@yetzt Jurnalists who don't have #PGP setup , their #Pubkey and eMail Published published for secure comms per PGP/MIME should not be allowed to call themselves journalists nor practise journalism.

• It's 2026!

@tails_live / @tails / #Tails has been out there for way over a decade, alongside @cryptoparty@mastodon.earth / @cryptoparty@chaos.social / #CryptoParty / #CryptoParties and refusing to exercise proper #ComSec is like a surgeon refusing to wash their hands and put on gloves and properly desinfect these before starting surgery: A violation of #ethics and #care so bad it should bar them from any #journalism for life.

• Like this isn't complicated and basic "Duty to Care", like a Firefighter, Police Officer, Medical Doctor, Paramedic or Nurse being able amd obligated to do CPR.

  • If they can't be assed to do this basic protection of sources then I'd consider them #UsefulIdiots that only want to act as #snitches like #GlennGreenwald & @theintercept when they literally snitched on Reality Winner with neither coordination with nor care for her because they are at best criminally incompetent if not able and willing to act as means to discover reakers and deliver people like her on a silver platter.

#Privacy & Security meet Up Hosted by #Monero #WebWipe at #PubKey NYC 5pm - 10pm, us hackers be stopping by for a bit! luma.com/zoc6lubi

🟠 NEW: Treasury Secretary Scott Bessent’s unannounced visit to the new #Bitcoin-themed #Pubkey bar caused excitement across crypto, with some calling it a watershed moment!

@Powerfromspace1 do you have other options that ain't subject to #CloudAct?

• Cuz most folks won't trust services subject to #US laws, and many would only submit material under the precondition that they and onther attrnds get poxellated irreversibly...

• You gave a #PGP - #Pubkey ready so people can communicate securely with you?

#USpol #InfoSec #OpSec #ComSec #ITsec #privacy #anonymity.

@signalapp you are lying by omnission and technicality because why else do you demand a #PhoneNumber and mandate users to grant access to a devices' camera just to let them use more than the one device they currently use?

• You could've easily allowed either importing the QR-Code or offered a #Pubkey-ID to type in. But you chose neither…

@StarkRG nodds in agreeement In a #classroom-like #setup we'd more likely see some centralized, self-hosted #managment solution like #Landscape or #RustDesk being used.

• I can see why they did this: It's clearly inspired by tools like #AnyDesk and I do have to applaud them for that.

And if this acts similar to #WebCall and merely acts as a "Rendrevous-Server" then traffic and thus costs should be quite low.

• Still I expect this to later become #enshittified with an ever more expensive #subscription model like with #TeamViewer.

I'd still hope they #OpenSource the #Backend so that there's another competitor to #Dayon and #RustDesk available...

• In the meantime just setting up a sudo admin user with #Pubkey-only auth on #SSH is likely the way to do some admin stuff.

Maybe one day @RaspberryPi will even add #PXE - #NetBoot capabilities to their #RaspberryPi and thus allow for #DisklessWorkstation - Setups, saving a crapton on #MicroSD cards that are prone to get lost and/or stolen...

@alexantemachina@mastodon.social

Gerade habe ich das letzte # Proxmox #Backup der #Homeassistant #VM, zu dessen Zeitpunkt die Daten in Homeassistant noch alle da waren, zurückgespielt.

Und siehe da, nun ist auch das Verzeichnis '/homeassistant' mit jeder Menge Inhalt befüllt.

Kein Wunder, dass die histrorischen Daten fehlen, wenn die ganze Datenbank, die configuration.yaml etc. komplett weg sind.

Aus irgendeinem Grund hat sich das Verzeichnis komplett geleert, als ob da jemand 'rm -r /homeassistant' gemacht hätte. Da aber niemand außer mir Zugriff darauf hat (Zugriff von extern nur per #VPN, #SSH mit #Pubkey abgesichert und Passwortzugang deaktiviert, keiner außer mir kennt die Zugangsdaten, mein Notebook ist vollverschlüsselt), kann das eigentlich nicht sein. 🤔🤷‍♂️

Eigentlich könnte nur sein, dass ein Addon einen Trojaner / Backdoor enthält.

Installiert ist
- evcc
- File Editor
- Grafana *
- Let's Encrypt *
- Mosquito Broker
- SQLite Web
- TasmoAdmin
- Terminal & SSH
- Zigbee2MQTT

aus #HACS
- card-mod
- Power Flow Card Plus
- Power Distribution Card
- Energy Flow Card Plus
- Energy Period Selector Plus *

* aktuell unbenutzt

Und Integrationen für
- FritzBox
- Backup *
- Einkaufsliste *
- HACS
- Homeassistant Supervisor *
- Meteorologisk institutt (Met.no) *
- Mobile App *
- MQTT
- Radio Browser *
- Goodwe Inverter
- Reolink
- SMLIGHT SLZB
- Sonne *
- Tasmota

* nicht selbst installiert und bis auf Backup ungenutzt

@lucasmz @Anthony_Kraudelt @squads nah.

One submits a #Pubkey amd that's being used to #encrypt the #2FA message.

🎉 OpenBSD 7.7 is out, folks! Now you can finally enjoy #debugging a fresh set of bugs while pretending to care about yet another mirror site. 🍻 Meanwhile, Theo de Raadt is still the only one who knows what "pubkey" means. 🙄🔑
https://www.openbsd.org/77.html #OpenBSD77 #release #TheoDeRaadt #pubkey #security #mirrorSites #HackerNews #ngated

@Chiquidrakula @COSAntiFascists @iris @Em0nM4stodon @cryptoparty@mastodon.earth @cryptoparty@chaos.social

Now if you don't trust @monocles nor @protonprivacy (which IMHO is fair and correct!) and you can't use @thunderbird or something because you have no private computer with internet access [i.e. only a work-issued laptop you can't use for anything non-work - related] and you can't just boot into @tails_live / @tails / #Tails or a portable #Linux #Desktop distro at all then the real "#GalaxyBrainChair" - level "#BigThink" you can do is go the "#OfflinePGP" route and thus encrypt & decrypt your messages on a different device entirely.

• The main problem may be that you'd then have to get that to the machine from which you can send it, which as we all know from the #MattKC video means you gotta "keep it brief" [as in 2.944 bytes short] if you want to do the webcam & screen method of #airgapping...
  

I just didn't have time to get the "Airgapped Transfer Protocol" done, but setting the *"Barcode Scanner" App into bulk mode makes it less tedious to import stuff to an Android device...

• Again: The nice part with #OpenPGP & #PGP/MIME is that you don't have to trust anyone but yourself and maybe your communication partners' ability to make proper #Keys and get the #Pubkey to you...

Hat der #DATEV - #Saftladen wenigstens ne brauchbare #API über die Mensch einfach denen einfach nen #PGP-#Pubkey schicken kann mit der Anweisung:

• "Sendet mir mein Zeugs monatlich per #PDF als PGP/MIME-verschlüsselte eMail an meine Addresse zu!"

Weil das wäre recht wichtig, weil deren Müll funktioniert nicht #barrierefrei (unter #LynxBrowser auf #OpenBSD für alle #Klukshicer!) und deren #UI / #UX ist einfach nur #cringe...

#AppZwang #DigitalZwang #Bürokratie #Steuer #Lohnabrechnung #Paperkrieg #Enshittification #Digitalistan #EDGEland #Schland #Neuland

Web Identity & Discovery Protocol (#webid) bits: #X509 cert, #HTTP based Entity #Name, #ssl, & Profile Doc #URL that includes #pubkey. #sso

Monday, Nov 4th at 10pm EST, join #DCG201 for a special #CryotoBarons 💹 at #cryptocurrency #blockchain #web3 is impacting the #2024Election w/ #worldlibertyfinancial, #standwithcrypto #PubKey NYC & @followthecrypto by @molly0xfff!

Watch on #Twitch & #YouTube: https://linktr.ee/defcon201

@defcon #mastodon #fediverse

@arne I can recommend #Canonical's documentation re: #UbuntuLTS...

• I recommend "#ConfigirationByException" as good distros are hardened from the get-go.

Maybe just do #Pubkey-based #SSH auth and/or #Fail2Ban for anyone failing 3 logins or not being inside the "Managment LAN"...

@feld @Suiseiseki @hj @mirabilos why would anyone do that?

Also just switch to #Pubkey-based #allowlisting instead...

@neurovagrant personally, I do intent to literally blocklist anything and only allowlist what's needed for any serious network.

• At least that's how one can comply with #PCIDSS, #GDPR & #BDSG by literally being able to name every single connection to the "spicy parts" of the IT...

Granted, the systems I administrate can't even run #AnyDesk and only allow #Pubkey-based #SSH authentification and log all inputs in realtime, literally sending alerts for any sudo command [root is unavailable for security reasons] to the CISO...

@jakemiller @SwiftOnSecurity no, this is why there needs to,be #accountability and #consequences.

Demanding people to use #Pubkey-based signatures would make it way harder to #spam such shite...

@MattHatton Personally, I do plan to put my #Pubkey on my "Businesscard" sooner than later...

Kennt irgendwer ne Möglichkeit, #DATEV dazu zu zwingen einem die fucking #Lohnabrechnung als #PDF per #eMail zu schicken?

Notfalls #Fax' ich denen meinen ausgedrucken #PGP - #Pubkey damit die das #SigG / #SigVO-konform verschlüsseln.

Was ist daran bittesehr so schwer???

- - -

Und nein, ich werd' mir keinen Fucking #Account machen, weil wer so gemeingefählich - #TechIlliterate ist, ist in meinen Augen absolut unzuverlässig was #ITsec, #InfoSec, #OpSec & #ComSec angeht!

https://www.heise.de/news/Linux-ist-fuer-DATEV-keine-Alternative-87795.html via @heiseonline (#trackerwalled !)

- - -

* https://keybase.io/kkarhan/pgp_keys.asc?fingerprint=f45ccf8477abe2532d8fc7afa8e46a81dd71236f

Cc: @digitalcourage

#Digitalzwang #Enshittification #Bullshit #Bureaucrazy #Absurdistan #ValueRemoval

@rogueren Depends...

At the #installation you can let it pull an #SSH #pubkey or set it up to have an SSH server run per default you can login with your main account user/password.