humanacollaborator
/
humanacollabora
2
2
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

Gitlab EE FOSSness uncertain; MS acquired Xandr from AT&T

master
humanacollaborator 2022-06-23 08:58:28 +02:00
parent e84272797d
commit fb2bea2119
5 changed files with 16 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
forge_comparison.md
View File

@ -50,13 +50,13 @@ These forges are not as seriously flawed as the blacklisted ones, but they shoul
[gitea.it](https://gitea.it)|✅|Gitea 1.12.4|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)|
[git.kiwifarms.net](https://git.kiwifarms.net)|✅|Gitea 1.13.1|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)|
[codeberg.org](https://codeberg.org)|✅|Gitea 1.14 customized[⚠][gitea-bug]|n|n|n|n|Based in Germany; [censored an anti-Cloudflare project](codeberg.md) in a reckless and destructive manner; functions without any JavaScript and the JavaScript that exists is all 1st-party ([ref](https://github.com/privacytools/privacytools.io/issues/843#issuecomment-483830547)); devs make [foolish decisions](https://codeberg.org/Codeberg/Community/issues/444) (improving performance by breaking some browsers, when the performance improvement only affects those they broke.)|
[git.sdf.org](https://git.sdf.org)|✅|Gitea 1.14.1[⚠][gitea-bug]|n|n|n|n|git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it's unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.|
[git.sdf.org](https://git.sdf.org)|✅|Gitea 1.14.1[⚠][gitea-bug]|n|n|n|n|git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & its unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works|
[git.passageenseine.fr](https://git.passageenseine.fr)|✅|Gitea 1.14.2[⚠][gitea-bug]|n|n|n|n|Was previously down for a lengthy period thus considered unreliable.|
[forge.chapril.org](https://forge.chapril.org)|✅|Gitea 1.16.6[⚠][gitea-bug]|n|n|n|n|spontaneously deletes peoples repos without warning, reason, or recourse.|
[forge.chApril.org](https://forge.chApril.org)|✅|Gitea 1.16.6[⚠][gitea-bug]|n|n|n|n|Censorship: spontaneously deletes peoples repos without warning, reason, or recourse. Forge is unsuitable for activism. French UI.|
[git.shivering-isles.com](https://git.shivering-isles.com)|❌|Gitlab (CE)|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); Registration is open but broken-- requires 2FA using a device that can QR-scan, and the email verification link is DoA: ![](images/shivering-isles_broken_reg.png) That stale link error triggers even when accessed immediately.|
[git.hardenedbsd.org](https://git.hardenedbsd.org)|✅|Gitlab (EE)|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); possibly restricted to BSD efforts|
[mypdns.org](https://mypdns.org)|❌|Gitlab (EE)|n|n|n|n|**dead site**; Sudden death without warning to repo admins. Was home of the deCloudflare and /Right to be Offline/ projects; It was open reg but considered a “private system” whereby the option to create a new repo was not immediately available.|
[source.puri.sm](https://source.puri.sm)|✅|Gitlab (EE)|n|n|n|n|open registration but activity is [restricted](https://social.librem.one/@kyle/106030358887310621) to puri.sm efforts; accounts are subject to spontaneous unjustified bans (apparent censorship): ![](images/purism_ban.png); no CAPTCHA (confirmed March 2021); is the JavaScript non-free with the enterprize edition?|
[git.hardenedbsd.org](https://git.hardenedbsd.org)|✅|Gitlab (EE)|n|n|n|?|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); possibly restricted to BSD efforts|
[mypdns.org](https://mypdns.org)|❌|Gitlab (EE)|n|n|n|?|**dead site**; Sudden death without warning to repo admins. Was home of the deCloudflare and /Right to be Offline/ projects; It was open reg but considered a “private system” whereby the option to create a new repo was not immediately available.|
[source.puri.sm](https://source.puri.sm)|✅|Gitlab (EE)|n|n|n|?|open registration but activity is [restricted](https://social.librem.one/@kyle/106030358887310621) to puri.sm efforts; accounts are subject to spontaneous unjustified bans (apparent censorship): ![](images/purism_ban.png); no CAPTCHA (confirmed March 2021); is the JavaScript non-free with the enterprize edition?|
## Blacklist

3
github.md
View File

@ -49,6 +49,7 @@
[46]: https://github.com/deCloudflare/deCloudflare
[47]: http://crimeflare.eu.org/
[48]: images/github_ban.png
[49]: https://www.iccl.ie/digital-data/iccl-report-on-the-scale-of-real-time-bidding-data-broadcasts-in-the-u-s-and-europe/
# Direct practical problems with using Microsoft Github
@ -138,6 +139,8 @@
365 violates [GDPR article 5][24] ¶ `1.c`,
[GDPR article 17][25], and stores the data outside the EEA (may
also be a GDPR breach).
1. (2022) Microsoft acquired Xandr from AT&T, thus [becoming a
surveillance advertiser][49].
1. Microsoft is detrimental to **human rights** and **democracy**
1. Microsoft [finances AnyVision][26] to produce facial
recognition technology that the Israeli military uses as a

2
gitlab-dot-com.md
View File

@ -46,7 +46,7 @@ These are the ethical problems with that specific instance:
undermines the spirit and intent of [FSF criteria C6][fsfCriteria].
[FSF criteria B1][fsfCriteria] is also unsatisfied due to
deliberate sharing all traffic with CloudFlare.
1. Excessive [tracking][tracking] renders [FSF criteria C4][fsfCriteria]
1. Excessive [tracking][tracking-cache] renders [FSF criteria C4][fsfCriteria]
unsatisfied.
1. Contrary to widespread confused notions about Gitlab being free
software, the gitlab.com *service* does *not* run the Gitlab

10
input_data/forges.sql
View File

@ -1,6 +1,7 @@
/* Monitor the following for new hosts:
https://gitea.com/gitea/awesome-gitea#organizations
https://wiki.softwareheritage.org/wiki/Suggestion_box:_source_code_to_add (specific repos can be requested here: https://archive.softwareheritage.org/save/#requests)
https://framagit.org/dCF/deCloudflare/-/blob/master/subfiles/cloudflared/gitservices.md
*/
create table if not exists forgesTbl
@ -14,7 +15,7 @@ create table if not exists forgesTbl
cflogin boolean not null default 0,
cfns boolean not null default 0,
antitor boolean not null default 0,
forced_nfsw boolean not null default 0,
forced_nfsw boolean default 0,
aws boolean not null default 0,
nation_discrimination boolean not null default 0,
notes text,
@ -46,8 +47,8 @@ insert into forgesTbl (url_clrnet, url_onion, software, notes) values ('https://
insert into forgesTbl (url_clrnet, software, notes) values ('https://git.slashdev.space','Gitea 1.15.4','SSH port: 22; SSH over Tor broken (try HTTPS over Tor)');
insert into forgesTbl (url_clrnet, software, notes) values ('https://git.disroot.org','Gitea 1.15.6','SSH over Tor works; based in NL');
insert into forgesTbl (url_clrnet, software, openpubreg, cflogin, notes) values ('https://libregit.org','Gitea',0,1,'reg by invite only');
insert into forgesTbl (url_clrnet, software, notes) values ('https://git.sdf.org','Gitea 1.14.1','git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it''s unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.');
insert into forgesTbl (url_clrnet, software, notes) values ('https://forge.chapril.org','Gitea 1.16.6','spontaneously deletes peoples repos without warning, reason, or recourse.');
insert into forgesTbl (url_clrnet, software, notes) values ('https://git.sdf.org','Gitea 1.14.1','git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & its unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works');
insert into forgesTbl (url_clrnet, software, notes) values ('https://forge.chApril.org','Gitea 1.16.6','Censorship: spontaneously deletes peoples repos without warning, reason, or recourse. Forge is unsuitable for activism. French UI.'); /* dCF censored */
insert into forgesTbl (url_clrnet, software, cfns) values ('https://gitea.it','Gitea 1.12.4',1);
insert into forgesTbl (url_clrnet, software, dead, notes) values ('https://de.edumat.io','Gitea 1.05.2',1,'no SSH');
insert into forgesTbl (url_clrnet, software, cfns) values ('https://git.kiwifarms.net','Gitea 1.13.1',1);
@ -96,8 +97,9 @@ insert into forgesTbl (url_clrnet, software, openpubreg) values ('https://source
insert into forgesTbl (url_clrnet, software, openpubreg, cfns, notes) values ('https://git.shivering-isles.com','gitlab_ce',0,1,'Registration is open but broken-- requires 2FA using a device that can QR-scan, and the email verification link is DoA: ![](images/shivering-isles_broken_reg.png) That stale link error triggers even when accessed immediately.');
insert into forgesTbl (url_clrnet, software) values ('https://git.stuxhost.com','gitlab_ce');
update forgesTbl set forced_nfsw = null where software = 'gitlab_ee';
update forgesTbl set forced_nfsw = 1 where hrecaptcha = 'unavoidable';
update forgesTbl set lst_kind = 'gray' where lst_kind = 'white' and (aws or cfns or dead or nation_discrimination or (notes is not null and (notes like '%google_cloud_hosted%' or notes like '%censor%' or notes like '%previously_down%' or notes like '%resource_deprived%' or notes like '%spontaneous%')));
update forgesTbl set lst_kind = 'gray' where lst_kind = 'white' and (aws or cfns or dead or nation_discrimination or (notes is not null and (notes like '%google_cloud_hosted%' or notes like '%censor%' or notes like '%spontaneous%' or notes like '%previously_down%' or notes like '%resource_deprived%')));
update forgesTbl set lst_kind = 'black' where cflogin or antitor or forced_nfsw;
update forgesTbl set notes = '**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)'||case when notes is null then '' else '; '||notes end where cfns;
update forgesTbl set notes = '**Amazon AWS-hosted**'||case when notes is null then '' else '; '||notes end where aws;

2
tools/gen_forge_table.sh
View File

@ -143,7 +143,7 @@ $(intro $lst)"'
case when antitor then '${sym[eye]}' else 'n' end,
case when cflogin then '${sym[cloud_lightening]}' else 'n' end,
case when hrecaptcha = 'unavoidable' then '${sym[hammerpick]}' else 'n' end,
case when forced_nfsw then '${sym[biohaz]}' else 'n' end,
case when forced_nfsw then '${sym[biohaz]}' when forced_nfsw is null then '?' else 'n' end,
case when notes is null then '|' else notes||'|' end
from forgesTbl where lst_kind = '$lst'
order by software,url_clrnet collate nocase;"