Hans-Christoph Steiner @eighthave@librem.one

@U039b interesting, nice approach. Have you looked at how to do that with #ECH? It uses a new public key that is generated using https://www.rfc-editor.org/rfc/rfc9180.html

Also, will that work with apps that use #SafetyNet etc so they refuse to run on rooted devices? It seems for those apps, we still need a way to use something like #MITMproxy, e.g. inserting a custom CA cert. But the ECH key is not related to any CA cert.

If you have detailed questions about ECH, please ask here or on https://matrix.to/#/#ech-dev:matrix.org

One thing about #EncryptedClientHello (#ECH) that I'm a little worried about is that it will make #MITM inspection of #TLS traffic harder to the point where it might restrict lots of important kinds of inspection. When the software we use is not #FreeSoftware, then we cannot see what it is doing by reading the source code. We need to inspect the network traffic. So it is very important that it is possible to inspect traffic that uses ECH as well, despite that middleware companies will abuse this

#EncryptedClientHello (#ECH) plus private DNS will enable a nice privacy improvement in combination with a VPN: set the DNS nameserver to something other than the VPN provider's nameserver. For ECH-enabled sites, the VPN provider sees your IP and connections to the CDN. The CDN and the DNS nameserver sees the VPN's IP.

* VPN sees who (account, personal IP, etc.) and what (CDN)
* CDN sees where (domain name)
* DNS sees where (domain name)

Before ECH, the VPN could see who, what, and where

@a32 #PeerTube? You can also use YouTube Music via #ViMusic, which reduces the tracking a lot since there are no logins needed.

#WhatsApp is not a messenger, it really had become the next generation of #Facebook. It has all the pieces in place: masses of users, massive groups where anyone can join, #advertising, etc. The only real difference is that they have to put some of the logic in the client app, because servers see message #metadata, but not content.

As a company, Facebook only knows how to do #SurveillanceCapitalism so it is no wonder that they turn everything into #addictive spying machines to #track us.

@drwhax Sounds like a christmas cactus?

@Werhaus What is relatively new is that masses of people followed the same stupid route all while #tiktok-ing and #instagram-ing away about it. The police had to physically block the route to stop the sheeple stream

A glimpse into our future when packs of #sheeple guided by #AI gone wrong to stupid things en masse: "Google Maps misleads Californians into the desert during dust storm"

https://www.sfgate.com/travel/article/google-maps-leads-californians-i-15-desert-18509727.php

Danke #Falter, alle soll wissen dass die Nazis Autos Vorrang in die Stadt gegeben haben:

Doch der technologische Fortschritt und die nationalsozialistische Ideologie gaben den Autos Vorrang. Die Straßenverkehrsordnung von 1938 machte das „Kraftfahrzeug“ zum „Volksfahrzeug“, „der Langsame“ habe auf „den Schnelleren“ Rücksicht zu nehmen: „Im Straßenverkehr gehen die Bedürfnisse des motorisierten Schnellverkehrs den Bedürfnissen der Fußgänger vor.“
https://www.falter.at/zeitung/20231121/den-guertel-enger-schnallen

@jcaleitao thanks, great to know it is still supported! Thanks for running it.

@jcaleitao #FDroid has been trying to use your #IPFS gateway, but it does not seem to be working. https://ipfs.joaoleitao.org/ipfs/bafybeifx7yeb55armcsxwwitkymga5xf53dxiarykms3ygqic223w5sk3m returns "502 Bad Gateway" but that CID works on other gateways. Are you still maintaining your gateway? Are there restrictions on what it will host? f-droid.org is all free open source software apps, so should be uncontroversial.

@calyxos @LineageOS I can get these Motorola devices in Austria for 120€-150€, that is really affordable for a trusted phone!

@xoagray@meow.social @eff @avon_deer There are more and more options, some are even easy to switch to:

* #Jitsi hosted by an org you trust beats all the other video calls
* #Nextcloud #Syncthing etc for cloud services
* #NewPipe #ViMusic #RadioDroid for music and media
* #LineageOS #CalyxOS etc with #MicroG and #FDroid
* #Signal for messaging