Boing Boing 

Digital First Aid Kit: where to turn when you're DoSed or have your accounts hijacked

A group of NGOs, including the Electronic Frontier Foundation, offer a suite of tools for diagnosing and mitigating the kinds of attacks faced by dissidents and independent media all over the world, especially when they threaten the powerful.

Read the rest

EFF releases high-resolution photo of NSA's Utah data-center


One particularly welcome dividend from the blimp flight over the NSA data-center in Bluffdale, Utah is a much-needed piece of stock art.

Read the rest

Seven things you should know about Tor

Tor (The Onion Router) is a military-grade, secure tool for increasing the privacy and anonymity of your communications; but it's been the subject of plenty of fear, uncertainty and doubt.

The Electronic Frontier Foundation's 7 Things You Should Know About Tor debunks some of the most common myths about the service (which even the NSA can't break) and raises some important points about Tor's limitations.

7 Things You Should Know About Tor [Cooper Quintin/EFF]

Bust card: Constitutionally protected smartphone edition

Now that the Supreme Court has ruled that warrantless smartphone searches are unconstitutional, here's a bust-card for you to print, carry, and commit to memory so that you'll have it to hand when John Law wants to muscle his way into your mobile life.

Read the rest

Nominate for the EFF Pioneer Award

The Electronic Frontier Foundation has opened the nominations for the 2014 Pioneer Award, which celebrates people who have contributed substantially to the health, growth, accessibility, or freedom of computer-based communications. Anyone can nominate, and the winners will be chosen by an independent and august jury. I am enduringly proud to have received the Pioneer Award, along with such luminaries as Limor "Lady Ada" Fried, Bruce Shneier, Bunnie Huang and Aaron Swartz.

How city governments can help make Net Neutrality a reality


Cable lobbyist-turned-FCC-Chairman Tom Wheeler can promise to override state laws prohibiting publicly owned ISPs, but it doesn't matter if all the big cities are locked into ten-year franchise agreements with cable and phone companies. As an Electronic Frontier Foundation editorial points out, US mayors can and should take steps to make municipal broadband a reality, putting competitive pressure on America's foot-dragging, worst-of-breed ISPs. Many cities are sitting on a gold-mine of "dark fiber" that can be lit up to provide blazing-fast connections, and even in places where state law prohibits municipal Internet service, there are loopholes, like the one that Chattanooga, TN used to light up a gigabit network that's 100 times faster than most Americans can get.

Read the rest

Open Wireless Movement's router OS will let you securely share your Internet with the world

Open Wireless Movement, a joint project of the Electronic Frontier Foundation, Fight for the Future, Mozilla, Free Press and others, will reveal its sharing-friendly wifi router firmware at the HOPE X conference in NYC next month. The openwireless operating system allows you to portion out some of your bandwidth to share freely with your neighbors and passersby, while providing a high degree of security and privacy for your own communications.


The Open Wireless Movement's goals are to both encourage the neighborliness that you get from sharing in your community, and undermining the idea that an IP address can be used to identify a person, establishing a global system of anonymous Internet connectivity. The project includes an excellent FAQ on the myths and facts about your legal liability for things that other people do with your network.

Read the rest

California's cell-phone kill switch is a solution that's worse than the problem


As the California legislature moves to mandate "kill switches" that will allow owners of stolen phones to shut them down, the Electronic Frontier Foundation sounds an important alarm: if it's possible for someone to remotely switch off your phone such that you can't switch it back on again, even if you're physically in possession of it, that facility could be abused in lots of ways. This is a classic War on General Purpose Computation moment: the only way to make a kill-switch work is to design phones that treat their possessors as less trustworthy than a remote party sending instructions over the Internet, and as soon as the device that knows all your secrets and watches and listens to your most private moments is designed to do things that the person holding it can't override, the results won't be pretty.

There are other models for mitigating the harm from stolen phones. For example, the Cyanogen remote wipe asks the first user of the phone to initialize a password. When it is online, the device checks in with a service to see whether anyone using that password has signed a "erase yourself" command. When that happens, the phone deletes all the user-data. A thief can still wipe and sell the phone, but the user's data is safe.

Obviously, this isn't the same thing as stolen phones going dead and never working again, and won't have the same impact on theft. But the alternative is a system that allows any bad guy who can impersonate, bribe or order a cop to activate the kill-switch to do all kinds of terrible things to you, from deactivating the phones of people recording police misconduct to stalking or stealing the identities of mobile phone owners, with near-undetectable and unstoppable stealth.

Read the rest

Every congresscritter now has an email address, thanks to Sunlight and EFF


Many congresscritters don't have public email addresses -- instead, they have hard-to-locate webforms that slow down activist email campaigns and make it harder for constituents to get in touch. EFF and the Sunlight Foundation has fixed this, giving every member of Congress her or his own email address -- an address that you can send to that will be automatically forwarded through the appropriate webform.

Sunlight has some spam-checking to stop this from being abused, and gathers some of the other information the forms collect so that they can be fully populated by the scripts. Once you're setup in the system, you can email "myreps@opencongress.org" and your message will automatically be forwarded on to you senators and house reps.

88% of Congressional staffers say that their bosses' decisions are affected by constituent email. The data and scripts are up on Github for you to build on.

Read the rest

Five dumb things that NSA apologists should really stop saying


The Electronic Frontier Foundation has rounded up the five most discredited arguments advanced by apologists for NSA spying, including "The NSA has Stopped 54 Terrorist Attacks with Mass Spying"; Just collecting call detail records isn’t a big deal"; "There Have Been No Abuses of Power"; "Invading Privacy is Okay Because It’s Done to Prevent Terrorist Attacks"; and "There’s Plenty of Oversight From Congress, the Foreign Intelligence Surveillance Court, and Agency Watchdogs." Each of these claims is meticulously debunked in the post.

Read the rest

Blind Eye Sees All: surveillance sculptures that benefit EFF


Jud Turner's latest sculpture is the haunting "Blind Eye Sees All (No Secrets Anymore)" (above); he's produced 50 miniatures (right) based on it whose sale benefits the Electronic Frontier Foundation. He writes, "I am saddened at what my country has become in the last 30 years. I read '1984' in 1984 as a 14 year old, and have worried about the rise of the surveillance state ever since. I don't know what to do other than to make art that communicates, and support entities like EFF."

Thank you, Jud.

Read the rest

Appeals court nukes the copyright troll business-model

Yesterday, a federal judge in the DC circuit court of appeals handed Prenda law -- the most loathed and evil porno copyright trolls in the business -- its own ass on a plate, and struck a blow against copyright trolling everywhere. The Electronic Frontier Foundation's Mitch Stoltz has a deep dive into the case, which EFF participated in.

Prenda (previously) is one of the leaders in the shady practice of accusing people of downloading pornographic films with embarrassing titles and then demanding money in exchange for not filing a lawsuit against them, using the threat of having your name associated with "Anal Invaders XII" in public records forever as a lever to get you to settle even if you've done nothing wrong. In AF Holdings v. Does 1-1058, Judge Tatel struck an important blow against this practice by ruling that trolls have to file cases in the same jurisdiction as their victims in order to get court orders to reveal the victims' names and addresses, without which the cases cannot proceed. But filing cases in the correct jurisdiction will likely cost more than the average blackmail payment that Prenda extorts from its victims, making the whole thing into a losing business.

The court also held that merely being accused of having, at some point, participated in a Bittorrent swarm does not join you with everyone else who ever joins that swarm, and that there is only joint liability for people who download from one another, as part of the same swarm at the same time. This is the first-ever federal ruling on copyright trolling's most evil practices, and it represents a major victory for the good guys.

Read the rest

New NYT editor spiked NSA spying story

Dean Baquet.


Dean Baquet.

Mostly lost in the past week's media gossip around NYT executive editor Jill Abramson's ouster, and Dean Baquet's promotion to her role: Baquet is the former LA Times editor who killed the biggest NSA leak pre-Edward Snowden.

Read the rest

Surveillance state: the NSA doesn't stand alone


The NSA is supposed to be America's offshore spy agency, forbidden from spying on Americans. But as an important article by the Electronic Frontier Foundation's Nadia Kayyali points out, the FBI, DEA and other US agencies have closely integrated the NSA into their own efforts, using the NSA's mass surveillance to gather intelligence on Americans -- as Glenn Greenwald's No Place to Hide discloses, the NSA isn't a stand-alone agency, it is part of an overarching surveillance state.

Read the rest

Mozilla CAN change the industry: by adding DRM, they change it for the worse

Following on from yesterday's brutal, awful news that Mozilla is going to add DRM to its Firefox browser, the Electronic Frontier Foundation's Danny O'Brien has published an important editorial explaining how Mozilla's decision sets back the whole cause of fighting for a free and open Internet.

Read the rest

How to fight for Net Neutrality at the FCC


With the Federal Communications Commission set to gut Net Neutrality and allow ISPs to slow down traffic from services that don't pay them bribes, the Electronic Frontier Foundation has published a timely, important guide to participating in FCC proceedings. The upcoming Notice of Proposed Rulemaking is just one way to participate -- there's also a mass-protest planned at the FCC building in DC on May 15 (this Thursday!) at 9AM.

Read the rest

EFF on the White House's Big Data report: what about privacy and surveillance?

Last week, I wrote about danah boyd's analysis of the White House's Big Data report [PDF]. Now, the Electronic Frontier Foundation has added its analysis to the discussion. EFF finds much to like about the report, but raises two very important points:

* The report assumes that you won't be able to opt out of leaving behind personal information and implicitly dismisses the value of privacy tools like ad blockers, Do Not Track, Tor, etc

* The report is strangely silent on the relationship between Big Data and mass surveillance, except to the extent that it equates whistleblowers like Chelsea Manning and Edward Snowden with the Fort Hood shooter, lumping them all in as "internal threats"

Read the rest

Army comes clean about its recruitment AI, accidentally discloses info about pedophile- and terrorist-catching chatbots that roam the net

Dave from the Electronic Frontier Foundation writes, "Not too long ago, Boing Boing covered EFF's (at the time) unsuccessful attempt to retreive records about Sgt. Star (the Army's recruiter-bot) using the Freedom of Information Act. We've now received the files and compiled our research: It turns out Sgt. Star isn't the only government chatbot -- the FBI and CIA had them first.

The information about the terrorist/child-abuser bots only came to light because the spy agencies failed to fully redact their responses (the type was legible through the black strikeouts).

Read the rest

Web developers: EFF needs your help with important pro-democracy tool!

Rainey from the Electronic Frontier Foundation sez, "The Electronic Frontier Foundation, the Sunlight Foundation, and Taskforce.is have teamed up to build a public domain tool that makes it easier for everyday people to contact Congress. EFF wants to use it so that Internet users can effectively stop Congress from enacting laws that don't make sense for technology and advocate for laws that protect our rights. But once it's done, it will be free software that anybody will be able to use it and improve.

"There's already a functional prototype, but it's not quite finished: we need web developers to donate time to help us finish off creating individual files for each member of Congress. Please pitch in for a few hours if you can, and help us make the voices of Internet users heard in the halls (or at least the inboxes) of Congress."

Dear Web Developers: EFF Needs Your Help

(Thanks, Rainey!)

Vodo's indie science fiction bundle: comics, movies, novels, and more!


Jamie from Vodo writes, "We've launched Otherworlds, our first indie sci-fi bundle! This pay-what-you-want, crossmedia collection includes the graphic novel collecting Cory's own 'Futuristic Tales of the Here and Now', Jim Munroe's micro-budget sci-fi satire 'Ghosts With Shit Jobs', Robert Venditti's New York Times Bestselling graphic novel 'The Surrogates', and Amber Benson/Adam Busch's alien office farce, 'Drones'. Check out the whole bundle and choose your own price 5% of earnings go to the Electronic Frontier Foundation!"

Read the rest

EFF seeks student activists for campus network


The Electronic Frontier Foundation is launching a major campus organizing initiative and is looking to build a network of trusted campus activists to work with. They're sending staffers on a road-trip to speak at universities and colleges and want to hear from you. They've released a set of community organizing tools to help you get started.

There are plenty of ways to take part, no matter how much organizing experience you have.

* Start a group: Talk to friends and community members to gauge who else in your network is interested in digital freedom. Form a group that can discuss the issues and plan ways of advocating for your rights. For some tips on getting started, check out our guide on how to build a coalition on campus and in your community.

* Bring digital rights to an existing group: These issues are everybody's issues, no matter where on the political spectrum you lie. You can work with existing political, civil liberties, activist, and computer-related groups and urge members to take on a digital rights campaign.

* Organize an event: We have plenty of suggestions for events you can throw, from film screenings to rallies, parties to speaker series.

* Let your voice be heard: We are all part of the digital rights movement together, and your voice is as important as ours. Learn how to coordinate with local and national campaigns, and amplify your message by reading our tips on engaging with the press.

While many student groups and local community organizations are working on surveillance reform in light of the recent disclosures about massive government spying, it’s not only the NSA that we’re fighting: we’re demanding open access to publicly funded research; we’re fighting to protect the future of innovation from patent trolls; we’re urging companies and institutions to deploy encryption; we're defending the rights of coders and protecting the free speech rights of bloggers worldwide—the list goes on.

EFF is Expanding into Student and Community Organizing, and We Need Your Help

Everything is a Remix vs Patent Trolls

Adi from EFF writes, "Engine Advocacy worked with artist Kirby Ferguson (of Everything is a Remix fame) to create this great primer on patent trolls. It beautifully and succinctly lays out the patent problem, which is one of the hottest topics on the Hill right now. EFF, Public Knowledge, and Engine are pushing for people to call their senators to demand strong patent reform, and we have a handy tool at fixpatents.org for all you to do so!"

Online test-proctoring: educational spyware that lets third parties secretly watch and listen to you through your computer

Rebecca from EFF writes, "How would you feel about having your computer taken over by online test-taking software - complete with proctors peering through your laptop camera? Reporters at the Spartan Daily (the student paper for San Jose State University) have an interesting story about new software in use there, and the legitimate concerns that some students have. The data-broker connection is especially chilling to those worried about their personal information." The company's response? "We're a customer service business, so it’s really not advantageous for us to violate that trust." Oh, well, so long as that's sorted out then.

Yahoo beefs up security in two meaningful and important ways

Yahoo has taken some serious steps towards protecting user-privacy, writes the Electronic Frontier Foundation's Seth Schoen. After revelations that the NSA and GCHQ had hacked its services, intercepted private video-chats, and harvesting mass data from its fiber optic links, the company has added forward secrecy and STARTTLS to its roster of default-on security measures. Of the two, forward secrecy is the most interesting, as it protects the privacy of old intercepted Yahoo data even if the company loses control of its keys. Bravo, Yahoo!

HOPE X/EFF fundraiser

Emmanuel Goldstein from 2600 Magazine writes, "This summer's HOPE X conference is having a special EFF fundraiser for the entire month of April. Ten percent of every ticket sale will be donated to the Electronic Frontier Foundation as recognition of the essential work they're doing for the entire online community. In addition, there will be a huge EFF presence at the HOPE X conference, with multiple talks and presentations. HOPE X is being held July 18-20 at the Hotel Pennsylvania in New York City."

Microsoft changes policy: won't read your Hotmail anymore to track down copyright infringement or theft without a court order


Microsoft read the email of Hotmail users without a warrant, in order to catch someone who'd leaked some Microsoft software. When they were caught out, the pointed out that they'd always reserved the right to read Hotmail users' email, and tried to reassure other Hotmail users by saying that they were beefing up the internal process by which they decided whose mail to read and when.

Now, citing the "'post-Snowden era' in which people rightly focus on the ways others use their personal information," the company has announced that it will not read its users' email anymore when investigating theft or copyright violations -- instead, it will refer this sort of thing to the police in future (they still reserve the right to read your Hotmail messages without a court order under other circumstances).

As Techdirt's Mike Masnick points out, this is a most welcome change. The message announcing the change by Brad Smith (General Counsel & Executive Vice President, Legal & Corporate Affairs) is thoughtful and forthright. It announces a future round-table on the questions raised by the company's snooping that the Electronic Frontier Foundation can participate in.

Smith asks a seemingly rhetorical question: "What is the best way to strike the balance in other circumstances that involve, on the one hand, consumer privacy interests, and on the other hand, protecting people and the security of Internet services they use?" That is indeed a fascinating question, but in the specific case of Hotmail, I feel like it has a pretty obvious answer: change your terms of service so that you promise not to read your customers' email without a court order. Then, if you think there's a situation that warrants invading your customers' privacy, get a court order. This is just basic rule-of-law stuff, and it's the kind of thing you'd hope Microsoft's General Counsel would find obvious.

The fact that the question is being raised casts more light on Microsoft's extensive "Scroogled" campaign, which (rightly) took Google to task for having a business-model that was predicated on harvesting titanic amounts of personal data. The takeaway here is that while Microsoft's business-model (at the moment) is less privacy-invading than Google's, that is not due to any inherent squeamishness about spying on people -- rather, it's just a practical upshot of its longstanding practices.

Read the rest

LAPD says every car in Los Angeles is part of an ongoing criminal investigation


The Electronic Frontier Foundation is trying to figure out what the LAPD is doing with the mountains (and mountains) of license-plate data that they're harvesting in the city's streets without a warrant or judicial oversight. As part of the process, they've asked the LAPD for a week's worth of the data they're collecting, and in their reply brief, the LAPD argues that it can't turn over any license-plate data because all the license-plates they collect are part of an "ongoing investigation," because every car in Los Angeles is part of an ongoing criminal investigation, because some day, someone driving that car may commit a crime.

As EFF's Jennifer Lynch says, "This argument is completely counter to our criminal justice system, in which we assume law enforcement will not conduct an investigation unless there are some indicia of criminal activity."

This reminds me of the NSA's argument that they're collecting "pieces of a puzzle" and Will Potter's rebuttal: "The reality is that the NSA isn't working with a mosaic or a puzzle. What the NSA is really advocating is the collection of millions of pieces from different, undefined puzzles in the hopes that sometime, someday, the government will be working on a puzzle and one of those pieces will fit." The same thing could be said of the LAPD.

Read the rest

Infographic: EFF's Freedom of Information Act files


Hugh from the Electronic Frontier Foundation sez, "Sunshine Week may be just seven days in March, but fighting for government transparency is a year-round mission for the Electronic Frontier Foundation. In fact, it's not unusual for litigation over public records to drag on for years upon years. To help make sense of it all, here's a handy infographic illustrating EFF's current Freedom of Information Act caseload." (Thanks, Hugh!)

EFF Policy Fellowship for students: 10 week summer program

If you're a student interested in Internet and technology policy, you're eligible to apply for an EFF Policy Fellowship, a ten week placement with public interest orgs in Africa, Asia, Europe, Latin America and North America. It pays $7500, and you get to work on global surveillance, censorship, and intellectual property. "Applicants must have strong research skills, the ability to produce thoughtful original policy analysis, and a talent for communicating with many different types of audiences."

Fedbizopps: the US government's searchable database of defense-contractor opportunities


Dave from the Electronic Frontier Foundation sez, "The government often makes itself more accessible to businesses than the general public. For Sunshine Week, we compiled this guide to using FedBizOpps to keep an eye on surveillance technology contracts."

Fedbizopps is a weird, revealing window into the world of creepy surveillance, arms, and technology contractors who build and maintain the most oppressive and unethical parts of the apparatus of the US government. Everything from drone-testing of biological and chemical weapons to license plate cameras to weaponized bugs and other malware are there. The EFF post also has links to data-mining tools that help estimate just how much money the private arms dealers extract from the tax-coffers.

Read the rest