Hope nobody relies on Fastmail or some other Aussie outfit...



https://www.macobserver.com/news/its-official-australia-bans-encryption/

https://www.reuters.com/article/us-australia-security-data/australia-passes-bill-to-force-tech-firms-to-hand-over-encrypted-data-idUSKBN1O42SR



The bill provides for fines of up to A$10 million ($7.3 million) for institutions and prison terms for individuals for failing to hand over data linked to suspected illegal activities.

When it becomes law, Australia will be one of the first nations to impose broad access requirements on technology firms, after many years of lobbying by intelligence and law enforcement agencies in many countries, particularly the so-called Five Eyes nations.

The Five Eyes intelligence network, comprised of the United States, Canada, Britain, Australia and New Zealand, have each warned that national security was at risk because authorities were unable to monitor the communications of suspects.

We're going back to the dark ages with laws like this. Freedom is under attack more than ever.

I'm actually surprised this didn't happen sooner. I remember the concern from the security theater state when PGP was released to the public in the early to mid-90s. God forbid that people should be able to communicate with one another without the all-seeing state being able to monitor every word and confirm if you are a threat or not.

Funny how "Five Eyes" territories are much the same as those that comprise Orwell's "Oceania".

And by "funny" I mean "it fucking figures".

I'm actually surprised this didn't happen sooner. I remember the concern from the security theater state when PGP was released to the public in the early to mid-90s. God forbid that people should be able to communicate with one another without the all-seeing state being able to monitor every word and confirm if you are a threat or not.

I laughed heartily at such "concern," since the (((author))) of PGP was part of the Problem, and didn't serve a day in Federal prison for something you or I would have gotten a life-sentence for. The "concern" was contrived then, just as it was contrived when we were told the iPhone has "unbreakable encryption," and that was "dangerous" since "terrorists could hide from 'justice' (sic)."

Need to trot out steganography, and say what I never saw that, someone must have snuck it into my picture.

I dunno, anyone with a Linux box has encryption built in. I don't know how they are going to enforce.

I dunno, anyone with a Linux box has encryption built in. I don't know how they are going to enforce.

You can "use" encryption, but must hand over the keys under penalty of gulag.

You can "use" encryption, but must hand over the keys under penalty of gulag.

Then there are applications like Signal which uses a rotating key.

Sure officer, here is my key. Close session, new key.... lol

Then there are applications like Signal which uses a rotating key.

Sure officer, here is my key. Close session, new key.... lol

I'm not a tech wizard, but I don't doubt that the technology to circumvent this is probably very easy to implement.

Then there are applications like Signal which uses a rotating key.

Sure officer, here is my key. Close session, new key.... lol

I suspect this is crafted in such a manner as to mean "give us a key that works, or else."

I'm not a tech wizard, but I don't doubt that the technology to circumvent this is probably very easy to implement.

At this point, people won't stop using end user encryption and VPNs. However, they will make "an example of" a few soon enough.

I'm not exactly sure how those commonwealth nations work,

but new laws apparently get generated when someone has a Parliamentary Movement in the lav.

Some are recommending it to replace U.S. Congress as antiquated.

That is too bad.

Wasn't Fastmail a decent service ?

That is too bad.

Wasn't Fastmail a decent service ?

Fastmail was a decent service. ProtonMail has stepped up, and claim that the encryption key upon account creation cannot be recovered by them or anyone. I've got an account with them and have been happy.

https://protonmail.com/

I suspect this is crafted in such a manner as to mean "give us a key that works, or else."

That's the beauty of applications like signal. That is not possible since the key is changed periodically. It's intended so that the conversation is only for the sender and recipient as it should be. It is end to end encryption, they've also incorporated end to end encrypted VOIP calling.


https://signal.org/

That is too bad.

Wasn't Fastmail a decent service ?

Yes, I have a friend very disappointed about it.

Fastmail was a decent service. ProtonMail has stepped up, and claim that the encryption key upon account creation cannot be recovered by them or anyone. I've got an account with them and have been happy.

https://protonmail.com/

ProtonMail has shady ownership/control...their links - supposedly limited to ProtonVPN, but I suspect it's more extensive - to Tesonet make them unsuitable and untrustworthy.

Check out Tutanota, Posteo, and Runbox.

That's the beauty of applications like signal. That is not possible since the key is changed periodically. It's intended so that the conversation is only for the sender and recipient as it should be. It is end to end encryption, they've also incorporated end to end encrypted VOIP calling.


https://signal.org/

I use Signal at the insistence of a friend. :)

ProtonMail has shady ownership/control...their links - supposedly limited to ProtonVPN, but I suspect it's more extensive - to Tesonet make them unsuitable and untrustworthy.

Check out Tutanota, Posteo, and Runbox.

https://vpnscam.com/tesonet-data-mining-company-owns-nordvpn-protonmail-protonvpn/

https://vpnscam.com/tesonet-data-mining-company-owns-nordvpn-protonmail-protonvpn/


Proton VPN responds saying the article is not true:

https://www.reddit.com/r/ProtonVPN/comments/8ww4h2/protonvpn_and_tesonet/

Proton VPN responds saying the article is not true:

https://www.reddit.com/r/ProtonVPN/comments/8ww4h2/protonvpn_and_tesonet/

ProtonVPN desperately attempts not to lose customers...

NordVPN tried the same shifty tactics.

ProtonVPN desperately attempts not to lose customers...

NordVPN tried the same shifty tactics.


You may be right. But I’d like to see more concrete evidence.

In his comments Andy doesn’t say that Proton doesn’t do any data mining


Further comments on the smear campaign against us:

The false allegations were originally spread by US-based VPN provider, Private Internet Access (PIA), who also happens to be a major competitor. We think it says a lot about them to be engaged in shady marketing tactics.
ProtonVPN/ProtonMail does not, and has never used any IPs or servers from Tesonet (this can be publicly verified)
Proton does not share any employees (or company directors) with Tesonet. This is also a verifiable fact.
Proton has not used Tesonet for HR since 2016.
There is little actual evidence that Tesonet does data-mining (in any case we have never used infrastructure from them).
Proton has many suppliers (Dell, Juniper, Radware, etc). If you dig enough, you can find dirt on all of them and create a false narrative. We do business with other tech companies - this is not a secret or abnormal.

We're not surprised to be attacked given how shady the VPN industry is. If anything, it indicates to us that we are doing something right.

I have been using both Proton Mail and Proton VPN. Who, in this corrupt world, has a dependable VPN?

Who, in this corrupt world, has a dependable VPN?

https://airvpn.org/

https://mullvad.net/

Quality and trustworthiness of VPNs are inverse to their mass advertising.


For email:

https://posteo.de/en ($14/year)

https://tutanota.com/ (free & paid accounts)

https://runbox.com/ ($20 and up/year)