Zum Inhalt springen.
Sympa Menü

sg-presse - [Sg-presse] [GNU/consensus] Why support "Reset the Net" ? I don't get it

sg-presse@lists.piratenpartei.de

Betreff: Mailingliste der SG Bundes-PR

Listenarchiv

[Sg-presse] [GNU/consensus] Why support "Reset the Net" ? I don't get it


Chronologisch Thread 
  • From: carlo von lynX <lynX@pirate.my.buttharp.org>
  • To: sg-presse@lists.piratenpartei.de
  • Subject: [Sg-presse] [GNU/consensus] Why support "Reset the Net" ? I don't get it
  • Date: Wed, 4 Jun 2014 17:49:13 +0200
  • List-archive: <https://service.piratenpartei.de/pipermail/sg-presse>
  • List-id: Mailingliste der SG Presse - Diskussion <sg-presse.lists.piratenpartei.de>

Diese Mail wurde von anderen Teilnehmern an
Richard Stallman weitergeleitet. Ist also nicht
meine Einzelmeinung:


----- Forwarded message from carlo von lynX <lynx@time.to.swarm.psyced.org>
-----

Date: Wed, 7 May 2014 09:23:17 +0200
From: carlo von lynX <lynx@time.to.swarm.psyced.org>
To: consensus@gnu.org, socialswarm-discussion@ml.foebud.org
Subject: [GNU/consensus] Why support "Reset the Net" ? I don't get it
User-Agent: Mutt/1.5.20 (2009-06-14)

Heya.. I saw the FSF logo on the
https://www.resetthenet.org page.

Yet the things the page recommends are band-aids.
If it was that simple we could have done such a
campaign the same day the revelations came out.

- 1st of all, the main problem is mail and chat,
so you don't solve that by HSTS

- The recommended solutions for mail and chat
are obnoxious for normal users to install and
will be obsolete in a year or so, since no-one
should stick to mail and chat that does not
protect the social graph "meta" data.

- The idea that all HTTP sites should upgrade
to HTTPS, without at least convincing one CA
to hand out free *.domain certificates, is just
an amazing promotional campaign for the CA industry.

- HSTS is the greatest of all band-aids, much weaker
than DANE, still if you use it wrong you condemn
yourself to buying certificates for potentially a
veeery long time. Would be better to go for the
less bad band-aid: DANE.

- Would be better if the web browsers were supporting
proper pinning of self-signed certificates. Or
supporting cacert.org so people can reasonably get
free certs. They can show the sites with a yellow
box instead of a green one (if Mozilla thinks cacert
is less safe, which in the current situation is a
ridiculous assertion anyway), but leaving the web in
a state of utter brokenness is sick.

- Would be better to fix the scalability of Tor hidden
services so we can use .onion instead of the broken
HTTPS thing. Or if that doesn't work, use GNUnet for
the "light web"

- Would be better to deploy opportunistic forward
secrecy implemented in JS over HTTP (naif has been
working on that)

- Would be better if campaign websites weren't themselves
collecting personal data before even saying anything
(the first thing it shows is a prompt to drop your
e-mail into a box.. very reassuring).

So I don't see the point in a superficial campagin that
doesn't actually fix anything about the status quo, instead
it is likely to foster further damage by not offering long-term
solutions.

If you think this makes sense, please forward it to the
appropriate people in the FSF and other listed organizations.

Best,

--
http://youbroketheinternet.org
ircs://psyced.org/youbroketheinternet



  • [Sg-presse] [GNU/consensus] Why support "Reset the Net" ? I don't get it, carlo von lynX, 04.06.2014

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang