eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Server stats:

210
active users

#techilliterate

0 posts0 participants0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@stman" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>stman</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@Sempf" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Sempf</span></a></span> <span class="h-card" translate="no"><a href="https://chaos.social/@LaF0rge" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>LaF0rge</span></a></span> yes.</p><p>Because physical SIMs, like any <em>"cryptographic chipcard"</em> (i.e. <span class="h-card" translate="no"><a href="https://social.nitrokey.com/@nitrokey" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nitrokey</span></a></span> ) did all that fancy public/private crypto on silicon and unless that was compromizeable (which AFAICT always necessistated physical access to the <a href="https://infosec.space/tags/SIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SIM</span></a>, espechally in pre-<a href="https://infosec.space/tags/OMAPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMAPI</span></a> devices) the SIM wasn't <em>'cloneable'</em> and the weakest link always had been the <a href="https://infosec.space/tags/MNO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MNO</span></a> /.<a href="https://infosec.space/tags/MVNO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MVNO</span></a> issueing (may it be through <a href="https://infosec.space/tags/SocialHacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SocialHacking</span></a> employees into <em><a href="https://infosec.space/tags/SimSwapping" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SimSwapping</span></a></em> or LEAs showng up with a warrant and demanding <em>"<a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LawfulInterception</span></a>"</em>):</p><ul><li>These <em>"attack vectors"</em> were known and whilst <em>unfixable</em> they could at least be mitigated by i.e. <em>NEVER</em> using a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumber</span></a> for anything <em>and/or</em> using anonymously obtained <a href="https://infosec.space/tags/SIMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SIMs</span></a>. But more and more services like <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> did <a href="https://infosec.space/tags/regression" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>regression</span></a> demanding <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> <em>and</em> more and more nations <em>criminalized</em> <a href="https://infosec.space/tags/AnonymousSimCards" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AnonymousSimCards</span></a> under utterly <a href="https://infosec.space/tags/cyberfacist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cyberfacist</span></a> &amp; <a href="https://infosec.space/tags/FalsePretenses" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FalsePretenses</span></a>!</li></ul><p>Add to that the <em>regression</em> in flexibility: </p><p>Unlike a <a href="https://infosec.space/tags/SimCard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SimCard</span></a> which was designed as a <em>vendor-independent, <a href="https://infosec.space/tags/MultiVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiVendor</span></a>, <a href="https://infosec.space/tags/MultiProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiProvider</span></a>, device agnostic unit to facilitate the the <a href="https://infosec.space/tags/authentification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>authentification</span></a> and <a href="https://infosec.space/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>encryption</span></a> in <a href="https://infosec.space/tags/GSM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GSM</span></a> (and successor standards)</em>, <a href="https://infosec.space/tags/eSIMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eSIMs</span></a> act to restrict <a href="https://infosec.space/tags/DeviceFreedom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DeviceFreedom</span></a> and <a href="https://infosec.space/tags/ConsumerChoice" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ConsumerChoice</span></a>, which with shit like <a href="https://infosec.space/tags/KYC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KYC</span></a> per <a href="https://infosec.space/tags/IMEI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMEI</span></a> (i.e. <a href="https://infosec.space/tags/Turkey" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Turkey</span></a> demands it after 90 days of roaming per year) und <a href="https://infosec.space/tags/lMEI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lMEI</span></a>-based <a href="https://infosec.space/tags/Allowlisting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Allowlisting</span></a> (see <a href="https://infosec.space/tags/Australia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Australia</span></a>'s shitty <a href="https://infosec.space/tags/VoLTE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VoLTE</span></a> + <a href="https://infosec.space/tags/2G" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>2G</span></a> &amp; <a href="https://infosec.space/tags/3G" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>3G</span></a> shutdown!) are just acts to clamp down on <a href="https://infosec.space/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> and <a href="https://infosec.space/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a>.</p><ul><li>And with <a href="https://infosec.space/tags/EID" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EID</span></a> being unique per <a href="https://infosec.space/tags/eSIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eSIM</span></a> (like the <a href="https://infosec.space/tags/IMEI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMEI</span></a> on top!) there's nothing stopping <a href="https://infosec.space/tags/cyberfacist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cyberfacist</span></a> regimes like <em>"P.R."</em> <a href="https://infosec.space/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>China</span></a>, <a href="https://infosec.space/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a>, <a href="https://infosec.space/tags/Iran" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Iran</span></a>, ... from banning <em>"<a href="https://infosec.space/tags/eSIMcards" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eSIMcards</span></a>"</em> (<a href="https://infosec.space/tags/eSIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eSIM</span></a> in SIM card form factor) or entire device prefixes (i.e. all phones that are supported by <span class="h-card" translate="no"><a href="https://grapheneos.social/@GrapheneOS" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>GrapheneOS</span></a></span> ), as M(V)NOs see the EID used to deploy/activate a profile (obviously they don't want people to activate eSIMs more than once, <em>unless explicitly allowed otherwise</em>.</li></ul><p>"[…] [Technologies] must <em>always</em> be evaluated for their ability to oppress. […] </p><ul><li>Dan Olson</li></ul><p>And now you know why I consider a <a href="https://infosec.space/tags/smartphone" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smartphone</span></a> with eSIM instead of two SIM slots not as a <em>real</em> <a href="https://infosec.space/tags/DualSIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DualSIM</span></a> device because it restricts my ability to freely move devices.</p><ul><li>And whilst German Courts reaffirmed §77 TKG (Telco Law)'s mandate to letting people choose their devices freely, (by declarong <a href="https://infosec.space/tags/fees" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fees</span></a> for reissue of eSIMs illegal) that is only <em>enforceable towards M(V)NOs who are in <a href="https://infosec.space/tags/Germany" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Germany</span></a></em>, so <em>'good luck'</em> trying to enforce that against some overseas roaming provider.</li></ul><p>Thus <a href="https://infosec.space/tags/Impersonation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Impersonation</span></a> attacks in GSM-based networks are easier than ever before which in the age of <em>more skilled than ever</em> <a href="https://infosec.space/tags/Cybercriminals" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybercriminals</span></a> and <a href="https://infosec.space/tags/Cyberterrorists" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberterrorists</span></a> (i.e. <a href="https://infosec.space/tags/NSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NSA</span></a> &amp; <a href="https://infosec.space/tags/Roskomnadnozr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Roskomnadnozr</span></a>) puts espechally the average <em><a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> User</em> at risk.</p><ul><li>I mean, anyone else remember the <a href="https://infosec.space/tags/Kiddies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kiddies</span></a> that <em>fucked around</em> with <a href="https://infosec.space/tags/CIA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CIA</span></a> director <a href="https://infosec.space/tags/Brennan" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Brennan</span></a>? Those were just using their <em>"weapons-grade <a href="https://infosec.space/tags/boredom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>boredom</span></a>"</em>, not being effective, for-profit cyber criminals!</li></ul><p>And then think about those who don't have <em>privilegued access</em> to <em>protection</em> by their government, but rather <em>"privilegued access" to prosecution</em> by the state <em>because their very existance is criminalized...</em></p> <p>The only advantage eSIMs broight in contrast is <em>'logistical' convenience</em> because it's mostly a <a href="https://infosec.space/tags/QRcode" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QRcode</span></a> and that's just a way to avoid typos on a cryptic <a href="https://infosec.space/tags/LocalProfileAgent" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LocalProfileAgent</span></a> link.</p>
Kevin Karhan :verified:<p><a href="https://infosec.space/tags/YouTube" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>YouTube</span></a> <a href="https://infosec.space/tags/ads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ads</span></a> are full of <a href="https://infosec.space/tags/scams" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>scams</span></a> and <a href="https://www.youtube.com/watch?v=J8J4icxoF0M" rel="nofollow noopener" target="_blank">questionable financial advice</a> by preying on <a href="https://infosec.space/tags/FinancialIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FinancialIlliterates</span></a> that are <a href="https://infosec.space/tags/HornyForMoney" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HornyForMoney</span></a>. </p><ul><li>Bonus points for <a href="https://www.youtube.com/watch?v=cmoAvcKGNwU" rel="nofollow noopener" target="_blank">grifting</a> with some <a href="https://www.kinderschutzkongress.com/" rel="nofollow noopener" target="_blank">alt-right exteme disinfo shitshow</a> with a <em>certified <a href="https://en.wikipedia.org/wiki/David_Icke" rel="nofollow noopener" target="_blank">conspiracy theorist</a></em> as listed speaker.</li></ul><p>Seriously, with all those <a href="https://www.youtube.com/watch?v=agfiFKxreUw" rel="nofollow noopener" target="_blank"><em>"Matrix" refernces</em></a> I wished the Wachowski Sisters or Village Roadshow Pictures or WB were to sue grifters like that.</p><ul><li>No wounder all the <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> <a href="https://infosec.space/tags/Normies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Normies</span></a> <a href="https://www.youtube.com/watch?v=P55t6eryY3g" rel="nofollow noopener" target="_blank">get <em>radicalized</em></a> when they get bombarded with such bs!</li></ul><p>Again: <a href="https://infosec.space/tags/AdBlocker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AdBlocker</span></a> are not just a necessity against <a href="https://infosec.space/tags/malvertising" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malvertising</span></a> and <a href="https://infosec.space/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a> but an act of <a href="https://infosec.space/tags/SelfCare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfCare</span></a> and <a href="https://infosec.space/tags/MutualDefense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MutualDefense</span></a> against <a href="https://infosec.space/tags/Disinformation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Disinformation</span></a> campaigns incl. <a href="https://infosec.space/tags/hatespeech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hatespeech</span></a>-based <a href="https://infosec.space/tags/propaganda" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>propaganda</span></a>.</p><p><a href="https://infosec.space/tags/ConspiracyTheorists" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ConspiracyTheorists</span></a> <a href="https://infosec.space/tags/ConspiracyTheory" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ConspiracyTheory</span></a> <a href="https://infosec.space/tags/GunnarKessler" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GunnarKessler</span></a> <a href="https://infosec.space/tags/DavidIcke" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DavidIcke</span></a> <a href="https://infosec.space/tags/Reactionary" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Reactionary</span></a> <a href="https://infosec.space/tags/Disinfo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Disinfo</span></a> <a href="https://infosec.space/tags/DEpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DEpol</span></a> <a href="https://infosec.space/tags/Finance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Finance</span></a> <a href="https://infosec.space/tags/FinanceBro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FinanceBro</span></a> <a href="https://infosec.space/tags/FinanceBros" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FinanceBros</span></a> <a href="https://infosec.space/tags/Grifter" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Grifter</span></a> <a href="https://infosec.space/tags/Grifters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Grifters</span></a> <a href="https://infosec.space/tags/NSAfD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NSAfD</span></a> <a href="https://infosec.space/tags/facism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>facism</span></a> <a href="https://infosec.space/tags/ScamAlert" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScamAlert</span></a> <a href="https://infosec.space/tags/PSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PSA</span></a> <a href="https://infosec.space/tags/OSINT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OSINT</span></a> <a href="https://infosec.space/tags/YouTube" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>YouTube</span></a> <a href="https://infosec.space/tags/Advertising" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Advertising</span></a> <a href="https://infosec.space/tags/YouTubeAds" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>YouTubeAds</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mstdn.io/@wolf480pl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>wolf480pl</span></a></span> <span class="h-card" translate="no"><a href="https://social.treehouse.systems/@cas" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cas</span></a></span> it's easy...</p><p>The reasons one can despise something and the reason one appreciates it can be different.</p><p>I.e. I can appreciate <a href="https://infosec.space/tags/macOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>macOS</span></a> for it's <a href="https://infosec.space/tags/accessibility" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>accessibility</span></a> right from the <a href="https://infosec.space/tags/installer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>installer</span></a> but I can <a href="https://infosec.space/tags/despise" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>despise</span></a> it for <a href="https://infosec.space/tags/Apple" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apple</span></a> not selling it as a commercial <a href="https://infosec.space/tags/Unix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Unix</span></a> distro for a <a href="https://infosec.space/tags/subscription" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>subscription</span></a> </p><p>Same with <a href="https://infosec.space/tags/bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bash</span></a>: I can appreciate it for being better than <a href="https://infosec.space/tags/sh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sh</span></a> (unix-<a href="https://infosec.space/tags/shell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shell</span></a>) , <a href="https://infosec.space/tags/tcsh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tcsh</span></a> or <a href="https://infosec.space/tags/csh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csh</span></a> but I despise it for not having modernized like <a href="https://infosec.space/tags/fish" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fish</span></a>. </p><ul><li>And with <a href="https://fishshell.com/" rel="nofollow noopener" target="_blank">fish</a> I appreciate it but I despise it's not the default <a href="https://infosec.space/tags/shell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shell</span></a> for any <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> distro I can use in <a href="https://infosec.space/tags/production" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>production</span></a>. </li></ul><p>It's called having <em>"mixed feelings"</em> or rather <a href="https://infosec.space/tags/NuancedOpinion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NuancedOpinion</span></a>. </p><ul><li>Kinda like how every <a href="https://infosec.space/tags/skiddie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>skiddie</span></a> and <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> can use <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> but that Windows is shit and the only reason they can is because they got groomed into being <a href="https://infosec.space/tags/consoomers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>consoomers</span></a> that accept <a href="https://infosec.space/tags/enshittification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>enshittification</span></a> as a fact of life.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mas.to/@squads" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>squads</span></a></span> no they ain't - they are <a href="https://infosec.space/tags/WastefulComputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WastefulComputing</span></a> at best if not <a href="https://infosec.space/tags/exploitation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>exploitation</span></a> with <a href="https://infosec.space/tags/clickworkers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>clickworkers</span></a> who have no other means to make ends meet!</p><ul><li>Stop shilling <a href="https://infosec.space/tags/garbage" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>garbage</span></a> that only <a href="https://infosec.space/tags/TechBros" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechBros</span></a> who have 0 skills beyond swaying even more <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> <a href="https://infosec.space/tags/VCs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VCs</span></a> into burning money get excited about!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.vivaldi.net/@ajsadauskas" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ajsadauskas</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@JessTheUnstill" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>JessTheUnstill</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@tomiahonen" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tomiahonen</span></a></span> <span class="h-card" translate="no"><a href="https://oxytodon.com/@fuchsiii" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fuchsiii</span></a></span> Maybe had <a href="https://infosec.space/tags/Mozilla" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mozilla</span></a> actually cared they could've convinced <a href="https://infosec.space/tags/Nokia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Nokia</span></a> to do <a href="https://infosec.space/tags/FirefoxOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FirefoxOS</span></a> and we'd not have the shitty <a href="https://infosec.space/tags/Duopoly" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Duopoly</span></a> of today, but as we all know the decisions were made by <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> suits that are just <em><a href="https://infosec.space/tags/HornyForMoney" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HornyForMoney</span></a>"</em>…</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@bagder" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>bagder</span></a></span> Problem with that is (besides occasional bugfixes), most people including myself would see <a href="https://infosec.space/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> to be <em>functionally complete</em> and anything <em>"nice to have"</em> would be considered not worth the balooning in <a href="https://infosec.space/tags/complexity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>complexity</span></a> and <a href="https://infosec.space/tags/size" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>size</span></a>. </p><ul><li><p>I mean, does <a href="https://curl.se/" rel="nofollow noopener" target="_blank">curl</a> <em>need</em> to be able to do <a href="https://infosec.space/tags/BitTorrent" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BitTorrent</span></a> (magnet:), <a href="https://infosec.space/tags/IPFS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPFS</span></a> (ipfs://) or god forbid <a href="https://infosec.space/tags/blockchain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blockchain</span></a> (i.e. <a href="https://infosec.space/tags/EVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EVM</span></a>) support? </p></li><li><p>Do you really want to integrate <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tor</span></a> support <em>natively into curl</em> when using <a href="https://infosec.space/tags/HTTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTP</span></a> (localhost:8118) and <a href="https://infosec.space/tags/SOCKS5" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SOCKS5</span></a> (localhost:9050) <a href="https://infosec.space/tags/proxy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>proxy</span></a> allows for the same and doesn't necessitate having to handle and ingest Tor arguments as well??</p></li></ul><p>In fact if <a href="https://infosec.space/tags/toybox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>toybox</span></a> didn't have a <a href="https://infosec.space/tags/wget" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>wget</span></a> implementation that I could use for OS/1337 I would've merely chosen <a href="https://curl.se/tiny/" rel="nofollow noopener" target="_blank"><code>tiny-curl -o</code></a> as a <a href="https://stackoverflow.com/questions/30702803/set-aliases-globally-for-all-users" rel="nofollow noopener" target="_blank">global alias</a> or if <a href="https://infosec.space/tags/tinycurl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tinycurl</span></a> wasn't an option, <a href="https://linux.die.net/man/1/curl" rel="nofollow noopener" target="_blank"><code>curl -o</code></a> instead.</p><ul><li>Maybe someone who wants to have said functionality like <code>tor</code> support built-in will go and IDK make i.e. <code>#neocurl</code> or sth. along those lines or build something like <code>#ethcurl</code> or <code>#torcurl</code>or <code>#ipfscurl</code> or whatever...</li></ul><p>That being said I am glad <code>curl</code> isn't <em>solely</em> maintained by you but has other contributors (give them a shoutout!) but I also am glad you maintain that vital software that most <em>"<a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> <a href="https://infosec.space/tags/Normies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Normies</span></a>"</em> most likely never heard of but propably use on a daily basis as part of all the <a href="https://infosec.space/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tech</span></a> they use to <a href="https://infosec.space/tags/consume" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>consume</span></a> media with...</p><ul><li>I consider curl to be <em>"the <a href="https://infosec.space/tags/vim" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vim</span></a> of downloaders"</em> (tho that's kinda insulting and limiting since <code>curl</code> is more than just a downloader <em>and</em> more intuitive than <code>vim</code>) with wget being <em>"the <a href="https://infosec.space/tags/vi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vi</span></a> of downloaders"</em> (tho <code>wget</code> is even simpler to use than <code>vi</code>)...</li></ul><p>Either way, curl is awesome... </p><p><a href="https://infosec.space/tags/OS1337" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OS1337</span></a> <a href="https://infosec.space/tags/Enshittification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enshittification</span></a> <a href="https://infosec.space/tags/Bloat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bloat</span></a> <a href="https://infosec.space/tags/Bloatware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bloatware</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.themarkup.org/@themarkup" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>themarkup</span></a></span> that's why even back when I was in school everyone who wasn't <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> booted into <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> or some other <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> and thus trivially circumvented any <a href="https://infosec.space/tags/CintentFiltering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CintentFiltering</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://grapheneos.social/@GrapheneOS" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>GrapheneOS</span></a></span> I think <em>both</em> apps are shit as *both <a href="https://infosec.space/tags/Telegram" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Telegram</span></a> and <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> demand <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> in the form of <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhoneNumbers</span></a>.</p><ul><li><a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Signal</span></a> at least has their <a href="https://infosec.space/tags/client" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>client</span></a>'s source code published so similar to like <a href="https://infosec.space/tags/Tarsnap" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tarsnap</span></a> it's more trustworthy by virtue of better <em><a href="https://infosec.space/tags/transparency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>transparency</span></a></em>...</li></ul><p>OFC Telegram is (by my personal observation) almost exclusively being used by <a href="https://infosec.space/tags/Scammers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Scammers</span></a> and other <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> criminals.</p><ul><li>Trusting Telegram is like trusting <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EncroChat</span></a> or <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ANØM</span></a> aka. <a href="https://infosec.space/tags/OperationIronside" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationIronside</span></a> aka. <a href="https://infosec.space/tags/OperationTr%C3%B8janShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationTrøjanShield</span></a>: It literally has <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> <a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Backdoors</span></a> because the <a href="https://infosec.space/tags/UAE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UAE</span></a> of all plaves would've swatted their <em>"HQ"</em> if not forved <a href="https://infosec.space/tags/Durov" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Durov</span></a> at gunpoint to integrate it into it if it wasn't there...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@mhoye" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mhoye</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> not really?</p><p>We live in 2024, <a href="https://infosec.space/tags/OpenKeychain" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenKeychain</span></a> exists and even if you're an absolute <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> there are solutions like <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesChat</span></a> that are easy to setup and just work.</p><ul><li>Also <span class="h-card" translate="no"><a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails_live</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tails</span></a></span> / <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tails</span></a> exists with <a href="https://infosec.space/tags/Kleopatra" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kleopatra</span></a> as easy to use GUI and at this point people are only looking for excuses to be <a href="https://infosec.space/tags/lazy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lazy</span></a>.</li></ul><p>It's nut a:skill issue anymore ffs!!!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://veganism.social/@MichalBryxi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>MichalBryxi</span></a></span> Just communicating with them as a Sysadmin that prevented said scammers from attacking one's systems will get them moving...</p><p>But based off <span class="h-card" translate="no"><a href="https://chaos.social/@Lilith" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Lilith</span></a></span> 's own experiences doing <a href="https://infosec.space/tags/ResponsibleDisclosure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ResponsibleDisclosure</span></a> LEAs and <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a> <a href="https://infosec.space/tags/judges" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>judges</span></a> can be insultingly stupid...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://grapheneos.social/@GrapheneOS" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>GrapheneOS</span></a></span> I think <a href="https://infosec.space/tags/Apps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apps</span></a> should not be allowed to request anything to run but what the user allows them to.</p><ul><li>Apps should not be allowed to require tight integrations and users need to pressure those that make Apps to not do that!</li></ul><p><a href="https://infosec.space/tags/WhatYouAllowIsWhatWill" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WhatYouAllowIsWhatWill</span></a> continue applies to <a href="https://infosec.space/tags/Enshittification" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enshittification</span></a> like that of <a href="https://infosec.space/tags/Uber" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Uber</span></a> and this shouldn't exist to begin with...</p><ul><li>But you'd rightfully point out that with most <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterates</span></a> being users, that ship has sailed 20+ years ago as the same boomers that once belittled young millenials to not overshare are now basically <em>"<a href="https://en.wikipedia.org/wiki/Unofficial_collaborator" rel="nofollow noopener" target="_blank">unofficial collaborators</a>"</em> for <a href="https://infosec.space/tags/NSAbook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NSAbook</span></a> at this point.</li></ul><p>So at this point I'd only see a few options that boil down to few decisions:</p><ol><li><p>Depend on Google making <em>"good hardware"</em> or getting into talks with other vendors to attain the necessary 1st party support from day 0 per design?</p></li><li><p>Bow before <a href="https://infosec.space/tags/TechIlliterate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechIlliterate</span></a>|s or double down on <em>"security first"</em> even if that means inconveniencing them?</p></li></ol><p>IDK which answers are <em>"correct"</em>, I can merely say what I'd choose but it's <em>not my decision</em> where <a href="https://infosec.space/tags/GrapheneOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GrapheneOS</span></a> goes...</p><ul><li>Either way I only wish Graphene OS and the team behind it as well as it's users only the best...</li></ul>