Auf YouTube findest du die angesagtesten Videos und Tracks. Außerdem kannst du eigene Inhalte hochladen und mit Freunden oder gleich der ganzen Welt teilen.
Chinese social media app RedNote, known in China as Xiaohongshu, gained nearly 3 million U.S. users in one day earlier this week as a flood of self-proclaimed "TikTok Refugees" joined, according to new data from analytics firm Similarweb.
The Chinese-language app had about 3.4 million daily active users across both iOS and Android devices in the United States as of Monday, up from fewer than 700,000 the day prior, and around 300,000 the week prior, according to the Similarweb estimate.
The influx of users has been driven by a looming U.S. ban on TikTok, used by 170 million Americans, on national security concerns.
The data suggests an even larger shift to RedNote by U.S. users this week than was previously known, explaining its dramatic rise to the top of U.S. app store download rankings. Reuters reported on Tuesday that more than 700,000 new users had joined the app in only two days.
Meanwhile, U.S. usage of TikTok declined ahead of the ban, down 2.1% week over week to about 82.2 million daily active users, Similarweb said.
Yes please everyone from the banned app move to an app that has a solid chance of being banned for the exact same reason. Unbelievably dumb but I guess we are talking about the tictok user base so I shouldn't be surprised.
That's the point? It's people signalling they're not dumb enough to believe the US's "national security" shit and would trust China's products over american ones like Meta or Xitter
Despite China history with the Uyghurs, child labor, and many other human rights violations and completely ignoring the fact that the people of China have a mile long list of apps they're not allowed to download and a longer list of things they're not allowed to speak about. These people sure know how to signal.
That's debatable but either way doesn't make it right. It's like everyone has decided they'll join the #1 oppressor of free speech in order to protest their own loss of free speech? I don't see how that makes any sense. If rednote becomes popular enough it will be covered by the same act that is allowing the ban of tictok. If people want to protest American companies then they should stop using them, and I mean completely. Nothing will speak louder than a missing user base.
Repression of hate speech is objectively a good thing. “Free speech” in our society is a dog whistle for allowing far right to spread conspiracy and lies without any repercussions. Western media heavily suppresses speech that cuts against their interests. Say “free luigi” on Facebook or instagram and see what happens. Say “free Palestine” on instagram and see what happens. Yet, literal fascists are allowed to (and even further spread by people like musk) to spread antisemitic conspiracies and objectively false and misleading pseudoscience without issue. Hundreds of left leaning journalists were banned on X in one day, for nothing more than being ideologically opposite to Elon Musk.
Put simply, the illusion of “freedom of speech” in the west is just that, an illusion. China does not suppress the majority of speech, they just don’t allow ideologues to sew conflict and falsehoods.
You are confusing free speech with private areas. You can absolutely go to the courthouse and scream "free luigi" All day long. You can't do it in someone else's business. Online spaces are someone else's business. Go to China and scream " free tiawan" and see what happens.
Then let’s talk about the brutal assault and suppression of the pro Palestinian protests last summer. On public property, assaulted by agents of the state, hundreds arrested and charged with felonies for speaking their mind, threatened constantly by public officials, laws made to criminalize criticism of the client state of Israel. Or the hundreds of journalists, veterans, and protestors assaulted for daring to speak out against the current regime during press conferences and rallies. Just today, multiple journalists were assaulted during a press conference with Blinken.
Yes indeed, the protests were peaceful. The violence against the protests by police and Zionists wasn’t though. In my own state, hundreds of protestors were arrested and charged with felony RICO law violations for soliciting donations to maintain the protest.
I agree, but it didn’t prevent them being charged with it, which got them off the campus and made them get legal help and bail money until eventually the charges were dropped. It was a transparent effort to charge them with anything/something heavy and scary just to get them off the street and into the legal system, sapping their time and energy.
You have lied about chinese and american child labor. You have lied about the amount of violent protests. You have lied about rico charges. Is there anything you say that's factually truthful? Is this what china supporters do?
I just did the math, there were around 3,800 child labor violations in america last year. There were 12 million in china. It must be hard being a wolf warrior diplomat and always being this wrong. Why can't you people chill out and leave the world alone?
Lmao. Sure there was. I’m sure you’re getting that data from a non biased source not aligned with American interests, right? There’s more than 3,800 child laborers in my state alone. In fact, they’re legally working much of the time. Many states have lowered the legal working age, and constant reports come out about children working in horrific conditions doing dangerous work such as slaughterhouses.
Auf YouTube findest du die angesagtesten Videos und Tracks. Außerdem kannst du eigene Inhalte hochladen und mit Freunden oder gleich der ganzen Welt teilen.
i need to figure out how to make the rick & morty "your boos mean nothing to me; i've seen what makes you cheer" meme more accessible somehow for this exact reason. lol
Honestly since I've learned about how the Chinese people seem to be taking it and really like the interaction with "us" I've been more interested in checking out weibo. That seems more similar to this and is more about communicating instead of pictures and videos of specific topics.
Just can't make an account for some reason lol keep getting errors in Chinese even though I'm using the international site lol
A crowd sourced encyclopedia is only as trustworthy as the editors that control the page. I wouldn't trust wikipedia for anything to do with geopolitics or current affairs any more than I would trust any other mainstream media source.
Auf YouTube findest du die angesagtesten Videos und Tracks. Außerdem kannst du eigene Inhalte hochladen und mit Freunden oder gleich der ganzen Welt teilen.
The consent machine is pulling triple shifts to convince people this is dangerous, and some people even on this site have so thoroughly doomer-pilled themselves that they can't see the positives. I've been on there a lot this week and there is a real cultural exchange taking place, a lot of people asking questions about what it's really like to live in each country. Just in my little slice I've seen dozens of comments from USians expressing that they are surprised to learn the reality of life in China and that they feel they have been deliberately mislead.
I'll look around to see if I can find those show segments online, but as for 'are they panicking?', mass media has a vested interest in influencing public opinion (that's effectively the only reason a private business bothers with news) and therefore control over public opinion. If the people who own the show and the channel give orders, the writers and actors probably won't risk getting fired. (oh, and obligatory quick clip to demonstrate what ownership looks like, for those who haven't seen it: )
So, with that in mind, recall the reactions of almost all mass media to the UnitedHealthcare assassination: consistent critique and denouncement. Surely this wasn't how all the news anchors felt, given how positive general opinion was! The people with ownership and executive power over these media channels obviously don't want the idea of citizens shooting the dangerously rich and
... show more
I'll look around to see if I can find those show segments online, but as for 'are they panicking?', mass media has a vested interest in influencing public opinion (that's effectively the only reason a private business bothers with news) and therefore control over public opinion. If the people who own the show and the channel give orders, the writers and actors probably won't risk getting fired. (oh, and obligatory quick clip to demonstrate what ownership looks like, for those who haven't seen it: )
So, with that in mind, recall the reactions of almost all mass media to the UnitedHealthcare assassination: consistent critique and denouncement. Surely this wasn't how all the news anchors felt, given how positive general opinion was! The people with ownership and executive power over these media channels obviously don't want the idea of citizens shooting the dangerously rich and powerful to get popular, so we saw their ideas echoed in all the news.
Compare that to here: media channels outside of China don't really want that counter-narrative to gain traction. It goes against their inherent interest of influencing public opinion, it's a competitor which all the biggest media companies can agree to call bad news. So I have no doubt this unexpected and surprising turn would make them panic.
edit: the clips I found from Colbert and The Daily Show were a surprisingly mixed bag. For example, this Daily Show clip comes off more as a satirical jab at the US than any panic.
Auf YouTube findest du die angesagtesten Videos und Tracks. Außerdem kannst du eigene Inhalte hochladen und mit Freunden oder gleich der ganzen Welt teilen.
This is the first time americans are talking directly to chinese people en masse like this, no? The state department must be scrambling to get things in order. I don't think they expected the ban to backfire this bad lol
Wonder how long it'll last before it's closed off.
I guess I should look at all the foreigners who think the US is some lawless wasteland and not be surprised Americans have similar misconceptions about other nations.
Chinese Rednote users actually seem to have a relatively utopian view of the US. I'm seeing alot of posts asking if it's true that most Americans can afford to own a house and being corrected by americans in the comments; stuff like that.
Also they really like Luigi Mangione lol, even before americans came into the app.
When you consider the school shootings, mass shootings, insane medical debt, and the fact that we have 8x the traffic fatality rate per capita of many developed nations, etc, I don't blame people for seeing the US as being a lawless dumpster fire.
If you disagree, next time you are out driving try to estimate how many drivers actually follow the law (drive below the speed limit, stop at crosswalks, slow down even more when visibility is poor or there are pedestrians or children nearby, etc).
Also, how many people drive small cars that are cleaner and safer for our communities vs giant Wankpanzers? People who are willing to make our cities more polluted and more dangerous for everyone overall just to make themselves slightly safer are morally bankrupt even if they technically follow the law they don't value the spirit of the law.
He is clearly an American, as he used "we" in the first paragraph talking about Americans.
This is a classic case of Americans thinking they are a uniquely big and culturally diverse country, despite the fact there are a number of countries that are bigger(including mine), and the US is not culturally diverse at all compared to many, many other countries(including mine).
Scepticism is great but don't forget Rednote and all other Chinese media is very restricted. Guaranteed you will always see only what the Chinese government wants you to see and anything critical of Chinese and especially it's government will be removed almost if not instantly.
Link me to a single Chinese article critical of the Chinese government or Xi? I'm always willing to reconsider but if what you say is the case then why the Chinese censorship? There's too much to explain it all away by saying it's all propaganda.
Or better yet have a conversation with someone on Rednote about anything painting the Chinese government in a negative light and let's see it . Snap a screen shot.
For many Chinese, this is also their first time talking to Americans. There are a ton of stories of them asking us if school shootings and medical bankruptcy are real or if it is just CCP anti-US propaganda. It is gut wrenching when we have to tell them that all the terrible things they have heard about the US are not only true, but worse than they imagine
While those things are bad, is anyone asking Chinese people if they're actually putting Uyghurs in concentration camps and forcibly sterilizing them or is that just propaganda from the rest of the world?
If the question didn't get removed completely, they would likely face punishment for answering.
It's less about intelligence, implying some innate talent or skill, and more about indoctrination and education, but I agree with the sentiment we are ill prepared for the recurring challenges we keep inflicting on ourselves.
There's a lot of evidence out there from American journalists that the Chinese are in fact, not forcing sterilization on the Uighur population or putting them in concentration camps. medium.com/@braisedporkblog/de…
That's China. They censor everything that could be viewed as an attack on something. Regardless of its veracity. It's something the west doesn't understand. They're not censoring to hide something, they just censor regardless.
You're using an ad hominem fallacy by saying the messenger is the problem and not refuting the evidence itself.
The USA is banning tiktok because it can't control the platforms messaging in case misinformation is being spread in the USA. Why is it that China can't also control the spread of this misinformation? Feels like you might be a chauvanist 🤷♂️
If you asked an American if we use child labor they would say “of course not!” but we keep mysteriously finding kids in meat packing plants and auto manufacturing plants and farms and….
My point is that just because the average citizen doesn’t know about bad things doesn’t make the bad things non-existent.
The fear is ridiculous. Yes it's somewhat sanitised, all social media is sanitised. Shit even on lemmy large instances are going to remove a video of me showing how to inject heroin or, for a more moderate thing, explain how trans people can DIY hormones.
It is good when people from different cultures share stuff. It is good when state barriers break down and people see how we're all so similar at the end of the day.
Yes it’s somewhat sanitised, all social media is sanitised.
And it's all sanitized for good reason - the closest places to unsanitized, such as freespeechextremist, are literally just spambots, molesters, troll neo-nazis and people mechanically incapable of holding a conversation without bursting into nonsense screeds in all caps. Effectively, just the people no-one else wants to talk to.
As for the RedNote sanitizing, some of the ones I've seen newcomers getting tripped up on are rules which would make our local social media better. They seem aimed at countering grifters/influencers, sexualization for popularity (not being a prude, rather, there are plenty of other places for that content) and similar negative trends associated with TikTok.
Democrats had tried on Wednesday to pass legislation that would have extended the deadline, but Republican Sen. Tom Cotton of Arkansas blocked it. Cotton, chair of the Senate Intelligence Committee, said that TikTok has had ample time to find a buyer.
“TikTok is a Chinese Communist spy app that addicts our kids, harvests their data, targets them with harmful and manipulative content, and spreads communist propaganda,” Cotton said.
President Joe Biden won’t enforce a ban on the social media app TikTok that is set to take effect a day before he leaves office, a U.S. official says. That leaves TikTok's fate in the hands of President-elect Donald Trump.
Never forget the broad bipatisan support for blind support of the genocide being carried out by Israel. The current Republican party is definitely the worse of the two, but it's small margins. The Democrats, with a few exceptions (that I'm sure would be Independents if there was actually any point to that in the American electoral system,) only barely qualify as liberal these days. They keep shifting further right to try and capture some of the less rabid "disenfranchised" republican voters. End of the day this is doing damage to American democracy too.
I just checked it out today and it seems like at least a third of the active users are american. I'm sure that will die down some after the curiosity dwindles but there is absolutely a massive surge of English speakers on there.
Most of the activity is in the comments. Lots of culture shock happening as I type this.
It's surprisingly easy to agitate over there, being a leftist on the western internet and especially reddit is like training your arguing skills in a high-gravity environment. I'm accustomed to maneuvering around such unrelenting hostility that the friendliness of rednote is shocking to me.
It honestly sounds a lot like Hexbear. Made a rednote account today, but I've never used tiktok or instagram before, so the entire thing was kinda inscrutable for me lol, but I'm so glad that this is where the tiktok exodus is heading.
Most of the English speakers on Lemmy post Five Eyes propaganda. They don’t mean to, they just don’t know any better. It’s all they’ve ever known. I try to point them toward developing real media literacy.
But why would any legitimate app ask for a permission for which there is practically no legitimate use? I thought Rednote was a social media thing, not a Caller application, so why does it need to make and manage phone calls on my behalf?
What else is it doing that it doesn't need to ask permissions for? Please think critically.
And yes before someone mentions It, yes this can be used for getting a phone number automatically, but It can just prompt for my phone number (which it doesn't need anyway, unless you post), no legitimate need to ask for such a broad permission.
More to the point, why tf are y'all so chill about this? Surely this is like literally a sign of malware 101? Like I'm only a compsci & cybersec grad so what do I know, but this to me is equivalent to opening "not a virus.exe" from "veryrealmoviedownload.com". Literally first malware I got as a kid on Android was like this.
I thought awareness of this was pretty commonplace. The below image is literally a Facebook-tier meme that even grampa probably knows.
... show more
But why would any legitimate app ask for a permission for which there is practically no legitimate use? I thought Rednote was a social media thing, not a Caller application, so why does it need to make and manage phone calls on my behalf?
What else is it doing that it doesn't need to ask permissions for? Please think critically.
And yes before someone mentions It, yes this can be used for getting a phone number automatically, but It can just prompt for my phone number (which it doesn't need anyway, unless you post), no legitimate need to ask for such a broad permission.
More to the point, why tf are y'all so chill about this? Surely this is like literally a sign of malware 101? Like I'm only a compsci & cybersec grad so what do I know, but this to me is equivalent to opening "not a virus.exe" from "veryrealmoviedownload.com". Literally first malware I got as a kid on Android was like this.
I thought awareness of this was pretty commonplace. The below image is literally a Facebook-tier meme that even grampa probably knows.
Are y'all just that desperate for a win? Sorry, good things don't actually happen in our hell world.
Is this a normal thing for apps to do these days? I don't use any other SM apart from Lemmy and only F-Droid FOSS apps so i'd legitimately like to know. Does tiktok also prompt for making and managing phone calls?
Basically every mainstream social media apps do want your contacts these days, yes. Obviously bad for OPSEC so you should avoid them if you're worried about that even after blocking those permissions.
"Contacts" is a very very different permission from making and managing phone calls, and is prompted for separately.
The former harvests data, the latter can be used to steal money directly via the same mechanism we used to text numbers to buy ringtones and J2ME apps back in the day.
Now I'm not saying that Rednote is definitively malware and I actually kinda like some of the content I saw, which I couldn't say for TikTok (I'm way too ADHD for short form videos, it's very unstimulating), but maybe just keep it in mind.
Rednote isn't tik tok. You'll absolutely be monitored on there. That's an implicit agreement for all Chinese apps that has Chinese citizens as users. In fact they do what US government keeps accusing tik tok of but tik tok doesn't do. If your worried about the Chinese government getting your info, absolutely do not use rednote. It wasn't made for you to begin with. Accusing them of doing what they promised they would do however is a bit strange to me.
Not for me but seems like a win overall? People are generally far less willing to hurt/fight people they know well compared to some nebulous concept of a nation. If American and Chinese people get to know eachother in a social setting it can only be a good thing.
If you only remember two things about the government pressure campaign to influence Mark Zuckerberg’s content moderation decisions, make it these: Donald Trump directly threatened to throw Zuck in …
“If I have one message to give to the secular American people, it’s that the world is not divided into countries. The world is not divided between East and West. You are American, I am Iranian, we don’t know each other, but we talk together and we understand each other perfectly. The difference between you and your government is much bigger than the difference between you and me. And the difference between me and my government is much bigger than the difference between me and you. And our governments are very much the same.”
The US government has imposed sanctions on the head of Sudan's army and de facto president, Gen Abdel Fattah al-Burhan, the treasury department said.
He has been leading one of the two sides in the 21-month civil war that has killed tens of thousands, uprooted over 12 million and pushed the country to the brink of famine.
In a brief statement, the US accused Gen Burhan of "destabilizing Sudan and undermining the goal of a democratic transition".
I was recently intrigued to learn that only half of the respondents to a survey said that they used disk encryption. Android, iOS, macOS, and Windows have been increasingly using encryption by default. On the other hand, while most Linux installers I've encountered include the option to encrypt, it is not selected by default.
Whether it's a test bench, beater laptop, NAS, or daily driver, I encrypt for peace of mind. Whatever I end up doing on my machines, I can be pretty confident my data won't end up in the wrong hands if the drive is stolen or lost and can be erased by simply overwriting the LUKS header. Recovering from an unbootable state or copying files out from an encrypted boot drive only takes a couple more commands compared to an unencrypted setup.
But that's just me and I'm curious to hear what other reasons to encrypt or not to encrypt are out there.
... show more
I was recently intrigued to learn that only half of the respondents to a survey said that they used disk encryption. Android, iOS, macOS, and Windows have been increasingly using encryption by default. On the other hand, while most Linux installers I've encountered include the option to encrypt, it is not selected by default.
Whether it's a test bench, beater laptop, NAS, or daily driver, I encrypt for peace of mind. Whatever I end up doing on my machines, I can be pretty confident my data won't end up in the wrong hands if the drive is stolen or lost and can be erased by simply overwriting the LUKS header. Recovering from an unbootable state or copying files out from an encrypted boot drive only takes a couple more commands compared to an unencrypted setup.
But that's just me and I'm curious to hear what other reasons to encrypt or not to encrypt are out there.
[completed] Working on a project and a survey about GNU/Linux security. Survey results in post.
~~i have created a short questionnaire, regarding how GNU/Linux users secure their system. if you are somewhat knowledgeful on this topic and willing to share, i would appreciate if you would fill out my questionnaire~~
okay, so, my research is finished. here are the results:
The "other" distributions include: NixOS (8x), Gentoo (4x), Slackware (1x), Void Linux (1x) or a combination of multiple distributions
I have and I've concluded that I'm not made of money and therefore can't afford to have multiple terabyte drives just lying around with redundant data just in case.
If I could afford it, then I wouldn't have been resizing my '/' partition to free up 80GB of space.
I used to, but it's proven to be a pain more often than a blessing. I'm also of the opinion that if a bad actor capable of navigating the linux file system and getting my information from it has physical access to my disk, it's game over anyway.
I'm also of the opinion that if a bad actor capable of navigating the linux file system and getting my information from it has physical access to my disk, it's game over anyway.
I am sorry but that is BS. Encryption is not easy to break like in some Movies.
If you are referring to that a bad actor breaks in and modifies your hardware with for example a keylogger/sniffer or something then that is something disk encryption does not really defend against.
That's more what I mean. They won't break the encryption, but at that point with physical access to my home/ computer/ servers, I have bigger problems.
There's very little stored locally that could be worse than a situation where someone has physical access to my machine.
I don't want to say where I live for anonymity reasons, but I will note that it's fairly standard for political dissidents to be raided by any government so it doesn't actually particularly narrow down my location.
I keep backups (regular, incremental, remote) to keep my data safe in case something happens to my local data. This protects me from things like theft, hardware failure, accidental deletion of some important files. Having multiple generations (daily, weekly, monthly) will protect me when I delete some files and only realize weeks later.
All of this is a separated issue to having encryption or not. I encrypt both local and backup copies, and store the keys in a password manager.
See what works for you, but don't confuse the issues.
All my important files are on a NAS, so if someone steals my laptop, there's nothing of value there without being able to log in and mount the remote file systems
I understand that giving the keys can partially solve the access problem. But she would still possibly be unable to use the device. Additionally, I don't know that she would be capable of using the keys without additional assistance and we don't have other techies in our community who could step up in that capacity.
It is the largest reason. Storing the password is one thing but to make the device reasonable to use I would likely store the key's in TPM with a backup key. I don't think she would be technical enough to use the backup keys were something additional to happen.
I get it. Credential storage and recovery is a big issue. People vary in skill, ability to keep track of keys or remember how to use them, and they may not have a password manager, safe deposite box, or other locked storage to store them in.
Yes. Encrypting your entire hard drive has basically been a tickbox in the Fedora installer for a long time now. No reason why I wouldn't do it. It's, easy, doesn't give me any problems and improves my devices security with defence-in-depth. No brainer.
It’s a smidge more difficult on Debian if you want to use a non-ext4 filesystem - granted for most people, ext4’s probably still fine. I use it on my desktop, which doesn’t have encryption.
I’m using LVM. The BIOS solution would be a bad idea because it would be more difficult to access the drive on other systems if you had to; LVM allows you to enter your password on other systems to decrypt.
Honestly... Why bother? If someone gains remote access to my system, an encrypted disk won't help. It's just a physical access preventer afaik, and I think the risk of that being necessary is very low. Encrypted my work computer because we had to and that environment also made it make more sense, I technically had sensitive customer info on it, though I worked at Oracle so of course they had to make it as convoluted and shitty as possible.
You're somewhat right in the sense that the point of disk encryption is not to protect from remote attackers. However, physical access is a bigger problem in some cases (mostly laptops). I don't do it on my desktop because I neither want to reinstall nor do I think someone who randomly breaks in is going to put in the effort to lug it away to their vehicle.
If someone can execute arbitrary code on my computer, it doesn't matter that the disk is encrypted, because I've already booted the machine up and entered the key. I'm certainly not the most cryptographically knowledge but using LUKS on Oracle Linux, I'd enter the key once while starting up, past that point there was no difference between an encrypted and unencrypted system. It seems logical to me, then, that if something can execute arbitrary code, it's after that point, so encryption won't matter to it. Encryption is more of a solution to someone physically obtaining your hard drive and preventing them from having access to the contents simply by plugging it into their system.
Or at least that's my understanding, please correct me if I'm mistaken.
Well, I think you already mentioned the key thing about encrypting disks. It's not about protections when the block device is already decrypted and the filesystem already mount. At that point your disks are decrypted and anyone with or without physical access to your device, if gaining any access to it you're toast. That's true, but that's not what disks encryption help you with, and you already mentioned. If you turn off your device, and someone steals it, or gains access to it, they can't look at your contents, that's it. That wouldn't prevent malicious people, to instead plant something through UEFI for example, and you are right about that case. And if you never turn off your computer, and just do sleep to memory, then you depend on how strong your password is, or any other authentication mechanism you have...
It's just too easy not to, and there's almost no downsides to it. (I only need to reboot, once a month or two.)
Well, unless you consider the possibility of forgetting the password a downside, so for that reason I keep the password in a password manager.
In case my laptop was stolen, there would quite a couple fewer things to worry about. Especially things like client's data which could be under NDA's, etc...
I have no significant private data on my disks. They can be wiped whether encrypted or not if they're stolen. And I like that in theory if my pc explodes I can recover the data with only the drive.
TBH even the way you phrased your question kind of proves it's orthogonal. Yes, you can have the full matrix:
encrypted | backed up
----------|----------
no | no
no | yes
yes | no
yes | yes
In each case, you have a different set of problems.
Encrypting a particular medium only means that it's going to be harder to gain access to the data on that medium (harder for everyone, but trillions of less harder for someone who knows the password.
That's regardless of whether you also have a backup.
Backing up just means that a copy of the data exists somewhere else.
That's regardless of whether this or the other copy is encrypted.
Sure, eventually, the nature of your data's safety will be affected by both.
Disclaimer: I'm by no means a security expert, don't take what I write here as advice!
Eg. I encrypt my disks. When I do, I basically encrypt everything, ie. all partitions (except /
... show more
TBH even the way you phrased your question kind of proves it's orthogonal. Yes, you can have the full matrix:
encrypted | backed up
----------|----------
no | no
no | yes
yes | no
yes | yes
In each case, you have a different set of problems.
Encrypting a particular medium only means that it's going to be harder to gain access to the data on that medium (harder for everyone, but trillions of less harder for someone who knows the password.
That's regardless of whether you also have a backup.
Backing up just means that a copy of the data exists somewhere else.
That's regardless of whether this or the other copy is encrypted.
Sure, eventually, the nature of your data's safety will be affected by both.
Disclaimer: I'm by no means a security expert, don't take what I write here as advice!
Eg. I encrypt my disks. When I do, I basically encrypt everything, ie. all partitions (except /boot). Then on those partitions, most of the data is not worth backing up since it's either temporary or can be easily obtained anyway (system files). Well, some of the data is backed up, and some of that even ends up on disks that are not encrypted (scary, I know!) :)
To be fair, just encrypting the disks does not solve all. If someone broke to my house, they would with almost 100% chance find my computer on, which means that the disks are not encrypted (technically still are, just that LUKS provides unencrypted versions as well..) So the barrier they would have to face would be basically just the desktop lock.
For that reason I don't encrypt hard drives on my remote server, since the server is always running in a virtual environment so by definition anyone who's maintaining the hardware can already open files from the unencrypted drives, ie. I think it would be pointless.
If you are well-versed in the guts of the distro (grub, /etc/fstab, /etc/crypttab...), and have extra space, you could spend part of your weekend shifting partitions around and moving everything to the encrypted side, and eventually re-configuring your install and removing the old part. (Oh and don't forget to chown your /home data if you have multiple users.) I've been there, it's not fun. It's fun[tm]. It's just far easier and less error prone to re-install if you can.
(Yeah, I'm stretching the definition of "enabling it" reeealy thin here... 🙃 )
My drives are not encrypted because it's a hassle if things start going wrong. My NAS is software raid so the individual disks mean nothing anyway. The only drive that is encrypted is my backup disk and I'm not really sure if it was needed.
If your drive starts malfunctioning, then without encryption you might be able to read some sectors and recover a few things. With encryption you are SOL.
I just encrypt devices that leave the house. I do have access to a hard drive crusher if I lose a drive (recently crushed a tablet that wouldn't power on)
My issue is that I can never remember "a couple more commands" for the life of me. And I use Arch BTW, so the likelihood of me needing those is a bit higher than usual.
I mean yes... but realistically no. Also the risk of data loss at that point is high. you will miss things. the best approach would be to make a proper backup reinstall and put the data back.
This was a few drives ago but there was a point in time when most places were giving me digital copies of tax documents which I could upload to tax prep software but things like TurboTax didn’t have an auto import. So you’d need to download them then re-upload them to the correct service. Now they do it automatically so the only thing that would match that now now is receipts for expenses/donations and what not that I need to keep track of for manual entry.
Fair. If you have access to a crusher then maybe I can see not encrypting. But even then with non encrypted drives files can be recovered even after deleting etc.
Ah lol sure. It depends on what level of state repression you're looking at. Regular cops will just not bother trying to decrypt a drive if they don't have the password and you don't freely give it up (you have the right to refuse to provide a password here, it's under the same kind of principle as having the right to not incriminate yourself), but I'm sure military intelligence etc will go to the wrench technique. Also deniable encryption for anything particularly sensitive is good for the old wrench technique.
I wanted to but everyone on Lemmy told me I was an idiot for wanting a feature Mac and Windows have had for a decade (decrypt on login) .
But seriously it's just not there on Linux yet. Either you encrypt and have two passwords, or give up convenience features like biometrics. Anything sensitive lives somewhere else.
Clevis pretty much does TPM encryption and is in most distros' repos. I use it on my Thinkpad. It would be nice if it had a GUI to set it up; more distros should have this as a default option.
You do have to have an unencrypted boot partition, but the issues with this can at least in be mitigated with PCR registers, which I need to set up.
(Note: Anything I say could be B.S. I could be completely misunderstanding this.)
Clevis isn’t too difficult to set up - Arch Wiki documents the process really well. I’ve found it works better with dracut that mkinitcpio.
As for PCR registers (which I haven’t set up yet but should), what I can tell, it sets the hash of the boot partition and UEFI settings in the TPM PCR register so it can check for tampering on the unencrypted boot partition and refuse to give the decryption keys if it does. That way, someone can’t doctor your boot partition and say, put the keys on a flash drive - I think they’d have to totally lobotomize your machine’s hardware to do it, which only someone who has both stolen your device and has the means/budget to do that would do.
You do need to make sure these registers are updated every kernel update, or else you’ll have to manually enter the LUKS password the next boot and update it then. I’m wondering if there’s a hook I can set up where every time the boot partition is updated, it upd
... show more
(Note: Anything I say could be B.S. I could be completely misunderstanding this.)
Clevis isn’t too difficult to set up - Arch Wiki documents the process really well. I’ve found it works better with dracut that mkinitcpio.
As for PCR registers (which I haven’t set up yet but should), what I can tell, it sets the hash of the boot partition and UEFI settings in the TPM PCR register so it can check for tampering on the unencrypted boot partition and refuse to give the decryption keys if it does. That way, someone can’t doctor your boot partition and say, put the keys on a flash drive - I think they’d have to totally lobotomize your machine’s hardware to do it, which only someone who has both stolen your device and has the means/budget to do that would do.
You do need to make sure these registers are updated every kernel update, or else you’ll have to manually enter the LUKS password the next boot and update it then. I’m wondering if there’s a hook I can set up where every time the boot partition is updated, it updates PCR registers.
Correct, the hard disk in the laptop can not be read. This is where having a good backup strategy is important. Similar to how if your hard disk dies you're no longer able to access the material on the hard disk. For me, the downsides of encryption do not outweigh the benefits of having my data secure.
I enabled full disk encryption during OS installation, set up a secure passphrase, and then set up automated encrypted backups to my home server, which are automatically backed up to a remote server.
I gain peace of mind in knowing that if my laptop is stolen I'm only out the cost of the laptop, the data within is still safe and secure.
I don't encrypt my entire drive, but I do have encrypted directories for my sensitive data. If I did encrypt an entire drive, it would only be the drive containing my data not the system drive.
Asahi Linux doesn't support encryption and getting it to work requires a lot of steps and that I reinstall it which I don't have time for, so I don't have it enabled on my laptop, and if it gets stolen or confiscated I'm fucked.
I made the mistake of not setting up encryption on my main 45TB zfs pool so I'm currently backing up everything on there to tape so I can recreate the pool (also need to change from mirrored to raidz) and then copying everything back to the drives. Although writing and reading each are around 6 days continuesly. Didn't want to bite the bullet and pay more then I absolutely had to and only got a LTO-4 drive and tapes.
They don't need to guess the password. If you don't have full disk encryption I can just run another os in live mode and mount your drive and read everything. And even change the password to your fedora, by changing the hash in shadow file
Most mobile/laptop devices should be encrypted by default. They are too prone to loss or theft. Even that isn't sufficient with border crossings where you are probably better off wiping them or leaving them behind.
My desktop has no valuable data like crypto, sits in a locked and occupied house in a small rural community with relatively low crime (public healthcare, social security, aging population). I have no personal experience of property theft in over half a decade.
I encrypt secrets with a hardware key. They are only accessed as needed. This is a much more appropriate solution than whole disk encryptiom for my circumstances. Encrypting Linux packages and steam libraries doesn't offer any practical benefit and unlocking my filesystem at login would not protect from network exfiltration which is a more realistic risk. It adds overhead.and another point of failure for no real benefit.
No, I don't encrypt. I am a grown ass man and I rarely take my laptop out of my home. I don't have any sensitive data on my various machines. I do use secure and encrypted cloud services to store things that I consider a security risk. Everything else is useless to a potential intruder.
I don't do deniable encryption on my root drives, just on external drives, and store the headers on my (non-deniably encrypted) computers. But if you want to deniably encrypt your root drive, Arch Wiki has some info:
You would still ultimately need an unencrypted header somewhere in order to boot your computer, so if it's your main daily computer you'd likely carry around the USB stick all day and therefore it wouldn't work against a state adversary who would obtain the USB stick with your header when they arrest you, if it's on your person.
Also, it's much more plausible that an external drive is genuinely just random data with no encrypted contents than that the drive installed into a computer has no data. I do have some USB sticks etc with genuinely nothing on them because I wiped them with /dev/urandom at some point, and they're lying around waiting for me to need an
... show more
I don't do deniable encryption on my root drives, just on external drives, and store the headers on my (non-deniably encrypted) computers. But if you want to deniably encrypt your root drive, Arch Wiki has some info:
You would still ultimately need an unencrypted header somewhere in order to boot your computer, so if it's your main daily computer you'd likely carry around the USB stick all day and therefore it wouldn't work against a state adversary who would obtain the USB stick with your header when they arrest you, if it's on your person.
Also, it's much more plausible that an external drive is genuinely just random data with no encrypted contents than that the drive installed into a computer has no data. I do have some USB sticks etc with genuinely nothing on them because I wiped them with /dev/urandom at some point, and they're lying around waiting for me to need an unused USB drive. The average person doesn't have an "unused computer" with nothing on it, just random data on the drive. Especially if you are an activist/organiser, if the state finds your computer with just pure random data on it and no encryption header I think they will assume it is deniably encrypted.
I do on all my devices that can as a matter of practice, not for any real threat. I'm interested to learn about how to set it up and use it on a daily basis including how to do system recoveries. I guess it's largely academic.
Once I switched to linux as my daily driver, I didn't have a need to do piracy anymore since all the software I need is FOSS.
I do encrypt my drives, and it’s not as transparent in Linux as it is in the others. I’m sure I could get a TPM setup for seamless boots, but I haven’t done that yet.
For mobile drivers, I still encrypt, but that locks them to one OS since LUKS isn’t cross platform. There is VeraCrypt for cross-platform encryption, but that’s one more thing to manage and install.
Yep. Everything except my server, which needs to be able to boot without my help. Because why not? I rarely ever reboot anything, so it doesn’t really hurt, and if anyone steals my shit they won’t get my wife’s noods.
I don't encrypt because it's too much effort to learn about it.
Id rather keep my filesystem unencrypted so that I can easily recover from problems and encrypt important files as needed, but let's be real I don't do that either.
For my laptop, yeah. I rarely actually use it though. For my desktop not so much. I really don't keep that much personal information on it to begin with, and if someone breaks into my house they could probably get more by stealing the desk my computer is sitting on then by stealing the computer. It just feels like a silly thing to waste my time with.
But yea this is just a drop in the bucket. Every person I talk to in America has this warped view of China. The propaganda here is quite effective, cause even people who call themselves apolitical or barely know anything can recite anti-china talking points
"Travel is fatal to prejudice, bigotry, and narrow-mindedness, and many of our people need it sorely on these accounts. Broad, wholesome, charitable views of men and things cannot be acquired by vegetating in one little corner of the earth all one's lifetime." -Mark Twain
I am working on getting all of the information off of Facebook before I delete it forever. I used Tagged Photo Exporter to get all of tagged photos off of Facebook but I can't get videos I am tagged in to download.
After doing lots of googling I found lots of different websites that were suppose do this for me but none of them work. They either don't work or download the same incorrect video. I have tried using the mbasic techniques to get a "Save as" template that is not working. Anyone have any luck getting this done recently? I assume Facebook is trying to make this more difficult since people are flocking off of the site. These are videos I uploaded but rather those I am tagged in.
Of course I figured out an okay solution right after posting it.
I had save all of the Facebook videos to find them on the mobile app. From the mobile app I had to open the video and find the share link. I then had to copy this link into my web browser and click on it. This lets me download the file onto my phone which I then had to upload to a cloud storage which I am now downloading back to my computer. What a pain in the ass.
Yeah. The Facebook official method does not download photos or videos you are tagged in. They only allow you to download things you uploaded. So if you are like me and didn't upload any photos but were tagged by others it downloads nothing.
What is this yt-dlp? I have seen it mentioned without any links or information about how to use it. Quick searches shows it as some kind of CLI?
yt-dlp is a CLI program for downloading videos from an absurd number of sites. Originally created for backing up Youtube videos, but has expanded to cover thousands of sites over the years.
Thanks. I joined when you needed an .edu email address so I enjoyed for in college before it got terrible. I have stopped looking at it for years so figured it's time
Same with me. I have a friend who lives overseas so our group chat is via Whatsapp. So that might stay for a while but Facebook and Instagram are going to be deleted as soon as I get everything I need from them
The big question I have is "is there a way to bulk request removal of all photos I'm tagged in". I can't currently think of a better way than messaging everyone who uploaded them, hoping they might still use Facebook and see my message, and then hoping they're happy to delete the photos!
No, haven't you heard? There is an agreement in place to switch the genocide back to ethical slow-starvation by food import restrictions because-we-don't-like-who-you-elected 25 years ago. People were prasing Israel's restrain back when they geocided the slow way. Only had problems when the sped it up.
davel
in reply to ☆ Yσɠƚԋσʂ ☆ • • •☆ Yσɠƚԋσʂ ☆
in reply to davel • • •