Speech about community, free software, decentralization, and mobilize.berlin

This was a speech I gave on 18 June 2021 at the rally “Holen wir uns unsere Veranstaltungen zurück! Die nächste Party kommt bestimmt.“, which was also the official launch date for the Berlin-based event-management service https://mobilize.berlin.

First, I want to thank the community that made this rally and this project possible: the club scene and event organizers and DJs and musicians that make Berlin Berlin; the free and open source software developers working for software freedom; the Reclaim Club Culture movement and the activists fighting for autonomous, commercial-free local culture; and the co-organizers of mobilize.berlin, namely Becca, Joey, Marc, Claudio, Max, Miha, Rosa Rave, and especially Tommy, without whom — and the helpers he coordinated — this event would not have taken place.

I want to talk about community, and why community is at the heart of this project. Reclaim Club Culture has been working for years now to take back the Berlin club scene from commercialization by outside companies like Facebook. A fight to keep our culture, our community, ours. Corporations like FaceBook have been referred to as ‘digital gangsters‘ [archived]: they make us offers we cannot refuse. Stories like that of Mensch Meier [archived], whose FaceBook presence was forced upon them by FaceBook itself, by the bots which generate new websites under FaceBook’s control. When Mensch Meier wanted to reclaim that digital space, FaceBook demanded more and more information from them — the drill digging deeper and deeper to extract every drop of data from our lives. No one asked them if they wanted this; they got it nonetheless.

This … this here is OUR community. We build these spaces, we make these parties, we create the joy that pulsates throughout the city. It comes from our sweat and our passion.

I do not want a profit-driven, privacy-destroying, racist, sexist corporation like FaceBook to claim OUR spaces and then tell us what is allowed according to their values. Values like white supremacy is acceptable, but expressions of sexuality, especially women’s sexuality, are forbidden. Values like that of promoting extremist views because it increases engagement for their service, and thus more profits. These are not my values, and if I can speak for most of us — I hope all of us — those are not Berlin’s values!

These companies … they make us dependent on them. We need to reach their user base, our audience. They build walls around their garden and keep us locked in to access Our. Own. Community.

Or, we are shut out with few alternatives.

In some cases, access to that resource, their user base, is the difference between paying the rent or losing the lease — and these companies know that. They have us just where they want us. To disconnect from their platform is not an option, at least not an easy one.

Offers we cannot refuse.

But mobilize.berlin is not just a platform; it is a paradigm shift about what our digital spaces can be, what a free and open digital society can look like. And today it is impossible to separate the digital from the analog. I quote:

We do not use the Internet, we live on the Internet and along it. If we were to tell our Bildungsroman to you, the analog, we could say there was a natural Internet aspect to every single experience that has shaped us.

That was from the essay “We, The Web Kids” by Piotr Czerski. Given the total integration of the digital and the analog, intensified by the pandemic, we should be concerned that an unfree digital society will, in the end, be an unfree society.

These are our spaces, and we need to take them back for our community, whether in the analog or in the digital realm.

The software underlying mobilize.berlin, called Mobilizon, is free software: it belongs to us, we can use, study, share, and improve the software as we, the users, want. The network is decentralized and federated. Mobilizon, and mobilize.berlin, are part of a larger ensemble called the Fediverse. This term, ‘Fediverse’, refers to a diverse group of services including social media like Mastodon, video streaming like PeerTube, music publishing like FunkWhale, and many more.

In the Fediverse, there are no walled gardens, all services speak the same language and communication is open across all platforms. There is no artificial lock in, no forced separation between digital spaces. And all of these services are free and open source: the code underlying the platforms belongs to us, all of us. Anyone can set up their own instance and connect across the network.

Connect if you want.

Or you can choose not to connect to certain sites in the network. And this is a really important point about community in the Fediverse. We, our community, decide our rules, the terms of our service. If you want to set up a Mobilizon instance and promote racist, sexist, anti-LGTBQ+ events, you are not welcome to use our platform as a megaphone: we will defederate you, keep your hate off of our platform. It is our community … us … who decide the rules.

You do not have that power, that kind of autonomy, with centralized proprietary-based services like FaceBook or Twitter: they decide who has a voice and who does not, which values to amplify and which not, driven by their surveillance-capitalist goals of monetizing us, our lives, our joy, our sweat. Their software controls us, we do not control the software. We either accept their terms, or we lose access to their users, access to our own community.

Mobilizon, the Fediverse, decentralized & federated networks based on free and open source software … these are the tools to empower communities in the digital age. True community that reflects us, our values.

[…]

We, the organizers of this event, are a small group of volunteers who believe that Berlin’s culture, the club and party culture, the music and artist culture, should belong to the community that supports it. And so we established this small group to realize that ideal. mobilize.berlin is our contribution to that goal. Join us!

KeePassXC

Keep regular backups of your data! If you lose access to your password database, you lose all of your passwords.

KeePassXC

Time to set up: 5-10 minutes in 3 steps

What you will learn: How to store passwords on your computer in an encrypted database

What program you will use: KeePassXC

Program license: GNU GPL-2 / GPL-3

Note: The best way to become familiar with a password manager is to use it as often as possible. In a short amount of time it will require little effort.

KeePassXC can be found at https://keepassxc.org/, where you can download the software for use with GNU Linux, Mac, or Windows.

For differences between KeePass, KeePassX, and KeePassXC, see: https://superuser.com/questions/878902/whats-the-difference-between-keepass-keepassx-keepassxc

Step 1 When you open your new database, choose a Master Password (see screenshot below). This is the single most important password you will have: if you lose this password, you will lose access to all of your passwords in the database. Write it down and store it somewhere safe. The strength of this password will determine how safe your database is if someone gets access to your computer. (See the end for more on password strength.)

Having a key file is more secure, but I will not cover this in the tutorial. With a key file, you have a file saved on the drive of your choice—e.g., on your computer, on a usb stick, or on a hard drive—and only when that file is also present can you open the database. Having a key file is recommended.

Step 2 Once you have set your Master Password, you will see an empty database. In order to begin populating your database with entries, you can click the “Add New Entry” symbol (see screenshot below).

Step 3 You will now be presented with the New Entry box. Fill out the necessary information.

In your new entry you can save the following, all of which will be safely encrypted:

  • Username and password (random using password generator)
  • Url for the website
  • The expiration date of the password
  • Advanced > Attachments (to upload an attachment)

Randomly Generated Passwords

In order to generate a random password (recommended), click on the password generator) button. You will be presented with the password generator parameters (see screenshot below). Once you have set the parameters you want, click on “Generate.”

Click “OK” in the lower right corner when you have finished, and again for the new entry window. This new entry will now be stored in the respective group (here the group is “Internet”; see screenshot below).

When using KeePassXC, you can either right click on an entry to copy and paste, or use keyboard shortcuts when the entry is highlighted. Keyboard shortcuts are as follows:

  • Use “control key +alt key + u” to copy the url.
  • Use “control key + b” to copy the username. Paste it in the log in text box in your browser using “control + v.”
  • Use “control key + c” to copy the password. Paste into the password text box in your browser using “control + v.”

Note that for security reasons, the clipboard will automatically be cleared after some seconds.

Once you have populated your database, save it. The file extension will be kdbx. You can be assured that your usernames, passwords, attachments, etc. are saved in an encrypted database which only can be accessed using a master password (or a master password with a key file, if you have chosen this option) from your computer.

But remember, your database will only be as safe as your computer and your master password are, and if you forget the master password, you will lose access to all of your passwords.

Moreover, KEEP BACKUPS OF YOUR DATABASE in case you experience hardware failure or your computer is stolen, damaged, etc.

===========

A note on your Master Password:

  • For your database’s Master Password, the best password is one that is easy for you to remember but very difficult for someone else to guess.

https://imgs.xkcd.com/comics/password_strength.png

  • You must never forget this password. If you do, you lose access to all of your passwords.
  • Do not use a word or phrase from the dictionary. It is easy to use a computer to run through the entries in a dictionary or a list of common collocations.

Check out this calculator (https://www.grc.com/haystack.htm) to see how long it would take to crack a password using ‘brute force’ search, that is, trying all possible combinations (DO NOT COPY YOUR REAL PASSWORD INTO THIS WEBSITE). Note that this calculator does not tell you how good a password is. For instance, the password “password” may take a 6.91 years at 1,000 attempts per second, it will not take very long to guess as it is one of the most common passwords. The more random a password is, the stronger it will be against attack, which is why the random password generator is recommended.