[Discuss] Canary heart beat protocol?
Freddy Martinez
freddymartinez9 at gmail.com
Sat Jun 13 17:39:06 UTC 2015
Here is the EFF's take on this, they seem to disagree.
https://www.eff.org/deeplinks/2014/04/warrant-canary-faq
This is actually already practiced at some libraries, they place signs like
"the FBI has not been here, but watch for this sign carefully". There are a
few cases about this going through (mostly FISA/FISC) courts about this wrt
National Security Letters and gag orders.
Freddy
On Sat, Jun 13, 2015 at 12:35 Dan Krol <orblivion at gmail.com> wrote:
> Interestingly, it seems that Moxie Marlinspike's lawyers have told him
> that a canary (for TextSecure) would not hold up:
>
> https://github.com/WhisperSystems/whispersystems.org/issues/34
>
> On Wed, Jun 10, 2015 at 12:23 PM, Freddy Martinez <
> freddymartinez9 at gmail.com> wrote:
>
>> Hey all this is an excellent idea! You all beat me to Micah Lee's
>> repository. I have a few comrades who have already deployed a warrant
>> canary and here is what they have done. They submit routine updates to
>> their webpage every few months with a GPG signed message that says "we have
>> not received any NSLs or been contacted by law enforcement about our
>> members". Then also post the date of the message and a note about how often
>> it is updated (I believe every few weeks). I think we should do this with a
>> GPG key that multiple members control (split among a few members). I
>> believe the webpage I'm thinking of is libraryfreedomproject.org
>>
>> Freddy
>>
>> On Wed, Jun 10, 2015 at 12:30 Lincoln Bryant <lincolnb at uchicago.edu>
>> wrote:
>>
>>> Seems like the Canary Watch website is powered by user submission, and
>>> checks aren't done routinely. That's certainly something that could be
>>> improved.
>>>
>>> re: the tweet, I feel like creating a standard for warrant canaries is
>>> tricky business -- seems like it would make it easier to draft legislation
>>> to prohibit canaries.
>>>
>>> --Lincoln
>>>
>>> On Jun 10, 2015, at 11:54 AM, sheila miguez wrote:
>>>
>>>
>>> On Wed, Jun 10, 2015 at 11:45 AM, meg ford <meg387 at gmail.com> wrote:
>>>
>>>> something similar. Not sure if you're aware of it -- maybe it will help
>>>> to look at how they are dealing with reliability of info:
>>>> https://canarywatch.org/
>>>>
>>>
>>> Oh thanks! I looked at their twitter account and discovered
>>> https://firstlook.org/code/project/autocanary/ too. the canarywatch
>>> account retweeted
>>> https://twitter.com/calyxinstitute/status/605737561991061505 which is
>>> asking about canary standards.
>>>
>>>
>>> --
>>> shekay at pobox.com
>>> _______________________________________________
>>> discuss mailing list
>>> discuss at lists.chicagolug.org
>>> https://lists.chicagolug.org/mailman/listinfo/discuss
>>>
>>>
>>> _______________________________________________
>>> discuss mailing list
>>> discuss at lists.chicagolug.org
>>> https://lists.chicagolug.org/mailman/listinfo/discuss
>>>
>>
>> _______________________________________________
>> discuss mailing list
>> discuss at lists.chicagolug.org
>> https://lists.chicagolug.org/mailman/listinfo/discuss
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.chicagolug.org/pipermail/discuss/attachments/20150613/b6fd8076/attachment-0002.html>
More information about the discuss
mailing list