[ubuntu-studio-devel] US Wiki/ help regarding data protection

lukefromdc at hushmail.com lukefromdc at hushmail.com
Mon Jun 20 19:08:30 UTC 2016

Here is a short, simple overview that could be used as a starting point by  nearly anyone able to boot US live:

Due to the growth even in open source of applications that "phone home," when it is necessary for privacy or security reasons to be able to deny having produced a media item, it should be done on a computer that is not connected to the Internet.  The finished media can be moved by a new flash drive to another computer in another location for publication. 

When even more security is needed, UbuntuStudio can be run from the live DVD or flash drive, and the raw media clips can be kept on removable media and editing applications set to put their temporary files on the same media. When the job is done the media containing the raw material (USB 3 flash drive or the original camera card) can simply be destroyed. A USB 3 flash drive will give far better performance when running "live" than a DVD or a USB 2 flash drive will.

UbuntuStudio is almost opposite say, Windows 10 when it comes to security. No automatic backup to cloud servers, no automatic sharing of encryption keys with Microsoft, no "unique advertising ID," and so on. UbuntuStudio is not financed by selling your personal information to advertisers. 

On the other hand,  even things like automatic checks for updates can reveal the existance not only of a computer but a computer with a media editing program consistant with what adversaries believe the media in question was produced on. Automatic crash reports can do the same. All of these generate server logs that can be accessed by authorities or just plain stolen by hostile hackers.  A computer that is not connected to the Internet can't connect to cloud servers nor be listened in on over the network.

On 6/20/2016 at 2:37 PM, "Ralf Mardorf" <ralf.mardorf at alice-dsl.net> wrote:
>since list subscribers might be annoyed by a partly off-topic 
>thread, I
>decided to write off-list first, however, after a short off-list
>communication I was ask to provide a template for the Wiki.
>IMO writing about safety measures isn't that useful for the Ubuntu
>Studio Wiki/help, but a warning might make sense.
>Wiki title:
>  Data protection
>Wiki text:
>  It's true that Ubuntu Studio by default offers stronger privacy 
>  proprietary operating systems usually do, but there are still
>  pitfalls, even if you're using special tools to grant strongest
>  privacy.
>  Journalists, activists or anybody else working with sensitive
>  information should consider to never ever connect computers with 
>  information to the Internet.
>  No tool is able to protect data on a very secure level, as soon 
>as a
>  computer is connected to the Internet.
>  The biggest risk are user errors and misunderstandings, that 
>  even the most strongest protections useless. Third parties not
>  necessarily need to do something evil, easily a user's 
>  makes sensitive information public. Once data is public by the
>  Internet, there's no way to undo it.
>Does you agree or disagree that something similar to this text 
>would be
>good for the Wiki?
>ubuntu-studio-devel mailing list
>ubuntu-studio-devel at lists.ubuntu.com
>Modify settings or unsubscribe at: 

More information about the ubuntu-studio-devel mailing list