11 Juli 2014

Beschwerde wegen mangelhafter Verschlüsselung bei amerikanischen Firmen ...

Ich habe meinen Browser so eingestellt, das https nur mit den folgenden Eigenschaften möglich ist.

  • 256 Bit Verschlüsselung
  • Perfect Forward Secrecy
  • TLS 1.1 oder besser

Das Problem ist, das fast alle Dienste eine gut verschlüsselte Frontseite haben. Der Server www.domain.tld bietet in aller Regel eine hervorragende Verschlüsselungen an. Leider ist es sehr Verbreitet, das API Rechner im Hintergrund nur eine schlechte Verschlüsselung angeboten wird. Leider werden über solche Server auch immer wieder kritische Dinge geladen, wie zum Beispiel Javascript Prozeduren. Eine Einladung an alle, die viel zu Neugierig sind.

Es gibt eigendlich nur 2 Dinge die Amerikaner zum Umdenken bringen: Waffen und Dollar. Also sollten NSA bezogene Beschwerden wegen der NSA den schon vorhandenen Handlungsdruck beim US Business zu vergrößern. Hier eine Kopie eines E-Mail an den Support eines betroffenen Unternehmen.


Subject: Trouble with hard encryption

Hello Support,

I have trouble to access the ##### Website.
The Problem ist, that https is not erverytime the same.
Https is a collection of procedures.
For example there are also procedures who are only authorize the content and do not any encryption.
By default, every Procedure with less than 56 Bit encryption security is disable to enshure a minimum of privacy.

Snowdens Papers say, i am priority Target of the NSA!
The US government claim it means "National Security Agency" but this is definitiv wrong, it mean "New Stasi of America" and spying all American Citizen an the other part of the World.
Would Erich Mielke, the former DDR Stasi Chief, know what the NSA today so can he would sick with envy!
As i was a Child, there was a President and his name was Nixon.
He must give up his President status to avoid an Impeachment.
Reason was one Bug to Spy the opposite election team.
Obama puts his Bugs everywhere and is still President.
Obama says, America is no Banana Republic.
In America citizen can arrested by Military Peoples without a judge decision.
This is in my Eyes the primary feature of a Banana Republic.
I hope, the American Citizen wake up and defend there Constitution and send all the paranoid government guys to the dessert.

Unfortunate it is possible to Downgrade the Encryption Level by a Man in the Middle Attack to the lowest possible common Procedure.
This means, it is possible to Manipulate a connection to reduce Encryption to 56 Bit ... Witch is a Hoax for the NSA science 1998 ...

As Result from this i have restricted the Encryption Options to an ultra paranoid subset.
I have often found, the the frontserver have powerfull set of encryption.
But in the Shadow, the Server who are Serving Pictures oder Procedures are often not able to Process high encryption Standarts.
An intrusion to this kind of Encryption is critical, because NSA often check out to Install some spy BUGs to targets.
So Please update the Version / Config to every Server to process the High End Encryptions.

At the Moment i define "secure" as

(1) 256 Bit encryption ... as more as better, and this is the maximum.
(2) Perfect Forward Secrecy ... this ensures that recording and later "aquicision" of the server key is senseless.
(3) TLS 1.1 or better ... because of the Problems with the negotiation.

Here is a Screen shot of the error message:


With greetings
Hans Carlos Hofmann

PS: BCC NSA Agent - you do not need to spy this, it will is also published on the blog of Hans Carlos Hofmann.


Dieser Text darf natürlich von allen Menschen als Vorlage für eigene Beschwerden genutzt werden ;)

Keine Kommentare:

Kommentar veröffentlichen