On Thu, 2013-06-20 at 18:41 +0200, Ralf Mardorf wrote: > On Thu, 2013-06-20 at 10:44 -0500, John Hasler wrote: > > Governments just don't give a damn about your desktop. Sorry if that > > bruises your ego. They may be interested in your email and Websurfing > > in the unlikely event that you are a "person of interest", but they > > can get that from your provider. > > Correct, if they would spy my machine, they would risk, that I would > notice it soon or later, but if they do it at another location, that is > beyond my scope. > > OTOH they might be interested to get the private openPGP keys, just to > take a look, if we're "persons of interest", so a backdoor to our PCs > would be from interest for them too. > > The solution is very simple. My machine that is for everyday usage > doesn't contain secrets. It's not a secure machine and I'm aware of this > fact. If I ever have the need to share top secrets, I would set up > another machine, with all kinds of protections and I only would connect > it to the Internet, when it's absolutely needed. We e.g. could decrypt > and read mails on a machine, that is never connected to the Internet and > then e.g. use a self build (self soldered) USB stick to transmit it > between our computers etc. pp..
That might work for an actual terrorist, but I am a citizen and I do not think it is acceptable to have to act like a terrorist to keep my humble, everyday "secrets" private. This government does not make any effort to spy only on terrorists or foreigners, it digests everything it can and every few months we find out they collect even more than we thought. Even worse, Mr Snowden and other have shown there is little regard for that information once it is collected. Interested parties can and do tap into that information for their own private, non-terrorist-catching purposes. Maybe everyone is predisposed to make a joke of the problems that are largely beyond our control (ie government, corporations and the failure of our "democracy" to have any power to restrain them). But with debian I have powerful tools to protect myself and I would like to have some sense that those tools are built with some significant safeguards rather than everyone just assuming it is too hard to hack or such hacking could easily be detected. I hope the developers have given these issues a lot of thought. It is a sad day when security through obscurity is a main argument on a debian mailling list. Maybe I should have asked on a dev list, but that is something I don't do because DMs and DDs have more important things to do than instruct random people on details of their work. The reason I asked here is because the searches I did on debian and debian related sites didn't bring up much relevant info. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1371847940.10674.25.ca...@fast.cercy.net
