Hi all,
I was contacted by tacticaltech about the new section on howtos for security under GNU/Linux, see the message below. I already sent them some feedback about it (Veracrypt not being Free Software, and that they should hightlight chromium or irdium instead of Chrome and Opera as alternatives). If you also have feedback they told me you can directly sent it to security@ngoinabox.org (in case you want encrypt, they sent me the attached public key for that).
All the best, Matthias
----- Forwarded message from ***@tacticaltech.org -----
I'm getting in touch to let you know that Tactical Tech has just released a new section on Security in-a-Box of six digital security tool guides specifically for Linux users: https://securityinabox.org/en/guides-linux
Security in-a-Box, a joint project of Tactical Tech and Front Line Defenders, is the leading website for practical help and information on digital security, published in 17 languages and reaching over 2 million people every year.
The new guides add to our existing 25 tool guides for Windows, Android and social media, as well as 11 in-depth tactics covering all aspects of digital security.
As the essential resource for digital security trainers, consultants as well as anyone interested in digital security, we're delighted to release these guides for the leading secure, open-source alternative operating system to Windows.
The six new Linux tool guides offer in-depth step-by-step help in installing and running six of the most essential open-source digital security tools, including the Tor Browser, Thunderbird with Enigmail for encrypted email and the Firefox browser with privacy Add-ons:
- Tor Browser for online anonymity & censorship circumvention: https://securityinabox.org/en/guide/torbrowser/linux
- Thunderbird, Enigmail and OpenPGP for secure emails: https://securityinabox.org/en/guide/thunderbird/linux
- VeraCrypt for secure file storage: https://securityinabox.org/en/guide/veracrypt/linux
- Jitsi and OTR for encrypted instant messaging and VoIP calls: https://securityinabox.org/en/guide/jitsi/linux
- Firefox add-ons for secure browsing: https://securityinabox.org/en/guide/firefox/linux
- KeePassX for secure passwords: https://securityinabox.org/en/guide/keepassx/linux
If you could share this news on your website and with your networks, we'd be very grateful.
We'd also be happy to answer any further questions you have or write a piece for your website if that is of interest.
We'd also welcome any feedback on the new Linux guides or any other aspect of Security in-a-Box.
Many thanks and look forward to hearing from you,
Best regards, *** Tactical Tech
----- End forwarded message -----
Hi Matthias, hi Free Software lovers,
On Mon, Aug 08, 2016 at 01:21:58PM +0200, Matthias Kirschner wrote:
I was contacted by tacticaltech about the new section on howtos for security under GNU/Linux, see the message below.
Glad to hear you are in contact. I had a chance to leaf through their beautiful book "security in-a-box" and respect them for their work.
I already sent them some feedback about it (Veracrypt not being Free Software,
Veracrypt is released under the Apache 2.0 license which is listed among the GPL-compatible free software licenses in the green section of https://www.gnu.org/licenses/license-list.html#apache2.
If you are driving at the difference between Free Software and free software, then yes, the Apache license is of the latter kind (lax, permissive), but on their website, Tacticaltech write "free software" https://securityinabox.org/en/guide/veracrypt/linux, which looks correct to me. Does this version already incorporate your comments? Perhaps you should have shared them with this list to avoid confusion.
The FSF recommends the Apache 2.0 for small software programs https://www.gnu.org/licenses/license-recommendations.html which Veracrypt is not, but I think this should not prevent anyone from recommending Veracrypt as long as no cross-platform hard disk encryption software is available with a more desirable license from FSF(E)'s point of view.
If you also have feedback they told me you can directly sent it to security@ngoinabox.org (in case you want encrypt, they sent me the attached public key for that).
You did not attach a key.
Cheers, Christian
On 08/13/2016 01:03 AM, Christian Pietsch wrote:
Hi Matthias, hi Free Software lovers,
On Mon, Aug 08, 2016 at 01:21:58PM +0200, Matthias Kirschner wrote:
I was contacted by tacticaltech about the new section on howtos for security under GNU/Linux, see the message below.
Glad to hear you are in contact. I had a chance to leaf through their beautiful book "security in-a-box" and respect them for their work.
I already sent them some feedback about it (Veracrypt not being Free Software,
Veracrypt is released under the Apache 2.0 license which is listed among the GPL-compatible free software licenses in the green section of https://www.gnu.org/licenses/license-list.html#apache2.
The problem with VeraCrypt is that it contains big portions of Truecrypt code, which are covered by the non-free Truecrypt license. APL only covers the "new" parts of its code. [1]
~nikos
[1] https://en.wikipedia.org/wiki/VeraCrypt#License_and_source_model