23

Oh fuck, Germany wants to pull an Australia and force services-providers to disclose passwords, password-hashes,... to law enforcement.

Comments
  • 11
    "Pull an Australia" Hahaha.
  • 8
    That's not an Australia, having a secret black box added to your infrastructure that's whole purpose is to brute force the fuck out of your encryption software... oops I may have said to much.
  • 2
    Big internet or mail providers are required to buy and install an loteral blackbox that sets up a VPN to the gouvernment to make sure that the data the gouvernment requests doesnt go into false hands.
  • 3
    I'll be honest, I was pissed when I read that about my country.
    Also, TOR time
  • 4
    Nah, I'm avoiding German & Austrian laws completely even tho I live in Austria myself.

    Implement a required checkbox at the registration step with a text similar to "I am not a citizen of the following countries: Germany, Austria."

    Geoblocking is illegal in the EU and thus you mustn't block ip addresses from the countries you want to avoid their laws.

    If a person is a citizen of one these countries you could say you're not allowed to block them and they lied to you stating they aren't a citizen of these countries.

    Boom, this is how you avoid laws.
  • 1
    Example: https://privacy.com/ (they do the reverse, they only allow one country)
  • 3
    @PublicByte Should that not say, 'I am not a citizen or resident of any of the following countries: Germany, Austria'?
  • 3
    Source? 😊
  • 2
  • 1
    @stop
    Was actually referring to this
    https://golem.de/news/...
  • 1
    @metamourge i wrote the source for my comment.
  • 1
  • 3
    They can have fun with my 15-round salted bcrypt hashes then, lol
  • 4
    as a German: what the fuck?! not this again!
  • 1
    Welp, time to migrate my servers out of there 😅
  • 1
    I wonder what this means for TutaNota
  • 0
    @PrivateGER not so fast. They require you to decrypt them and you can't charge anything for it and as a consequence lose money when you hash your passwords.

    P.S.: Good luck with my 128 character, extended ASCII password.
  • 1
    It gets funny, because the law does not reference any gpdr "hook", so companies could only follow one of the laws at a time.
Add Comment