Re: "Data Detox Kit" by Tactical Technology Collective & Mozilla

On Jan 29, 2018, at 12:06 PM, g2s wrote:

-------- Original message -------- From: John Newman Date: 1/29/18 8:27 AM (GMT-08:00) To: cypherpunks@lists.cpunks.org, g2s , juan Subject: Re: "Data Detox Kit" by Tactical Technology Collective & Mozilla

On January 28, 2018 10:31:40 PM EST, g2s wrote:

...

-------- Original message --------From: juan Date: 1/28/18 6:32 PM (GMT-08:00) To: cypherpunks@lists.cpunks.org Subject: Re: "Data Detox Kit" by Tactical Technology Collective & Mozilla On Sun, 28 Jan 2018 22:38:33 -0200 Cecilia Tanaka wrote:

...

Hello from Brazil, Shiny Happy TTC People! :D

May someone give a really good technical answer to my friends, please? <3

I will need to share the answer about the use of JavaScript with two other discussion lists, where I also received a "not-so-good" feedback in private. Sorry but I am using an euphemism, uh! :P

If you don't enable javascript that site won't show you any content at all. They could have put a static page explaining what the site is about but apparently they were too lazy to do that.

And, javascript is the number one tool used to track and fingerprint browsers so a site about privacy (I'm assuming that's what the site is about) that refuses to do anything unless javascript is enabled....looks like a joke.

...

Thank you all in advance! Kisses, hugs, and much love! <3

Ceci

On Jan 28, 2018 21:12, "juan" wrote:

On Sun, 28 Jan 2018 21:53:24 -0200 Cecilia Tanaka wrote:

...

# https://datadetox.myshadow.org/detox https://datadetox.myshadow.org/detox

"Sorry!

The Data Detox Kit requires javascript and supports newer versions of Chrome, Safari, and Firefox. Please enable javascript in your browser and refresh this page. "

lawl - so data detox - whatever that means - requires you to run javashit malware - priceless =)

...

# https://datadetox.myshadow.org/about

Wish you all a lovely week, la la la! <3

c. ---------- "Don't let anyone rob you of your imagination, your creativity, or your curiosity. It's your place in the world; it's your life. Go on and do all you can with it, and make it the life you want to live." - Mae Jemison

Jscript allows for extreme interactivity between your computer and a server, but the code is plaintext. It can be examined for functions. Rr

...

JS is usually obfuscated to the point of complete unreadability. Coders do this so you can't "steal" their code, or maybe sometimes to get slight compression (all the variables get renamed to one or two letter names, etc) So, you can still look at it, but it's often only nearly as opaque as byte code :)

Thats where crowdsourced blockers come into the picture. NoScript for instance. You have dozens of folks unobfuscating the scripts. Ofc you have to have some trust in the blocker, and the site's intention for the data gleaned,

Yeah, noscript is cool. Been a while since I’ve really played with it.

and if you're really paranoid perhaps find some other hobby than the internet rather than spewing paranoia all over everyone like digital diarrhea. The internet isn't Safe Space... never was. Never will be.

Yeah, clearly you have to make a few risk value judgements, otherwise you may as well just stay in the default most secure position: computer powered off ;)

Rr