Category: internet su

Distrusting Symantec CA – what should we do?

I just learned about this. Too late, perhaps.

https://groups.google.com/forum/#!msg/mozilla.dev.security.policy/fyJ3EK2YOP8/yvjS5leYCAAJ

https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html

Mozilla has distrusted Symantec CA from Nightly, but if we want to use the stable non-Nightly version, should we distrust Symantec in about:preferences ourselves? The second link I provided says:

Symantec’s PKI business, which operates a series of Certificate Authorities under various brand names, including Thawte, VeriSign, Equifax, GeoTrust, and RapidSSL, had issued numerous certificates that did not comply with the industry-developed CA/Browser Forum Baseline Requirements.

Should we also distrust Thawte, VeriSign, Equifax, GeoTrust, and RapidSSL?

I understand this will disrupt a lot of browsing, but we can always distrust them in a second browser that’s used for secure things like messaging, banking, shopping, etc.

TL;DR Should we distrust Symantec, Thawte, VeriSign, Equifax, GeoTrust, and RapidSSL CAs?

Found here

Looking for privacy advice on using Facebook

For personal reasons I’d like to be able to connect to some people on Facebook, which I have never used. I’d like to trade pictures, more than anything else. I know there are other options, I run my own severs and share links but these are people who aren’t tech savvy and they have not been interested in using those other options when everyone is on Facebook.

I use most of the software recommended in this sub.

What other things do i need to do before I take this crazy plunge? Is there a “safer” way to do this? Virtual machine? Some other blocking plugins?

For those of you who are getting ready to tell me that there’s no safe way to do anything, please, you’re preaching to the choir. I’m finding myself at a crossroads and I’m having to make decisions that aren’t what I want deep down. I’d just like to be able to satisfy a very old sick woman who wants to see her great grandkids regularly.

Found here

BBC will not appeal against Sir Cliff ruling

BBC will not appeal against Sir Cliff ruling:

BBC will not appeal against Sir Cliff ruling

From here

FDVT: Data Valuation Tool for Facebook Users

FDVT: Data Valuation Tool for Facebook Users:

FDVT: Data Valuation Tool for Facebook Users

From here

Tutanota app is live on F-droid (FOSS store)

Tutanota app is live on F-droid (FOSS store):

Tutanota app is live on F-droid (FOSS store)

From here

Does Instagram really use my mic for Ad’s ??

I was talking to my friend about taking admission in a Tuition Centre to prepare for my SAT Exam and when I got back home and opened my Instagram every fucking ad I got on IG was about these places to prepare for “SAT” …This didn’t happen to me before…

Found here

Privacy Possum is Privacy Badger on Steroids

Privacy Possum is Privacy Badger on Steroids:

Privacy Possum is Privacy Badger on Steroids

From here

Can windows 7 and my dumbphone listen to me?

Hello!

I have a few questions: I use windows 7 and windows 8. Can Microsoft listen to you (like they do with windows 10)?

Also, I’ve always used dumbphones, the one I use now is a 2011 Samsung Player city: https://www.lesmobiles.com/telephones/samsung-player-city.html It’s app-free, android-free etc, but it has wifi and bluetooth. Can the GAFAM etc listen to me? And can the government? Also, I installed the FB “app” although it’s not an app like Android’s FB app for example, it’s only 143 KB and FB didn’t ask any permissions etc or didn’t ask me to agree to it’s T&C, and it downloaded in the “games” folder. Do you think it listens to me continuously like it does on smartphone apps?

Of course I searched these infos online but couldn’t find anything. Thank you very much 🙂

Found here

FYI – Reddit’s hack response causes concern:

FYI – Reddit’s hack response causes concern::

FYI – Reddit’s hack response causes concern:

From here

Reddit Admins explain recent Security Breach

Reddit Admins explain recent Security Breach:

Reddit Admins explain recent Security Breach

From here