Viewing a single comment thread. View all comments

tafor83 t1_iy5tzs6 wrote

One day, the tides will turn, and people will take open-source/decentralization to heart.

There is a fundamental aspect of privacy in tech that people ignore or are completely ignorant of: a third party is the security risk.

I've been emailing with a colleague for nearly two decades using private key encryption.

He's got my public key, I've got his.

That's it. That's all that's needed. It removes the third party risk completely. We can send each other messages and post them publicly on billboards for all I care - without my key, you can't read it. Without his key, you can't read his.

I hope, though I doubt it will ever happen, that people learn that privacy is a you thing. It requires you to do the work. Not someone else. If you are relying on a third party to secure your own communication - you are at risk.

The simplest thing ever is a standardized, open-source comms hub that people can spin up for $5/mo. Just a network to route encrypted packages. That's it. It doesn't require anything beyond that.

21

velifer t1_iy5vxxu wrote

https://xkcd.com/538/

Nobody gives a shit what you're writing to each other.

Nobody gives a shit what you write.

HEY NSA! I DO ALL THE CRIMES! JUST LIKE SOOOO MANY! 36 CRF 2.20? Fuck yeah bitches! Broke the fuck outta that one.

Nobody. Gives. A. Shit.

15

dog_in_the_vent t1_iy5xoai wrote

> 36 CRF 2.20? Fuck yeah bitches! Broke the fuck outta that one.

You were roller skating in a national park?

6

DamnThatsLaser t1_iy7l50m wrote

https://latacora.micro.blog/2019/07/16/the-pgp-problem.html gives a very good view on the issues in my opinion.

>hope, though I doubt it will ever happen, that people learn that privacy is a you thing. It requires you to do the work. Not someone else. If you are relying on a third party to secure your own communication - you are at risk.

I completely disagree. Well-designed privacy does not need you to do work for it and pay attention because it just requires one slip (edit: for bad privacy to break). People make mistakes.

That just apart from our plugin at work that sometimes forgets to actually encrypt mails. Very rare but it happens.

3