nitrohorse Ⓐ @andreas@nitro.horse
- 📍
- Occupied Duwamish territory
Admin
anarchist, privacy advocate, & software developer • he/they • ACAB • #nobot
Joined Aug 2018
Pinned toot
Some tips from the EFF (https://ssd.eff.org/en/module/attending-protest).
Before the Protest
- Enable full-disk encryption on your device
- Remove fingerprint unlock and FaceID
- Install Signal
- Back up your data
- Buy a prepaid, disposable phone
- Consider biking or walking to the protest (to avoid Automated License Plate Reader Systems)
During the Protest
- Take photos and videos without unlocking your device
- Enable airplane mode
After the Protest
- Scrub metadata on photos
Pinned toot
"I became an Anarchist when I decided to drop the theories and stop seeking power. When I stopped concerning myself with those things I realised that true Anarchy is my nature. It is our nature. It is what we were doing before the theories arrived, it is what we were doing before we were encouraged to be in competition with each other."
- Benjamin Zephaniah, 'Why I Am an Anarchist'
It would be interesting to compare 3rd party trackers used on government websites across countries.
Went to check the air quality at https://www.airnow.gov/ and saw an attempted connection to https://www.googletagmanager.com. Looking at a few more, Google is able to track users across
- https://www.usa.gov/
- https://www.whitehouse.gov/
- https://www.fema.gov/
- https://www.usps.com/
- https://www.noaa.gov/
- https://www.archives.gov/
- https://www.ssa.gov/
- https://www.usgs.gov/
🤢
nitrohorse Ⓐ
boosted
snarky
@andreas of course mozilla would shut down or neglect the features/services that people actually value, while putting more money into *trying to get people to care* about their other stuff
https://send.firefox.com is dead.
“Firefox Send was a promising tool for encrypted file sharing... Unfortunately, some abusive users were beginning to use Send to ship malware and conduct spear phishing attacks. This summer we took Firefox Send offline to address this challenge.
In the intervening period, as we weighed the cost of our overall portfolio and strategic focus, we made the decision not to relaunch the service.”
https://blog.mozilla.org/blog/2020/09/17/update-on-firefox-send-and-firefox-notes/
Good list of statements about why privacy matters.
Source code: https://github.com/milesmcc/whyprivacymatters
“The .gay registry donates 20% of every new name registered to LGBTQ organizations.”
“We have gone above and beyond industry standards and created a .gay Rights Protections Policy that discourages homophobic, anti-LGBTQ usage and provides specific, enforceable remedies for domains that intentionally use .gay to malign or harm LGBTQ individuals or groups.
The policy also bans recognized hate groups from using .gay domains.”
https://blog.porkbun.com/2020/09/11/gay-launch-explained-in-gifs/
Oh neat TIL
“.gay is a new generic top level domain name (gTLD). It launches into public availability on September 16 2020 (today), after a week long early access phase. Various registrars including GoDaddy are offering pre orders. Its official site is ohhey.gay”
nitrohorse Ⓐ
boosted
@andreas Activists should consider that Apple, Google, etc. will do this.
- Don't post location, event or activism to an untrusted cloud. OS vendor should not be considered trusted.
- Encrypt emails and messages outside of OS purview.
- Keep phones off from home to activism to home.
- Disable location services.
- Remove image and video meta / exif
...as a start
“Apple granted the FBI access to the iCloud account of a protester accused of setting police cars on fire in #Seattle this summer, according to court documents.”
https://www.businessinsider.com/apple-fbi-icloud-investigation-seattle-protester-arson-2020-9
“I wanted to make a list for all of us out there that don't like watching or reading things with really big hints of sexism in them. So this'll be a masterthread for that.“
DANGER: Official List of Anti-Feminist/Sexist Anime & Manga
https://myanimelist.net/forum/?topicid=664181
Started in 2013 and last updated ~3 months ago.
Found on Reddit. An ocean theme for DuckDuckGo.
Config for https://duckduckgo.com/settings#appearance
* Background Color: #13293d
* Header Color: #006494
* Result Title Color: #1b98e0
* Result Visited Title Color: #e8f1f2
* Result Description Color: #e8f1f2
* Result URL Color: #247ba0
* Result Hover, Module, and Dropdown Background Color: #1a3651
https://i.reddit.com/r/duckduckgo/comments/issv2t/duckduckgo_theme_ocean/
nitrohorse Ⓐ
boosted
We'd quickly like to explain why we have to build the DDoS mitigation ourselves, how the progress is so far, and what you can expect as next steps. While improving anti DDoS measures, you'll be happy to know that we've also much reduced loading time. Thank you very much for your continuous support! 🙂
https://tutanota.com/blog/posts/ddos-attack-update
TIL Cookie AutoDelete [1] silently breaks when Chromium is launched with the "--disable-reading-from-canvas" flag [2].
[1] https://github.com/Cookie-AutoDelete/Cookie-AutoDelete
[2] https://wiki.archlinux.org/index.php/Chromium#Canvas_Fingerprinting
nitrohorse Ⓐ
boosted
Oh. This is probably fine.
I'm sure your AWS server's RAM is inviolate.
<< Gen. Keith Alexander is joining Amazon’s board of directors, the company revealed in a Securities and Exchange Commission filing today. (Alexander has also been added to the company board’s official site.) A former director of the National Security Agency and the first commander of the US Cyber Command, Alexander served as the public face of US data collection during the Edward Snowden leaks >>
Fuck the abomination known as "Linked In" and all it touches.
nitrohorse Ⓐ
boosted
My instance block list
Here is the beginning of a thread that I'll update with what I have in my block list.
It basically revolve around thoses axis:
- literral Nazi
- Nazi enablers, non moderated place
- Pedos
- commercial instances and scams
- People working with/for the police
- harrasers and shitlords (and all their pet instances)
You don't have to look at my list.
You don't have to agree with my list.
You don't have to comment on why you don't like my list
You don't have to tell me why telling people I have a list is bad.
You don't don't have to, but if you do, you are helping yourself to get a nice comfy spot in my list.
(note: if your instance is on that list and you think it shouldn't, you can make a case for me taking it out. I also make mistake and sometime situations evolve over time)
Becoming fascinated by AltStore: “an alternative app store for non-jailbroken iOS devices” with the ability to sideload apps 👀
> French law requires us to keep your IP address and the dates and times of connection of this IP address for one year. After one year, we erase all of this information. - https://youcare.world/privacy?l=en
> For data related to the queries, Qwant retains for 7 days the keywords of your query, associated with the User Agent of your browser, and a salted hash of your IP address... - https://about.qwant.com/legal/privacy/
Probably missing something but how is Qwant able to just store a "salted hash of your IP address" for 7 days while YouCare stores your full IP address for 1 year while *both* operate out of France? 🤔
Added a new column to my search engine comparison table for IP address sharing.
Noticed that some engines say they don't log your IP address but then go around and share it to retrieve search results or advertisements which isn't very clear to end users (calling you out, https://www.ekoru.org/privacy).
If your software project relies on a package.json, "Version Lens" is a really helpful VSCode extension for keeping your Node modules up to date.
- 📍
- Occupied Duwamish territory
Admin
anarchist, privacy advocate, & software developer • he/they • ACAB • #nobot
Joined Aug 2018
nitrohorse Ⓐ's choices:
