this post was submitted on 09 Sep 2025
534 points (98.9% liked)

Microblog Memes

11006 readers
1546 users here now

A place to share screenshots of Microblog posts, whether from Mastodon, tumblr, ~~Twitter~~ X, KBin, Threads or elsewhere.

Created as an evolution of White People Twitter and other tweet-capture subreddits.

RULES:

  1. Your post must be a screen capture of a microblog-type post that includes the UI of the site it came from, preferably also including the avatar and username of the original poster. Including relevant comments made to the original post is encouraged.
  2. Your post, included comments, or your title/comment should include some kind of commentary or remark on the subject of the screen capture. Your title must include at least one word relevant to your post.
  3. You are encouraged to provide a link back to the source of your screen capture in the body of your post.
  4. Current politics and news are allowed, but discouraged. There MUST be some kind of human commentary/reaction included (either by the original poster or you). Just news articles or headlines will be deleted.
  5. Doctored posts/images and AI are allowed, but discouraged. You MUST indicate this in your post (even if you didn't originally know). If an image is found to be fabricated or edited in any way and it is not properly labeled, it will be deleted.
  6. Absolutely no NSFL content.
  7. Be nice. Don't take anything personally. Take political debates to the appropriate communities. Take personal disagreements & arguments to private messages.
  8. No advertising, brand promotion, or guerrilla marketing.

RELATED COMMUNITIES:

founded 2 years ago
MODERATORS
ReadyUser31@lemmy.world
aeronmelon@lemmy.world
needanke@feddit.org
534
this would break all encrypted messaging (lemmy.blahaj.zone)
submitted 5 months ago* (last edited 5 months ago) by not_IO@lemmy.blahaj.zone to c/microblogmemes@lemmy.world
70 comments fedilink hide all child comments
 

article

toot

easily contact your MEP: https://fightchatcontrol.eu/

you are viewing a single comment's thread
view the rest of the comments
[–] peoplebeproblems@midwest.social 19 points 5 months ago* (last edited 5 months ago) (4 children)

Ok how do they plan to enforce that?

By banning HTTPS at the ISP level?

Edit: and then how do they enforce GPDR? Because you better believe everyone and their mother is going to snoop on every communication made.

[–] IphtashuFitz@lemmy.world 8 points 5 months ago (1 children)

Blocking HTTPS would be frighteningly hilarious. My employer is one of thousands of websites that utilizes HSTS, which tells web browsers to use HTTPS. Our implementation of HSTS, like lots of banks etc. is also listed with HSTSpreload, which means browsers like chrome will only ever use HTTPS with our site.

[–] tgxn@lemmy.tgxn.net 3 points 5 months ago (1 children)

What if they just do MITM with a Trusted root? Does HSTS provide a method to do cert pinning?

[–] IphtashuFitz@lemmy.world 2 points 5 months ago

HSTS just enforces HTTPS over HTTP.

I seriously doubt Chrome or Firefox would ever be coerced into trusting a cert like that. If they did then you would see a very rapid shift away from those browsers to one or more of the open source alternatives.

And any CA that issued such a cert that allowed for wholesale MITM access like that would be blacklisted by all the browsers very quickly as well. That would put the CA out of business very quickly.

[–] Zwiebel@feddit.org 6 points 5 months ago (1 children)

By forcing Whatsapp Signal etc to implement backdoors

[–] peoplebeproblems@midwest.social 5 points 5 months ago

Signal wouldn't, or if it did, it would be labeled as such as an insecure fork for EU conpliance only and make that fork stale immediately.

[–] derpgon@programming.dev 3 points 5 months ago (1 children)

Don't need to ban encryption, just control top level certificate authorities and have access to private keys.

I'd like to see them try to get mine lol.

[–] peoplebeproblems@midwest.social 1 points 5 months ago

And any CA doing so would lose their certificate authority status pretty damn quickly.

[–] gandalf_der_12te@discuss.tchncs.de 2 points 5 months ago* (last edited 5 months ago) (1 children)

By banning HTTPS at the ISP level?

I think you might not be aware of it but big institutions like governments and such can basically already circumvent HTTPS encryption by supplying fake root certificates and forcing the ISP to redirect traffic through their own servers.

That is why End-to-End encryption is such a big deal. Because it cannot be circumvented by the government alone. If done right (proper key exchange), it cannot be broken by anyone but the legitimate recipients. The way WhatsApp does it today, Meta could technically break it too, though i'm not sure whether they do.

[–] Jenseitsjens@lemmy.world 5 points 5 months ago (1 children)

That's not necessarily very easy. These certs would have to show up in public certificate transparancy logs for most browsers to accept them. If this happens on a government scale it would surely get noticed, though the question remains what you're left to do if the government forces it anyways...

See https://en.m.wikipedia.org/wiki/Certificate_Transparency section "Mandatory certificate transparency"

[–] gandalf_der_12te@discuss.tchncs.de 1 points 5 months ago* (last edited 5 months ago)

not necessarily very easy

admittedly, but i still assume that the CIA could do it if it tried.

edit: thanks for the link though, this seems very interesting :D