fmap

## snowden-ietf93.md

      
              1 file
            
          
              28 forks
            
          
              15 comments
            
          
              150 stars
            
          
                mnot
                / snowden-ietf93.md
            
            
              Last active
              September 12, 2023 13:40
            
              
                Transcript of Edward Snowden's comments at IETF93.
              
          
    Edward Snowden at IETF 93

Edward Snowden answered questions after a showing of CITIZENFOUR at the IETF93 meeting; this is a transcript of the video recording.
For more information, see the Internet Society article.

Introduction
Scale of Pervasive Monitoring
Returning to the US
Preserving the Internet


## gpgmutt.md

      
              1 file
            
          
              26 forks
            
          
              9 comments
            
          
              223 stars
            
          
                bnagy
                / gpgmutt.md
            
            
              Last active
              March 30, 2024 07:52
            
              
                Mutt, Gmail and GPG
              
          
    GPG / Mutt / Gmail

About

This is a collection of snippets, not a comprehensive guide. I suggest you start with Operational PGP.
Here is an incomplete list of things that are different from other approaches:

I don't use keyservers. Ever.
Yes, I use Gmail instead of some bespoke hipster freedom service


## gist:3b96c48698d94c9c8419
Andy Greenberg of WIRED reports that the FBI has finally revealed how they allegedly located the server on which Silk Road was hosted, and it didn't require parallel construction. http://www.wired.com/2014/09/the-fbi-finally-says-how-it-legally-pinpointed-silk-roads-server

It was a security fail.

According to FBI agent Christopher Tarbell, as related by Greenberg: "They found a misconfiguration in an element of the Silk Road login page, which revealed its internet protocol (IP) address and thus its physical location... And when they entered that IP address directly into a browser, the Silk Road's CAPTCHA prompt appeared."

While I can only speculate about what gave away the IP address, here's a few suggestions for avoiding the latter problem, which should make your .onions slightly more secure.

First off, the webserver never should have responded to HTTP requests on the server's IP address. Only traffic which comes through the Tor hidden service, which connects to the webserver's port 80 on the loopback in

## gist:8252073
[1] pry(main)> module Kernel; alias old_p p; def p(*args); if args.any?; old_p(*args.dup); else; old_p(self); end; nil; end; end
=> nil
[2] pry(main)> p [1,2,3]
[1, 2, 3]
=> nil
[3] pry(main)> [1,2,3].each(&:p)
1
2
3
=> [1, 2, 3]

## gist:7713916
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

   Undercover communication

   It should be obvious by now, that the only way to communicate
   stealthily and securely is to avoid raising suspicion to the
   level at which the authorities might consider it worthwhile
   to put you under active surveillance (e.g., park a van with
   TEMPEST equipment by your apartment).

## typenats.hs
-- probably broken
-- no polymorphic kind signatures, which may make things cleaner
{-# OPTIONS_GHC -Wall #-}
{-# LANGUAGE DataKinds #-}
{-# LANGUAGE PolyKinds #-}
{-# LANGUAGE ConstraintKinds #-}
{-# LANGUAGE KindSignatures #-}
{-# LANGUAGE TypeFamilies #-}
{-# LANGUAGE GADTs #-}
{-# LANGUAGE TypeOperators#-}

## regex-weburl.js
//
// Regular Expression for URL validation
//
// Author: Diego Perini
// Created: 2010/12/05
// Updated: 2018/09/12
// License: MIT
//
// Copyright (c) 2010-2018 Diego Perini (http://www.iport.it)
//
	Andy Greenberg of WIRED reports that the FBI has finally revealed how they allegedly located the server on which Silk Road was hosted, and it didn't require parallel construction. http://www.wired.com/2014/09/the-fbi-finally-says-how-it-legally-pinpointed-silk-roads-server

	It was a security fail.

	According to FBI agent Christopher Tarbell, as related by Greenberg: "They found a misconfiguration in an element of the Silk Road login page, which revealed its internet protocol (IP) address and thus its physical location... And when they entered that IP address directly into a browser, the Silk Road's CAPTCHA prompt appeared."

	While I can only speculate about what gave away the IP address, here's a few suggestions for avoiding the latter problem, which should make your .onions slightly more secure.

	First off, the webserver never should have responded to HTTP requests on the server's IP address. Only traffic which comes through the Tor hidden service, which connects to the webserver's port 80 on the loopback in
	[1] pry(main)> module Kernel; alias old_p p; def p(args); if args.any?; old_p(args.dup); else; old_p(self); end; nil; end; end
	=> nil
	[2] pry(main)> p [1,2,3]
	[1, 2, 3]
	=> nil
	[3] pry(main)> [1,2,3].each(&:p)
	1
	2
	3
	=> [1, 2, 3]
	-----BEGIN PGP SIGNED MESSAGE-----
	Hash: SHA512

	Undercover communication

	It should be obvious by now, that the only way to communicate
	stealthily and securely is to avoid raising suspicion to the
	level at which the authorities might consider it worthwhile
	to put you under active surveillance (e.g., park a van with
	TEMPEST equipment by your apartment).
	-- probably broken
	-- no polymorphic kind signatures, which may make things cleaner
	{-# OPTIONS_GHC -Wall #-}
	{-# LANGUAGE DataKinds #-}
	{-# LANGUAGE PolyKinds #-}
	{-# LANGUAGE ConstraintKinds #-}
	{-# LANGUAGE KindSignatures #-}
	{-# LANGUAGE TypeFamilies #-}
	{-# LANGUAGE GADTs #-}
	{-# LANGUAGE TypeOperators#-}
	//
	// Regular Expression for URL validation
	//
	// Author: Diego Perini
	// Created: 2010/12/05
	// Updated: 2018/09/12
	// License: MIT
	//
	// Copyright (c) 2010-2018 Diego Perini (http://www.iport.it)
	//