From fb2bea2119de110850483e4eb27ceae2ba816878 Mon Sep 17 00:00:00 2001
From: humanacollaborator <rizo@my.crimeflare.eu.org>
Date: Thu, 23 Jun 2022 08:58:28 +0200
Subject: [PATCH] Gitlab EE FOSSness uncertain; MS acquired Xandr from AT&T

---
 forge_comparison.md      | 10 +++++-----
 github.md                |  3 +++
 gitlab-dot-com.md        |  2 +-
 input_data/forges.sql    | 10 ++++++----
 tools/gen_forge_table.sh |  2 +-
 5 files changed, 16 insertions(+), 11 deletions(-)

diff --git a/forge_comparison.md b/forge_comparison.md
index 208b0f6..2bdf441 100644
--- a/forge_comparison.md
+++ b/forge_comparison.md
@@ -50,13 +50,13 @@ These forges are not as seriously flawed as the blacklisted ones, but they shoul
 [gitea.it](https://gitea.it)|✅|Gitea 1.12.4|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)|
 [git.kiwifarms.net](https://git.kiwifarms.net)|✅|Gitea 1.13.1|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)|
 [codeberg.org](https://codeberg.org)|✅|Gitea 1.14 customized[⚠][gitea-bug]|n|n|n|n|Based in Germany; [censored an anti-Cloudflare project](codeberg.md) in a reckless and destructive manner; functions without any JavaScript and the JavaScript that exists is all 1st-party ([ref](https://github.com/privacytools/privacytools.io/issues/843#issuecomment-483830547)); devs make [foolish decisions](https://codeberg.org/Codeberg/Community/issues/444) (improving performance by breaking some browsers, when the performance improvement only affects those they broke.)|
-[git.sdf.org](https://git.sdf.org)|✅|Gitea 1.14.1[⚠][gitea-bug]|n|n|n|n|git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it's unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.|
+[git.sdf.org](https://git.sdf.org)|✅|Gitea 1.14.1[⚠][gitea-bug]|n|n|n|n|git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it’s unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works|
 [git.passageenseine.fr](https://git.passageenseine.fr)|✅|Gitea 1.14.2[⚠][gitea-bug]|n|n|n|n|Was previously down for a lengthy period thus considered unreliable.|
-[forge.chapril.org](https://forge.chapril.org)|✅|Gitea 1.16.6[⚠][gitea-bug]|n|n|n|n|spontaneously deletes people’s repos without warning, reason, or recourse.|
+[forge.chApril.org](https://forge.chApril.org)|✅|Gitea 1.16.6[⚠][gitea-bug]|n|n|n|n|Censorship: spontaneously deletes people’s repos without warning, reason, or recourse. Forge is unsuitable for activism. French UI.|
 [git.shivering-isles.com](https://git.shivering-isles.com)|❌|Gitlab (CE)|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); Registration is open but broken-- requires 2FA using a device that can QR-scan, and the email verification link is DoA: ![](images/shivering-isles_broken_reg.png) That stale link error triggers even when accessed immediately.|
-[git.hardenedbsd.org](https://git.hardenedbsd.org)|✅|Gitlab (EE)|n|n|n|n|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); possibly restricted to BSD efforts|
-[mypdns.org](https://mypdns.org)|❌|Gitlab (EE)|n|n|n|n|**dead site**; Sudden death without warning to repo admins. Was home of the deCloudflare and /Right to be Offline/ projects; It was open reg but considered a “private system” whereby the option to create a new repo was not immediately available.|
-[source.puri.sm](https://source.puri.sm)|✅|Gitlab (EE)|n|n|n|n|open registration but activity is [restricted](https://social.librem.one/@kyle/106030358887310621) to puri.sm efforts; accounts are subject to spontaneous unjustified bans (apparent censorship): ![](images/purism_ban.png); no CAPTCHA (confirmed March 2021); is the JavaScript non-free with the enterprize edition?|
+[git.hardenedbsd.org](https://git.hardenedbsd.org)|✅|Gitlab (EE)|n|n|n|?|**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch); possibly restricted to BSD efforts|
+[mypdns.org](https://mypdns.org)|❌|Gitlab (EE)|n|n|n|?|**dead site**; Sudden death without warning to repo admins. Was home of the deCloudflare and /Right to be Offline/ projects; It was open reg but considered a “private system” whereby the option to create a new repo was not immediately available.|
+[source.puri.sm](https://source.puri.sm)|✅|Gitlab (EE)|n|n|n|?|open registration but activity is [restricted](https://social.librem.one/@kyle/106030358887310621) to puri.sm efforts; accounts are subject to spontaneous unjustified bans (apparent censorship): ![](images/purism_ban.png); no CAPTCHA (confirmed March 2021); is the JavaScript non-free with the enterprize edition?|
 
 ## Blacklist
 
diff --git a/github.md b/github.md
index 74afe02..3d09d07 100644
--- a/github.md
+++ b/github.md
@@ -49,6 +49,7 @@
 [46]: https://github.com/deCloudflare/deCloudflare
 [47]: http://crimeflare.eu.org/
 [48]: images/github_ban.png
+[49]: https://www.iccl.ie/digital-data/iccl-report-on-the-scale-of-real-time-bidding-data-broadcasts-in-the-u-s-and-europe/
 
 # Direct practical problems with using Microsoft Github
 
@@ -138,6 +139,8 @@
        365 violates [GDPR article 5][24] ¶ `1.c`,
        [GDPR article 17][25], and stores the data outside the EEA (may
        also be a GDPR breach).
+    1. (2022) Microsoft acquired Xandr from AT&T, thus [becoming a
+       surveillance advertiser][49].
 1. Microsoft is detrimental to **human rights** and **democracy**
     1. Microsoft [finances AnyVision][26] to produce facial
        recognition technology that the Israeli military uses as a
diff --git a/gitlab-dot-com.md b/gitlab-dot-com.md
index b255bcb..83ef826 100644
--- a/gitlab-dot-com.md
+++ b/gitlab-dot-com.md
@@ -46,7 +46,7 @@ These are the ethical problems with that specific instance:
    undermines the spirit and intent of [FSF criteria C6][fsfCriteria].
    [FSF criteria B1][fsfCriteria] is also unsatisfied due to
    deliberate sharing all traffic with CloudFlare.
-1. Excessive [tracking][tracking] renders [FSF criteria C4][fsfCriteria]
+1. Excessive [tracking][tracking-cache] renders [FSF criteria C4][fsfCriteria]
    unsatisfied.
 1. Contrary to widespread confused notions about Gitlab being free
    software, the gitlab.com *service* does *not* run the Gitlab
diff --git a/input_data/forges.sql b/input_data/forges.sql
index c216b84..f1fce9d 100644
--- a/input_data/forges.sql
+++ b/input_data/forges.sql
@@ -1,6 +1,7 @@
 /* Monitor the following for new hosts:
    https://gitea.com/gitea/awesome-gitea#organizations
    https://wiki.softwareheritage.org/wiki/Suggestion_box:_source_code_to_add (specific repos can be requested here: https://archive.softwareheritage.org/save/#requests)
+   https://framagit.org/dCF/deCloudflare/-/blob/master/subfiles/cloudflared/gitservices.md
 */
 
 create table if not exists forgesTbl
@@ -14,7 +15,7 @@ create table if not exists forgesTbl
    cflogin               boolean not null default 0,
    cfns                  boolean not null default 0,
    antitor               boolean not null default 0,
-   forced_nfsw           boolean not null default 0,
+   forced_nfsw           boolean          default 0,
    aws                   boolean not null default 0,
    nation_discrimination boolean not null default 0,
    notes                 text,
@@ -46,8 +47,8 @@ insert into forgesTbl (url_clrnet, url_onion, software, notes) values ('https://
 insert into forgesTbl (url_clrnet, software, notes) values ('https://git.slashdev.space','Gitea 1.15.4','SSH port: 22; SSH over Tor broken (try HTTPS over Tor)');
 insert into forgesTbl (url_clrnet, software, notes) values ('https://git.disroot.org','Gitea 1.15.6','SSH over Tor works; based in NL');
 insert into forgesTbl (url_clrnet, software, openpubreg, cflogin, notes) values ('https://libregit.org','Gitea',0,1,'reg by invite only');
-insert into forgesTbl (url_clrnet, software, notes) values ('https://git.sdf.org','Gitea 1.14.1','git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it''s unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works; some UTF-8 emoticons apparently broke in upgrade from 1.13.1 to 1.14.1.');
-insert into forgesTbl (url_clrnet, software, notes) values ('https://forge.chapril.org','Gitea 1.16.6','spontaneously deletes people’s repos without warning, reason, or recourse.');
+insert into forgesTbl (url_clrnet, software, notes) values ('https://git.sdf.org','Gitea 1.14.1','git.sdf.org [censored](https://git.sdf.org/deCloudflare/deCloudflare) the deCloudflare project without warning, reason, or recourse. So git.sdf.org apparently unwelcoming of projects driven by privacy, netneutrality, or anti-tech-giant types of activism. Performance is sluggish and the website often times out (perhaps because SDF is also tar-pitting many Tor IPs in defense of attack & it’s unclear if this is a temporary measure); SSH over Tor broken but HTTPS over Tor works');
+insert into forgesTbl (url_clrnet, software, notes) values ('https://forge.chApril.org','Gitea 1.16.6','Censorship: spontaneously deletes people’s repos without warning, reason, or recourse. Forge is unsuitable for activism. French UI.'); /* dCF censored */
 insert into forgesTbl (url_clrnet, software, cfns) values ('https://gitea.it','Gitea 1.12.4',1);
 insert into forgesTbl (url_clrnet, software, dead, notes) values ('https://de.edumat.io','Gitea 1.05.2',1,'no SSH');
 insert into forgesTbl (url_clrnet, software, cfns) values ('https://git.kiwifarms.net','Gitea 1.13.1',1);
@@ -96,8 +97,9 @@ insert into forgesTbl (url_clrnet, software, openpubreg) values ('https://source
 insert into forgesTbl (url_clrnet, software, openpubreg, cfns, notes) values ('https://git.shivering-isles.com','gitlab_ce',0,1,'Registration is open but broken-- requires 2FA using a device that can QR-scan, and the email verification link is DoA: ![](images/shivering-isles_broken_reg.png) That stale link error triggers even when accessed immediately.');
 insert into forgesTbl (url_clrnet, software) values ('https://git.stuxhost.com','gitlab_ce');
 
+update forgesTbl set forced_nfsw = null where software = 'gitlab_ee';
 update forgesTbl set forced_nfsw = 1 where hrecaptcha = 'unavoidable';
-update forgesTbl set lst_kind = 'gray' where lst_kind = 'white' and (aws or cfns or dead or nation_discrimination or (notes is not null and (notes like '%google_cloud_hosted%' or notes like '%censor%' or notes like '%previously_down%' or notes like '%resource_deprived%' or notes like '%spontaneous%')));
+update forgesTbl set lst_kind = 'gray' where lst_kind = 'white' and (aws or cfns or dead or nation_discrimination or (notes is not null and (notes like '%google_cloud_hosted%' or notes like '%censor%' or notes like '%spontaneous%' or notes like '%previously_down%' or notes like '%resource_deprived%')));
 update forgesTbl set lst_kind = 'black' where cflogin or antitor or forced_nfsw;
 update forgesTbl set notes = '**Cloudflare NS server** (they can route all traffic via CF at the flip of a switch)'||case when notes is null then '' else '; '||notes end where cfns;
 update forgesTbl set notes = '**Amazon AWS-hosted**'||case when notes is null then '' else '; '||notes end where aws;
diff --git a/tools/gen_forge_table.sh b/tools/gen_forge_table.sh
index 573e8ed..0288723 100755
--- a/tools/gen_forge_table.sh
+++ b/tools/gen_forge_table.sh
@@ -143,7 +143,7 @@ $(intro $lst)"'
                                  case when antitor                    then '${sym[eye]}'              else 'n' end,
                                  case when cflogin                    then '${sym[cloud_lightening]}' else 'n' end,
                                  case when hrecaptcha = 'unavoidable' then '${sym[hammerpick]}'       else 'n' end,
-                                 case when forced_nfsw                then '${sym[biohaz]}'           else 'n' end,
+                                 case when forced_nfsw                then '${sym[biohaz]}'           when forced_nfsw is null then '?' else 'n' end,
                                  case when notes is null then '|' else notes||'|' end
                           from forgesTbl where lst_kind = '$lst'
                           order by software,url_clrnet collate nocase;"