Pinned post

Do you agree that is finally ?

(It is a chat interface on top of a normal email (IMAP) account with automatic encryption; a decentralized and potentially self-hostable alternative to etc.)

Screenshots & resources:
zmart.email/deltachat

Pinned post
Pinned post

Part of the for the focus is the sad "fact" that so much of is still in its infancy, and the annoying situation of waiting "endlessly" (decades!..) for the of existing in ways that are beneficial to the population at large.

Examples:
1) time from of until the current towards , and ,
2) the chaotic situation with and / functionality

Pinned post

Focus 1/2: This scope of "Maturity" is assuming that acceptable purpose of _any_ technology should never be in conflict with serving the planet as a whole and contributing to improve the quality of life for all inhabitants.

Pinned post

Focus 2/2: Which technologies are "already mature"? Which "unnecessarily" lacking elements holds society and progress back (for significantly long time already...)?

I am honored to be chosen by the Nordic ministers of culture to be one of thirteen experts in a new Nordic think tank. The think tank will take a closer look at the tech giants’ influence on democracy in the Nordic Region and come up with proposals for solutions.

The think tank will carry out the work over the course of the next 12 months, and will result in a presentation of its recommendations in the first half of 2023. 

So all thoughts and comments are welcome!

norden.org/en/news/new-nordic-

"I've run Mattermost and Rocket Chat, and I use Signal, but the application I'm most excited about is Delta Chat, the chat service that's so hands-off it doesn’t even use chat servers." thanks for the recommendation and happy #privacyday :) opensource.com/article/22/1/de

#Security #Updates on #Android are really that bad: They take months to never to be rolled out and manufacturers stop supporting them after one year anyway.

This is one of the core problems of #digital #sustainability: good performing hardware cannot be used only because software / manufacturers do not support them anymore.

Solutions:
a) use #FreeSoftware e.g. Custom Rom and
b) help to include smartphones in the European ecodesign guidelines by signing this petition:

repair.eu/smartphones/

To be verified: (Unlike , which does NOT encrypt attachments) All attachments are claimed to be automagically encrypted by the APP, but that is NOT currently the case when handled by the DeltaChat DESKTOP client(s?).

At least the desktop client is NOT encrypting attachments per version 1.26.x/March 2022.

PS. The desktop app is 2 "middle-versions" behind (Android app version is currently 1.28.x) where they are stored unencrypted apart from the message.

-source

Do you agree that is finally ?

(It is a chat interface on top of a normal email (IMAP) account with automatic encryption; a decentralized and potentially self-hostable alternative to etc.)

Screenshots & resources:
zmart.email/deltachat

@tom79 I was using Fedilab earlier and it was amazing! Great work 😉

@HerraBRE Businesses should use open source for all the usual open sourcey reasons:

- Better quality
- Don't re-invent the wheel
- Don't expend development effort on things which aren't your main product
- Avoid supplier lockin
- Shorter time to market
- Freedom to customize software to your exact requirements rather than what Microsoft/Google think you need

Open source business fallacies:

- "Using open source will cost you less". It might, but don't assume that. You might still want to hire support.
- "The community will provide features we ask for". Not necessarily. If you want a very business specific feature you may have to add it yourself or hire someone to do that.
- "Many eyeballs make bugs shallow". Only for the very high profile projects. Often there are not many developers reading existing code unless they need to, so sometimes bugs can go unnoticed for years. The average open source project has one or two developers.

Happy to see Panopticlick testing with real trackers now. Second screenshot is the result with @better

However, not unblocking trackers that honor Do Not Track should not be a negative. DNT is fundamentally broken unless, under GDPR, it is interpreted as valid communication of lack of consent for all tracking (which it should be).

"How U2F (2FA) works at Twitter" - Part 2/2 of a #tootSeries about #ITsecurity #MultiFactor #insights. [Ref. "MOMOC-04-Comfort/Security"] #MOMOCtips 

"How U2F (2FA) works at Twitter" - Part 2/2 of a #tootSeries about #ITsecurity #MultiFactor #insights. [Ref. "MOMOC-04-Comfort/Security"]
#MOMOCtips

#Smartphones and #USBkeys that support #NFC (Near-Field Communication), like for example the #Yubikey NEO, lets you log in with U2F without needing a physical cable to insert the USB key. Put it close to the phone (back side), and the #authentication happens over the air. Unlike other solutions (like the #Nitrokey which only support 1 function), having a Yubikey which normally supports 2 functions, you can have BOTH the static password AND the U2F on the same key working through NFC wirelessly. A long-press on the button emits the stored static password to the phone clipboard so that you can paste it into the password field, and then second factor (U2F) function asks you to confirm by pressing the button briefly, and then you are logged in.

PS. NEVER use a static password in the exact form it is stored! If someone steals or finds your #USBkey, you do not want them to be able to use it by itself. A #trick is to never use it exactly as it is stored on the key:
- Remove a few characters after it has been pasted/sent to the password field, and then ADD some characters manually which are NOT stored on the key.
For example, invent a new easy-to-type short #password that you type manually at the end every time you use the stored portion.

PS-2. Yubikeys were openSourced until version 4, but they are now no longer that, being proprietory since v4, as opposed to others like the #Nitrokey, which is #openSource.
As it is inconcievable with trustworthy, #verifiable #securityAudits without #openSource, many of us are now moving away from the beloved Yubikeys, or at least staying behind and only using the older versions that are actually openSourced. It is still possible to get hold of older versions.

Ref. yubico.com/2016/05/secure-hard

"How U2F (2FA) works at Twitter" - Part 1/2 of a #tootSeries about #ITsecurity #MultiFactor #insights. [Ref. "MOMOC-04-Comfort/Security"] #MOMOCtips 

"How U2F (2FA) works at Twitter" - Part 1/2 of a #tootSeries about #ITsecurity #MultiFactor #insights

**[Ref. "MOMOC-04-Comfort/Security"]** #MOMOCtips

(The #U2F standard (by the #FIDOalliance (.org), initially initiated by Google & #Yubico), is being replaced by the later open #WebAuthn standard, but is backwards-compatible with #FIDO / U2F, so old U2F devices may work with WebAuthn as well) Ref. en.wikipedia.org/wiki/WebAuthn )

- Since mid-2018, #Twitter supports U2F (hardware) "Security keys" (#YubikeyNEO, #Yubikey "4", Yubikey "5", #Nitrokey, Google #SecurityKey, etc.).

- You can only enable it if you first associate the actual account with a mobile phone number. (that is also the case for using TOTP / Authenticator app with Twitter)

- You can only have 1 U2F "key" associated with an account at the time, as opposed to the possibility of having multiple, separate #TOTP registrations for the same account.

- You can use the same physical U2F key with unlimited number of accounts, both multiple #Twitter accounts and multiple others.

- You may combine U2F with TOTP (6-digit codes) from any TOTP-compliant app or software or hardware solution. Then you can choose if you want to log into Twitter using EITHER password+TOTP: Example: using smartphone Authenticator app OR password+U2F ("Security Key").

**In part 2 (the next toot), you will get #tips about how this works in practice with #smartphones and a warning about Yubikeys not being #openSource anymore.**

"(..) and that brings us to the present day where we find ourselves witnessing and helping shape the next era of #technology: the #PersonalComputing 2.0 era" ( @aral@mastodon.ar.al ) 

#UNICEF wants to invest in #FreeSoftware "The Fund provides investment-style funding for early-stage, #OpenSource technology solutions that address the most pressing challenges faced by children and young people", further "UNICEF requires that all code, content or hardware developed and tested be open source and be publicly available."... Great initiative! ungm.org/Public/Notice/82482

Hear Alan Watts’s 1960s Prediction That Automation Will Necessitate a Universal Basic Income.

Watts was born on this day in 1915.
openculture.com/?p=1029988 t.co/DsjHaQEgct

One of the purposes with is that we can maintain a list of technologies that are close to actual maturity, and sublists for each of those, outlining the elements that needs to be addressed for it to reach maturity.

Among the criterias are several aspects of true efficiency, including the enabling of each person to administer own information, etc., in a way that provide security not only for the data and privacy, but to make sure the invested time is not wasted. Hence: exportability, etc.

Part of the for the focus is the sad "fact" that so much of is still in its infancy, and the annoying situation of waiting "endlessly" (decades!..) for the of existing in ways that are beneficial to the population at large.

Examples:
1) time from of until the current towards , and ,
2) the chaotic situation with and / functionality

Show older
Mastodon for Tech Folks

mastodon.technology is shutting down by the end of 2022. Please migrate your data immediately. This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!