Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

How did the Chinese government find out the identities of contributors Chen Mei (陈玫) and Cai Wei (蔡伟)? Please please please enforce strong anonymity measures for contributors. #598

Open
cirosantilli opened this issue Apr 26, 2020 · 2 comments

Comments

@cirosantilli
Copy link

cirosantilli commented Apr 26, 2020

Petition to free them: https://github.com/cirosantilli/chenmei-caiwei-ziyou

Covered at:

Fuck they were charged: https://www.scmp.com/news/china/society/article/3089002/coronavirus-chinese-activists-held-posting-censored-articles

Were their names publicly used while contributing? I couldn't find them easily in the commit messages.

Please enforce contributors who live in China to use strong anonymity measures since you seem correctly to be using a shared terminusbot account for contribution.

Tor or VPN are the minimum. Encrypted hard disks are also a must. I wonder if the CCP can find identities by matching push timestamps though and correlating with network activity.

Stay safe.

@larvata
Copy link

larvata commented Apr 27, 2020

someone gave speculation about how the Chinese gov identities the contributor.
https://github.com/2049bbs/2049bbs.github.io/blob/master/README.md


you can search "端点星" on the following sites to find more discussions.
please note, following sites might already be taken control by the Chinese gov.
access at your own risk

以下站点有可能已植入恶意脚本 访问前请做好准备
https://pincong.rocks/
https://2049bbs.xyz/

@cirosantilli
Copy link
Author

cirosantilli commented Apr 27, 2020

Thanks!

I wonder why not just use GitHub issues for communication (yes, also with Tor in case Microsoft decides to comply to Chinese IP disclosure requests but here they claim they don't: https://help.github.com/en/github/site-policy/guidelines-for-legal-requests-of-user-data#requests-from-foreign-law-enforcement ).

Your message footer suggests that 品葱 could also be compromised? I would love a reference to that as well is you have one.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

No branches or pull requests

2 participants