logo

drewdevault.com

[mirror] blog and personal website of Drew DeVault git clone https://hacktivis.me/git/mirror/drewdevault.com.git

Privacy-as-a-hobby.md (8849B)

    

  1. ---
  2. date: 2016-06-29
  3. # vim: set tw=80
  4. title: Life, liberty, and the pursuit of privacy
  5. layout: post
  6. tags: [privacy]
  7. ---
  9. Privacy is my hobby, and should be a hobby of every technically competent
  10. American. Within the eyes of the law I have a right to secure the privacy of my
  11. information. At least that's the current law - many officials are [trying to
  12. subvert that right](http://www.apple.com/customer-letter/). I figure that we'd
  13. better exercise that right while we have it, so that we know how to keep
  14. exercising it once it's illegal and all the information about it dries up.
  16. One particularly annoying coworker often brings up, "what do you have to hide?"
  17. Though it would defeat the purpose to explain what I'm hiding, let's assume that
  18. what I'm hiding is benign, at least legally speaking. I'm sure you can
  19. understand why I don't want `~/Porn` to be public information should my
  20. equipment be seized after I publish this blog post and an incompetent (or angry)
  21. investigator leaks it. Building secure facilities for housing secrets is fun!
  22. That's true even if there aren't a lot of interesting secrets to hide there.
  24. But the porn folder brings up an interesting point. I'm not ashamed to admit I
  25. have one, but I would be uncomfortable with everyone being able to see it. Or
  26. maybe I'm having an affair (a scandalous proposition for a single guy, I know)
  27. and there are relevant texts are on my cell phone. Perhaps I suck at managing my
  28. finances and the spreadsheets in my documents would tell you so. Maybe I have
  29. embarrassing home videos of bedroom activities on my hard drive[^1]. Maybe
  30. there's evidence that I'm a recovering alcoholic in my files. Maybe I'm a
  31. closeted homosexual and my files prove it, and 10 years from now the homophobes
  32. win and suddenly the country is more hostile to that. Maybe all of this is true
  33. at once!
  35. Keeping these things secret is an important right, and one I intend to exercise.
  36. I don't want to be accused of some crime and have my equipment seized and then
  37. mishandled by incompetent officials and made public. I don't want a jury chosen
  38. to decide if I really stole that pack of gum when I was 8 and then have
  39. unfavorable secrets leaked. Human nature might lead them to look on my case
  40. unfavorably if they found out about all the tentacle porn or erotic Harry
  41. Potter fanfics I've been secretly writing. Maybe an investigator finds something
  42. they don't understand, like a private key, and it ends up being exposed through
  43. the proceedings. Maybe this private key proves that I'm Satoshi Nakamoto[^3] and
  44. my life is threatened when the case is closed because of it.
  46. To the government: **stay the fuck out of my right to encrypt**, or, as I
  47. like to think of it, my right to use math. They will try, again and again, to
  48. take it from us. They must never win.
  50. The second act of this blog post is advice on how to go about securing your
  51. privacy. The crucial bit of advice is that you must strive to understand the
  52. systems you use for privacy and security. Look for their weak spots and be aware
  53. of them. Don't deceive yourself about how secure your systems are.
  55. I try to identify pain points in my security model. Some of them will be hard
  56. to swallow. The first one was Facebook - delete your account[^4] [^5]. I did
  57. this years ago. The second one was harder still - Google. I use an Android
  58. phone running CyanogenMod without Google Play Services. I also don't use GMail
  59. or any Google services (I search with DuckDuckGo and add !sp to use StartPage if
  60. necessary). Another one was not using Windows or OS X. This is easy for me but a
  61. lot of people will bitch and moan about it. A valid privacy & security model
  62. does not include Windows. OS X is an improvement but you'd be better off on
  63. Linux. Even your non-technical family can surely figure out how to use Xubuntu
  64. to surf the web.
  66. I also use browser extensions to subvert tracking and ads. Ad networks have
  67. severely fucked themselves by this point - I absolutely never trust any ads on
  68. the web, and never will, period. Use software like
  69. [uBlock](https://github.com/gorhill/uBlock) to get rid of trackers (and speed
  70. up the web, bonus!). I also block lots of trackers in my /etc/hosts file -
  71. [check this out](https://github.com/StevenBlack/hosts). Also check out
  72. [AdAway](https://free-software-for-android.github.io/AdAway/) for Android.
  74. These changes help to remove your need to trust that corporate interests will
  75. be good stewards of your private information. This is very important - no amount
  76. of encryption will help you if you give Google a GPS map of your every move[^6]
  77. and your search history[^7] and information about basically every page on the
  78. internet you visit[^8]. And all of your emails and contacts and appointments on
  79. your calendar. Google can be subpoenaed or subverted[^9] and many other
  80. companies won't even try[^10] to keep your data secret even when they aren't
  81. legally compelled to. I like this image from Maciej Cegłowski's excellent
  82. talk[^11] on website obesity about the state of most websites:
  84. ![](https://sr.ht/ks75.jpg)
  86. When you give all of this information to Google, Facebook, and others, you're
  87. basically waiving your fifth amendment[^12] rights.
  89. Once you do have control of your information, there are steps you should take to
  90. keep it secure. The answer is encryption. I use
  91. [dm-crypt](https://wiki.archlinux.org/index.php/Dm-crypt) which allows me to
  92. encrypt my entire hard drive on Linux. I'm prompted for a password on boot and
  93. then everything proceeds (and I've never noticed any performance issues, for the
  94. record).
  96. I also do most of my mobile computing on a laptop running libreboot[^13] with
  97. 100% open source software. The weak point here is that if your hardware is
  98. compromised and you don't know it, they could steal your password. One possible
  99. solution is keeping your boot partition and perhaps another key on a flash
  100. drive, but this doesn't fully solve the problem. I suggest looking into things
  101. like case intrusion detection and working on being aware of it when your
  102. hardware is messed with.
  104. I mentioned earlier that my phone is running CyanogenMod without any of the
  105. Google apps. The weak point here is the radio, which is very insecure and likely
  106. riddled with vulnerabilities. I intend to build my own phone soon with a
  107. Raspberry Pi, where I can have more control over this - things like being able
  108. to disconnect power to the radio or disconnect the microphone when not in use
  109. will help.
  111. I also self host my email, which was a huge pain in the ass to set up, but is
  112. lovely now that I have it. At some point I intend to write a better mail server
  113. to make this easier. I use opportunistic PGP encryption for my emails, but I
  114. send depressingly few encrypted emails like this due to poor adoption (follow me
  115. on [keybase](https://keybase.io/sircmpwn)? I'll give you an invitation if you
  116. send me an encrypted email asking for one!)
  118. If you have any questions about how to implement any of this, help identifying
  119. the weaknesses in your setup, or anything else, please feel free to reach out to
  120. me via email ([sir@cmpwn.com](mailto:sir@cmpwn.com)+[F4EA1B88](/publickey.txt))
  121. or [Twitter](https://twitter.com/sircmpwn) or whatever. Good luck sticking it to
  122. the man!
  124. [^1]: [ICloud leaks of celebrity photos](https://en.wikipedia.org/wiki/ICloud_leaks_of_celebrity_photos)
  125. [^3]: The secretive inventor of Bitcoin. I'm not Satoshi, if you were wondering.
  126. [^4]: [Click this](https://www.facebook.com/help/delete_account?rdrhc) to do so
  127. [^5]: "But I liiiiike Facebook and it let's me keep up with my frieeeends..." There's no privacy model that includes Facebook and works. Give up. [Read this](https://stallman.org/facebook.html) and try to ignore the childish language and see the tangible evidence instead.
  128. [^6]: If you have location services enabled on your phone, [here's a map of everywhere you've been](https://maps.google.com/locationhistory/). Enjoy!
  129. [^7]: [Here's all of your searches](https://myactivity.google.com/myactivity). You can delete the history here, supposedly. I bet it doesn't unfeed that history to your personal advertising neural network at Google.
  130. [^8]: Google Adsense and Google Analytics are present on basically every website. I'm positive they're writing it down somewhere when you hit a page with those on it. Facebook certainly is, too.
  131. [^9]: Remember [PRISM](https://en.wikipedia.org/wiki/PRISM)?
  132. [^10]: [Like AT&T, for example](http://www.pbs.org/newshour/rundown/report-att-cooperated-extensively-nsa-sharing-billions-phone-email-records/)
  133. [^11]: [The Website Obesity Crisis](http://idlewords.com/talks/website_obesity.htm)
  134. [^12]: That's the right to remain silent. Come on, you should know this.
  135. [^13]: [libreboot](https://libreboot.org/) is an open source BIOS. I got my laptop from [minifree](https://minifree.org/), which directly supports the libreboot project with their profits.