Notices by 🔗 David Sommerseth (dazo@infosec.exchange)

@forteller

Altså noen som lesser ned et piano med "pynteting" og tilbyr det som pinneved fortjener ikke å være i besittelse av et sånt instrument.

Dessverre sies det ingenting om hvor stemt det er eller hva slags vedlikehold det har hatt ("ingen" er det jeg tipper). Det kan være at det har blitt så forsømt at en uopprettelig skade har skjedd.

Hadde det vært en institusjon for vanskjøtsel av instrumenter - alla barnevernet - så ville disse vært på plass sporenstreks.

Hadde vi hatt plass og mulighet til å å hente det, hadde jeg vært i en bil allerede.

Og ja, for de som lurer: Et instrument er IKKE et møbel som man putter pynteting på.

@ryanc

A shorter version could be puncher and victim .....

@forteller og hvorfor trenger man feltet for kjønn i det hele tatt?

@jwildeboer

What would you say is the advantage of running a closed Forgejo instance vs just pushing your git trees to home server via SSH?

I'm also using @Codeberg for public stuff (also donated too!) ... which is why I wonder about the advantage of also running a fully private instance.

@kiwix This is not the first time I've heard this about Hetzner. And I have a cruel experience myself.

Many years ago I tried signing up with them, but after a few days waiting I was requested to send copies of identity confirmation and the credit card used. Being inexperienced with such services back then, I thought this was common and did so. After yet another few days my sign-up was rejected without any reason. I was going to use the setup for professional hosting, so I tried a bit to understand why but the communication went dead.

I found other alternatives back then within the same price range and got started within an hour, with no issues at all.

I am located in Europe and the alternative provider I went with was also a German company. That's when I decided to consider Hetnzer a scam company.

They might feel they're too big to fail. But as these cases grows and the communities gets aware of it ... Hetzner is eventually entering into a never ending downwards spiral.

@jwildeboer @fale Looking forward to a little review and your opinions about once you've had it in use for a bit 😉

Considering such a device too. But efficient ones with no cameras and no cloud connection seems scarce these days.

This has potential to become a shitstorm for #Matrix @matrix

https://www.europol.europa.eu/media-press/newsroom/news/international-operation-takes-down-another-encrypted-messaging-service-used-criminals

I honestly didn't know that was a suitable service for #E2EE messaging. It feels a lot more like #Europol is trying to make lots of fuzz to rattle the cage.

#infosec #privacy #news #messaging

@kamyk @quad9dns I'm also using my own self-hosted caching resolver server. Quad9 is a decent alternative when that's unavailable.

@quixoticgeek @vaurora

Please stop spreading FUD.

• This person did something which is illegal according to the Swiss legal system. Proton is required by law to adhere to Swiss court orders. This is no different from any other company operating in any country.
• The only thing Proton could provide was an e-mail recovery address. Having a recovery address is optional.
• This recovery address led to reveal the real account on a different e-mail system - with a very weak privacy protection.
• No e-mails from Proton was or could be made available to law enforcement.
• If this user had read the Terms of Service and the Privacy Policy of Proton, these potential issues should be pretty clear.

In addition, Proton has a transparency report on number of orders the have contested and complied with: https://proton.me/legal/transparency

Further readings:
https://proton.me/legal/privacy
https://proton.me/legal/terms

@vaurora

yikes! Okay, I'll admit I'm not using them myself. Just saw your "wishlist" and thought of it. I would personally consider to use them if their services was properly #E2EE.

But let's see if @gael or @murena wakes up and has a reasonable explanation is aware about the downtime. I also believe I saw some discussions about using your own domains with Murena; unless I was hallucinating .

I'm sorry, @gael ... I did not intend to be a jerk. That was entirely poorly chosen words - and fully my fault! I hope you can forgive me.

My intention was just to hear if there was some odd issues which had a reasonable cause. It seemed odd that the main service in the Murena platform had such issues.

@vaurora @murena

@vaurora

Maybe check out @murena Workspace?

https://murena.com/workspace/

It's a service build up by @gael and his team, located in France IIRC.

#Danmark ber skolene gjennomgå bruken av #Google #Chromebook og Google #Workspace grunnet brudd på #personvernet.

https://www.nrk.no/nyheter/danmarks-datatilsyn_-skolebarns-pc-bruk-strider-med-loven-1.16740129

Jeg tviler sterkt på at #Norge og #norske #skoler har gjort noen bedre vurderinger.

#nyheter #personvern

Virker som #INP (Industri og Næringspartiet) blir pulverisert og går i full oppløsning innenfra.

Det har altså gått fra at generalsektæren som ønsket å ta med seg halve partiet til et konkurerende parti, til den tidlgere lederen som tar med seg halve sentralstyret til et helt nytt parti.

https://www.nrk.no/trondelag/owe-ingemann-waltherzoe-starter-nytt-parti-etter-inp-1.16738107

Dette er jo bare en norsk, politisk variant av Succession: https://infosec.exchange/@dazo/111816811013317152

#norge #allheimen #politikk #nyheter

@forteller

Could you do a quick write-up with an example extension somewhere when you've got something working?

Been trying to do this a few times, but failing so far. Would like to wrap up something not too fancy for OpenVPN 3 Linux (which is fully D-Bus driven), just to start/stop VPN sessions and such.

@forteller ikke stress med det, de harselerer mer rundt Kjerkhol og AP politikere enn selve denne plagiatsjekken

@forteller Du blir indirekte nevnt i ukas Desken Brenner pod episode 😁

I have preferred #HP #printers for many years, as they usually work pretty well in Linux out-of-the-box. And the hplip package has also enabled all the networking features on MFP devices pretty nicely.

I've also preferred laser printers over ink, as the toner can last for years while ink can dry out.

But that time is now past. I don't trust that company any more.

If an ink cartridge is the vulnerable spot to inject #malware into a #printer, then I'd say there's something extremely bad in the firmware.

And when that potential attack vector is being used as an excuse to FORCE users to only use HP ink cartridges and make the printer non-functional (potentially bricking it) if you use third-party cartridges, that even makes it way worse. Those are printers customers HAVE BOUGHT. NONE agreed to a rental service.

But wait, there's more! HP wants to provide ink cartridges via a subscription service.

This is basically #hardware #enshittification.

If I ever need a new printer ... it's gonna be an Epson or Brother, I think. I dunno yet, lots of research will be needed, to check how the Linux support will be.

https://arstechnica.com/gadgets/2024/01/hp-ceo-blocking-third-party-ink-from-printers-fights-viruses/

#righttorepair

Lurer litt på hvordan det er å være Jonas Gahr Støre nå om dagen. I løpet av litt over 2 år har ...

- 6 statsråder vært nødt til å gå av
- 1 statsråd stilles det fortsatt spørsmål om hvorfor hun fortsatt sitter (Brenna)
- 1 statsråd hvor situasjonen fortsatt undersøkes (Mehl)
- 1 statsråd som kjemper om troverdigheten rundt sin utdannelse (Kjerkjol)

9 statsråder av 19 (hvis jeg har talt rett).

I tillegg kommer Gjelsvik saken ... Og sitter samtidig på følelsen av at jeg har glemt noen også ....

#allheimen #norge #politikk #nyheter

@forteller

Skal vi se ....

Hadia Tajik, Odd Roger Enoksen, Anette Trettebergstuen, Ola Borten Moe, Anikken Huitfeldt. Og nå Sandra Borch.

Tonje Brenna og Emilie Enger Mehl har så langt greid å unngå samme bane.

Støre-regjeringen begynte sin epoke 14. oktober 2021. Så langt 6 statsråder (av 19) på ca halvgått løp.