Re: [perpass] perens-perpass-appropriate-response-01

Jacob Appelbaum <jacob@appelbaum.net> Wed, 04 December 2013 21:35 UTC

Return-Path: <jacob@appelbaum.net>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68FCC1AD94A for <perpass@ietfa.amsl.com>; Wed, 4 Dec 2013 13:35:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.6
X-Spam-Level:
X-Spam-Status: No, score=-0.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FSL_HELO_BARE_IP_2=2, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LoOPp_zFRGIA for <perpass@ietfa.amsl.com>; Wed, 4 Dec 2013 13:35:41 -0800 (PST)
Received: from mail-pb0-f50.google.com (mail-pb0-f50.google.com [209.85.160.50]) by ietfa.amsl.com (Postfix) with ESMTP id 6CA8B1AD8F5 for <perpass@ietf.org>; Wed, 4 Dec 2013 13:35:41 -0800 (PST)
Received: by mail-pb0-f50.google.com with SMTP id rr13so24516364pbb.9 for <perpass@ietf.org>; Wed, 04 Dec 2013 13:35:38 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:mime-version:to:cc:subject :references:in-reply-to:openpgp:content-type :content-transfer-encoding; bh=9mNcRSRnOFS1VA7+6XC/qZd8rBO3DeuTkq5jC1oc2TA=; b=c+R/tGx3nEFrg76mdylElCpH06IEXL1hy3Akb3cOtT6CiMTNXTV0cHmhgPC+6xUyYL LwGu+ABt16kSgfVWEBRS917KOW18Q3HFlqPmsSusUXf7U7OgF8eZYLNI7AalT84I32ap ndkWjQkux0ZFLYgrSfcW3oC7Io4lZjIMeHfob+ye1mfYaAfT1D0w7t8Lgu4yZIkk8x37 KdMds4EBwSvUI2X82B91IXSNYsnL7mX9bPU3EUNpfrtvCBG5YM0YICXi08sWdYzeckRr Z/fxspLXXjhavBOiUa9DpueM3RFNYs3udZ0RSgnH0vs3kV2Fp328bbzcfvDAGcs589xU ShYg==
X-Gm-Message-State: ALoCoQloPOgMqKOLBBQdRZiFlJnateHDGMBmI2l5fxF3FXySCXbsg+UEZtb1tLQQLYqm6Rw6QIk/
X-Received: by 10.68.134.98 with SMTP id pj2mr48031584pbb.110.1386192938343; Wed, 04 Dec 2013 13:35:38 -0800 (PST)
Received: from 127.0.0.1 (manning2.torservers.net. [96.44.189.101]) by mx.google.com with ESMTPSA id oj6sm160403439pab.9.2013.12.04.13.35.35 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 04 Dec 2013 13:35:37 -0800 (PST)
Message-ID: <529F9898.7090309@appelbaum.net>
Date: Wed, 04 Dec 2013 21:03:20 +0000
From: Jacob Appelbaum <jacob@appelbaum.net>
MIME-Version: 1.0
To: Bruce Perens <bruce@perens.com>
References: <E2DA1477-C86E-441E-A33D-D47A0D67AFF3@iab.org> <EF9BD1E4-6EF3-4035-AC4E-1A2D3CADE615@mnot.net> <529E8494.7000806@perens.com> <20131204111309.GB11727@nic.fr> <529F8D1F.8090402@perens.com> <529F90AC.9000102@appelbaum.net> <529F957D.1020902@perens.com>
In-Reply-To: <529F957D.1020902@perens.com>
OpenPGP: id=4193A197
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: perpass@ietf.org
Subject: Re: [perpass] perens-perpass-appropriate-response-01
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The perpass list is for IETF discussion of pervasive monitoring. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass/>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Dec 2013 21:35:42 -0000

Bruce Perens:
> On 12/04/2013 12:29 PM, Jacob Appelbaum wrote:
>> Imagine if this was admissible in court and that someone else was telling this 
>> story about you? How would that have impacted your life? How could it impact 
>> your life in the future? 
> It is admissible in court. It's a public statement on a mailing list with a 
> public archive. So I said it in public. Anyone who wants to quote my statement 
> that I tapped phones in my early teens can now do so, in court or out of it.
> 
> I inhaled too. There it is, submit it to Slashdot or something. :-)

Did you notice that you decided about that disclosure?

>>> Not everyone is so lucky
>>> as you - will you stand by their side or dismiss them simply because it
>>> doesn't apply to you, in your view?
> I support their right to use a web browser that requests https preferentially, 
> if they think that will help. I would just like that to be their choice, not 
> something that is imposed upon them.

It will help if it happens at scale - the masses of browsers being
secure by default ensures that not only the privileged will be secure.
Hardly anyone on the planet knows what 'https' is or how it works.

If you support their right to be secure, consider that you more
effectively support their rights by making it the default where
knowledgeable folks can opt-out; the other way around doesn't make sense.

>> Do you use the same computer for browsing the web as you do for your email? If 
>> so, I guess anyone who does would have some negligence to hide, no?
> I sat on the jury of a negilgence case earlier this year. There are standards 
> regarding common sense and what would reasonably be expected for someone to 
> perform. My security practices fit such standards.
> 

If I had to predict the future, I suspect that those standards will
change in 2014 and not in your favor.

All the best,
Jacob