Riseup.net nimmt Stellung zur Situation der E-Mail Dienste

Fragen zur Organisation, spezielle technische Fragen zum Dienst,
Post Reply
User avatar
totentanz
Posts: 516
Joined: Thu Nov 15, 2012 15:09

Riseup.net nimmt Stellung zur Situation der E-Mail Dienste

Post by totentanz » Thu Aug 22, 2013 13:08

Riseup hat seine Newsletter verteilt, mit einer interessanten Stellungnahme:
We have received your emails asking a number of good questions in light of last week’s news about Lavabit and SilentCircle closing down. We would like to clearly state that Riseup has never given any user information to any third party. We have never permitted installation of any hardware or software monitoring on any system that we control.

We will do everything in our power to protect the data of social movements and activists, short of extended incarceration. We would rather pull the plug than submit to repressive surveillance by our government, or any government. We are doing everything we can, as quickly as possible, to forge forward with options that would prevent us from having to shut down, in case we are faced with making such a decision. In cooperation with other groups, we are hard at work to develop and deploy a radical new infrastructure that would allow us to provide email in a way that is a thousand times more secure and that would prevent us from having access to any user’s data. We have been working on this for over a year, but we have a lot more work to do before it is finalized.
https://help.riseup.net/en/newsletter-2 ... or-dissent

Ich nutze Riseup wirklich gerne, PGP und S/MIME ist im Webinterface möglich. Riseup wird seine Dienste ausbauen und sucht Unterstützung.
In the coming months, the Riseup birds plan to begin rolling out a series of radically new services, starting with encrypted internet, encrypted email, and encrypted chat. These services will be based on 100% open source and open protocols, will be easy to use, and will protect your data from everyone, even Riseup. This is a massive undertaking, made in concert over the last year with several other organizations, and will only work with your support. We need programmers, particularly those experienced in Python, C, Ruby, and Android development, and sysadmins interested in starting their own secure service providers.
**********************

Space for dissent
It is a mistake to frame the recent US and European massive surveillance revelations in terms of the privacy of individuals. What is at stake is not privacy at all, but the power of the state over its citizenry.

What surveillance really is, at its root, is a highly effective form of social control. The knowledge of always being watched changes our behavior and stifles dissent. The inability to associate secretly means there is no longer any possibility for free association. The inability to whisper means there is no longer any speech that is truly free of coercion, real or implied. Most profoundly, pervasive surveillance threatens to eliminate the most vital element of both democracy and social movements: the mental space for people to form dissenting and unpopular views.
https://help.riseup.net/en/newsletter-2 ... or-dissent

User avatar
totentanz
Posts: 516
Joined: Thu Nov 15, 2012 15:09

Re: Riseup.net nimmt Stellung zur Situation der E-Mail Diens

Post by totentanz » Thu Aug 22, 2013 14:30

Habe gerade gelesen Riseup hat eine "Riseup and Government FAQ" erstellt.

https://www.riseup.net/en/riseup-and-government-faq
Don’t panic. Here are some questions and answers.

Q: Is Riseup working with the NSA?

A: We would rather stop being Riseup before we did that. We are not working with any government agency. We have never simply handed over information when requested, and for years have had a no logging policy. We have fought and won every time anyone has tried to get us to give up information. We have never turned over any user data to any third party, fourth party, fifth party or any party.

Q: But your servers are located in the U.S., doesn’t that mean you have to install backdoors/monitoring/etc?

A: We have no control over our network providers, but we have physical control of our servers, they are not hosted “in the cloud.” This gives us much more physical assurance of the security of our machines. We would not consent to the installation of any external hardware or software on our network and would end the organization rather than install any. However, once our fiber connections leave our space, they could be monitored. This is not new, and has been our assumption from the beginning. When you send an email to someone with an email hosted elsewhere, we have no control over it once it leaves our servers. Also, the US still has better laws for internet providers than in many other countries, including many places in Europe, where there are data retention laws requiring providers to keep logs. The US has no such requirement and it has been our policy for years to not keep any logs............................................

xg27
Posts: 1111
Joined: Mon Jun 24, 2013 13:39

Re: Riseup.net nimmt Stellung zur Situation der E-Mail Diens

Post by xg27 » Thu Aug 22, 2013 17:26

totentanz wrote:
We need [....], and sysadmins interested in starting their own secure service providers.
DAS ist wirklich signifikant.
Sie wollen dezentralisieren.
Gut so.

Al3ph
Posts: 140
Joined: Sun Aug 11, 2013 20:41

Re: Riseup.net nimmt Stellung zur Situation der E-Mail Diens

Post by Al3ph » Sun Aug 25, 2013 0:38

Ich halte riseup aus folgenden Gründen für problematisch:

.)Die Verwendung des Dienstes per se macht den Nutzer verdächtig, zumindest deutlich verdächtiger als eine Allerweltsadresse
.)Man muss der Ideologie der Betreiber zustimmen und erhält nur eine Adresse wenn man erklärt für welchen Zweck man sie verwenden will

SSL-Test liefert gute aber keine exzellenten Ergebnisse.

Wir dürfen uns keine Ilusionen bezüglich eines "sicheren" Mail-Providers machen. Jeder wird bei genügend Durck die geforderten Daten herausrücken. Der einzige Vorteil der "sichereren" Dienste liegt darin dass sie unsere Daten nicht gleich an die Werbeindustrie weiterverkaufen.

User avatar
totentanz
Posts: 516
Joined: Thu Nov 15, 2012 15:09

Re: Riseup.net nimmt Stellung zur Situation der E-Mail Diens

Post by totentanz » Sun Aug 25, 2013 3:28

)Die Verwendung des Dienstes per se macht den Nutzer verdächtig, zumindest deutlich verdächtiger als eine Allerweltsadresse
Das kann durchaus sein. Hier sollte man dann entscheiden welche Maßnahmen zu ergreifen sind. Für mich ist es kein Hinderungsgrund, wahrscheinlich bin ich aber in dieser Hinsicht zu abgewichst.;-)
)Man muss der Ideologie der Betreiber zustimmen und erhält nur eine Adresse wenn man erklärt für welchen Zweck man sie verwenden will
Eine kurze Vorstellung seiner Aktivitäten die aber keinerlei persönliche Daten enthalten muss. Ist eher eine Regulierung des Zugang aufgrund der beschränkten Ressourcen.

bodman

Re: Riseup.net nimmt Stellung zur Situation der E-Mail Diens

Post by bodman » Sun Aug 25, 2013 14:20

Wir dürfen uns keine Ilusionen bezüglich eines "sicheren" Mail-Providers machen. Jeder wird bei genügend Durck die geforderten Daten herausrücken
Das muss nicht zwingend so sein. Möglicherweise würden sich auch andere Anbieter so verhalten wie Silent Circle oder Lavabit es getan haben. Posteo z.B würde ich dies zutrauen.

User avatar
totentanz
Posts: 516
Joined: Thu Nov 15, 2012 15:09

Re: Riseup.net nimmt Stellung zur Situation der E-Mail Diens

Post by totentanz » Thu Aug 29, 2013 5:04

Crowdfunding-Kampagne für Riseup
netzpolitik blog wrote:Bekannte US-amerikanische Netz-Aktivist_innen haben eine Crowdfunding-Kampagne zur Unterstützung des nicht-kommerziellen Providers Riseup gestartet. Ziel ist, $10.000 für einen dringend benötigten neuen Server samt Administrator_in zu sammeln:
https://netzpolitik.org/2013/crowdfundi ... er-riseup/

Post Reply