Arthur Besse @ cypherpunks @lemmy.ml

cultural reviewer and dabbler in stylistic premonitions

---

Read more

Posts

291

Comments

883

Joined

3 yr. ago

Moderating

---

it’s being answered in the github thread you linked

The answers there are only about the fact that it can be turned off and that by default clients will silently fall back to "unsealed sender".

That does not say anything about the question of what attacks it is actually meant to prevent (assuming a user does "enable sealed sender indicators").

This can be separated into two different questions:

1. For an adversary who does not control the server, does sealed sender prevent any attacks? (which?)
2. For an adversary who does control the server, how does sealed sender prevent that adversary from identifying the sender (via the fact that they must identify themselves to receive messages, and do so from the same IP address)?

The strongest possibly-true statement i can imagine about sealed sender's utility is something like this:

For users who enable sealed sender indicators AND who are connecting to the internet from the same IP address as some other Signal users, from the perspective of an an adversary who controls the server, sealed sender increases the size of the set of possible senders for a given message from one to the number of other Signal users who were online from behind the same NAT gateway at the time the message was sent.

This is a vastly weaker claim than saying that "by design" Signal has no possibility of collecting any information at all besides the famous "date of registration and last time user was seen online" which Signal proponents often tout.

False.

edit: it's funny how people downvoting comments about signal's sealed sender being a farce never even attempt to explain what its threat model is supposed to be. (meaning: what attacks, with which adversary capabilities specifically, is it designed to prevent?)

You can configure one or more of your profiles' addresses to be a "business address" which means that when people contact you via it it will always create a new group automatically. Then you can (optionally, on a per-contact basis) add your other devices' profiles to it (as can your contact with their other devices, after you make them an admin of the group).

It's not the most obvious/intuitive system but it works well and imo this paradigm is actually better than most systems' multi-device support in that you can see which device someone is sending from and you can choose to give different contacts access to a different subset of your devices than others.

You can just make a group for each contact with all of your (and their) devices in it.

Messages are private on signal and they cannot be connected to you through sealed sender.

No. Signal's sealed sender has an incoherent threat model and only protects against an honest server, and if the server is assumed to be honest then a "no logs" policy would be sufficient.

Sealed sender is complete security theater. And, just in case it is ever actually difficult for the server to infer who is who (eg, if there are many users behind the same NAT), the server can also simply turn it off and the client will silently fall back to "unsealed sender". 🤡

The fact that they go to this much dishonest effort to convince people that they "can't" exploit their massive centralized trove of activists' metadata is a pretty strong indicator of one answer to OP's question.

this is a good meme

it's among the many OSes you can run in an emulator in your web browser at https://copy.sh/v86/

sometimes a footprint represents humanity

sometimes, but in GNOME's case i think it is not intended to be a human foot but rather the foot of a mythological creature (a gnome). note that it has a squashed aspect ratio compared to a human foot, and also has only four toes.

apparently it's also problematic in some cultures: https://wiki.gnome.org/Engagement/FootAndCulturalIssue

Is this a spam campaign?

Five of the eleven comments so far (including one from OP) are all recommending the same service; all five are from accounts less than 2 months old with a one or two digit number of comments 🤔

you linked to a slop video

Why memorize a different command? I assume sudoedit just looks up the system’s EDITOR environment variable and uses that. Is there any other benefit?

I don't use it, but, sudoedit is a little more complicated than that.

tldr: it makes a copy of the file-to-be-edited in a temp directory, owned by you, and then runs your $EDITOR as your normal user (so, with your normal editor config)

note that sudo also includes a similar command which is specifically for editing /etc/sudoers, called visudo 🤪

The primary purpose of those buttons is of course to let those sites track everyone's browsing activity across every site that uses them, which does not require that anyone ever click on them.

Even if less than 0.0001% of people click them, anyone with an SEO/spammer "grindset" will assure site operators that the potential benefit of someone sharing a link they otherwise wouldn't have is still at least theoretically non-zero. And, since there is absolutely no cost at all besides an acceptable number of extra milliseconds per pageload, really, it would be downright irresponsible not to have them there!

By "solar power in operation" (in GW) i think they mean maximum output capacity rather than actual production, since these numbers add up to 923 GW while wikipedia says in 2024 there was 2.13 petawatt-hours (243 GW on average) actually produced by solar.

These articles were stolen, by the paywall operators. Elbakyan rescued them from the thieves. 🎉

encryption would prevent the modem from seeing it when someone sends it, but such a short string will inevitably appear once in a while in ciphertext too. so, it would actually make it disconnect at random times instead :)

(edit: actually at seven bytes i guess it would only occur once in every 72PB on average...)

As more data becomes available

Then we can start doing more with it

And as we do more with it

That that creates more data