From george at ceetonetechnology.com Mon Jul 5 18:41:31 2021 From: george at ceetonetechnology.com (George Rosamond) Date: Mon, 5 Jul 2021 18:41:31 -0400 Subject: [talk] July 7 NYC*BUG: Why Privacy/Security (usually) Needs Anonymity Message-ID: Why Privacy/Security (usually) Needs Anonymity, George Rosamond 2021-07-07 @ 18:45 EDT - Zoom https://www.nycbug.org/index?action=view&id=10685 IMPORTANT: For Zoom meeting details, email to rsvp AT lists.nycbug.org, and details will be sent on the day of the meeting. Q&A will be via IRC on libera.chat, channel #nycbug In an uncensored and unleashed version of an ISSA Privacy SIG presentation from June, George will be making a strong declaration relevant to the times: why privacy and security (usually) need anonymity. As privacy finally becomes an acceptable and even popular service and product feature, its sibling anonymity is still carries nefarious connotations. Privacy advocates onced faced questions like "do you have something to hide?" Similar retorts are now posed to anonymity advocates. But creating privacy solutions without anonymity means ignoring a core aspect of (corporate,nation-state) surveillance: metadata. Knowing who talked to whom, when did they talk and for how long, makes the actual content of the communications less relevant in an era of mass surveillance. Cut down to the basics and unfettered, we'll look at the changing environment of privacy, relating it to anonymity then approach some of the basic ingredients necessary for adapting anonymity to technical solutions today. And yes, the relevance of BSD Unix will be woven throughout, somehow, someway. We encourage questions and even wildly incorrect opinions before the meeting on the talk@ mailing list and on IRC at libera.net #nycbug. For Zoom meeting details, email to rsvp AT lists.nycbug.org, and details will be sent on the day of the meeting. Q&A will be via IRC on libera.chat, channel #nycbug Speaker Biography George Rosamond is a founder and long-time admin@ member of NYC*BUG. He's the co-founder and CTO of ClearOPS, a privacy and security technology startup. A sysadmin by trade with citizenship in BSD Unix land, his area of interest and expertise lies with privacy enhancing technologies, most importantly with the Tor Project. He thrives on creating and designing unorthodox solutions to ordinary problems, but so do most other people in the *BSD community. From george at ceetonetechnology.com Wed Jul 7 22:13:13 2021 From: george at ceetonetechnology.com (George Rosamond) Date: Wed, 7 Jul 2021 22:13:13 -0400 Subject: [talk] tonight's presentation slides Message-ID: Easily accessible over Tor Browser. https://mirrors.nycbug.org/pub/anonymity-presentation/ Thanks for the fun meeting. g From george at ceetonetechnology.com Thu Jul 8 17:06:09 2021 From: george at ceetonetechnology.com (George Rosamond) Date: Thu, 8 Jul 2021 17:06:09 -0400 Subject: [talk] DoH and Firefox Message-ID: <23e1a428-3252-42a3-90d1-3470d3d16143@ceetonetechnology.com> Should be a refresher for anyone who was at the "moments before COVID Vixie meeting" March 3 2020... Last night I mentioned the DOH/DNS over HTTPS (versus DOT/DNS over TCP) and Firefox and it's in the news today: https://blog.mozilla.org/en/mozilla/news/firefox-by-default-dns-over-https-rollout-in-canada/ Gotta love the headline: Firefox extends privacy and security of Canadian internet users with by-default DNS-over-HTTPS rollout in Canada While it's not just Cloudflare as the sole DoH provider with Mozilla's Trusted Recursive Resolvers, it does mean that operating system and network settings are bypassed by the browser. Encrypting DNS lookups is the right thing to do, without question, but that's why DoT is the better direction. Tor Browser solved this issue a long while ago with tor-resolve. Again, a useful example of privacy in relation to anonymity. You will gain privacy over regular UDP/53 DNS unencrypted lookups, and enjoy the centralization of all your resolving with one of the TRR members. They will work very hard to keep your lookups private from parties like your ISP. And then they end up with all the metadata anyone needs to know about your internet browsing activities. All in the name of privacy, of course. g From george at ceetonetechnology.com Thu Jul 8 18:50:46 2021 From: george at ceetonetechnology.com (George Rosamond) Date: Thu, 8 Jul 2021 18:50:46 -0400 Subject: [talk] the onion video mentioned Message-ID: Sorry to pester the list again, but I had mentioned the Alec Muffett video about onion networking which I strongly recommend. It's not a traditional Tor talk by any means. He starts by talking about the previous internet worlds and finger, etc. Why and How you should start using Onion Networking https://www.youtube.com/watch?v=pebRZyg_bh8 Alec built out the Facebook and NYTimes onion sites. g PS the real funny part of it is that I was searching for the video, and found that Sevan had posted it to tilde.news five days ago. From george at ceetonetechnology.com Tue Jul 13 18:28:42 2021 From: george at ceetonetechnology.com (George Rosamond) Date: Tue, 13 Jul 2021 18:28:42 -0400 Subject: [talk] HamBUG Message-ID: <2c33f867-cbd4-1180-3899-9f6747ee50f6@ceetonetechnology.com> FYI, HamBUG (as in Hamilton, Canada) is starting an informal chat on Jitsi now... https://meet.jit.si/hambug g From jklowden at schemamania.org Wed Jul 14 16:31:12 2021 From: jklowden at schemamania.org (James K. Lowden) Date: Wed, 14 Jul 2021 16:31:12 -0400 Subject: [talk] HamBUG In-Reply-To: <2c33f867-cbd4-1180-3899-9f6747ee50f6@ceetonetechnology.com> References: <2c33f867-cbd4-1180-3899-9f6747ee50f6@ceetonetechnology.com> Message-ID: <20210714163112.c9d776229ec3c16e362dd13a@schemamania.org> On Tue, 13 Jul 2021 18:28:42 -0400 George Rosamond wrote: > HamBUG (as in Hamilton, Canada) Distance to Hamilton from here: 702 miles (fastest route) Distance to NYC from here: 411 miles I realize, speed of light and all, that's not very different, but nice try. I'm still a proxy New Yorker. --jkl From jkeenan at pobox.com Thu Jul 15 11:41:34 2021 From: jkeenan at pobox.com (James E Keenan) Date: Thu, 15 Jul 2021 11:41:34 -0400 Subject: [talk] tonight's presentation slides In-Reply-To: References: Message-ID: <84968764-41ee-6464-d3f0-d9f187cc8ee6@pobox.com> On 7/7/21 10:13 PM, George Rosamond wrote: > Easily accessible over Tor Browser. > > https://mirrors.nycbug.org/pub/anonymity-presentation/ > Apparently moved to: http://mirrors.nycbug.org/pub/presentations/20210707-anonymity/ From mcevoy.pat at gmail.com Tue Jul 27 11:25:38 2021 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Tue, 27 Jul 2021 11:25:38 -0400 Subject: [talk] Aug meeting Message-ID: <91B3FD11-1E77-422B-B675-B71031CEEAD5@gmail.com> Does anyone here have an idea for our upcoming Aug 4th meeting? Any projects they would like to give a talk on? One idea I had was that we could do a round table talking about projects we are working on or things that caught our interest. Think of it as a live action Dragonfly Lazy Reading session. How does that sound? Hope you are all well and enjoying the summer. Patrick From jondrews at fastmail.com Tue Jul 27 16:42:28 2021 From: jondrews at fastmail.com (Jonathan Drews) Date: Tue, 27 Jul 2021 14:42:28 -0600 Subject: [talk] Aug meeting In-Reply-To: <91B3FD11-1E77-422B-B675-B71031CEEAD5@gmail.com> References: <91B3FD11-1E77-422B-B675-B71031CEEAD5@gmail.com> Message-ID: On Tue, Jul 27, 2021 at 11:25:38AM -0400, Pat McEvoy wrote: > Does anyone here have an idea for our upcoming Aug 4th meeting? Any projects they would like to give a talk on? One idea I had was that we could do a round table talking about projects we are working on or things that caught our interest. Think of it as a live action Dragonfly Lazy Reading session. How does that sound? Sounds like a great idea to give roundtable talks. What time would we meet on Wednesday, August 4th? Can we use Jitsi as Zoom does not work well on OpenBSD (https://meet.jit.si/) ? -- Kind regards, Jonathan From mcevoy.pat at gmail.com Tue Jul 27 18:41:21 2021 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Tue, 27 Jul 2021 18:41:21 -0400 Subject: [talk] Aug meeting In-Reply-To: References: Message-ID: <2D17EF39-D4BC-4BBE-A46B-F764E3A170D0@gmail.com> > On Jul 27, 2021, at 16:43, Jonathan Drews wrote: > > ?On Tue, Jul 27, 2021 at 11:25:38AM -0400, Pat McEvoy wrote: >> Does anyone here have an idea for our upcoming Aug 4th meeting? Any projects they would like to give a talk on? One idea I had was that we could do a round table talking about projects we are working on or things that caught our interest. Think of it as a live action Dragonfly Lazy Reading session. How does that sound? > > Sounds like a great idea to give roundtable talks. What time would we > meet on Wednesday, August 4th? Can we use Jitsi as Zoom does not work > well on OpenBSD (https://meet.jit.si/) ? > > -- > Kind regards, > Jonathan > I am glad you like the round table idea. We are overdue in testing Jitsi for our meetings. I will give it a try over the weekend and see. As for time it would be the same 18:45 EDT we have always had. From jondrews at fastmail.com Wed Jul 28 21:22:26 2021 From: jondrews at fastmail.com (Jonathan Drews) Date: Wed, 28 Jul 2021 19:22:26 -0600 Subject: [talk] Aug meeting In-Reply-To: <2D17EF39-D4BC-4BBE-A46B-F764E3A170D0@gmail.com> References: <2D17EF39-D4BC-4BBE-A46B-F764E3A170D0@gmail.com> Message-ID: On Tue, Jul 27, 2021 at 06:41:21PM -0400, Pat McEvoy wrote: > > I am glad you like the round table idea. We are overdue in testing Jitsi for our meetings. I will give it a try over the weekend and see. As for time it would be the same 18:45 EDT we have always had. > Pat and others: Here is a little help for configuring Audio and Video on OpenBSD: The primary reference is: https://www.openbsd.org/faq/faq13.html in addition to the man pages. To get audio and video working on OpenBSD: Add yourself to group wheel in /etc/group. Then do as root: # chmod g+rw /dev/video0 or whatever your video device is. Find it in dmesg. In /etc/sysctl.conf (file is in /etc/examples) add: kern.audio.record=1 kern.video.record=1 This file should be moved to /etc Add the following lines to /etc/mixerctl.conf (mixerctl.conf is in /etc/examples). --------------------------- # $OpenBSD: mixerctl.conf,v 1.1 2014/07/16 13:21:33 deraadt Exp $ # # mixerctl(1) configurable parameters. See mixerctl.conf(5) for details. # # output volume value for most audio cards # outputs.master=200 record.enable=on <------ add this line. -------------------------- Again, mixerctl.conf should be in /etc You'll have to experiment as your laptop may not have the same entries as my mixerctl.conf. Invariably they should begin with "record." Do # mixerctl -av to find the settings As an aid in getting your microphone to work use aucat (see man 1 aucat). To do a test recoding do: $ aucat -o test.wav to play back the rscording, to see if your microphone is working do: $ aucat -i test.wav I have used Jitsi several times from my OpenBSD T440 Laptop. The only difficulty was sharing my desktop. Firefox froze when doing that. My guess is that happens because of pledge. Video and audio worked great. Response times can be bad if you use Jitsi over WiFi. I switched to ethernet and my signal strength improved. To adjust the volume of the microphone and speakers use cmixer. cmixer is in packages. We can have a test meeting this weekend, if anyone wants to participate. https://meet.jit.si/ is the site I use. -- Kind regards, Jonathan