social.uhoreg.ca | Hubert Chathi @ social.uhoreg.ca

The Tor Project 3 days ago (Received 2 days ago) • mastodon (AP)

Today is the first Global Encryption Day!

🔒 Encryption makes life safer. Without it, our banking details, personal conversations, medical history, and everything in between is on display.

Now is the time to #MakeTheSwitch to encrypted services (like Tor!)

https://blog.torproject.org/first-global-encryption-day

Global Encryption Day: #MakeTheSwitch | Tor Blog

Today, Oct 21, 2021, is the very first Global Encryption Day, organized by the Global Encryption Coalition.

^{blog.torproject.org}

#maketheswitch

Hubert Chathi reshared this.

Sindastra🐧✅:~ # _ 3 days ago • mastodon (AP)

I agree that we need encryption, but this is highly misleading. If you use Tor, and then use Facebook or Telegram, it won't magically end-to-end encrypt anything or make you anonymous. Now, this might seem obvious, but most people on this planet aren't technical and genuinely don't understand this. So, yeah... the way you're advertising for Tor here could mislead some people into a false sense of security and anonymity, which can even become dangerous.

gudenau 3 days ago • mastodon (AP)

Also much easier to change and forge!

The Tor Project 1 week ago • mastodon (AP)

Entering the Matrix 👩‍💻

We are happy to announce an expansion of the Tor community's day-to-day conversations by bridging our IRC community the Matrix platform.

For regular Tor users, it means that you can chat with us using a friendly App like Element.

https://blog.torproject.org/entering-the-matrix

Entering the Matrix | Tor Blog

Today we are happy to announce an expansion of the Tor community's day-to-day conversations by bridging our IRC community the Matrix platform. For regular Tor users, it means that you can chat with us using a friendly App like Element.

^{blog.torproject.org}

2 people reshared this

6 comments - Show more

~vala@neue.city: :verifiedjackolantern: 1 week ago • pleroma (AP)

isnt the matrix server project known for sending metadata and userinfo from self-hosted servers to their flagship instance without a way to disable the data collection?

jcgruenhage 1 week ago • mastodon (AP)

No, it isn't. There's a few things you could mean though:
- Synapse sends back some server stats to the Synapse devs, if configured to do so. This is opt-in though, and does not contain info about users, just aggregated stats on the server.
- Synapse verifies server keys via a notary server in addition to verifying them via a TLS conn with the server itself. As an admin, you can configure any server you want there, but the default is matrix.org. 1/2

jcgruenhage 1 week ago • mastodon (AP)

- Last but not least: Element collects some telemetry data as well, so this is also potentially problematic. Again though, this is opt-in.

A thing that might actually be problematic though, is that Tor users in specific had problems connecting to matrix servers hosted by Element, including matrix.org, due to problems with Cloudflare. If the Tor project announces usage though, I'll assume those problems have been resolved by now

Lutin Discret 1 week ago • mastodon (AP)

great 👏 could you please make a "matrix space" to gather all those rooms. This will make it easier to find/browse. Thanks!

muesli 2 weeks ago • mastodon (AP)

Please, don't panic: The Hitchhiker's Guide to the Galaxy has been published on October 12, 1979.

Exactly 42 years ago 🙊

Claes Wallin 🇸🇪🇭🇰 likes this.

Hubert Chathi reshared this.

Julian Sparber 3 weeks ago • mastodon (AP)

I started working on session verification for Fractal-next. Still a long way to go, but it's a start.

3 people reshared this

5 comments - Show more

iooioio 3 weeks ago • mastodon (AP)

Yay!

Rusty 3 weeks ago • mastodon (AP)

A very worthwhile endeavour

Hubert Chathi 3 weeks ago friendica

A bit over a week ago, this Friendica instance suddenly stopped receiving posts over ActivityPub. It took me a while to figure it out, but it turned out that my server's clock was drifting, and at some point drifted to be more than 5 minutes off, which caused issues with signature verification. So I fixed the NTP configuration on my server, and now things seem to be back to normal. I've missed about a week of posts, but I guess I'll survive.

2 people like this

Hubert Chathi 1 month ago friendica

Election day today. Canadians, vote!

Bob Jonkman likes this.

Hubert Chathi 1 month ago friendica

I wrote a tool in Elixir for checking the setup of Matrix servers. See more information about it in this week's This Week in Matrix post.

This Week in Matrix 2021-09-17 | Matrix.org

^Matrix.org

F-Droid 1 month ago • mastodon (AP)

#Matrix users: updates for Element and SchildiChat just hit our repo, containing important security fixes. Please refresh the index in your clients and update ASAP.

#security #updates

#security #matrix #updates

SoNak likes this.

4 people reshared this

3 comments - Show more

chava 1 month ago • mastodon (AP)

Not a Martix user but that's an amazing turn around time from team @fdroidorg@mastodon.technology ! 👏

@F-Droid

Buntbart 1 month ago • mastodon (AP)

Faster than expected! Thank you!! 👍

Matrix.org 1 month ago • mastodon (AP)

⚠️ IMPORTANT: Users of Element Desktop/Web/Android, FluffyChat & Nheko should upgrade immediately to address a critical encryption vulnerability.

We are not aware of this being exploited in the wild yet, but as the bug is now disclosed please upgrade now. https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing

3 people reshared this

11 comments - Show more

spyjosh-GX 1 month ago • mastodon (AP)

not seeing an update to fluffy chat on the open store. Will this be coming to Ubuntu Touch?

yano 1 month ago • mastodon (AP)

make sure you update your stuff everyone!

#element #matrix

#element #matrix

Aral Balkan 2 months ago • mastodon (AP)

The battles we’re fighting for our privacy aren’t just to make our phones and computers private places today. They’re to keep our homes, cars, and minds private places in the future. They’re to protect our personhood and stave off autocracy.

#privacy #humanRights

Hank G ☑️ likes this.

2 people reshared this

Hubert Chathi 2 months ago friendica

I don't know why we need an expert to tell us that if we want housing to be more affordable, we need to decrease the price of housing.

https://www.cbc.ca/radio/checkup/how-affordable-is-your-housing-situation-right-now-1.6155647/measures-to-make-housing-more-affordable-wouldn-t-be-popular-with-voters-economist-1.6155683

Hubert Chathi 2 months ago friendica

I made a new release of Polyjuice Client, my @Matrix.org client library for #Elixir. You can see the changelog at https://gitlab.com/uhoreg/polyjuice_client/-/blob/master/CHANGELOG.md

#elixir @Matrix.org

2 people like this

mvgorcum reshared this.

Debian 2 months ago • mastodon (AP)

Debian 11 bullseye has been released! https://bits.debian.org/2021/08/bullseye-released.html

3 people reshared this

11 comments - Show more

Romain de Laage 2 months ago • mastodon (AP)

I enjoy this kind of news ! Congratulations to all the team !

:fdroid: mondstern 2 months ago • mastodon (AP)

Since ends of august 2020 I also apply #debian in my first FOSS exhibition in #berlin / germany

#acrylpainting

It is 1 of 104 acrylic painting pictures

#debian #Berlin #acrylpainting

Jason Robinson 🐍🍻 2 months ago • socialhome (AP)

Germany's healthcare system is using this open source standard for encrypted instant messaging | ZDNet

https://www.zdnet.com/article/germanys-healthcare-system-is-using-this-open-source-standard-for-encrypted-instant-messaging/

Congrats #Germany 😁

#matrix #healthcare #opensource #openstandards

#matrix #opensource #Germany #OpenStandards #healthcare

Hubert Chathi reshared this.

Nextcloud 📱☁️💻 3 months ago • mastodon (AP)

Facebook is doing research in AI & #endtoend encrypted messages, to analyze & target ads on them.

How an AI can determine you are trying to buy designer shoes, but your private discussion about health or politics won't leak?

We have no clue either.

https://www.engadget.com/facebook-analyze-encrypted-messages-ad-targeting-175739715.html

2 people reshared this

easrng 3 months ago • mastodon (AP)

If I had to guess, they'll have some kind of zkp that does text processing on device to prove to the Facebook servers that a given ciphertext includes a message about a given topic without revealing the keys or plaintext.

Matrix.org 3 months ago • mastodon (AP)

Attention all IRC bridge users (cc @liberachat@twitter.com & friends) - we have *finally* improved the format for bridging replies; Matrix should now be a much better citizen on IRC. (disclaimer: this reply format shamelessly stolen without permission from @jessnode@twitter.com :P)

4 people reshared this

3 comments - Show more

Alexandre Franke 3 months ago • mastodon (AP)

WOW

Dashtop 3 months ago • mastodon (AP)

@liberachat

@Libera Chat

Snikket 3 months ago • mastodon (AP)

Here's a little thing that may not be obvious to many people....

When you install an open-source app from Google Play or the Apple app store, there is no guarantee that what you install actually matches the public code.

@fdroidorg are doing a great service. They independently build the public source code for apps from scratch, review for common issues, and publish their builds. Thanks to "reproducible builds" it's possible to verify they do not tamper with the code.

https://f-droid.org/en/docs/Security_Model/

@F-Droid

5 people reshared this

9 comments - Show more

XxAlexXx 3 months ago (Received 2 months ago) • mastodon (AP)

What about security?

Snikket 3 months ago (Received 2 months ago) • mastodon (AP)

Hi! Could you clarify your question?

This link provided in the post is a great overview of all the security-related aspects of the pipeline that F-Droid considers: https://f-droid.org/en/docs/Security_Model/ (it's quite comprehensive!)

XxAlexXx 3 months ago (Received 2 months ago) • mastodon (AP)

Except it doesn't explain a malicious app which was intended to be malicious by the user

Strypey 2 months ago • mastodon (AP)

F-Droid does flag any known anti-features in the apps it includes in its repo. If anyone wants to offer a repo that tries to offer only trustworthy apps, a user could choose to use that with the F-Droid app, instead of the default repos. But then the question becomes can we trust the people running that repo? 🤔

@snikket_im

@Snikket

Jasper (Free Julian Assange!) 2 months ago • mastodon (AP)

it's turtles all the way down.

I think this is a tough questions all repos deal with? Currently just hoping there are enough eyes on code and not be too greedy installing things?

Although automated approaches might be good. Like saw malicious python libraries using `eval` and base64 encoding? Presumably some people were already scanning for dubious stuff and `eval` wasn't on the list. (don't use `eval` when you don't have to!)

Charlag 3 months ago (Received 2 months ago) • mastodon (AP)

uhm doesn't reproducible build not guarantee anything since checksum will change after signing the app anyway?

Frost, wildice 3 months ago (Received 2 months ago) • mastodon (AP)

...can't you just checksum the before-signing stuff?

Charlag 3 months ago (Received 2 months ago) • mastodon (AP)

yeah but when you download the app you download the signed app

Claes Wallin 🇸🇪🇭🇰 2 months ago • friendica (via ActivityPub)

That means the checksum and checking is built in! That's what @𝓾𝓷𝓲𝓺𝓾𝓮 𝓮𝓷𝓽𝓲𝓽𝔂 is describing above. There really is no problem here.

@𝓾𝓷𝓲𝓺𝓾𝓮 𝓮𝓷𝓽𝓲𝓽𝔂

Hubert Chathi 4 months ago friendica

Vaccine 2 of 2 downloaded.
Installation in progress.
Estimated time remaining: 2 weeks.

4 people like this

Hubert Chathi 3 months ago friendica

Installation complete. 🎉

Vanitasvitae :xmpp: likes this.

Co-op Cloud 4 months ago • mastodon (AP)

Hi all! We're the folks behind Co-op Cloud (https://coopcloud.tech), a project which aims to build out a digital configuration commons for tech co-ops and democratic tech collectives. Our approach aims to maximise sharing, co-operation and reuse for setting up and maintaining libre software infrastructure. We have a public matrix room at `#coopcloud:autonomic.zone`, feel welcome! The project is currently in public alpha and super young ☁️ 🎩 💻
#introductions #tech #coops #coopcloud #commons

#Introductions #coops #tech #commons #coopcloud

Hubert Chathi reshared this.

Grandasse 4 months ago • mastodon (AP)

🖼️

Image 1: 3 maisons dont une en feu, deux personnes tentent d'étendre le feu, une troisième personne les regarde perplexe (voire outrée).<br>Image 2 : la personne outrée arrose les deux maisons qui ne sont pas en feu en disans "all houses matter !!!"<br><br>#blacklivesmatter

Paula Gentle on Friendica likes this.

4 people reshared this

Tutanota ✅ 4 months ago • mastodon (AP)

While the crypto wars continue, we would like to remind everyone of two very convincing facts for the pro encryption side:

✅ 1. Encryption can't be outlawed

✅ 2. Backdoors for the good guys only are impossible

Here is our stance on the ongoing crypto wars:
https://tutanota.com/crypto-wars/

Daniel likes this.

Hubert Chathi reshared this.

Hubert Chathi 4 months ago friendica

We seem to have been here before. The province begins opening up just as a new variant threatens to take hold. Our overall R value is about 0.8, but the R value for the Delta variant is over 1.2, and we're less than a week into re-opening. We'll see how we fare this time, but it didn't turn out that well last time.

Debian 4 months ago • mastodon (AP)

The Debian Project hosts all its development IRC channels on irc.oftc.net and also has a thriving community on irc.libera.chat. The Debian Project no longer has control of #debian on the freenode IRC network. We thank the former freenode staff for their tireless work over many years. Please read https://wiki.debian.org/IRC for more information about Debian IRC channels.

2 people reshared this

Matrix.org 4 months ago • mastodon (AP)

Excellent write-up of our recent fuzzing expedition to proactively seek out and squash any bugs in Matrix’s libolm end-to-end-encryption library: read all the gory details at https://matrix.org/blog/2021/06/14/adventures-in-fuzzing-libolm. 🐛🪲🪳🕷🐞

Hubert Chathi reshared this.

Matrix.org 4 months ago • mastodon (AP)

RT @WiredUK@twitter.com

How governments and spies text each other https://trib.al/KCgNFeu

🐦🔗: https://twitter.com/WiredUK/status/1404332908354191367

Hubert Chathi reshared this.

Esther Payne 4 months ago • mastodon (AP)

Well that is an endorsement and a half. 😏

linear cannon 5 months ago • misskey (AP)

conduit is running and federating on my 486!!!

i have a 486 as a matrix homeserver!!!

3 people reshared this

NeoChat 5 months ago • mastodon (AP)

We are adding options to NeoChat! Look at this fancy blur.

2 people reshared this

Nextcloud 📱☁️💻 5 months ago • mastodon (AP)

Today, 5 years ago 12 people founded Nextcloud to create a complete Free and Open Source alternative to centralized proprietary cloud services and open core competitors.

Together we achieved a lot more than what we dreamed of. Thank you to everyone who is contributing! 💙

diritschka likes this.

Hubert Chathi reshared this.

4 comments - Show more

Thomas Kujawa 5 months ago • mastodon (AP)

Happy Birthday!

Dufthummel born at 322 ppbV 5 months ago • mastodon (AP)

happy birthday and thanks for your great cloud-system!

NeoChat 5 months ago • mastodon (AP)

The new version of KDE's @matrix chat app, Neochat is out! NeoChat 1.2 comes with bubbles, a better text input component, fancy effects, an easier way to switch between accounts and much more. Go check it out! https://carlschwan.eu/2021/06/01/neochat-1.2-bubbles-better-text-editing-and-more/

@Matrix.org

2 people reshared this

NeoChat 5 months ago • mastodon (AP)

Also checkout our release video by @veggerohttps://www.youtube.com/watch?v=4lcH4tm6uTk

@Veggero

2 people reshared this

NeoChat 5 months ago • mastodon (AP)

Everything is ready for tomorrow's NeoChat 1.2 release :) Here a sneak peek!

Hubert Chathi reshared this.

Marcus 5 months ago • mastodon (AP)

How to join a #libera.chat #IRC channel via #matrix:

1. Type /join #channel:libera.chat into your client.

Done! 🤯

Claes Wallin 🇸🇪🇭🇰 likes this.

6 people reshared this

6 comments - Show more

Marcus 5 months ago • mastodon (AP)

The usual IRC disclaimers apply:

* Some/most channels will require some form of NickServ registration. So you might want to talk to @NickServ:libera.chat first to register your desired nick.
* You can change your nick via the @appservice:libera.chat bot that will open a chat with you in your first interaction with the network.
* Being joined as a non-registered user into #curl I wasn't allowed to change my nick. Leave channel -> change nick -> register nick -> join #curl.

Isn't #IRC great?

#irc #cURL

ᚦᛟᚱᚱ 5 months ago • pleroma (AP)

on paper, IRC has authentication, but no one uses it.

Claes Wallin 🇸🇪🇭🇰 5 months ago • friendica (via ActivityPub)

@Thor 🇳🇴 As @Marcus correctly states, many rooms previously on freenode, e.g. #NixOS and #oggcastplanet, only accepted signed-in users in order to counter spam. Those that moved to libera probably still do or soon will.

@Marcus @ᚦᛟᚱᚱ

Marcus 5 months ago • mastodon (AP)

Also the #libera.chat homeserver has a matrix room directory listing 😍.

(You can add that to your client in the dropdown menu where it says "Matrix Rooms (libera.chat)")

#libera

Claes Wallin 🇸🇪🇭🇰 likes this.

Abbie Normal 4 months ago • mastodon (AP)

thank you !!

grin 4 months ago • mastodon (AP)

also you get kicked every 30 days?

cos 5 months ago • mastodon (AP)

More non-chat applications for #matrix https://evolved.systems/hosting-a-blog-on-matrix/

#matrix

Hubert Chathi reshared this.

muesli 5 months ago • mastodon (AP)

WAT?! You're telling me there has been a team at Facebook designing and implementing this feature, and not one person has stood up and asked:

"Uhm, isn't that super creepy, even for us?"

Hubert Chathi reshared this.

Pirate Praveen 5 months ago • mastodon (AP)

If your salary depends on not standing up...

Hubert Chathi 5 months ago friendica

This looks amazing. I'm going to have so much fun playing with it. Uhm, I mean, my kids. Yeah, my kids are going to have so much fun playing with it. I'm definitely getting it for my kids, and not because I want it. Right...

https://www.kickstarter.com/projects/upperstory/spintronics-build-mechanical-circuits/

Matrix.org 5 months ago • mastodon (AP)

Last week the UK Govt published a new draft of their #OnlineSafetyBill, making UK corps liable for jail time unless they censor "harmful" content (without defining harmful). Targeted at Big Tech it instead directly threatens Matrix. Read https://matrix.org/blog/2021/05/19/how-the-u-ks-online-safety-bill-threatens-matrix & raise the alarm.

3 people reshared this

kravietz 🦇 5 months ago • mastodon (AP)

Note they actually do take your arguments into account in the Impact Analysis (pages 106+). I fully support your position, and it should be reinforced by other projects, but their assurances don't look bad at this stage.

https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/985283/Draft_Online_Safety_Bill_-_Impact_Assessment_Web_Accessible.pdf

greenpete 5 months ago • mastodon (AP)

I worry that people who are still using V.H.S. and still can't program them to record are making laws about tech.
Add to that, some have ulterior motives, we're definitely in for loosing more freedoms unless we make ourselves heard.

Matrix.org 5 months ago • mastodon (AP)

RT @element_hq@twitter.com

We have lift off! 🚀 We’re launching Spaces— the next frontier for how to group rooms and people in Element and @matrixdotorg@twitter.com, a giant leap towards discoverability.

Check the blog and join the public beta: welcome to the new dimension of Matrix! 🌌 🔭

https://element.io/blog/spaces-the-next-frontier/

🐦🔗: https://twitter.com/element_hq/status/1394300265382268935

Hubert Chathi reshared this.

4 comments - Show more

Hans van Zijst 5 months ago • hubzilla (AP)

Should work with Synapse 1.34, which was just released.

Hans van Zijst 5 months ago • hubzilla (AP)

Yay!! Works like a charm! Thanks guys, keep up the good work!

Matrix.org 5 months ago • mastodon (AP)

Have you seen this? This Week in Matrix is out now! Synapse perf, MLS, Spaces, bridges and more! https://matrix.org/blog/2021/05/14/this-week-in-matrix-2021-05-14 #twim #matrix #decentralisation

#matrix #twim #decentralisation

Hubert Chathi reshared this.

Thibault 5 months ago • mastodon (AP)

The @matrix Live of this week was a tad technical but very interesting for whoever wants to have a better understanding of the limitations of Synapse and what Element is doing to overcome it.

Excellent job from callahad and Erik, both on finding issues, fixing them, and explaining them. I'd love to see more issues with that format!

@Matrix.org

Hans van Zijst 5 months ago • hubzilla (AP)

Quite technical indeed, but even though I didn't understand all of it, at least it prompted me to dive into the subject of workers.

Jason Robinson 🐍🍻 6 months ago • socialhome (AP)

Matrix Live S6E21 Demystifying MSCs - https://youtu.be/SFkZz60RRfc

Great intro into what the #Matrix specification is and more importantly, how does one hack on things and finally get them merged.

#matrix

Hubert Chathi reshared this.

Julian Sparber 6 months ago • mastodon (AP)

Do you want to know more about the internals of fractal-next? Checkout my new blogpost about the internals of fractal-next
https://blogs.gnome.org/jsparber/2021/05/07/the-internals-of-fractal-next/

Kudos to @NGIZero for the funding of my work 😋

@NGI Zero open source funding