Skip to main content

Выпуск новой версии браузера Firefox 132
#Linux #opensource #firefox #линукс #линуксновости

Drafting a method for verifying new devices for #XMPP end to end encrypted chats.

This is a very early draft/brain dump, once a few people validates, it can be submitted to official review process.

#Matrix already implements cross signing and this makes encryption experience very smooth, but in XMPP using multiple devices in encrypted rooms is really a mess.

XMPP already have a concept of master key per identity defined in OpenPGP for XMPP. We can combine these two.

cryptpad.fr/pad/#/2/pad/edit/V…

#matrix #xmpp
in reply to Pirate Praveen

Kris
Kris

Very IMHO, but I think this is a bad idea. Both for practical and security reasons.

For the practical reasons: The issue people have with device based keys in OMEMO are largely a result of power users with many changing devices/clients, and regular users with primary one or maximum two devices don't have much problems with it. In Matrix the reverse is somewhat true... if you are a power user in Matrix and know how to add new devices and such, you don't see the extreme pain this convoluted key-sharing system causes casual webclient users that only sometimes use Element to check some public channels.

As for security: That the other side of a conversation can tell when you add additional devices and that you have to explicitly trust them is a huge security plus for OMEMO. Sure, that can get a bit inconvenient sometimes, but convenience should never trump security (although all too often it does, case in point: Matrix).

in reply to Kris

Pirate Praveen
Pirate Praveen

@kris Practical consideration: Only if you use public devices like a library you will have a problem. If it is only your personal device, you keep the device logged in, so you have to verify only once. I agree it is a different way from non end to end encrypted systems where you freely login and logout. But getting end to end encryption working by default justifies that inconvenience.

Security: You have a choice to verify the master key of a user or not. (1/2)

@Kris
in reply to Pirate Praveen

Pirate Praveen
Pirate Praveen
@kris If you want to verify each device (I'm fine with leaving that responsibility to each user) you still have that option by not verifying the master key. If there is no trust for master key, it won't trust any devices. You can even set the policy per contact. It is about trusting people to verify their own devices. (2/2)
@Kris
in reply to Pirate Praveen

Râu Cao ⚡
Râu Cao ⚡
Encrypted groups are generally a mess. That's why MLS was created. Hopefully we won't have to wait another 10 years until we can use it: nlnet.nl/project/XMPP-MLS/

Eine erneute Hinwendung zur bildenden Kunst erscheint indiziert, um die Potentialität visueller Ausdrucksformen mittels pigmentbasierter Medien im Kontext kunsttheoretischer Diskurse zu explorieren und somit zur Erweiterung ästhetischer Paradigmen beizutragen. Oder was?
Cartoon: Ein Landschaftsmaler sitzt in der Natur an seiner Staffelei und malt ein Bild. Er streckt die Hand aus, um diese typische Gestik zu machen, die Landschaftsmaler nun mal machen, wenn sie entfernte Größen und Proportionen der Landschaft anhand ihres Daumens oder Pinsels ermitteln. Allerdings malt er in diesem Fall seinen Daumen und den Pinsel auf seine Leinwand.

Rigel and the Witch Head Nebula

Image Credit & Copyright: Simone Curzi

apod.nasa.gov/apod/ap241031.ht… #APOD

#apod

Something spooky for the spooky season.

#academicchatter

Costumes to scare scientists: A person wearing a yellow box costume that has “A Grant Proposal Due Tomorrow” written on it saying: “I still need a GANTT chart.” A person wearing a round orange costume that has “Unaccounted-for Variable” written of it saying: “You can’t catch me!” A person wearing a rectangular blue costume that has “The unfinished manuscript” written on it saying: “It’s me your thesis!” A person wearing a square white costume that has “Reviewer 2” written on it saying: “You should be ashamed.” A person wearing a round green costume that has “P > 0.1” written on it saying: “I’m insignificant.” A person wearing a brown ghost costume that has “Your imposter syndrome made flesh” written on it saying: “They know!”
#AcademicChatter

A Map of the New Normal: How Inflation, War, and Sanctions Will Change Your World Forever by Jeff Rubin, 2024

Bestselling economist Jeff Rubin warns that the shock inflation of 2021 is the front of a perfect storm of war, supply-chain disruption, geopolitical realignment, domestic upheaval, and energy scarcity that will change everything.

@bookstodon
#books
#nonfiction
#economy
#inflation
#forecasts

During the pandemic, government deficits skyrocketed to record highs while central banks primed the printing presses—and the time has come to pay for it. The ramifications of international COVID-19 spending could potentially last for decades, and inevitably one of the first consequences will be that central banks will lose control of interest rates, and subsequently, growth and inflation targets. The genie will be out of the bottle. That is just the first symptom of a series of cascading upheavals. Supply-chain disruptions have already shown the vulnerability of the globalist model that has fueled growth for the past decades. War has not only shown the fragility of the status quo, but has revealed diplomatic and economic rifts...
#Economy #Inflation #Books #NonFiction #forecasts @bookstodon group

bookstodon group reshared this.

HEY #DUTCH people‼️ Do something about this!

> He has always felt he was being treated unfairly, but this was something else. “We had a Dutch chief engineer, he suffered a heart attack as I suffered a stroke, he was immediately airlifted. A helicopter took him to the shore in Florida to get immediate medical attention. Because he’s Dutch.”

rappler.com/newsbreak/in-depth…

We treat foreigners as human beings and equals (even in job) here in the Philippines, and this is how our own people are treated abroad⁉️ Let me guess, you treat animals far better, right?

💢👿

#Netherlands #Philippines #Filipino #Pilipino #Pilipinas #Inhumane #Slavery #Maltreatment @pilipinas @philippines

#Philippines #netherlands #slavery #dutch #Filipino #inhumane #pilipinas #pilipino #maltreatment @philippines group @Pilipinas / Philippines

I signed up for a google alert on my name a couple weeks ago to keep tabs on my User Mag launch and every day the alert brings me new gifts

Glyn Moody reshared this.

Connect the world.
Reflect the world.
Vivisect the world.

Fly Delta ✈️

Photo of a couple taken a photo shoot inside of a propeller for a plane. The girl is giving the pilot a kiss on the cheek, and the caption says, "Love is strong." Bottom photo, however, show the engine going with the caption, "But the engine is stronger."

reshared this

@UnarmedHeckler : "the purge: for 12 hours everything is legal, even murder me: so, like, everything including immigration violations? the purge: uh me: and export restrictions on encryption algorithms? the purge: thats not really me: and software piracy for sure right the purge: look,

Before industrial byte farming it was hard to get enough bits to go around...
An ad for 10MB of storage

Slovakia’s legislation serves as inspiration for other EU countries byteseu.com/525292/ #BarboraBalunová #BusinessFocus #Decarbonisation #Energy #ESG #legislation #LRPLawFirm #Slovakia
Slovakia’s legislation serves as inspiration for other EU countries
#energy #Slovakia #Legislation #esg #BusinessFocus #decarbonisation #barborabalunova #lrplawfirm

🎵 🎃 Where have we come, and where shall we end?
If dreams can’t come true, then why not pretend? 🎶 🍂

#halloween #otgw #cosplay

Me dressed as Wirt from over the garden wall for halloween
Me dressed as Wirt from over the garden wall side-view
#cosplay #halloween #otgw

Johanna Taylor 👻 🏠 reshared this.

dailykos.com/stories/2024/10/3…
in reply to frater chaos

Tom Grzybow
Tom Grzybow
The WaWaPo belongs at the bottom of your birdcage. Except for the cost, that is.

#Helloween was Besonderes?
Wenn ich die nationalen Ereignisse, Themen oder gar die internationale Politik und Spinner ansehe, leben wir doch inzwischen in einem konstanten Gruselfilm #Trump #Musk #Merz #Klima ….
#Klima #Merz #Trump #musk #helloween

How to Take Care of a Teacup Chihuahua

📝 "Common Pre-Commit Errors and How to Solve Them"

👤 Stefanie Molin

🔗 stefaniemolin.com/articles/dev…

#pyladies #python

#python #pyladies

📢 New GStreamer 1.24.9 bug-fix release for our stable 1.24 series!

Includes bug fixes, a security fix, stability improvements, memory leak fixes, and performance improvements.

Details at gstreamer.freedesktop.org/rele…

📦 Binary packages for Windows, macOS, iOS and Android are now available at gstreamer.freedesktop.org/down…

#GStreamer #Release #opensource #FreeSoftware #Multimedia

GStreamer logo with 1.24 version number
#opensource #gstreamer #freesoftware #release #multimedia
This entry was edited (1 month ago)

Ogenomtänkta nya vänsterpartier. Personer som uteslutits ur Vänsterpartiet helt i onödan och helt utan att det funnits anledning till det bildar nya vänstergrupper på löpande band. Fast de kallar dem partier och de ska alltid samverka med andra vänstergrupper folkrörelser och aktivister på en massa olika sätt.

blog.zaramis.se/2024/10/31/oge…

#Solidaritet #Enhetsfront #KommunistiskaPartiet #Ogenomtänkt #Sekterism #SocialistisktAlternativ #Vänsterpartier

Ab sofort ist #Thunderbird offiziell für Android verfügbar. Die Telemetrieübermittlung an »incoming.telemetry.mozilla.org«, die in der Beta-Phase noch enthalten war, ist nicht mehr aktiv. 👇

kuketz-blog.de/thunderbird-fue…

github.com/thunderbird/thunder…

#thunderbird #android

#android #Thunderbird
in reply to Mike Kuketz 🛡

strapinski
strapinski
Mozilla ist mir in den letzten Jahren zu oft falsch abgebogen, als dass ich ein etabliertes Programm wie FairEmail so schnell ersetzen würde. 🤷‍♂️
in reply to Mike Kuketz 🛡

chris_
chris_
erstmal möglichst vielean Bord holen, anschließend irgendwann mit einem Update Telemetrie einschalten...
bei Mozilla muss man ständig auf der Hut sein - keine Lust.