General

general@lists.hackerspace.pl

1059 discussions

Fwd: How to buy a root CA certificate?
by rysiek 08 Oct '15

08 Oct '15

Lolszto. ---------- Treść przekazywanej wiadomości ---------- Temat: How to buy a root CA certificate? Data: czwartek, 8 października 2015, 10:12:20 Od: Georgi Guninski Do: cypherpunks(a)cpunks.org Interested in how much money is necessary to buy CA cert chaining up to a trusted root and besides money is something else necessary. globalsign advertise this: https://www.globalsign.com/en/certificate-authority-root-signing/ ===== GlobalSign’s Trusted Root Signing service allows suitably qualified organizations to capitalize on their investments in PKI or CA software to issue digital certificates which chain up to GlobalSign’s publicly trusted Root Certificate. ===== ----------------------------------------- -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

1 0

China’s Nightmarish Citizen Scores Are a Warning For Americans | American Civil Liberties Union
by viq 07 Oct '15

07 Oct '15

https://www.aclu.org/blog/free-future/chinas-nightmarish-citizen-scores-are… -- viq

1 0

Fwd: [UwagaTTIP] Safe Harbour : EU-US data transfer pact ruled invalid
by rysiek 06 Oct '15

06 Oct '15

O cholera. Srogie grzyby! ---------- Treść przekazywanej wiadomości ---------- Temat: [UwagaTTIP] Safe Harbour : EU-US data transfer pact ruled invalid Data: wtorek, 6 października 2015, 10:12:03 Od: Marcin Wojtalik Czy myślicie, że będzie to miało wpływ na TTIP? http://www.bbc.co.uk/news/technology-34442618 EU-US data transfer pact ruled invalid By Leo Kelion A 15-year-old pact that made it easy for the tech giants and others to send personal data from the EU to the US has been ruled invalid. The European Court of Justice said that the Safe Harbour agreement did not eliminate the need for European data watchdogs to check that US firms were taking adequate measures to protect the information. It added that the ruling meant Ireland's regulator now needed to decide whether Facebook's EU-to-US transfers needed to be suspended. Lets start from scratch. What exactly is Safe Harbour? The term refers to an agreement struck by the EU and US, that came into effect in 2000. It was designed to provide a "streamlined and cost-effective" way for US firms to get data from Europe without breaking its rules. The EU forbids personal data from being transferred to and processed in parts of the world that do not provide "adequate" privacy protections. So, to make it easier for US firms - including the tech giants - to function, Safe Harbour was introduced to let them self-certify that they are carrying out the required steps. More than 5,000 US companies make use of the arrangement to facilitate data transfers. Why was it challenged? In 2013, whistleblower Edward Snowden leaked details about a surveillance scheme operated by the NSA called Prism. It was alleged the agency had gained access to data about Europeans and other foreign citizens stored by the US tech giants. Privacy campaigner Max Schrems asked the Irish Data Protection Commission to audit what material Facebook might be passing on. However, the watchdog declined saying the transfers were covered by Safe Harbour. When Mr Schrems contested the decision, the matter was referred to the European Court of Justice. The case reflected a clash between two cultures: in the EU, data privacy is treated as a fundamental right; in the US, other concerns are sometimes given priority. So, what are the immediate implications of the court's ruling? Personal data should no longer be transferred to US bodies solely on the basis they are Safe Harbour-certified. Instead to authorise the "export" of the data, the two bodies involved must draw up and sign what's referred to as "model contract clauses" <https://ico.org.uk/media/1571/model_contract_clauses_international_transfer…>, which set out the US organisation's privacy obligations. "It will involve lots of contracts between lots of parties and it's going to be a bit of a nightmare administratively," commented Nicola Fulford, head of data protection at the UK law firm Kemp Little. "The model clauses themselves are standard form - what you need to put into them are details of the data involved and the security steps being taken. "It's not that we're going to be negotiating them individually, as the legal terms are mostly fixed, but it does mean a lot more paperwork and they have legal implications." All of this will drive up costs and potentially cause delays. Does this mean the tech giants are going to have to halt or alter some of their services? It depends on who you speak to. The big-name firms are being guarded about what they say. Sources at one firm suggest it believes it already has all the necessary contracts drawn up and processes in place to avoid any disruption. But an insider at another company suggests that it may have to alter or stop some of its data transfers across the Atlantic. What everyone agrees on, however, is that the ruling will have wider impact. "It's not just about companies whose core activities is data processing - i.e. the Facebooks of the world - it's the companies who don't have data processing capabilities of their own and transfer personal data abroad to get it done," explains Allie Renison from the UK's Institute of Directors. "So, if you're a company that sends payroll data for administrative purposes across to the US, that becomes an issue. "Likewise, it affects you if you're a firm trying to send over data about your customers for a marketing campaign." Shouldn't everyone be prepared for this - after all this was referred to the ECJ more than a year ago? Yes - but few expected the court to rule on the matter so quickly. Having said that, while some data privacy regulators - including the UK and Ireland's - said they were satisfied with Safe Harbour's stamp of approval, Germany's watchdogs raised concerns years ago. As far back as 2010, they told local firms they were still obliged to check <http://www.osborneclarke.com/connected-insights/publications/compliance-saf…>whether Safe Harbour-certified organisations were actually taking adequate measures, and suggested they draw up model contract clauses to avoid any doubt. Those data privacy watchdogs could face more work now, right? Potentially, yes. If people challenge whether adequate steps to protect their data are being taken, the regulators may now need to intervene. Max Schrems certainly intends to try again to make the Irish Data Protection Commissioner look into Facebook. It should, however, be stressed that the social network strongly denies providing "backdoor" access to the US intelligence agencies. Can't the EU and US just sign a new data-sharing agreement that would satisfy the ECJ's concerns? Yes - but that's not as simple as it sounds. The US and EU have in fact been negotiating to update the Safe Harbour pact for nearly two years. Following Snowden's leaks, the EU sought to limit the circumstances under which the US authorities could access transferred data, and threatened to veto any future trade agreements if a new deal was not stuck. But despite repeated reports than an agreement was close, the two sides have failed to agree terms. To further complicate matters, they recently agreed in principle a separate data-sharing deal called the Umbrella Agreement, which governs how their law enforcement agencies share data. But the EU has said it would only finalise the pact if Europeans are given the right to sue US companies in American courts for misusing their data. The US seemed set to agree, but now its politicians may retaliate against the ECJ's ruling by refusing to grant the privilege. ----------------------------------------- -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

1 0

Książka do Pajtona dla początkujących i nie tylko
by rysiek 06 Oct '15

06 Oct '15

Cześć, polecicie jakąś knigę do pajtona, która będzie przydatna zarówno dla osoby początkującej, jak i bardziej zaawansowanej? Myślę nie o "kursie pajtona w łikend" czy czymkolwiek w tym stylu, nie o podręczniku, a raczej czymś, do czego można sięgać w razie niepewności i braku netu. Kołata mi się we łbie coś na kształt: - słowniczka - przystępnej dokumentacji samego języka i najbardziej popularnych bibliotek - zbioru dobrych praktyk Chodzi o to, by ktoś, kto dziś zaczyna przygodę, mógł mieć na biurku podczas siekania jakichś kursów onlajnowych, a gdy już się otrzaska, by od czasu do czasu zaglądał, by sobie pewne rzeczy przypomnieć/uporządkować czy też co do nich się upewnić. Ktoś coś? :) -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

7 11

Galaksija: Yugo pośród komputerów domowych ;)
by rysiek 04 Oct '15

04 Oct '15

Cześć, takie coś naszedłem: http://balkanist.net/galaksija-cult-yugoslav-diy-computer-1980s-lives/ -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

2 1

How Sacrificing Virgins Improved My Security - Darkmatters
by viq 28 Sep '15

28 Sep '15

http://darkmatters.norsecorp.com/2015/09/23/how-sacrificing-virgins-improve… -- viq

1 0

MG blokuje maile od Panoptykonu, bo Tor
by rysiek 28 Sep '15

28 Sep '15

Cześć, Ministerstwo Gospodarki blokuje maile od Fundacji Panoptykon, bo ta na swoim serwerze ma node'a (ale nie exit node'a) sieci Tor. Za zgodą Panoptykonu podsyłam pismo, które wysłali w piątek do MG z prośbą wyjaśnienia/uzasadnienia blokady. Miłej lektury. :) https://owncloud.hackerspace.pl/index.php/s/6frMjkA8hHw9cb0 -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

10 16

Pytania o ICANN/IANA
by rysiek 28 Sep '15

28 Sep '15

Cześć, we czwartek moderuję sesję na temat ICANN/IANA na warsztatach MAiC w Warszawie: https://mac.gov.pl/aktualnosci/juz-niebawem-sprawdzisz-kto-rzadzi-internete… Po pierwsze serdecznie zapraszam na całe warsztaty, im więcej nas tam będzie, tym weselej. ;) Po drugie, skoro moderuję, mogę zadawać niewygodne pytania. Jeśli macie jakieś pytania, które warto ICANNowi zadać, dajcie znać (na liście, lub na priv). Postaram się uwzględnić. -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

2 2

Neutralność sieciowa kontra niewinne, niewinne dzieci!
by rysiek 24 Sep '15

24 Sep '15

Cześć, polecam wątek: http://mailman.edri.org/pipermail/nncoalition/2015-September/000888.html A zwłaszcza maila gościa z Telefonici: http://mailman.edri.org/pipermail/nncoalition/2015-September/000910.html > Telefonica is very active and engaged in child protection initiatives. It is > at the core of the company beliefs. > To be honest, I never thought child protection would be a deal breaker. I am > quite sure Telefonica will strongly oppose to a NN policy statement > "outlawing" this initiatives. And I may add we will be very blunt about it. Mają tupet. :) -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

1 0

onsultacje Rady ds. Informatyzacji Edukacji autorskiego projektu zmian w podstawie programowej przedmiotów informatycznych
by rysiek 20 Sep '15

20 Sep '15

Cześć, "Głównym celem projektowanych zmian jest wprowadzenie powszechnego nauczania programowania, które staje się kompetencją kluczową XXI wieku, do edukacji formalnej już od pierwszej klasy szkoły podstawowej aż do klasy maturalnej." http://men.gov.pl/ministerstwo/informacje/konsultacje-rady-ds-informatyzacj… -- Pozdrawiam, Michał "rysiek" Woźniak Zmieniam klucz GPG :: http://rys.io/pl/147 GPG Key Transition :: http://rys.io/en/147

2 2

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

General