GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 07:10:04 JST Håkan Geijer Håkan Geijer

    So you suddenly feel the need to "do something" about the fascism?

    Step 1: Shut the fuck up. Don't get specific or even "vaguepost-y" / overly suggestive about your intention to do anything.

    Step 2: Learn about security culture because you're more effective if you don't go to prison, and you need to not get caught before you do your thing.

    An ordered reading list:

    "What is Security Culture? A Guide to Staying Safe"
    A short basic introduction to the topics of security culture. This is a good primer for all subsequent discussions.
    https://www.sproutdistro.com/catalog/zines/security/what-is-security-culture-a-guide-to-staying-safe/

    "Confidence. Courage. Connection. Trust."
    The best current text on security culture, one that takes an approach that tries to balance openness against much of security's paranoia.
    https://www.sproutdistro.com/catalog/zines/security/confidence-courage/

    "Mobile Phone Security."
    One of the fastest ways to get caught is with the snitch in your pocket. Learn how to be safe with your phone and why these steps are important.
    https://opsec.riotmedicine.net/downloads#mobile-phone-security

    "Why Misogynists Make Great Informants"
    Like the title says, people's shitty behavior is indicative that you shouldn't organize with them. A large number of snitches, informants, and infiltrators are misogynistic or otherwise problematic. Don't ignore it!
    https://www.sproutdistro.com/catalog/zines/security/misogynists-make-great-informants/

    "Threat Modeling Fundamentals"
    You need to be able to reason about threats you face and do more than just wear a mask. How/what you do requires concert though, and this is a guide on how to do that reasoning.
    https://opsec.riotmedicine.net/downloads#threat-modeling-fundamentals

    "PRISMA: Primer on Radical Information for Secure Militant Actions"
    You want to do some shit? You want a specific guide on how you might do that shit? Read no further.
    https://ntpfiles.noblogs.org/prisma-primer-on-radical-information-for-secure-militant-actions/

    Want to read even more? Download (yes download) PDFs and get ready to get spicy.

    https://www.sproutdistro.com/catalog/zines/security/

    https://www.notrace.how/resources/

    In conversation about 4 months ago from kolektiva.social permalink

    Attachments


    1. Domain not in remote thumbnail source whitelist: www.sproutdistro.com
      Confidence. Courage. Connection. Trust. Zine
      from @sproutdistro
      Anarchist zine distro with PDF zines and pamphlets on anarchism, direct action, tactics, etc.
    2. Domain not in remote thumbnail source whitelist: www.sproutdistro.com
      What is Security Culture? Zine
      from @sproutdistro
      Anarchist zine distro with PDF zines and pamphlets on anarchism, direct action, tactics, etc.
    3. Domain not in remote thumbnail source whitelist: opsec.riotmedicine.net
      Downloads
    4. Domain not in remote thumbnail source whitelist: www.sproutdistro.com
      Why Misogynists Make Great Informants Zine
      from @sproutdistro
      Anarchist zine distro with PDF zines and pamphlets on anarchism, direct action, tactics, etc.
    5. Domain not in remote thumbnail source whitelist: opsec.riotmedicine.net
      Downloads

    • Embed this notice
      ch0ccyra1n (ch0ccyra1n@emeraldsocial.org)'s status on Thursday, 23-Jan-2025 07:22:47 JST ch0ccyra1n ch0ccyra1n
      in reply to

      @hakan_geijer thanks for not recommending that absolutely abysmal guide from the Neighborhood Anarchist Collective. I feel like it's actively harmful for such a guide as theirs to exist given how terrible much of the advice is

      In conversation about 4 months ago permalink
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 07:22:47 JST Håkan Geijer Håkan Geijer
      in reply to
      • ch0ccyra1n

      @ch0ccyra1n Maybe you saw their announcement here, but I (among others) did not care for it. It has some correct things, but there's enough in there that's liable to be dangerous that I don't think I could ever recommend them to anyone. Not that I'm some arbiter of truth on these matters. https://kolektiva.social/@hakan_geijer/113845430605553289

      In conversation about 4 months ago permalink

      Attachments

      1. No result found on File_thumbnail lookup.
        Håkan Geijer (@hakan_geijer@kolektiva.social)
        from Håkan Geijer
        @naceugene "Security Essentials" - You should recommend FOSS options like KeyPass. And why Proton Pass at all given their current kerfuffle with supporting Trump? - Brave with it's cryptoscam's and Brendan Eich's homophobia is hardly better than Mozilla - Again, why Brave search and not DDG? - Again, why Proton VPN for the same reasons? "Prepare for a Protest" - This sentence is misleading: "Disable GPS location tracking until home. (Airplane mode is not enough!)" Location tracking is not your biggest worry. Cell tower communications is. Airplane mode still leaks location data. Off is better. Off and in a faraday bay is better yet. - In the section "Set your passcode to 10 or more random digits", your data makes no sense. 10-digit code is listed as 6 years. 2 diceware words is listed as 100+ years. The former is log2(10**10) = 33 bits of entropy. The latter is log2(7776**2) = 25. Something is off in how you calculated these. A source should be provided. - Airplane mode section is equally misleading about tracking - the "Signal Checklist" page 404s - "Don’t share photos/videos with identifiable faces" is misleading as clothing, tattoos, and other visible features can get people arrested as well. This section needs serious elaboration. - "Leave Signal groups that aren’t a part of this action" is unrealistic. It's correct to say that, but I cannot imagine anyone will actually do that unless they are part of very few groups and there are infrequent actions. "Burner Phone" vs "Secondary Phone" - Disagree that a secondary phone is a demo phone. There's threat modeling per individual here about whether the second phone should be for actions only or if it should be for organizing only (and not for actions). "reuse it over many actions" might suggest puttting all your organizing on to your secondary phone then bringing it to actions rather than for just *planning* them. - "What data am I protecting?" needs to be split on secondary/burner/demo as it's not clear which phone offers what security properties - This quote "You’re protecting not just yourself, but the people you’re organizing with who may be at higher risk than you because of their identity or circumstances (person of color, queer, trans, undocumented person, Arab/muslim)." and this one "You’re likely to be targeted by the cops based on identities you hold (person of color, queer, trans, documentation status, etc.)" belie the fact that cops *fucking hate anarchists* and they are highly targeted. I know it's popular to phrase it as you did, but that's not the most materialist of analyses. Just say "if you're highly targeted because of race, gender, or political activities." Because that's the actual criteria that matters. - When you say "If you are already the target of state surveillance, it’s much less likely that they know about this secondary device (assuming you rarely use it)" you are blending secondary/burner. If you secondary is almost always at your home or paid with your bank card, then they very likely know it's you. This is not a reliable diversion and should be called out as such. Plus, if they raid your flat, they're going to find it. - "Setup Guide" needs to be split into secondary/burner - With how much data is collected and resold, I disagree that Tracphone is worth it. I would consider this to be a security risk for tracking even if it's cheap. - You don't mention GrapheneOS at all. You should at least note this. - The setup guide doesn't mention leaving all electronics at home while procuring the burner items. - "Option 2: Migrate your existing account to this new number temporarily" completely undoes a huge amount of the security benefits of a seconday/burner phone. This should be removed. "Action Research & Scouting" - "Take scouting photos/videos directly in the Signal camera" I don't know what things you're scouting, but I would *never* suggest bringing a phone for scouting. "DA Organizing" - "Use Signal for secure texts/calls for action organizing" I think you're mixing protests and DA because, and maybe it's just my experiences, but we absolutely do not have phones involved in any stages of DA *at all* so 🤷 - "Use CryptPad for document collaboration related to the action/protest" Again, maybe we're talking about different actions, but for spicy things, we only do pen/paper. - Don't recommend Proton Docs. They collaborate with cops. - Don't recommend Zoom as they also collaborate with cops - "Avoid using the Signal desktop app" without clarifying threat models about phone trackability or security of a mobile OS vs desktop OS amounts to FUD - "Use VeraCrypt to create a secure folders on your computer" does not mesh with you saying not Signal. If someone hacks your laptop (spyware, trojan) then they will just wait for you to type your password.
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 09:02:25 JST Håkan Geijer Håkan Geijer
      in reply to
      • Nathan A. Stine

      @stinerman Wrong. People talk about this generally speaking all the time and don't get arrested. Even making specific plans about it means statistically you're not as most people doing that aren't cops/feds, but that doesn't mean you *should* make such specific plans. Don't make your adversaries sound more capable than they actually are.

      In conversation about 4 months ago permalink
    • Embed this notice
      Nathan A. Stine (stinerman@mastodon.social)'s status on Thursday, 23-Jan-2025 09:02:26 JST Nathan A. Stine Nathan A. Stine
      in reply to

      @hakan_geijer when you're talking to a guy you met on the internet about taking steps to overthrow the government, you're talking to an FBI agent.

      In conversation about 4 months ago permalink
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 09:02:53 JST Håkan Geijer Håkan Geijer
      in reply to
      • ch0ccyra1n
      • JamieGC 🏴 🏳️‍🌈 🖖

      @JamieGC @ch0ccyra1n I dug through the entire site and made my notes public. https://kolektiva.social/@hakan_geijer/113845430605553289

      In conversation about 4 months ago permalink

      Attachments

      1. No result found on File_thumbnail lookup.
        Håkan Geijer (@hakan_geijer@kolektiva.social)
        from Håkan Geijer
        @naceugene "Security Essentials" - You should recommend FOSS options like KeyPass. And why Proton Pass at all given their current kerfuffle with supporting Trump? - Brave with it's cryptoscam's and Brendan Eich's homophobia is hardly better than Mozilla - Again, why Brave search and not DDG? - Again, why Proton VPN for the same reasons? "Prepare for a Protest" - This sentence is misleading: "Disable GPS location tracking until home. (Airplane mode is not enough!)" Location tracking is not your biggest worry. Cell tower communications is. Airplane mode still leaks location data. Off is better. Off and in a faraday bay is better yet. - In the section "Set your passcode to 10 or more random digits", your data makes no sense. 10-digit code is listed as 6 years. 2 diceware words is listed as 100+ years. The former is log2(10**10) = 33 bits of entropy. The latter is log2(7776**2) = 25. Something is off in how you calculated these. A source should be provided. - Airplane mode section is equally misleading about tracking - the "Signal Checklist" page 404s - "Don’t share photos/videos with identifiable faces" is misleading as clothing, tattoos, and other visible features can get people arrested as well. This section needs serious elaboration. - "Leave Signal groups that aren’t a part of this action" is unrealistic. It's correct to say that, but I cannot imagine anyone will actually do that unless they are part of very few groups and there are infrequent actions. "Burner Phone" vs "Secondary Phone" - Disagree that a secondary phone is a demo phone. There's threat modeling per individual here about whether the second phone should be for actions only or if it should be for organizing only (and not for actions). "reuse it over many actions" might suggest puttting all your organizing on to your secondary phone then bringing it to actions rather than for just *planning* them. - "What data am I protecting?" needs to be split on secondary/burner/demo as it's not clear which phone offers what security properties - This quote "You’re protecting not just yourself, but the people you’re organizing with who may be at higher risk than you because of their identity or circumstances (person of color, queer, trans, undocumented person, Arab/muslim)." and this one "You’re likely to be targeted by the cops based on identities you hold (person of color, queer, trans, documentation status, etc.)" belie the fact that cops *fucking hate anarchists* and they are highly targeted. I know it's popular to phrase it as you did, but that's not the most materialist of analyses. Just say "if you're highly targeted because of race, gender, or political activities." Because that's the actual criteria that matters. - When you say "If you are already the target of state surveillance, it’s much less likely that they know about this secondary device (assuming you rarely use it)" you are blending secondary/burner. If you secondary is almost always at your home or paid with your bank card, then they very likely know it's you. This is not a reliable diversion and should be called out as such. Plus, if they raid your flat, they're going to find it. - "Setup Guide" needs to be split into secondary/burner - With how much data is collected and resold, I disagree that Tracphone is worth it. I would consider this to be a security risk for tracking even if it's cheap. - You don't mention GrapheneOS at all. You should at least note this. - The setup guide doesn't mention leaving all electronics at home while procuring the burner items. - "Option 2: Migrate your existing account to this new number temporarily" completely undoes a huge amount of the security benefits of a seconday/burner phone. This should be removed. "Action Research & Scouting" - "Take scouting photos/videos directly in the Signal camera" I don't know what things you're scouting, but I would *never* suggest bringing a phone for scouting. "DA Organizing" - "Use Signal for secure texts/calls for action organizing" I think you're mixing protests and DA because, and maybe it's just my experiences, but we absolutely do not have phones involved in any stages of DA *at all* so 🤷 - "Use CryptPad for document collaboration related to the action/protest" Again, maybe we're talking about different actions, but for spicy things, we only do pen/paper. - Don't recommend Proton Docs. They collaborate with cops. - Don't recommend Zoom as they also collaborate with cops - "Avoid using the Signal desktop app" without clarifying threat models about phone trackability or security of a mobile OS vs desktop OS amounts to FUD - "Use VeraCrypt to create a secure folders on your computer" does not mesh with you saying not Signal. If someone hacks your laptop (spyware, trojan) then they will just wait for you to type your password.
    • Embed this notice
      JamieGC 🏴 🏳️‍🌈 🖖 (jamiegc@tsukihi.me)'s status on Thursday, 23-Jan-2025 09:02:54 JST JamieGC  🏴 🏳️‍🌈  🖖 JamieGC 🏴 🏳️‍🌈 🖖
      in reply to
      • ch0ccyra1n

      @ch0ccyra1n @hakan_geijer what’s some of what they recommend?

      In conversation about 4 months ago permalink
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 17:34:39 JST Håkan Geijer Håkan Geijer
      in reply to
      • Erik van Straten

      @ErikvanStraten how then do you suggest people protected themselves from armed groups of fascists?

      In conversation about 4 months ago permalink
    • Embed this notice
      Erik van Straten (erikvanstraten@infosec.exchange)'s status on Thursday, 23-Jan-2025 17:34:40 JST Erik van Straten Erik van Straten
      in reply to

      @hakan_geijer : maybe it's in your docs somewhere - but this may be interesting to some readers, in particular the digital preparations part https://youtube.com/watch?v=6ihrGNGesfI.

      (I don't like the gun part though. The more people have guns "to defend themselves" the more kids die in schools).

      #DigitalPreppers

      In conversation about 4 months ago permalink

      Attachments

      1. Lawyer. Passport. Locksmith. Gun. (A Talk About Risk & Preparedness)
        Question: When is the best time to acquire a lawyer, a passport, a locksmith, or a gun?Answer: Before you need that lawyer, that passport, that locksmith, or...
    • Embed this notice
      Karl Auerbach (karlauerbach@sfba.social)'s status on Thursday, 23-Jan-2025 17:35:33 JST Karl Auerbach Karl Auerbach
      in reply to

      @hakan_geijer By-the-way, when taking actions please consider not only how good that makes you feel but also how it is perceived by those who could be convinced to move to the good side. We really want to push those people towards us, not away from us.

      In conversation about 4 months ago permalink
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 17:35:33 JST Håkan Geijer Håkan Geijer
      in reply to
      • Karl Auerbach

      @karlauerbach People piss themselves at harmlessly throwing soup on glass protected paintings. I'm not so concerned with optics.

      In conversation about 4 months ago permalink
    • Embed this notice
      blanknight (blanknight@mastodon.social)'s status on Thursday, 23-Jan-2025 17:36:59 JST blanknight blanknight
      in reply to

      @hakan_geijer step 3: shut these f*cking anarchists up and get help from other commies you dumbsh*ts lol jesus christ

      In conversation about 4 months ago permalink

      Attachments


    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 17:36:59 JST Håkan Geijer Håkan Geijer
      in reply to
      • blanknight

      @blanknight eat my shit and hair

      In conversation about 4 months ago permalink
    • Embed this notice
      Erik Play2Learn (fallbackerik@mastodon.social)'s status on Thursday, 23-Jan-2025 17:56:01 JST Erik Play2Learn Erik Play2Learn
      in reply to

      @hakan_geijer It's great you have passion for security. Are there things that can have a big impact and that are legal? For instance, what do you think about joining #Mastodon, #linux, and #opensorce communities to learn about digital security? Would that have an impact? Let's learn more together. 😊

      In conversation about 4 months ago permalink
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 17:56:01 JST Håkan Geijer Håkan Geijer
      in reply to
      • Erik Play2Learn

      @fallbackerik I think learning about security is useful, but it should have a goal in mind. People like to quote the OSS simple sabotage manual for things that are disruptive and legal (derailing meetings, losing paperwork, etc.). There's other actions people might take too, and I'm mostly talking to them

      In conversation about 4 months ago permalink
    • Embed this notice
      Claudius Link (realn2s@infosec.exchange)'s status on Thursday, 23-Jan-2025 17:57:35 JST Claudius Link Claudius Link
      in reply to

      @hakan_geijer
      I struggle a bit with your recommendation.
      I think fascism is in part possible if nobody speaks out.

      So IMHO there are certain times (and positions) were speaking out is essential and your advice to STFU is equally essential for other times. In the end it is your "individual" threat model which leads the decisions

      In conversation about 4 months ago permalink

      Attachments


    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 17:57:35 JST Håkan Geijer Håkan Geijer
      in reply to
      • Claudius Link

      @realn2s "Speaking out" and saying "Who wants to do [criminalised thing] to [fascist entity]?" are quite different, and I'm mostly talking to people who's intention to engage in direct action

      In conversation about 4 months ago permalink
    • Embed this notice
      Håkan Geijer (hakan_geijer@kolektiva.social)'s status on Thursday, 23-Jan-2025 18:11:59 JST Håkan Geijer Håkan Geijer
      in reply to
      • Erik van Straten

      @ErikvanStraten lol I'm not going to compromise with fascists

      In conversation about 4 months ago permalink
    • Embed this notice
      Erik van Straten (erikvanstraten@infosec.exchange)'s status on Thursday, 23-Jan-2025 18:12:00 JST Erik van Straten Erik van Straten
      in reply to

      @hakan_geijer : the short term solution is "buy guns". In the end a lot more people are dead.

      The long term solution is talk to each other and be prepared to compromise. I know a guy who lived in an apartment below Moslims who, once a year, slaughter a goat (or sheep, IDK) with its blood dripping alongside his balcony.

      We must understand that non-Moslims get upset about this.

      There are no simple solutions, except killing each other.

      In conversation about 4 months ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.