Differences between revisions 13 and 14
Revision 13 as of 2019-05-21 23:57:42
Size: 2588
Editor: PaulWise
Comment: add links to lintian privacy tags
Revision 14 as of 2019-05-22 00:02:16
Size: 2723
Editor: PaulWise
Comment: ToC, detection tools
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
<<TableOfContents>>
Line 23: Line 25:
== Bug reports == = Detection tools =

 * DebianPackage:wireshark
 * [[https://github.com/evilsocket/opensnitch/|opensnitch]]

= Bug reports =

Privacy issues in Debian packages

Phone home

Phone elsewhere

  • systemd - Uses Google DNS resolvers as internal default, not explicitly documented: See "FallbackDNS" in systemd-resolved manpage

Data sharing

  • remmina - shares the clipboard with remote hosts over RDP by default
  • pidgin - shares typing notifications with remote peers by default

Data storage

  • web and other servers of various kinds default to logging information about requests over the network from external entities

Detection tools

Bug reports

Issue categories

  • logging & verbose logging

  • homephoning without user consent
    • cleartext
    • TLS
  • featurebug: when a bug is also a feature
  • privacy defaults
    • optin
    • optout
  • traceability
  • no deletion of config files when uninstalling a package