This was my initial criticism when comparing it to Session yes. The hiding IPs feature improves this, but ideally fully rotating them would be ideal, I agree.
Btw, keep up your XMR posts =)
SimpleX conversations break it up into two servers to hide metadata. There is debate over if this technique is good enough. Under this system, they pick your send, you pick your receive
As we wrote here:
I'm going to write about Keet once they open source.
Keet is peer to peer UDP via holepunching. This has pros and cons.
Pro:
-Faster file transfers and video chat
-Less censored group chats or individual
-One of the few unstoppable group chats that doesn't rely on hiding the server. There is no server
-Avoid government domains
Con:
-UDP packets won't work over Tor
-Not as easy to hide this networking style from global networking surveillance
-Not yet open source
-Other person has to be online for peer to peer
Comparison with others:
Session group chats are on a regular server, while as Keet is peer to peer, so it's more unstoppable for group chat than the other things on this list. Keet also has the group video chats in a way that others do not.
But Keet requiring UDP from your home makes it less private than anything you can onion route. So no Tor even on, or onion routing like Session.
I'm going to write about Keet once they open source.
Keet is peer to peer UDP via holepunching. This has pros and cons.
Pro:
-Faster file transfers and video chat
-Less censored group chats or individual
-One of the few unstoppable group chats that doesn't rely on hiding the server. There is no server
-Avoid government domains
Con:
-UDP packets won't work over Tor
-Not as easy to hide this networking style from global networking surveillance
-Not yet open source
-Other person has to be online for peer to peer
Comparison with others:
Session group chats are on a regular server, while as Keet is peer to peer, so it's more unstoppable for group chat than the other things on this list. Keet also has the group video chats in a way that others do not.
But Keet requiring UDP from your home makes it less private than anything you can onion route. So no Tor even on, or onion routing like Session.
What VPN? They usually ban spammer IPs, which turns into most of them
thanks for posting. you thought the UI was too basic or more confusing?
Briar is peer to peer via Tor. This has pros and cons.
Pro:
-Everything stays on your local device
-Uses Tor Onions to avoid government domains
-It can do bluetooth to bluetooth, for like an in-person protest for example
Con:
-UI sucks
-Other person has to be online
-You can use mailbox drops to host a server, but then itâs really just like XMPP over Tor
-Group chat user interface is horrible and confusing
Privacy Ranked:
Iâm going to rank these least private to most, and explain why on each step.
Discord
Why: Discord is as bad as it gets. It's not only completely unencrypted, but they maliciously sell your data and have such huge restrictions on VPN IPs and SMS VoIP verification.
SMS
Why: Itâs going naked over the phone lines, but isn't heavily sold in such a rotten way as Discord.
VoIP
Why: VoIP is just as horrible as SMS, but separates your real physical location from the cell tower
Telegram
Why: Unlike VoIP, it does have end-to-end encryption, but only on mobile. And with weak encryption that they made up, that hasnât been properly reviewed [Source: Madaidans of Whonix]
Signal
Why: Telegram has no metadata protection, while as Signal has sealed sender. Signalâs encryption is stronger and more thoroughly peer reviewed. Also Signal has a good legal track record and isnât strict on crypto VoIP burners like Telegram. Having phone numbers isn't that big a deal if I paid $1 of crypto for a random VoIP burner in Cambodia without restrictions on Tor. Btw, my Signal # is Cambodian: +855 68 504 905
Matrix
Why: Tucker Carlsonâs Signal was hacked. Also, academic papers have shown Signalâs sealed sender has flaws. If you self-host Matrix, that's much more control than trusting Amazon's AWS, which is a CIA contractor. Many open source projects use Matrix rooms.
Session
Why: Most Matrix users use Matrix.org which is Cloudflare with Gmail verifying the emails. Setting up a Matrix server is more expensive and complex than just opening Session and hitting "create account". Sessionâs onion routing, non-location based DNS, and decentralization is stronger than Matrix's Cloudflare-dominated network.
SimpleX
Why: Session lacks (by default) rotating keys and multiple identities. You can manually rotate keys using your blockchain name, and manually get multiple accounts at once via enabling it on Linux, but most wonât want to do this just to avoid government domain names (which most SimpleX users use). Session is better for censorship of servers, SimpleX is better for end users being invisible.
Self-hosted Tor XMPP
Why: SimpleX is hiding from servers, but if you control the server, thatâs stronger. Even a self-hosted SimpleX server only picks half the conversation. Also, XMPP has a longer proven track record, which is more eyes on the code. Now if you DON'T self-host XMPP, it's way up on the list next to Matrix.
Self-hosted Tor XMPP w/ OTR
Why: OTR nukes the conversation when itâs done. It literally destroys the encryption keys. Game over bro.
Conclusion:
Anything is better than Discord. Now, let's play a game, pick a communication method I did not mention, and you tell me where you think it should rank on the list. Then, we'll discuss.
Why is it so important for conservatives to get off Big Tech?
(Linux, degoogled phone, decentralized social, ect)
1) Your enemy controls your means of finding news and publishing your content
2) Your enemy oversees everything youâre doing and can later jail you. Even if you think you're doing nothing wrong, some complex cryptocurrency transaction tax can be used years later to silence you. Look at Roger Ver who was jailed a decade later for Bitcoin taxes, even after renouncing US citizenship.
3) You have lack the technical infrastructure to resist during a crisis. The next "covid" situation will endanger you and your family because you can't get a fake vaccine passport without being watched.
4) You're a target to the woke radical left to get you fired because your political speech is tied to you. Look at NixOS, he just got ousted by Transgenders just for saying "let's all be equal"
5) You're overpaying for new electronics. Microsoft and Apple products have planned obsolescence, which is to purposefully force users to buy new products, by having them break down quickly. While as Linux often allows older PCs to work longer.
6) You don't believe your own political beliefs. If you really thought there was a deep state out to silence, kill, and control us all, then you wouldn't be blabbing about it on Twitter tied to your real name's family bank account with your life savings.
In summary, if you continue with Big Tech:
1) You're silenced
2) You're propagandized
3) You're fired
4) You're poor
5) You're a hypocrite, you don't believe your own positions.
Some people think Linux, DeGoogled Phones, or having your own VPS is complex or beyond them. But I am here to tell you that it's not that different than what youâre already used to. And the only real obstacle is in your mind. Learn what you can from our site, and reach out for help if you need it. Help me, help you.
Remember yankee, Fireworks are illegal
So don't get caught celebrating that you're supposed to be free
July 4 Special:
Pro/Con of the United States
Pro:
-Demonstrated to the world that free market capitalism produces wealth
-Economic freedom in the 1800s and 1900s lead to massive innovation and productivity to improve many people's lives
-Original focus on individual constitutional rights gave a philosophical framework for global liberty
-Lots of hotspots for innovation: Silicon Valley, Wall Street, New Orleans music, & more
Con:
-Consistent military empire
-The violent empire erodes many of the civil and fiscal liberties that once made the US great
-Fiscal slavery over foreign minorities through the World Bank and IMF
-Global taxation of income, even if US citizens work in a foreign country
-While the US doesn't have the most oppressive laws compared to some dictatorships, the enforcement and surveillance is the most sophisticated. When this is combined with complex and vague laws, such as cryptocurrency, it becomes the least free place for Agorism.
Critical Security Vulnerability with Linux OpenSSH
(But donât panic)
This affects most VPS servers with SSH:
Allows remote execution of code
Nicknamed "RegreSSHion", a play on words
Key points:
--Letâs not panic, itâs difficult to pull off
--No known wild exploits
--You should update your VPS asap, but donât panic about it
--Attack takes 8 hours to complete [1]
--Attack may require up to 10,000 authentication steps [1]
--Attackers must also know the specific OS running on each targeted server. [1]
--No one has found a way to exploit 64-bit systems [1]
--Many distros have patches including Ubuntu [2][3]
--Update with the patches, youâll be ok (Use Fail2Ban too)
--Affects OpenSSH server versions 8.5p1-9.8p1
--Palo Alto Networks was NOT able to pull it off in the wild [4]
Before you panic, read this from Palo Alto:
âWhile there is PoC code for this vulnerability, there is no known activity in the wild as of July 2, 2024. Our testing of this code suggests it is not functional in our testing environment. We have been unable to successfully exploit the CVE-2024-6387 vulnerability with this PoC to achieve remote code execution.â [4]
Bottom line: Update with the patches.
Sources:
[1]
[2]
https://security-tracker.debian.org/tracker/source-package/openssh
[3]
https://ubuntu.com/blog/ubuntu-regresshion-security-fix
[4]
https://unit42.paloaltonetworks.com/threat-brief-cve-2024-6387-openssh/
Linux distro NixOS kicked the founder out
They forced him to sign a letter giving NixOS "back to the community" because he supported treating everyone as equal.
The activists were furious he did not support Transgender rights, which means discriminating against non-trans for funding and power.
Source is Lunduke (which is behind Cloudflare btw, but I gotta link the original):
What? SEC can't regulate crypto anymore?
Yeah bro, the Supreme Court overruled a previous decision on the Chevron doctrine.
What this means in plain english, is:
BEFORE when the law was vague or unclear, the individual agencies would set policy based on their expertise. So when Congress had not made the law clear, the courts would look to the agencies for guidance. This was called the "Chevron doctrine" off an earlier case in 1984 (Chevron v. NRDC).
But NOW, the Supreme Court overruled that and agencies must seek the court's guidance when the law is not clear. In other words, the SEC doing whatever they want with crypto is coming to end, as they no longer have power and authority unless the court grants it.
We could also word this as, the government is so hungry for power, that the only way to stop the madness coming from these unelected agencies, is for the Supreme Court to seize it's own power back.
To summarize the words of a professional educated expert and legal scholar, that I consulted on matters of the highest level of dignity, we could word this:
"Gensler, you lost you dumb assclown"
maybe as an option on groups. but for mobile devices with 3 hops networking? takes the instant out of instant messages
All Session messenger rooms are getting DDoS'ed with a flood of spam.
Our room is now in lockdown, no new posts.
Be advised simpleX could be a target next. These anonymous messengers with zero credentials to make new burners can be easily flooded with bots. Matrix and XMPP are tied to government domains, so it's easier to control where bots are coming from or verification on the big servers.
Hereâs the key point:
The more control group owners have against DDoS of group chats, the less metadata protection the 1-on-1 chat users have.
This US Supreme Court Ruling is a big deal
It means the government CAN pressure social media companies to censor anything
You can use technology like Nostr to resist it, BUT,
Technology canât help you stop the stateâs violence.
Therefore,
Without the privacy to post anonymously, there is no free speech.
Fast key facts to know about the case:
1) It isnât over, it just got sent to the lower courts
2) Supreme Court dismissed it that âplaintiffs lacked standingâ
3) This doesnât mean itâs done, it means they have to prove (again) that they were harmed in lower courts
4) Dissenting judges cited significant evidence in favor of the defendants
We lost the battle. But the war can be won.
Full official text:
hit join group:
simplifiedprivacy@subscribe.simplifiedprivacy.is
Info: