Gregory's ServerHTTPS encryption for EU residents is at risk, as the soon-to-be-passed Article 45 removes browsers’ control over security for their users.
https://www.eff.org/deeplinks/2023/11/article-45-will-roll-back-web-security-12-years
|
34 comments
 @eff and let’s see what browsers will do, for similar issue mozilla’s blog against kazakhstan government, https://blog.mozilla.org/netpolicy/2020/12/18/kazakhstan-root-2020/ @eff Is it possible for us to go to settings and distrust certificates? Firefox and Chrome does have the ability for the user to edit.  @thomastraynor @eff  @eff it’s amazing how the EU can get things so right, standardized charging cables, ad tracking prevention. @notsle @eff Every democratic legislature and bureaucracy in existence is subjected to the attention of lobbyists and special interests and the EU is no exception. Every bit of draft legislation reflects some of the pressure. The EU isn't infallible and can and does revisit legislation if needed. Anyone would think it was a dictatorship not a voluntary association of democracies from some of the (largely American) pantswetting online.  @eff the EU does some good things but this does not sound like one of them. I feel like these things always feel even worse to many Americans because we see how awful a government can get while still pretending to be the best in the world. So we fear that such schemes would be embraced by our own surveillance State and abused in ways that would give even Europeans nightmares. One more thing that the #EU #EuropeanUnion does WITHOUT DOING A REFERENDUM among its citizens first - like a true democracy should instead. Shame on you, #europeanparliament. EU in the end is just another masked oligarchy. @samueljohnson @eff EU has no legal right to convene referendums in member states, so I imagine no legal rights to enforce any regulations either? Otherwise we have a contradiction here. Best to avoid demagogues and not ask about the citizens at all – oligarchies live! @pglpm @eff You think the EU has no legal right to enforce regulations? 🤣 You really have no clue at all. Go and do some homework for heaven's sake. How is it possible that that EU completely surrounds Switzerland and you know so little? Didn't you notice what happened when Switzerland voted to end freedom of movement. Muted for Dunning-Kruger exhibitionism. @samueljohnson @eff Do your homework first: I don't live in Switzerland. I'd say don't make hasty assumptions, but obviously you're a know-it-all so that's wasted advice.  @pglpm @eff almost all laws all around the world are passed by elected officials, not by referenda. Concerning article 45, MEPs have been working all day to solve the issue. As soon as I have an update I will share it. The directly elected European parliament opposes the commission's draft of article 45. @eff eIDAS 2.0 is needed for eWallet with eID, will say, the nightmare goes deeper  @eff I keep asking, but I never get an answer. Why does the EU hate the Internet so much?  @daniel_freund Dear Daniel, is there anything the EuroParl can do to stop the Art.45 attack on civil liberties in the #eidas2 regulation? With several far-right/autocrat-leaning countries in the EU, how is this not a huge risk to EU citizens? Are the Greens onto it?  The take away is that when this passes, we should distrust all CA's and verify certificates on important servers another way.
BTW, this attack was already used against a Russian xmpp server at Hetzner. The trust model is fundamentally broken |
@eff for other countries, europian people easily told “why don’t you fight with dictatorship?”, now we’ll see them