aboutsummaryrefslogtreecommitdiffstats
path: root/doc/encryption.bb
diff options
context:
space:
mode:
authorredmatrix <redmatrix@redmatrix.me>2015-05-13 17:59:45 -0700
committerredmatrix <redmatrix@redmatrix.me>2015-05-13 17:59:45 -0700
commit364025e550341b2922104e83d2a2fddaf4f21652 (patch)
tree20813d8d3d5481764c0cba50aa3cb8e9a5a53033 /doc/encryption.bb
parentc82082d2bbb00294d62330d577dcdbc9ec6b9d1c (diff)
downloadvolse-hubzilla-364025e550341b2922104e83d2a2fddaf4f21652.tar.gz
volse-hubzilla-364025e550341b2922104e83d2a2fddaf4f21652.tar.bz2
volse-hubzilla-364025e550341b2922104e83d2a2fddaf4f21652.zip
remove project name dependency from most of the doc files to ease project merging, there are going to be some edge cases requiring manual tweaking as most of this was done by script.
Diffstat (limited to 'doc/encryption.bb')
-rw-r--r--doc/encryption.bb4
1 files changed, 2 insertions, 2 deletions
diff --git a/doc/encryption.bb b/doc/encryption.bb
index 427c5f96b..ae51bd9fa 100644
--- a/doc/encryption.bb
+++ b/doc/encryption.bb
@@ -1,6 +1,6 @@
[size=large]Builtin Automatic Encryption[/size]
-Full disclosure: The encryption Red Matrix uses per default is not absolutely waterproof. There [i]are[/i] known procedures to circumvent it. [i]But[/i] this takes a lot of effort and needs to be done individually for each channel. And to make this clear: Other services store your messages in plaintext, therefore we regard this approach as a [i]significant[/i] improvement for your privacy. Plus you are always free to use further encryption and password protection if you so desire.
+Full disclosure: The encryption $Projectname uses per default is not absolutely waterproof. There [i]are[/i] known procedures to circumvent it. [i]But[/i] this takes a lot of effort and needs to be done individually for each channel. And to make this clear: Other services store your messages in plaintext, therefore we regard this approach as a [i]significant[/i] improvement for your privacy. Plus you are always free to use further encryption and password protection if you so desire.
To explain this in more detail:
@@ -11,6 +11,6 @@ To explain this in more detail:
So what is the scope of security? Full disclosure: This might be great, but it is not perfect.
- every non-public post is automatically encrypted but persons who have access to the site's database and files [i]may[/i] be able to decrypt everything by using these keys which obviously need to be stored on the server. To be clear: The encrypion keys are different for every channel and it is [i]quite an effort[/i] to do this. And again: Other services store your messages in plain text unencrypted. So this [i]is[/i] quite a significant win for your privacy.
-We believe that the NSA-level dragnet plaintext extracting mass surveillance is probably not possible due to the design of the zot protocol. Dedicated attacks including hacking into one hub to obtain the server logs and database only partly reveal what is going on between people communication between different hubs. We believe that this makes it much more expensive for state-level attackers to access your content in Red Matrix.
+We believe that the NSA-level dragnet plaintext extracting mass surveillance is probably not possible due to the design of the zot protocol. Dedicated attacks including hacking into one hub to obtain the server logs and database only partly reveal what is going on between people communication between different hubs. We believe that this makes it much more expensive for state-level attackers to access your content in $Projectname.
We gladly accept help improving the security of the system and auditing it as well.