π SECURITY: Root Certificates & Detecting Abuse
Covering breaking investigative journalism of Joseph Menn (reputable), and how we can learn from root certificate problems / backdoors in recent history:
[ Watch On Peertube ] (π§ π Tor Friendly Link)
[ Watch On Invidious ] (π§ π Tor Browser Only Link)
πΊ Watch In Post:
(click below to watch on Odysee)
Mentioned: π» Coreboot laptops: IntelME Removed To Maximum Extent & Disabled; contact if interested, or order directly from our shop / commissions.
Brand new / used laptops come with problematic closed source "blackbox" BIOS / UEFI issues removed. Includes problems that may exist on your laptop like Superfish, Computrace, and other unknowns.
Buying a laptop from our shop means all of the above are replaced with open source firmware, compiled personally. Ask if you have a questions. Qubes / Linux available.
π‘ SOLUTIONS / π‘οΈ MITIGATION
WINDOWS USERS: Sigcheck
LINUX / APPLE / ALL: check at any given moment, browser https site cert fingerprint, against:
Gitea Onion Fingerprint List (π§
Tor Onion Link For π Integrity)
π End-To-End Encryption: Solving Issue Of "Trust"
Try (Where Applicable):
I2P
Tor Hidden Services For Websites (.onion)
Many mainstream websites now offer Tor hidden service options.
More Known:
ProPublic (Independent News Source)
Internet Archive (excellent resource)
Using Tor / I2P means you understand, and utilize security enhancements.
(may add more to this list)
RELATED
Gitea Onion post (by another user): distrusting and removing cert authorities here (Tor Link)
π SOURCES
[ The Washington Post Article ]
[ Lenovo BIOS Backdoor ] (2015)
[ Dell Superfish-Like Certs ] (2015)
[ MITM Proxy ]
[ EFF: "You Should Not Trust Russia's Newest Root Cert Authority" ]