Wed, Feb 6, 2013 at 5:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
Most of arguments I've heard here boil down to privileged wealthy people
complaining that learning and mutual aid or solidarity is simply too
hard. The worst is when people who train people in risky situations make
On Wed, Feb 6, 2013 at 5:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
This is hilarious.
I would *never* use a laptop that lacks a way to protect all your
traffic (eg: VPN/Tor/SSH tunnel/etc) in a place with serious
surveillance as an at risk person. Not only because the remote
On Wed, Feb 6, 2013 at 5:16 PM, Jacob Appelbaum ja...@appelbaum.netwrote:
A persistent backdoor on your Chromebook is not actually impossible.
As Nate (?) pointed out, hardware backdoors wouldn't be all that
difficult to implement, especially for someone who travels a lot. A ten
minute delay
Jake, you absolutely cannot equivocate your situation with most at-risk
people for several reasons.
Er, correction, I meant that you cannot treat the situations equally. And
by jettison software, I meant jettison Hardware.
Sorry, I can't brain today, I have the dumb.
best,
Griffin
--
Nadim Kobeissi:
On Wed, Feb 6, 2013 at 5:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
This is hilarious.
I would *never* use a laptop that lacks a way to protect all your
traffic (eg: VPN/Tor/SSH tunnel/etc) in a place with serious
surveillance as an at risk person. Not only because
Griffin Boyce:
On Wed, Feb 6, 2013 at 5:16 PM, Jacob Appelbaum ja...@appelbaum.netwrote:
A persistent backdoor on your Chromebook is not actually impossible.
As Nate (?) pointed out, hardware backdoors wouldn't be all that
difficult to implement, especially for someone who travels a
On Wed, Feb 6, 2013 at 2:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
It runs software that is in Debian, the GNU/Linux operating system. I
know, I've written some of it (eg: tlsdate). They do a good job of
locking things down but it is basically just another distribution of Linux.
I
The other things I meant to add:
Most Linux distro's are not running with their executable code on a
readonly filesystem, and it takes some effort to convert to a RO
configuration.
Also you can not login to a stock Chrome OS device as root. That account
has logins disabled. You have to flip to
UAE - Etisalat, nexus 4 - tethering was easy once the data plan was procured.
That, however, ain't simple - took time and some significant documentation.
Only thing they did not ask for was my first-born son.
On Feb 6, 2013, at 15:31, Brian Conley bri...@smallworldnews.tv wrote:
What
T N:
On Wed, Feb 6, 2013 at 2:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
It runs software that is in Debian, the GNU/Linux operating system. I
know, I've written some of it (eg: tlsdate). They do a good job of
locking things down but it is basically just another distribution of Linux.
T N:
The other things I meant to add:
Most Linux distro's are not running with their executable code on a
readonly filesystem, and it takes some effort to convert to a RO
configuration.
If someone has root on the machine or physical access, I guess that it
won't matter as much as we'd
Brian Conley bri...@smallworldnews.tv writes:
Perhaps you can tell us the secret to convince all family members and
colleagues to become Linux hackers able to be completely self-sufficient
managing their own upgrades and modifications indefinitely?
I never suggested that all family members
On Wed, Feb 6, 2013 at 2:16 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
Brian Conley:
Micah,
Perhaps you can tell us the secret to convince all family members and
colleagues to become Linux hackers able to be completely self-sufficient
managing their own upgrades and modifications
snip
My point was for something off the shelf, I know of nothing better and as
far as it goes... I'd say it's a step up for a lot people who should be
using more secure IT technologies and methods than they are (such as some
journalists), and they can take that step with minimal
On 02/06/2013 07:28 AM, Nathan of Guardian wrote:
On 02/06/2013 01:22 PM, Ali-Reza Anghaie wrote:
How can projects like Privly play into it? Carrying a Tor Router along
with you or building one on-site. None of the operational matters will
ever be squarely addressed by one platform but it all
Nadim, I'm with you. I'm not sure it's the perfect solution for
everyone, but like Nathan said, if you already trust Google, I think
it's a good option.
On 6 February 2013 07:12, Andreas Bader noergelpi...@hotmail.de wrote:
Why don't you use an old thinkpad or something with Linux, you have the
On 02/06/2013 04:24 PM, Tom Ritter wrote:
Nadim, I'm with you. I'm not sure it's the perfect solution for
everyone, but like Nathan said, if you already trust Google, I think
it's a good option.
On 6 February 2013 07:12, Andreas Bader noergelpi...@hotmail.de wrote:
Why don't you use an old
Tom Ritter t...@ritter.vg writes:
On 6 February 2013 07:12, Andreas Bader noergelpi...@hotmail.de wrote:
Why don't you use an old thinkpad or something with Linux, you have the
same price like a Chromebook but more control over the system. And you
don't depend on the 3G and Wifi net.
- The
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 06/02/13 15:52, Rich Kulawiec wrote:
Many operating systems and applications and even application
extensions (e.g., Firefox extensions) now attempt to discover the
presence of updates for themselves either automatically or because
a user
We started with the notion of Linux, and we were attracted to
Chromebooks for a bunch of reasons. Going back to Linux loses all the
things we were attracted to.
- ChromeOS's attack surface is infinitely smaller than with Linux
- The architecture of ChromeOS is different from Linux -
On 6 February 2013 10:52, micah anderson mi...@riseup.net wrote:
Can you say what you mean here? What is SOP in this context?
ChromeOS's 'Apps' are all extensions or webpages. One can't interact
with any other do to the standard Same Origin Policy browsers enforce.
It's what stops evilco.com
Just FYI:
Chrome OS devices are not subject to roll back attacks because the verified
boot does not allow that. Google has extensive documentation on this, and
you can review the implementation by viewing the source code. Rollback
attacks were an attack vector they specifically designed to
Andreas,
Plenty of Syrians do have internet access, and use it on a regular basis.
Also, lack of appropriateness for one use-case doesn't necessitate lack of
appropriateness across the board.
Linux is a great solution for many use cases, but as has been elaborated,
quite a terrible one for many
The biggest (and very important) difference between Linux and Chromebooks
is the hugely smaller attack surface.
NK
On Wed, Feb 6, 2013 at 2:36 PM, Brian Conley bri...@smallworldnews.tvwrote:
Andreas,
Plenty of Syrians do have internet access, and use it on a regular basis.
Also, lack of
On Wed, Feb 6, 2013 at 1:28 AM, Nathan of Guardian
nat...@guardianproject.info wrote:
On 02/06/2013 01:22 PM, Ali-Reza Anghaie wrote:
How can projects like Privly play into it? Carrying a Tor Router along
with you or building one on-site. None of the operational matters will
ever be
I'm glad people have had luck with tethering their Android phones
internationally. I've had absolutely zero - I'll have to give it another
run with a locally renter provider I suppose.
Anyone try in the UAE recently? Provider, hardware? Egypt? Curious. -Ali
On Feb 6, 2013 3:19 PM, Griffin Boyce
What Android OS are you using, Ali?
It's a snap with Google Nexus running 4.0. Perhaps its an OS version or
carrier-rolled OS that is the problem?
Brian
On Wed, Feb 6, 2013 at 12:26 PM, Ali-Reza Anghaie a...@packetknife.comwrote:
I'm glad people have had luck with tethering their Android
The word Linux doesn't refer to anything, other than maybe the kernel.
Chrome OS is linux. But it's a massively stripped down distribution that
has a radical design, including the fact that it will ONLY run if all of
the cryptographic checks are verified from the root of trust. That root of
Always Nexus Verizon stock. My alternate ROMs don't travel with me. Verizon
contacted ahead of time per their suggestions. Tethering in US and Canada
fine. UK or elsewhere is no-joy.
I gave up after a while and just carry my wipe'a'router and but use local
WiFi. My advantage being I'm in tent
A VZW employee was nice enough to reach out off list - wanted to remain
anonymous - says that the international SIMs they send for you to put in
overseas Nexus devices won't tether. Ever. No matter what I'm told
otherwise.
Anyhow.. enough of that. Cheers, -Ali
On Wed, Feb 6, 2013 at 3:52 PM,
On Wed, Feb 06, 2013 at 10:52:23AM -0500, micah anderson wrote:
- ChromeOS's update mechanism is automatic, transparent, and basically
foolproof. Having bricked Ubuntu and Gentoo systems, the same is not
true of Linux.
I would be surprised if you actually 'bricked' these systems, since
T N trr...@gmail.com writes:
The word Linux doesn't refer to anything, other than maybe the kernel.
Chrome OS is linux. But it's a massively stripped down distribution that
has a radical design, including the fact that it will ONLY run if all of
the cryptographic checks are verified from
Andy Isaacson a...@hexapodia.org writes:
On Wed, Feb 06, 2013 at 10:52:23AM -0500, micah anderson wrote:
- ChromeOS's update mechanism is automatic, transparent, and basically
foolproof. Having bricked Ubuntu and Gentoo systems, the same is not
true of Linux.
I would be surprised if
Micah,
Perhaps you can tell us the secret to convince all family members and
colleagues to become Linux hackers able to be completely self-sufficient
managing their own upgrades and modifications indefinitely?
Otherwise what is your point?
It seems like you are being needlessly confrontational
On 02/06/2013 08:36 PM, Brian Conley wrote:
Andreas,
Plenty of Syrians do have internet access, and use it on a regular basis.
Also, lack of appropriateness for one use-case doesn't necessitate
lack of appropriateness across the board.
Linux is a great solution for many use cases, but as
Dear LibTech,
I'm frankly not sure about this idea, it may certainly be a bad one, but
I've been using a Chromebook for almost a week now, and I've had some
observations regarding this device. I'd like to discuss whether it's a good
idea to hypothetically have Chromebooks used by activists,
On 02/06/2013 10:29 AM, Nadim Kobeissi wrote:
I'm frankly not sure about this idea, it may certainly be a bad one, but
I've been using a Chromebook for almost a week now, and I've had some
observations regarding this device. I'd like to discuss whether it's a
good idea to hypothetically have
It's something we've explored as an option in the Executive Protection
space - and paired with Google two-factor it's a marked improvement over
anything most of these end-users were doing before. There is at least one
3G radio version too - more almost certainly coming at better price points.
As
On 02/06/2013 01:22 PM, Ali-Reza Anghaie wrote:
How can projects like Privly play into it? Carrying a Tor Router along
with you or building one on-site. None of the operational matters will
ever be squarely addressed by one platform but it all can be
decision-treed out nicely.
You could
55 matches
Mail list logo