lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Wed, 14 Nov 2007 09:20:56 +0100
From: Florian Echtler <echtler@...tum.de>
To: imipak <imipak@...il.com>
Cc: Full Disclosure <full-disclosure@...ts.grok.org.uk>,
	Georg Schwarz <georg.schwarz@...enet.de>
Subject: Re: Standing Up Against German Laws - Project
	HayNeedle

> > So it wouldn't make much sense to create connection noise on a TCP or
> > HTTP basis, as this stuff isn't logged. I think one should rather
> > concentrate on generating email noise in this regard.
> So the FD trolls are protecting us from the surveillance state(s)? Eat
> your heart out, Robert K. Merton.
Just to make myself clear: I don't think it is a viable option to create
email noise, I just pointed out that it makes more sense than TCP/HTTP
noise.

As for using encryption: the fact that communication has happened (with
respect to email, at least) can't be hidden, at least not if one or both
ends of the communication are with a big public email provider.
(Remember that you only have to comply with this law if you provide
email/internet/telephony to the _public_, i.e. if you are a private
person with a private mailserver for your family and friends, this
doesn't apply to you - yet.)

Personally, I think that the best option to act against this nonsense is
a lawsuit at the Federal Constitutional Court (aka
Bundesverfassungsgericht), which has shown in the past that it is
willing to live up to its name and defend the "Grundgesetz" against too
information-greedy governments.

Yours, Florian

Download attachment "signature.asc" of type "application/pgp-signature" (190 bytes)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ