From 708f25956299466e41ca668a2db3c8e8eba96e55 Mon Sep 17 00:00:00 2001 From: humanacollaborator Date: Sun, 18 Jul 2021 15:33:53 -0400 Subject: [PATCH] debian and freedesktop forges impose CAPTCHA --- forge_comparison.md | 6 +++--- gitlab-dot-com.md | 16 ++++++++++------ input_data/forges.sql | 6 +++--- 3 files changed, 16 insertions(+), 12 deletions(-) diff --git a/forge_comparison.md b/forge_comparison.md index 1e38514..fe559bb 100644 --- a/forge_comparison.md +++ b/forge_comparison.md @@ -20,11 +20,9 @@ The following forges have no significant ethical issues: [try.gitea.io](https://try.gitea.io)|✅|Gitea 1.15.0[⚠][gitea-bug]|n|n|n|n|Intended only for Gitea experimentation; no expectation of future availability| [framagit.org](https://framagit.org)|✅|Gitlab (CE 13.10.2)|n|n|n|n|[may become more restricted](https://framablog.org/2019/09/26/lets-de-frama-tify-the-internet) in mid-2021| [git.jami.net](https://git.jami.net)|✅|Gitlab (CE)|n|n|n|n|possibly restricted to Jami efforts; acces to help page blocked to non-members so CE/EE unknown| -[gitlab.freedesktop.org](https://gitlab.freedesktop.org)|✅|Gitlab (CE)|n|n|n|n|possibly restricted to Freedesktop efforts| [gitlab.gnome.org](https://gitlab.gnome.org)|✅|Gitlab (CE)|n|n|n|n|possibly restricted to Gnome efforts| [gitlab.tails.boum.org](https://gitlab.tails.boum.org)|✅|Gitlab (CE)|n|n|n|n|possibly restricted to Tails efforts but no AUP says otherwise| [gitlab.torproject.org](https://gitlab.torproject.org)|✅|Gitlab (CE)|n|n|n|n|open registration; repo creation possibly restricted; Google reCAPTCHA is [allegedley](https://lists.gnu.org/archive/html/repo-criteria-discuss/2021-03/msg00000.html) used, but [not at registration time](https://gitlab.onionize.space)| -[salsa.debian.org](https://salsa.debian.org)|✅|Gitlab (CE)|n|n|n|n|possibly restricted to Debian efforts; serves as an alternative to Debian's email-only bug tracker| [source.small-tech.org](https://source.small-tech.org)|❌|Gitlab (CE)|n|n|n|n|| [notabug.org](https://notabug.org)([onion](http://qs3zumwfci4tntnd.onion))|✅|Gogs|n|n|n|n|based on [liberated](https://notabug.org/hp/gogs) fork of Gogs; [supports Tor](https://notabug.org/tor) (the *onion* web UI is currently disabled in response to attack but the onion site accepts git connections); supports SSH keys and SSH over Tor to NAB's onion service; no e-voting; NAB doesn't associate PGP keys to users, so PGP signed commits may be unavailable or more manual work needed.| [launchpad.net](https://launchpad.net)|✅|Launchpad|n|n|n|n|It's [unknown](https://wiki.freephile.org/wiki/Comparison_of_git_hosting_options) whether it functions without JavaScript; no wiki| @@ -46,7 +44,7 @@ These forges are not as seriously flawed as the blacklisted ones, but they shoul [gitea.it](https://gitea.it)|✅|Gitea 1.12.4|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)| [git.kiwifarms.net](https://git.kiwifarms.net)|✅|Gitea 1.13.1|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)| [codeberg.org](https://codeberg.org)|✅|Gitea 1.14 customized[⚠][gitea-bug]|n|n|n|n|Based in Germany; [censored an anti-Cloudflare project](codeberg.md) in a reckless and destructive manner; functions without any JavaScript and the JavaScript that exists is all 1st-party ([ref](https://github.com/privacytoolsIO/privacytools.io/issues/843#issuecomment-483830547)); devs make [foolish decisions](https://codeberg.org/Codeberg/Community/issues/444) (improving performance by breaking some browsers, when the performance improvement only affects those they broke.)| -[git.sdf.org](https://git.sdf.org)|✅|Gitea 1.14.1[⚠][gitea-bug]|n|n|n|n|git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. SDF is also tar-pitting many Tor IPs in defense of attack & it's unclear if this is a temporary measure; SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.| +[git.sdf.org](https://git.sdf.org)|✅|Gitea 1.14.1[⚠][gitea-bug]|n|n|n|n|git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it's unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.| [git.shivering-isles.com](https://git.shivering-isles.com)|❌|Gitlab (CE)|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); Registration is open but broken-- requires 2FA using a device that can QR-scan, and the email verification link is DoA: ![](images/shivering-isles_broken_reg.png) That stale link error triggers even when accessed immediately.| [git.hardenedbsd.org](https://git.hardenedbsd.org)|✅|Gitlab (EE)|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); possibly restricted to BSD efforts| [source.puri.sm](https://source.puri.sm)|✅|Gitlab (EE)|n|n|n|n|open registration but activity is [restricted](https://social.librem.one/@kyle/106030358887310621) to puri.sm efforts; accounts are subject to spontaneous unjustified bans (apparent censorship): ![](images/purism_ban.png); no CAPTCHA (confirmed March 2021); is the JavaScript non-free with the enterprize edition?| @@ -63,6 +61,8 @@ bitbucket.org|✅|Bitbucket Server|n|n|n|☣|**Amazon AWS-hosted**; needs non-fr libregit.org|❌|Gitea|n|y|n|n|reg by invite only| git.openprivacy.ca|❌ (exclusive walled garden)|Gitea 1.12.4|y|n|n|n|Tor users get 404 - suspected botnet; [listed](https://git.nogafam.es/deCloudflare/deCloudflare/src/branch/master/cloudflare_users/cloudflare_supporter.md) as a Cloudflare supporter| git.feneas.org|✅|Gitlab (CE)|n|n|⚒|☣|reCAPTCHA impedes registration and imposes non-free s/w| +gitlab.freedesktop.org|✅|Gitlab (CE)|n|n|⚒|☣|possibly restricted to Freedesktop efforts; reg. blocked by reCAPTCHA| +salsa.debian.org|✅|Gitlab (CE)|n|n|⚒|☣|**forced h/reCAPTCHA**; possibly restricted to Debian efforts; serves as an alternative to Debian's email-only bug tracker| gitlab.com|❌ (exclusive walled garden)|Gitlab (EE)|n|y|⚒|☣|flagship instance running the *Enterprise Edition*; uses both hCAPTCHA & reCAPTCHA; heavily restricted with discriminatory policies; [copious ethical issues](gitlab-dot-com.md)| diff --git a/gitlab-dot-com.md b/gitlab-dot-com.md index 259fa5b..611a41d 100644 --- a/gitlab-dot-com.md +++ b/gitlab-dot-com.md @@ -73,12 +73,16 @@ These are the ethical problems with that specific instance: consequently [FSF criteria C3][fsfCriteria] is unmet. -8. Gitlab.com treats Tor users trying to register with hostility. - Access is inconvenient in some cases (e.g. GUI users), while access - is outright denied to other Tor users (e.g. terminal users with - non-GUI browsers, browsers without javascript capability, and users - who happen to use a high traffic exit node). - [FSF criteria C3][fsfCriteria] is therefore unmet. +8. Gitlab.com treats people trying to register with hostility if their + ISP uses CGNAT or if they use Tor. Access is inconvenient in some + cases (e.g. GUI users), while access is outright denied to other + users (e.g. terminal users with non-GUI browsers, browsers without + javascript capability, and users who happen to use a high traffic + exit node). ISPs in Serbia and India often use CGNAT for their + lowest tiers of service while charging an extra fee for IPv4 or + IPv6. This means gitlab.com is effectively discriminating against + poor people, Serbians, and Indians. + [FSF criteria C2 & C3][fsfCriteria] is therefore unmet. 1. Gitlab.com refuses service to users who attempt to register with a `@spamgourmet.com` forwarding email address to track spam and to protect their more sensitive internal email address. This means diff --git a/input_data/forges.sql b/input_data/forges.sql index e8a01a6..b8d8b11 100644 --- a/input_data/forges.sql +++ b/input_data/forges.sql @@ -46,7 +46,7 @@ insert into forgesTbl (url_clrnet, url_onion, software, notes) values ('https:// insert into forgesTbl (url_clrnet, software, notes) values ('https://git.slashdev.space','Gitea 1.13.6','SSH port: 22; SSH over Tor broken (try HTTPS over Tor)'); insert into forgesTbl (url_clrnet, software, notes) values ('https://git.disroot.org','Gitea 1.14.2','SSH over Tor works; based in NL'); insert into forgesTbl (url_clrnet, software, openpubreg, cflogin, notes) values ('https://libregit.org','Gitea',0,1,'reg by invite only'); -insert into forgesTbl (url_clrnet, software, notes) values ('https://git.sdf.org','Gitea 1.14.1','git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. SDF is also tar-pitting many Tor IPs in defense of attack & it''s unclear if this is a temporary measure; SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.'); +insert into forgesTbl (url_clrnet, software, notes) values ('https://git.sdf.org','Gitea 1.14.1','git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it''s unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.'); insert into forgesTbl (url_clrnet, software, cfns) values ('https://gitea.it','Gitea 1.12.4',1); insert into forgesTbl (url_clrnet, software, notes) values ('https://de.edumat.io','Gitea 1.05.2','no SSH'); insert into forgesTbl (url_clrnet, software, cfns) values ('https://git.kiwifarms.net','Gitea 1.13.1',1); @@ -78,8 +78,8 @@ insert into forgesTbl (url_clrnet, software, hrecaptcha, notes) values ('https:/ insert into forgesTbl (url_clrnet, software, cfns, notes) values ('https://git.hardenedbsd.org','gitlab_ee',1,'possibly restricted to BSD efforts'); insert into forgesTbl (url_clrnet, software, notes) values ('https://git.jami.net','gitlab_ce','possibly restricted to Jami efforts; acces to help page blocked to non-members so CE/EE unknown'); insert into forgesTbl (url_clrnet, software, cflogin, hrecaptcha, notes) values ('https://gitlab.com','gitlab_ee',1,'unavoidable','flagship instance running the *Enterprise Edition*; uses both hCAPTCHA & reCAPTCHA; heavily restricted with discriminatory policies; [copious ethical issues](gitlab-dot-com.md)'); -insert into forgesTbl (url_clrnet, software, notes) values ('https://salsa.debian.org','gitlab_ce','possibly restricted to Debian efforts; serves as an alternative to Debian''s email-only bug tracker'); -insert into forgesTbl (url_clrnet, software, notes) values ('https://gitlab.freedesktop.org','gitlab_ce','possibly restricted to Freedesktop efforts'); +insert into forgesTbl (url_clrnet, software, hrecaptcha, notes) values ('https://salsa.debian.org','gitlab_ce','unavoidable','possibly restricted to Debian efforts; serves as an alternative to Debian''s email-only bug tracker'); +insert into forgesTbl (url_clrnet, software, hrecaptcha, notes) values ('https://gitlab.freedesktop.org','gitlab_ce','unavoidable','possibly restricted to Freedesktop efforts; reg. blocked by reCAPTCHA'); insert into forgesTbl (url_clrnet, software, notes) values ('https://gitlab.tails.boum.org','gitlab_ce','possibly restricted to Tails efforts but no AUP says otherwise'); insert into forgesTbl (url_clrnet, software, notes) values ('https://gitlab.gnome.org','gitlab_ce','possibly restricted to Gnome efforts'); insert into forgesTbl (url_clrnet, software, hrecaptcha, notes) values ('https://gitlab.torproject.org','gitlab_ce','non-essential tasks','open registration; repo creation possibly restricted; Google reCAPTCHA is [allegedley](https://lists.gnu.org/archive/html/repo-criteria-discuss/2021-03/msg00000.html) used, but [not at registration time](https://gitlab.onionize.space)');