-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
____/ Homer on Thursday 17 July 2008 14:09 : \____
> Verily I say unto thee, that Roy Schestowitz spake thusly:
>
>> Warning over phone calls database
>
> Yup, it's definitely time to start outsourcing our comms offshore.
Even Skype cannot be trusted.
Compressed VoIP leaves eavesdropping clues
,----[ Quote ]
| Eavesdroppers might be able to gain clues about the content of encrypted
| conversations even without breaking the cryptography.
|
| VoIP services such as Skype encrypt conversations but law enforcement
| agencies, most notably in Germany, have complained this can hinder law
| enforcement investigations.
`----
http://www.theregister.co.uk/2008/06/23/compressed_voip_traffic_analysis/
Why are European governments able to do more for less when it comes to National
Security?
,----[ Quote ]
| Fon has to comply with RIPA an act so strict that makes the Patriot act look
| simple. Fon has to provide special VPN tunneling technology in the UK for the
| UK secret services to investigate suspected criminals and terrorists when
| they log on to our WiFi signal. But this is not of course only Fon. Every UK
| ISP from BT down, Carphone Warehouse, Virgin, Sky, all have to provide this
| capability to the UK government.
`----
http://english.martinvarsavsky.net/general/why-can-european-governments-do-more-for-less-when-it-gets-to-national-security.html
Skype: We can't comply with police wiretap requests
,----[ Quote ]
| There's no guarantee that Skype's AES encryption is implemented properly or
| that there aren't lingering security flaws. A 2006 presentation at the
| BlackHat Europe conference in March said the right algorithms were being
| used, but that there's "no way" to know if a backdoor for eavesdropping
| exists. A Skype-commissioned independent evaluation, however, gave it a
| thumbs-up.
`----
http://news.cnet.com/8301-13578_3-9963028-38.html
Beware of Skype
,----[ Quote ]
| The Skype network has been a concern of government intelligence agencies
| since its inception because it provides a worldwide network of encrypted VoIP
| calls to potential “terrorists”. So how coincidental is it that 10 days after
| Bush signs into law a Bill giving the government authority to track foreign
| calls that go through U.S. networks that Skype, for the first time in its
| existence, undergoes a massive worldwide outage?
|
| [...]
|
| But there are FOSS alternatives to Skype people really should start
| considering now. One is the OpenWengo Project. Businesses, and even
| individuals, should also consider setting up their own Asterisk servers with
| encryption.
`----
http://www.freesoftwaremagazine.com/node/2479
Why proprietary code is bad for security
,----[ Quote ]
| Tho Skype is using an encrypted protocol, it’s still their own, non-disclosed
| code and property. So we don’t know what it contains.
|
| [...]
|
| It’s time to stop accepting that we are the bad guys, and to stop consuming
| things we just don’t understand (and cannot, because they are proprietary,
| closed-source systems).
|
| Say no to companies, or even governments who treat you like this. Start using
| open sourced products and protocols wherever you can. Even if you could
| still never understand the code used in these systems, there are still lots
| of people who can, and who will examine it. The magic word here is “peer
| review” - your friend or buddy or neighbour may be able to understand all
| that, and to help. No, not with Skype or Windows or any black box from Cisco.
`----
http://wolfgang.lonien.de/?p=394
- --
~~ Best of wishes
Roy S. Schestowitz | "Signature pending approval"
http://Schestowitz.com | Free as in Free Beer | PGP-Key: 0x74572E8E
Cpu(s): 20.7%us, 3.5%sy, 0.0%ni, 71.4%id, 3.9%wa, 0.0%hi, 0.3%si, 0.0%st
http://iuron.com - semantic engine to gather information
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkh/cMEACgkQU4xAY3RXLo4SQwCgqkQh/sL4SgLaNvvLzmLf8f8S
QVoAnA1hFVMs1MRUzff0ju8TtdvwtWLj
=Gd2r
-----END PGP SIGNATURE-----
|
|