• 4 Posts
  • 18 Comments
Joined 3 years ago
cake
Cake day: April 5th, 2022

help-circle



  • tavu@sopuli.xyztoPrivacy@lemmy.mlany xmpp user ?
    link
    fedilink
    arrow-up
    5
    ·
    6 months ago

    Yep. It works and it’s awesome. I use conversations on android devices and dino and gajim on desktops, various family members use siskin on iOS.

    With zero app or server-software or provider lock-in, and an actual in-practice diversity of apps and providers, the whole thing seems pretty immune to enshittification.



  • […] the attack is an extremely expensive nation state level operation that doesn’t scale.

    About $250 at most. Quoting the linked page:

    Below is a list of equipment we used for the experiments.

    • (1) Software Defined Ratio (SDR): Ettus USRP B210 USRP, ~$2100.
    • (2) Low Noise Amplifier (LNA): Foresight Intelligence FSTRFAMP06 LNA, ~$200.
    • (3) Directional Antenna: A common outdoor Log-periodic directional antenna (LPDA), ~$15.
    • (4) A laptop, of course.

    Note that the equipment can be replaced with cheaper counterparts. For example, USRP B210 can be replaced with RTL-SDR that costs ~$30.

    To reproduce the attack: our GitHub repository provides the codes and instructions for reproducing and understanding the attack. We have prepared a ready-to-use software tool that can produce real-time reconstructions of the eavesdropped videos with EM signal input from the USRP device.






  • tavu@sopuli.xyztoPrivacy@lemmy.mlEtherpad or Cryptpad
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    9 months ago

    To be clear though: by E2EE here I mean browser-side encryption with zero-knowledge on the server side.

    Etherpad is still encrypted in transit with https; only the server can snoop.

    Cryptpad and other web-based E2EE services can still be completely compromised server-side by serving malicious code to the browser, and practically the user would never know.


  • tavu@sopuli.xyztoPrivacy@lemmy.mlEtherpad or Cryptpad
    link
    fedilink
    arrow-up
    7
    ·
    edit-2
    9 months ago

    Cryptpad:

    • Full-on google docs / office365 / libreoffice type replacement with collaboration.
    • E2EE
    • The complexity means it doesn’t work well on mobile, takes a while to load on a slow connection, more frequent bugs. (3.5 MiB page transfer)
    • Self-hosting is complicated.

    Etherpad:

    • A competent collaborative rich-text editor. Doesn’t do spreadsheets or presentations or […].
    • Not E2EE (you need to trust that the server a bit more).
    • Lightweight, works on slower connections, works alright on mobile. (1.7 MiB page transfer)
    • Self-hosting quite simple.

    PrivateBin:

    • Super-simple plain-text/markdown pastebin. No editing possible once saved.
    • E2EE
    • Very small. Works fine on slow connections and mobile. (0.2 MiB page transfer)
    • Self-hosting very simple.