sigmoid.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A social space for people researching, working with, or just interested in AI!

Server stats:

595
active users

#encryptallthethings

0 posts0 participants0 posts today
Datenpunks e.V.<p>Die von Datenschützer:innen und Menschenrechtsaktivist:innen sehnlichst erwartete <a href="https://fedifreu.de/tags/%C3%9Cberwachungsgesamtrechnung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Überwachungsgesamtrechnung</span></a> ist endlich da – in erster Annäherung.</p><p>Warum sie wichtig ist, erklärt <a href="https://www.heise.de/news/Ueberwachung-Eine-Gesamtrechnung-mit-offenen-Posten-10370672.html" rel="nofollow noopener" target="_blank">Heise</a>:</p><blockquote><p>Das Bundesverfassungsgericht hatte vielfach darauf hingewiesen: Weder darf der einzelne Bürger, selbst als Verdächtiger einer schweren Straftat, einer lückenlosen "Rundumüberwachung" unterliegen, noch dürfen die Befugnisse die Gesellschaft insgesamt einer auch nur annähernden Totalüberwachung unterwerfen.</p></blockquote><p>Der eigentlich nicht zu Verschwörungstheorien neigende <a href="https://background.tagesspiegel.de/digitalisierung-und-ki/briefing/ueberwachung-so-stark-durchleuchten-sicherheitsbehoerden-die-buerger" rel="nofollow noopener" target="_blank">Tagesspiegel</a> kommentiert das so:</p><blockquote><p>Wenn ganz Deutschland auf die AfD blickt, kümmert sich niemand um behördliche Überwachung der Bürger. So etwa dachten Bundesjustiz und -Innenministerium, als sie den Forschungsbericht des Max-Planck-Instituts veröffentlichten. Dieser deckt auf, wie stark Sicherheitsbehörden in Deutschland Einblick in das Leben der Bürger haben. </p></blockquote><p>Und was steht denn nun in dem begrabenen Bericht? Heise dazu:</p><blockquote><p>Ist Deutschland jetzt aber an der Grenze zur überwachten Gesellschaft -- oder gar darüber hinaus? Das kann die <a href="https://www.bmj.de/SharedDocs/Publikationen/DE/Fachpublikationen/2025_Forschungsbericht_Ueberwachungsgesamtrechnung.html?nn=144128" rel="nofollow noopener" target="_blank">nun veröffentlichte Studie</a> der Max-Planck-Forscher schlicht nicht beantworten. Dazu fehlten sowohl Daten als auch Kooperationswille.</p></blockquote><p>Ein Fazit ziehen die Autor:innen der Studie dennoch: „verfassungsrechtlich bedenklich“.</p><p>Eigentlich müsste jetzt der Gesetzgeber erst <a href="https://fedifreu.de/tags/%C3%9Cberwachungsgesetze" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Überwachungsgesetze</span></a> zurücknehmen, bevor er neue beschließt. Der <a href="https://fedifreu.de/tags/Koalitionsvertrag" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Koalitionsvertrag</span></a> liest sich aber ganz anders. Am Ende werden wieder die Gerichte entscheiden, ob <a href="https://fedifreu.de/tags/%C3%9Cberwachungsma%C3%9Fnahmen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Überwachungsmaßnahmen</span></a> rechtens waren. Bis dahin üben wir uns in digitaler Selbstverteidigung und bieten dazu Workshops an:</p><ul><li>in und um Bielefeld: <a href="https://datenpunks.de" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">datenpunks.de</span><span class="invisible"></span></a></li><li>bundesweit: <a href="https://datenfreu.de" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">datenfreu.de</span><span class="invisible"></span></a></li><li>global: <a href="https://cryptoparty.in" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">cryptoparty.in</span><span class="invisible"></span></a> • <a href="https://switching.software" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">switching.software</span><span class="invisible"></span></a> • <a href="https://endof10.org" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">endof10.org</span><span class="invisible"></span></a> /c</li></ul><p><a href="https://fedifreu.de/tags/unplugMerz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>unplugMerz</span></a> <a href="https://fedifreu.de/tags/unplugTrump" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>unplugTrump</span></a> <a href="https://fedifreu.de/tags/Massen%C3%BCberwachung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Massenüberwachung</span></a> <a href="https://fedifreu.de/tags/%C3%9Cberwachung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Überwachung</span></a> <a href="https://fedifreu.de/tags/burying" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>burying</span></a> <a href="https://fedifreu.de/tags/digitaleSelbstverteidingung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>digitaleSelbstverteidingung</span></a> <a href="https://fedifreu.de/tags/cryptoparty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cryptoparty</span></a> <a href="https://fedifreu.de/tags/cryptoseminar" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cryptoseminar</span></a> <a href="https://fedifreu.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Verschlüsselung</span></a> <a href="https://fedifreu.de/tags/encryptAllTheThings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>encryptAllTheThings</span></a></p>
Christian Pietsch<p><span class="h-card" translate="no"><a href="https://framapiaf.org/@marczz" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>marczz</span></a></span></p><p><strong>Why you should use full-disk encryption</strong></p><p>If any of the arguments I make below apply to you, you should use full-disk encryption. I am pretty sure the first argument applies to everyone. The second argument applies at least to everyone in the EU and the US state of California. The third argument applies to everyone again.</p><p><strong>You will fail to delete drives properly</strong></p><p>Storage media get lost. Most people do not know how to properly delete hard disk content before selling them, or they forget it. In the case of flash drives, or SSDs, standard tools like <code>shred</code> don't work. <code>hdparm</code> may do the trick, but this is not well known. If you are lucky, the manufacturer of you SSH provides a Windows app that lets you delete it securely. Your server does not run on Windows of course.</p><p><strong>The law demands it</strong></p><p><a href="https://fedifreu.de/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a> and similar data protection and privacy laws require you to store no <a href="https://fedifreu.de/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> (personal data) permanently. You have to anonymize PII or delete it after a few weeks. IP addresses are PII. All servers store IP addresses by default. The GDPR also demands that you use state-of-the-art technology to protect sensitive data. Full disk encryption is the state of the art.</p><p><strong>Law enforcement makes "mistakes"</strong></p><p>I'm a board member of <span class="h-card" translate="no"><a href="https://fedifreu.de/@Artikel5eV" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Artikel5eV</span></a></span>, an organisation that runs relays on the Tor network, including exit relays. Running Tor relays is perfectly legal in Germany. Nevertheless, law enforcement agencies have raided the homes of Artikel 5 e.V. board members twice. Illegally so, as a court confirmed recently. I won't run Tor relays in my home, but there is a good chance that my home will be raided one day unless all police officers and prosecutors decide to obey the law.</p><p>There is also a possibility that the rule of law might collapse in your country sooner or later. We are just witnessing it in the USA.</p><p>You already mentioned that ordinary thieves can also be a problem.</p><p><strong>Encryption is available for free</strong></p><p>So what is your case against disk encryption? It is obvious that it alone does not solve all IT security issues, but it is an important building block. <a href="https://fedifreu.de/tags/LUKS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LUKS</span></a> is reliable free and open-source software for HD encryption. If you are not using Linux, check out <a href="https://fedifreu.de/tags/VeraCrypt" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VeraCrypt</span></a>. The Raspberry Pi 5 comes with hardware acceleration for AES, so there no longer is a noticeable performance penalty for encryption.</p><p><a href="https://fedifreu.de/tags/storageEncryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>storageEncryption</span></a> <a href="https://fedifreu.de/tags/hardDiskEncryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hardDiskEncryption</span></a> <a href="https://fedifreu.de/tags/encryptAllTheThings" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>encryptAllTheThings</span></a></p>