Slashdot Mirror

← Back to Stories (view on slashdot.org)

Snowden's Tough Advice For Guarding Privacy

Posted by timothy on from the going-through-the-eye-of-the-needle dept.

While urging policy reform as more important than per-person safeguards, Edward Snowden had a few pieces of advice on maintaining online privacy for attendees at Saturday's New Yorker Festival. As reported by TechCrunch, Snowden's ideas for avoiding online intrusions (delivered via video link) sound simple enough, but may not be easy for anyone who relies on Google, Facebook, or Dropbox, since those are three companies he names as ones to drop. A small slice: He also suggested that while Facebook and Google have improved their security, they remain “dangerous services” that people should avoid. (Somewhat amusingly, anyone watching the interview via Google Hangout or YouTube saw a Google logo above Snowden’s face as he said this.) His final piece of advice on this front: Don’t send unencrypted text messages, but instead use services like RedPhone and Silent Circle. Earlier in the interview, Snowden dismissed claims that increased encryption on iOS will hurt crime-fighting efforts. Even with that encryption, he said law enforcement officials can still ask for warrants that will give them complete access to a suspect’s phone, which will include the key to the encrypted data. Plus, companies like Apple, AT&T, and Verizon can be subpoenaed for their data.

5 of 210 comments (clear)

  1. gpg by mrflash818 · · Score: 4, Informative

    gpg, when you can.

    To encrypt, but have the encrypted output be encoded as text (so can be put copy/paste into an email)
    gpg --symmetric --cipher-algo AES256 --armor example.txt

    (gpg will then ask for a passphrase, make it long, as random as possible, upper and lower case, a punctuation, and a number)

    TO DECRYPT
    gpg example.txt.gpg

    Steve Gibson has a very cool Internet resource for helping people learn about password strength: https://www.grc.com/haystack.h...

    Per the haystack page:

    Example passphrase = search space size

    64characters of hex = 4.13 x 10^99

    63characters of hex, plus adding a punctuation symbol = 4.93 x 10^117

    62characters of hex, plus adding a punctuation symbol, plus adding an upper case letter = 3.79 x 10^126

    --
    Uh, Linux geek since 1999.
    1. Re:gpg by CronoCloud · · Score: 3, Informative

      My key mentions an ISP (email addy) I haven't used in a couple of decades. How to fix? Revoke old key then release a new one. Er, how, exactly?

      Via some quick googling:

      Generate the revoke certificate (you can keep this stored until you need it)


        gpg --output revoke.asc --gen-revoke KEYID

      Import the revoke certificate when you want to revoke the key.


      gpg --import revoke.asc

      Send the updated pubkey to the keyservers.


      gpg --keyserver KEYSERVER_ADDRESS --send-keys KEYID

  2. Re:No Google by Famak1994 · · Score: 1, Informative

    Neither are more secure than the other and that's a fact and will always remain a fact so long as humans are using these devices. Nevertheless, everything you've listed is also available on android devices so I fail to see what point you're trying to make?

  3. Re:No Google by ArmoredDragon · · Score: 2, Informative

    Try startpage.com. It uses results from Google, but isn't Google. As far as I can determine, they don't log anything you do.

    It also happens to be the default search engine of the Tor browser, which should say something as it goes way out of the way to make sure your activity is completely anonymous.

  4. Re:No Google by Anonymous Coward · · Score: 2, Informative

    That only has a limited effect. https://panopticlick.eff.org/ This is one of the SIGNIFICANT downsides of being a geek. Running Linux, alternate browsers, having unusual plugins, etc. all make it very easy to identify your particular machine on the 'Net.