• ZeroCool@feddit.ch
    link
    fedilink
    English
    arrow-up
    146
    arrow-down
    1
    ·
    11 months ago

    Andy Yen says draft safety standards ‘would force online services … to access, collect and read users’ private conversations’

    What the hell Australia. This isn’t gonna magically help you prevent the next Emu war.

    • WhatAmLemmy@lemmy.world
      link
      fedilink
      English
      arrow-up
      54
      arrow-down
      2
      ·
      11 months ago

      But it will help them in their corruption and self-enrichment, which is the entire purpose of all attempts to erode civil liberties.

    • x4740N@lemmy.world
      link
      fedilink
      English
      arrow-up
      36
      arrow-down
      6
      ·
      edit-2
      11 months ago

      Australia is a country with shit laws as someone who lives in Australia

      Life is fine unless you somehow manage to break those stupid laws

      For example there was that video of the one guy from Australia who wanted to ban anime, yeah some of our politician’s are that stupid

      Thankfully anime isn’t banned completely but hentai is which I find stupid because it’s fictional drawings

      • wick@lemm.ee
        link
        fedilink
        English
        arrow-up
        10
        arrow-down
        20
        ·
        edit-2
        11 months ago

        Hentai is NOT banned here in Australia. As an Australian I’m sure you knew that and had some reason to lie. The freaks who import DVDs and manga from Japan depicting minors are getting targeted by immigration, but it isn’t a general ban. But who cares about them? If they are looking for something too fucked up to be on the internet it’s probably pedophilia. Also I want you to know that every time I hear someone bring up that hentai is fictional and above criticism I assume they are an actual child molester.

    • SinningStromgald@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      1
      ·
      11 months ago

      Or Kangawars. Or Toadwars. Or Kangatoadwars becaue you know those bastards are gonna fuck and make a super beast death machine animal…thing.

  • Geek_King@lemmy.world
    link
    fedilink
    English
    arrow-up
    88
    ·
    11 months ago

    I recently switched my email from gmail to proton mail, because fuck google’s… well… everything. Glad to hear that Proton Mail keeps fighting for privacy!

    • RanchOnPancakes@lemmy.world
      link
      fedilink
      English
      arrow-up
      22
      ·
      11 months ago

      I changed back when google got rid of the free “mail for your domain” and frankly its been a great thing for me. They keep announcing new things that replacing my existing apps.

      They have a password manager now that I use. They are finally adding actual fuction to their online drive storage so I can sync files and backup photos.

      Its been well worth the price for me. If only they had an office suite lol

      • Geek_King@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        11 months ago

        The only thing I haven’t found a good replacement for was how G Drive also handles Office style documents. I make use of that a lot, especially from my phone. But I agree, Proton Mail hasn’t been painful one bit.

        • blind3rdeye@lemm.ee
          link
          fedilink
          English
          arrow-up
          5
          ·
          11 months ago

          Seriously? My workplace uses google drive, and many documents are made with word. … A very common problem is that sometimes someone opens a word doc from the web interface of google drive - which automatically can conveniently opens it with google docs, which totally screws up the formatting and then autosaves it.

          (I hate google, and I resent that even after I’ve removed all aspects of it from my home & personal usage, I still have to use it at work.)

      • Ænima@lemm.ee
        link
        fedilink
        English
        arrow-up
        3
        ·
        11 months ago

        Dude, that email alias feature is the best thing about their password app! I’ve started using it all the time for services, new and old. Will make it easy as hell to find those selling my info.

        • RanchOnPancakes@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          11 months ago

          Yeah the email alias rock. Especially when I was car shopping recently.

          Want my email? Sure, here you go. SPAM? BEGONE, FOREVER BEGONE!

    • lambchop@lemmy.world
      link
      fedilink
      English
      arrow-up
      15
      ·
      11 months ago

      To everyone saying they’ve changed to protonmail, check out https://simplelogin.io/ , owned by proton and free for all paying proton members. Unlimited email aliases so you can have a unique email per service. The apps also on fdroid.

        • clive
          link
          fedilink
          English
          arrow-up
          10
          ·
          11 months ago

          You dont have to switch but if someone is paying for Proton than they can utilize it for no extra charge

          • totallynotarobot@lemmy.world
            link
            fedilink
            English
            arrow-up
            6
            ·
            edit-2
            11 months ago

            Ooh so if you are already a Proton Other Things subscriber you get the unlimited alias version for free? Because that’s an excellent reason.

            They should make that more clear in the pricing page.

            Thanks!

            • /home/pineapplelover@lemm.ee
              link
              fedilink
              English
              arrow-up
              3
              ·
              edit-2
              11 months ago

              Yeah I wish they advertised that because it’s an excellent deal. I don’t know if the free Simplelogin Premium applies to all levels of subscription plans but Unlimited for sure has it. Been using it and it’s amazing, it allows you to add PGP encryption through protonmail and simplelogin.

        • andrew_bidlaw
          link
          fedilink
          English
          arrow-up
          5
          ·
          11 months ago

          I didn’t try Proton’s solution, but free Relay was blocked at some services I tried to use it. It was so weirdly specific since no one really knows about them, so I guess some web admins has enough time on their hands to create a whitelist of all mail services they support, and moz.com wasn’t there.

          • totallynotarobot@lemmy.world
            link
            fedilink
            English
            arrow-up
            4
            ·
            11 months ago

            I just had a company refuse to send to mozmail.com, thought they managed to charge the credit card just fine and the email address didn’t throw an error on sign up. Figured it out on phone with support so they have a record of exactly why they lost that sale worth a few thousand dollars. I’d like to think they’ll learn but more likely the only lesson learned was me re: shopping there.

          • lambchop@lemmy.world
            link
            fedilink
            English
            arrow-up
            2
            ·
            11 months ago

            There are github repositories where people curate a list of domains providing temporary emails or email aliases and admins can just point to the maintained list to block.

            In the ~20 I’ve created so far I’ve had 2 services that wouldn’t accept simple login. For those I’ve used proton mail’s built in email alias service where you get 15 aliases with their proper domain.

      • /home/pineapplelover@lemm.ee
        link
        fedilink
        English
        arrow-up
        2
        ·
        11 months ago

        I use the web mail client and thunderbird client and it works fine. Protonvpn works fine in arch linux, there’s gui and cli, I prefer cli. Drive isn’t on linux yet but web client works wonderfully fast.

      • iamanoldguy@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        11 months ago

        Same, using Proton mail and I am now blissfully Google free. Something else I found the holidays good for is finding out all the old accounts I have floating out there from sites that I interacted with over the years so I can cancel them or change the email if i decide to keep them. But, no more Google! Next on my list is Amazon.

    • dai@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      10
      ·
      11 months ago

      Protonmail isn’t great, their deliberately misleading about the encryption. Many consider protonmail to be a honeypot.

        • dai@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          11 months ago

          https://www.wired.com/story/protonmail-amends-policy-after-giving-up-activists-data/

          https://cldc.org/does-protonmail-snitch/

          In addition protonmail do not protect your metadata (from memory), it’s not encrypted in transit.

          Protonmail also keep your public and private keys on their servers, it’s PGP however they don’t want the end users to have to manage their own keys. That to me isn’t ideal.

          Receiving from another provider you’ll get TLS encryption until it hits protonmail servers but protonmail will then decrypt your email and again encrypt your email using your PGP stored on their servers.

          Sending an email from proton to another provider will be encrypted on protonmail servers but that’s where it ends. TLS will take care of the in-transit and again may not be stored securely on the receiving end.

        • dai@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          11 months ago

          Tuta (in my eyes) is a step in the right direction, using a client like thunderbird or enigmail and managing PGP yourself would be more secure as the message is decrypted by the recipient and not a company owned server.

          • Geek_King@lemmy.world
            link
            fedilink
            English
            arrow-up
            2
            ·
            11 months ago

            I appreciate the follow up! I’m looking into Tuta to learn more about it! It just sucks Tuta didn’t come up at all when I was researching solid alternatives to Gmail.

  • s38b35M5@lemmy.world
    link
    fedilink
    English
    arrow-up
    27
    ·
    11 months ago

    The eSafety commissioner, Julie Inman Grant, has proposed cloud and messaging service providers should detect and remove known child abuse material and pro-terror material “where technically feasible” – as well as disrupt and deter new material of that nature.

    The eSafety regulator has stressed in an associated discussion paper it “does not advocate building in weaknesses or back doors to undermine privacy and security on end-to-end encrypted services”.

    I so love these magic wand-waving legislators. “Spy on your users and control what they do on your encrypted platform, but in a way that doesn’t break encryption or violate privacy…”

  • pHr34kY@lemmy.world
    link
    fedilink
    English
    arrow-up
    21
    ·
    11 months ago

    The Australian government would have you believe that we’re in the middle of some kind of CP endemic and everyone needs to suffer for it.

    This will catch precisely nobody, as the criminals will immediately move to a different platform, of which there are many.

    I host my own mail. If the AFP want to inspect it, they’ll need a warrant.

    • 𝐘Ⓞz҉@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      17
      ·
      edit-2
      11 months ago

      As an Aussie, Australia has cp problem. Most boomers keep getting arrested here for these stuff. Keep you child away from anyone above the age of 60+ as most of these guys getting arrested are around the age and are registered pedo

      Edit: going to leave this here for people downvoting. There’s many more cases. Keep your kids away from white 60+ year olds.-

      https://news.yahoo.com/australia-worst-pedo-p-hile-194840872.html

      • gian @lemmy.grys.it
        link
        fedilink
        English
        arrow-up
        2
        ·
        11 months ago

        as most of these guys getting arrested are around the age and are registered pedo

        I think Australia has also another problem: they are registered pedo, so I suppose they are guilty of at least a past offense, why on earth should they be able to be outside a jail ?

      • Blackmist@feddit.uk
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        1
        ·
        11 months ago

        But only those within the family.

        Attacks by strangers are rare (10% or so), so leave your child with a stranger wherever possible.

  • AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    10
    ·
    11 months ago

    This is the best summary I could come up with:


    The eSafety regulator has stressed in an associated discussion paper it “does not advocate building in weaknesses or back doors to undermine privacy and security on end-to-end encrypted services”.

    But privacy and security groups argue the draft standards, as written, could allow the eSafety commissioner to force companies to compromise encryption to comply.

    Andy Yen, the founder and chief executive of Proton, told Guardian Australia the proposed standards “would force online services, no matter whether they are end-to-end encrypted or not, to access, collect, and read their users’ private conversations”.

    “These proposals could not only force companies to bypass their own encryption, but could put businesses and citizens at risk while doing little to protect people from the online harms they are intended to address,” he said.

    A spokesperson for the eSafety commissioner said Inman Grant welcomed feedback on the draft standards – including on the technical feasibility exception.

    “Having mandatory and enforceable codes in place, which put the onus back on industry to take meaningful action against the worst-of-the-worst content appearing on their products and services, is a tremendously important online safety milestone,” Inman Grant said.


    The original article contains 468 words, the summary contains 187 words. Saved 60%. I’m a bot and I’m open source!

      • circuscritic@lemmy.ca
        link
        fedilink
        English
        arrow-up
        5
        ·
        edit-2
        11 months ago

        Technically maybe, but not necessarily. This is tactic that executives use all the time to force their employees to do illegal, or unethical actions, without ever telling them to.

        For example, Wells Fargo executives didn’t tell their bank employees to commit fraud, but they set their sales targets such that the ONLY way to reasonably achieve them was to defraud their customers.

        However, I didn’t read the actual white paper, so maybe it does explicitly say backdoors need to be built.

    • x4740N@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      11 months ago

      Hey inman grant if you ever see this, fuck you

      We know your acting intentionally obtuse

  • ParsnipWitch@feddit.de
    link
    fedilink
    English
    arrow-up
    13
    arrow-down
    9
    ·
    11 months ago

    Organisations and groups who want to protect privacy should come up with ways themselves on how to protect their services from certain activities.

    • theherk@lemmy.world
      link
      fedilink
      English
      arrow-up
      14
      ·
      11 months ago

      You mean like implementing strong data privacy measures and fighting regulators to protect them? That sounds like a good idea to me. If you’re interested, that is what the article is about.

      • ParsnipWitch@feddit.de
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        6
        ·
        11 months ago

        No, I mean that they should think of own measurements against illegal media and communication.

        • gian @lemmy.grys.it
          link
          fedilink
          English
          arrow-up
          1
          ·
          11 months ago

          You can’t have both privacy and protection from illegal media and communication.

  • Dog@lemmy.world
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    3
    ·
    11 months ago

    But didn’t proton give up some information to like the Finnish government or something like that a couple years back? Like I mean what they’re doing now is good, but what about that other thing that happened?

    • timbuck2themoon
      link
      fedilink
      English
      arrow-up
      12
      ·
      11 months ago

      They follow Swiss law. The Swiss govt had a legal warrant and they only provided legally required informationafter that.

      It’s not anarchic. They still have to abide by the law of their jurisdiction.

    • The Uncanny Observer@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      4
      ·
      11 months ago

      They gave up information to the Swiss government after they got a warrant, and due to the way Proton works, they were only able to give them the IP address so they could arrest the person, who was also Swiss. They didn’t compromise security, because they can’t.

      They don’t respond to demands from other governments, and the Swiss government haven’t cooperated with other governments either, so far as anyone knows. In the end, there isn’t really anything the Australian government can do to them if they refuse to create a backdoor for them.

  • dylanTheDeveloper@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    11 months ago

    It’s worse then you think. As a Australian citizen you are required to comply with any order which includes leaking code and introducing back doors. Failure to comply or notifying your employer about the request will result in federal charges with a sentence between 20 to 60 years in prison. The legislation that contains this was passed almost a year ago.

    Recently there’s been a wave of mass disruptions and data theft in Australia including most of our ports halting operations for a day and one of our largest phone and internet service providers being compromised where millions of peoples personal information like driver licences and passports being leaked.