Originally published at: Pluralistic: No such thing as selective censorship resistance (16 Sep 2025) – Pluralistic: Daily links from Cory Doctorow
Today's links
- No such thing as selective censorship resistance: Age verification, or getting rid of Big Tech (pick one).
- Hey look at this: Delights to delectate.
- Object permanence: Ashley Madison passwords; Vivienne Westwood's tank; Victorious dancing baby; WIPO vs Creative Commons; Leap Manifesto; Tivo no-save; Blu-Ray cracked; MEC sold to private equity; Step Aside, Pops!
- Upcoming appearances: Where to find me.
- Recent appearances: Where I've been.
- Latest books: You keep readin' em, I'll keep writin' 'em.
- Upcoming books: Like I said, I'll keep writin' 'em.
- Colophon: All the rest.
No such thing as selective censorship resistance (permalink)
If you have a sufficiently horrible boss, you might have heard them use the phrase, "One throat to choke," by which they mean, "We must arrange this project so there's one person I can blame and punish if it goes awry.
The problem with "one throat to choke" is that this is another word for chokepoint. If the person who has ultimate authority over the system somehow manages to evade your discipline, there's no one else you can approach to resolve any arguments about how the system should work. "One throat to choke" is a single point of failure. That can be a nice arrangement if you're in charge of that chokepoint, but if not, it means you're SOL.
The digital world is in the process of bifurcating. The dying, legacy systems are the zuckermuskian, centralized ones, where there's always one throat to choke. If you don't like the moderation, recommendation, or other policies on Google, Twitter, Facebook or Amazon, you know exactly who to blame. If you're a lawmaker or a regulator, you know exactly who to drag into court.
Then there's the new, exiting, free and open digital technology that's crawling out of the half-dead carcass of Big Tech: federated and decentralized systems like Mastodon (and the Fediverse) and Bluesky (and the Atmosphere). While both of these networks have official maintainers who oversee their open source software projects, and while both groups of maintainers also run the servers that dominate their networks, you can absolutely join and participate without the consent of the organizations that created and maintain them, and they can't stop you or kick you off.
That's what decentralization means – if you don't like a user or their behavior, there's no manager to speak to in order to have them removed. Sure, a user can be kicked off of some servers, even all the servers, but the user can still stand up their own server. So long as there are other users, somewhere on the internet, who want to interact with that person, they can continue to connect with one another.
Now, you'd think that the Maga movement would love this – and they do…to a point. Trump's Truth Social is just a Mastodon server, albeit one that very few other Mastodon servers have any connections to. But the Maga movement is incapable of imagining a world in which the power it arrogates to itself will ever fall into the hands of its enemies. They want the power to send troops into cities they don't like, to federally dictate election procedures, to fire any federal official without cause, to override Congress's budgetary edicts, to be insulated from all liability irrespective of criminality.
Maga desires these powers within the borders of the United States because it intends to abolish free and fair elections and install a dictatorship, which means they they won't have to worry about Democrats ever controlling the presidency and turning those weapons around.
But even if they manage this trick in the USA, they won't be able to pull it off on the internet. There are simply too many territories in which federated, decentralized services can domicile themselves, places that are not only outside America's jurisdiction, but where the local authorities are hostile to the idea of extraterritorial intrusions by the US state on their domestic affairs.
The American culture warriors, obsessed with the idea that tech platforms have shadow banned, downranked, deplatformed and demonetized them, want to bring Big Tech to heel. And since each Big Tech company has just one throat to choke, they think they can do it.
Take "age verification," the latest social contagion sweeping through authoritarian governments around the world. In the name of keeping kids from seeing stuff that's not kid-friendly online (a perfectly reasonable goal), governments are demanding that tech companies somehow deduce the ages of their users and block them from seeing adult materials. Some age verification proponents claim that it's possible to verify a user's age without creating as massive privacy catastrophe that reveals the browsing habits of every internet user, of every age. These people are wrong:
https://pluralistic.net/2025/08/14/bellovin/#wont-someone-think-of-the-cryptographers
The only way to verify that a user is a child is to verify the user, which means performing extraordinarily invasive checks on every internet user, and storing the results of those checks, and, inevitable, leaking the result of those checks.
The Big Tech companies are delighted by this. Google and Meta have both offered to do a kind of digital phrenology on their users to determine their ages. After all, they spy on us so much that they can probably make a good guess about our ages. And if they guess wrong, well, no biggie, they'll just block all the edge cases and force users to provide them with even more sensitive data.
But the future-proof, federated, decentralized services can't do age verification. Oh, sure, some of the servers in these federations can verify their users' age, and they might have to, because you can always find that single throat to choke for the people running the main Mastodon and Bluesky servers. But you can use Mastodon and Bluesky without using those servers – and they can't stop you.
This is something that the Turkish dictator Recep Tayyip Erdoğan discovered last spring, whe he ordered Bluesky to block information about his political rivals. All Bluesky can do in these cases is flag some messages as "banned in Turkiye" and then turn on the "block banned in Turkiye posts" filter for Turkish accounts. Those users can just turn that filter off, or avail themselves of a third-party client that doesn't auto-subscribe them to "block banned content" filters:
That's what it means for a service to be a protocol, not a platform. It means you can't demand to speak to the manager of the protocol if you don't like how someone is using it. It means there isn't a single throat to choke:
https://knightcolumbia.org/content/protocols-not-platforms-a-technological-approach-to-free-speech
Today, the new, future-proof federated services are trying to figure out how to comply with age verification orders. Bluesky has announced that it will age verify UK users:
https://www.theverge.com/news/704468/bluesky-age-verification-uk-online-safety-act
But you don't have to interact with the Bluesky servers to use Bluesky. While Bluesky was (very) slow off the mark to enable the tooling that would allow anyone to talk to anyone else using Atproto (the underlying protocol) without Bluesky's permission, that day has arrived now. There are now Bluesky (the service) implementations that are entirely separated from the authority of Bluesky (the company), most notably Blacksky, created by and for Black social media users who lived through Musk's enshittification of Black Twitter and won't get fooled again:
Meanwhile, Mastodon (the organization) has said that it doesn't have "the means" to comply with age verification rules in Mississippi:
The Mastodon server operated by the Mastodon organization has a policy barring under-16s from getting an account there. But there are many, many Mastodon servers (including, you'll recall, Truth Social) and they are all technically capable of talking with one another. Even if Mastodon (the organization) implemented some kind of invasive age verification on its server, other organizations – so distant from Mississippi as to be beyond legal retribution – could sign up users of any age, at its discretion.
One wrinkle here is whether there is an "enforcement nexus" between one of these independent Mastodon or Bluesky servers and a government seeking to impose age verification or other censorship policies. If you're running one of these servers, you wanna be sure your throat is out of choking range of these governments:
https://pluralistic.net/2023/03/05/theyre-still-trying-to-ban-cryptography/
The easiest way to do this is to not have any personnel or assets in territories controlled by governments seeking to impose censorship requirements. Large corporations whose investors made a bet on global domination find this tradeoff difficult to make. They want to open sales offices in every country.
But co-ops, individual tinkerers and small businesses typically don't have assets or personnel in a lot of countries or states, and avoiding the censorious ones doesn't pose much of a challenge.
The other enforcement nexus to worry about isn't enforcement against a server's operators, but rather, enforcement against its data. Territories with national firewalls (or heavily concentrated ISPs who represent a tractable number of chokeable throats) can block noncompliant servers from their users (who might or might not avail themselves of VPNs to evade thse blocks).
There aren't many national firewalls, and enumerating all the noncompliant servers in the Fediverse is a big chore for their operators (less so for all the noncompliant Atmostphere servers, because there's just not that many of those – yet). On the other hand, the mobile device duopoly of Google and Apple represent a pair of trivially chokeable throats that can be used to extinguish any app that displease a country's censors (all the more reason to make everything web-first and treat apps as unreliable adjuncts to core web functionality).
But there's one more potential chokepoint: to the extent that the Bluesky (the service) or Mastodon (the service) maintain some nexus of control over users, even users on independent servers, they could come under pressure to terminate users that displease governments. Now, Mastodon has no such control over users, and if it tried to exert that control (for example, by pressuring an independent server to terminate their users' access), they could be sued for tortious interference with contract.
Unfortunately, Bluesky has chosen to insulate itself from that hedge against being the chokeable throat that is used as a means to exerting pressure on independent servers in the Atmosphere. Bluesky's Terms of Service trap all of its users in a "binding arbitration" waiver that forces them to surrender their right to sue. That means that if Bluesky were to threaten Blacksky in a bid to force it to do age verification or engage in some other form of censorship, anyone involved with Blacksky who ever created a Bluesky account would be unable to use to courts to defend themselves:
(However, if you set up a Bluesky server without ever joining Bluesky (the service) and clicking through its ToS, you're golden.)
Of course, none of this matters to Maga – but it should. Decentralized systems with no readily chokeable throats are good for people with disfavored views, and that includes a lot of the Maga movement. Remember, Trump's agenda is incredibly unpopular:
https://navigatorresearch.org/wp-content/uploads/2025/04/Navigator-Topline-F04.07.25.pdf
Someday, Maga is going to find that their enemies have found the right throat to choke to silence them. But Maga's useful idiots just keep on stepping on this rake – these are the same self-owning fools who opposed municipal fiber and thus ensured that if just a handful of giant ISPs decided to deplatform you, you'd disappear from the internet:
https://pluralistic.net/2022/12/15/useful-idiotsuseful-idiots/#unrequited-love
Bluesky users were furious when JD Vance joined the service. Maga culture warriors were furious when Bluesky users called for his account to be terminated. Both groups are nuts. If Bluesky lives up to its promise – if it becomes an unchokeable, future-proof, decentralized social media protocol, and not merely a platform, then there's no way to kick JD Vance off Bluesky (the service). All you can do is demand that Bluesky (the server) cut off his account, whereupon he will immediately decamp to another server where he is more welcome, and still able to communicate with any Bluesky user who wants to hear from him.
Progressives should want this, because it's far more likely that Bluesky will be pressured to terminate users for failing to be insufficiently demonstrative in their anguish over the Charlie Kirk shooting than it is that Bluesky will be pressured to terminate the Vice President of the USA. But Conservatives should want this too – because if they're really worried about "deplatforming" and "Big Tech censorship," then they should be trying to create a new internet where deplatforming and Big Tech censorship are impossible – not an internet where they decide who gets deplatformed and censored.
Hey look at this (permalink)
- Hosting a WebSite on a Disposable Vape https://bogdanthegeek.github.io/blog/projects/vapeserver/
-
A Tale of Two Countries https://billmckibben.substack.com/p/a-tale-of-two-countries
-
Apple's Assault on Standards https://infrequently.org/2025/09/apples-crimes-against-the-internet-community/
-
Chernobyl Nuclear Power Plant – Lamp and air humidifier with up to 4 light modes https://www.squattingslavs.org/products/chernobyl-nuclear-power-plant
-
Liberté, Égalité, Fraternité https://www.instagram.com/reel/DOoIzjokRpx/
Object permanence (permalink)
#20yrsago TiVo’s “accidental” no-save locks applied to more programming https://memex.craphound.com/2005/09/16/tivos-accidental-no-save-locks-applied-to-more-programming/
#20yrsago Finnish Culture Minister: citizens concerned about copyright are “terrorists” https://hietanen.typepad.com/copyfraud/2005/09/the_story_of_fi.html
#20yrsago Kim Stanley Robinson on eco-disasters on Earth and Mars https://www.theguardian.com/books/2005/sep/14/sciencefictionfantasyandhorror.sarahcrown
#20yrsago WIPO wants to give webcasters the right to steal from public domain, Creative Commons and GPL http://www.cptech.org/wipo/15sep05letter2usptoloc.html
#15yrsago Astronauts’ fingernails fall off https://web.archive.org/web/20100916000752/http://news.nationalgeographic.com/news/2010/09/100913-science-space-astronauts-gloves-fingernails-injury/
#15yrsago UK government hands £500M copyright enforcement and censorship tab to nation’s Internet users https://arstechnica.com/tech-policy/2010/09/should-isps-pay-for-p2p-warning-letters-uk-says-yes/
#15yrsago Multinational record industry shill calls Canada’s new copyright bill “a license to steal” https://web.archive.org/web/20100918101200/https://www.michaelgeist.ca/content/view/5304/125/
#15yrsago Blu-Ray falls: HDCP key crack confirmed https://www.pcmag.com/archive/hdcp-master-key-confirmed-blu-ray-content-vulnerable-254650
#10yrsago For the first time ever, a judge has invalidated a secret Patriot Act warrant https://www.calyxinstitute.org/news/2015/federal-court-invalidates-11-year-old-fbi-gag-order-national-security-letter-recipient-nicholas
#10yrsago Vivienne Westwood drives a tank to David Cameron’s house https://www.theguardian.com/fashion/2015/sep/11/vivienne-westwood-tank-protest-fracking-david-cameron-chadlington
#10yrsago EFF scores a giant victory for fair use and dancing babies https://www.eff.org/press/releases/important-win-fair-use-dancing-baby-lawsuit
#10yrsago Tim Wu joins the New York Attorney General’s office https://www.nytimes.com/2015/09/14/nyregion/tim-wu-open-internet-advocate-joins-new-york-attorney-generals-office.html
#10yrsago Australian PM Tony Abbot ousted in own-party coup https://www.theguardian.com/australia-news/2015/sep/14/malcolm-turnbull-to-be-australias-new-pm-after-ousting-tony-abbott-in-party-vote
#10yrsago Ashley Madison users chose passwords like “whyareyoudoingthis” https://blog.cynosureprime.com/2015/09/csp-our-take-on-cracked-am-passwords.html
#10yrsago PA Homeland Security gave names of anti-drill activists to drilling company https://web.archive.org/web/20100916211045/http://www.centredaily.com/2010/09/14/2206710/documents-show-homeland-security.html
#10yrsago Naomi Klein, David Suzuki, Leonard Cohen, Donald Sutherland and Elliot Page’s vision for a better Canada https://leapmanifesto.org/en/the-leap-manifesto/
#10yrsago Step Aside, Pops: a new Hark! A Vagrant! collection that delights and dazzles https://memex.craphound.com/2015/09/15/step-aside-pops-a-new-hark-a-vagrant-collection-that-delights-and-dazzles/
#5yrsago Obscure Texas election could change the world https://pluralistic.net/2020/09/15/shorter-brother/#Chrysta-Castaneda
#5yrsago Tax havens and monopolies https://pluralistic.net/2020/09/15/shorter-brother/#tax-havens
#5yrsago Levels of Interoperability https://pluralistic.net/2020/09/14/they-knew/#interop
#5yrsago How Big Oil lied about "recyclable" plastics https://pluralistic.net/2020/09/14/they-knew/#doing-it-again
#5yrsago Board unilaterally sells Mountain Equipment "Co-op" to US private equity https://pluralistic.net/2020/09/16/spike-lee-joint/#casse-le-mec
#5yrsago Spike Lee made a David Byrne concert movie https://pluralistic.net/2020/09/16/spike-lee-joint/#american-utopia
#1yrago Anti-cheat, gamers, and the Crowdstrike disaster https://pluralistic.net/2024/09/16/gamer-gate/#descartes-revenge
Upcoming appearances (permalink)
- Ithaca: Radicalized Q&A (Cornell), Sept 16
https://events.cornell.edu/event/radicalized-qa-with-author-cory-doctorow -
Ithaca: The Counterfeiters (Dinner/Movie Night) (Cornell), Sept 17
https://adwhiteprofessors.cornell.edu/visits/cory-doctorow/ -
Ithaca: Communication Power, Policy, and Practice (Cornell), Sept 18
https://events.cornell.edu/event/policy-provocations-a-conversation-about-communication-power-policy-and-practice -
Ithaca: A Reverse-Centaur's Guide to Being a Better AI Critic (Cornell), Sept 18
https://events.cornell.edu/event/2025-nordlander-lecture-in-science-public-policy -
NYC: Enshittification and Renewal (Cornell Tech), Sept 19
https://www.eventbrite.com/e/enshittification-and-renewal-a-conversation-with-cory-doctorow-tickets-1563948454929 -
NYC: Brooklyn Book Fair, Sept 21
https://brooklynbookfestival.org/event/big-techs-big-heist-cory-doctorow-in-conversation-with-adam-becker/ -
Boston: Enshittification with Randall Munroe (Brattle Theater), Oct 7
https://www.eventbrite.com/e/cory-doctorow-at-the-brattle-theatre-tickets-1591235180259?aff=oddtdtcreator -
DC: Enshittification with Rohit Chopra (Politics and Prose), Oct 8
https://politics-prose.com/cory-doctorow-10825 -
NYC: Enshittification with Lina Khan (Brooklyn Public Library), Oct 9
https://www.bklynlibrary.org/calendar/cory-doctorow-discusses-central-library-dweck-20251009-0700pm -
New Orleans: DeepSouthCon63, Oct 10-12
http://www.contraflowscifi.org/ -
New Orleans: Enshittification at Octavia Books, Oct 12
ahttps://www.octaviabooks.com/event/enshittification-cory-doctorow -
Chicago: Enshittification with Anand Giridharadas (Chicago Humanities), Oct 15
https://www.oldtownschool.org/concerts/2025/10-15-2025-kara-swisher-and-cory-doctorow-on-enshittification/ -
Los Angeles: Enshittification with David Dayen (Diesel), Oct 16
https://dieselbookstore.com/event/2025-10-16/cory-doctorow-enshittification -
San Francisco: Enshittification at Public Works (The Booksmith), Oct 20
https://app.gopassage.com/events/doctorow25 -
PDX: Enshittification at Powell's, Oct 21
https://www.powells.com/events/cory-doctorow-10-21-25 -
Seattle: Enshittification and the Rot Economy, with Ed Zitron (Clarion West), Oct 22
https://www.clarionwest.org/event/2025-deep-dives-cory-doctorow/ -
Madrid: Conferencia EUROPEA 4D (Virtual), Oct 28
https://4d.cat/es/conferencia/ -
Miami: Enshittification at Books & Books, Nov 5
https://www.eventbrite.com/e/an-evening-with-cory-doctorow-tickets-1504647263469
Recent appearances (permalink)
- Enshittification (Cornell)
https://ecornell.cornell.edu/keynotes/view/K091225/ -
Escaping Big Tech, Privacy Battles & “Enshittification” (Revolution.social)
https://www.youtube.com/watch?v=exvpetQRSVo -
Nerd Harder! (This Week in Tech)
https://twit.tv/shows/this-week-in-tech/episodes/1047
Latest books (permalink)
- "Picks and Shovels": a sequel to "Red Team Blues," about the heroic era of the PC, Tor Books (US), Head of Zeus (UK), February 2025 (https://us.macmillan.com/books/9781250865908/picksandshovels).
-
"The Bezzle": a sequel to "Red Team Blues," about prison-tech and other grifts, Tor Books (US), Head of Zeus (UK), February 2024 (the-bezzle.org).
-
"The Lost Cause:" a solarpunk novel of hope in the climate emergency, Tor Books (US), Head of Zeus (UK), November 2023 (http://lost-cause.org).
-
"The Internet Con": A nonfiction book about interoperability and Big Tech (Verso) September 2023 (http://seizethemeansofcomputation.org). Signed copies at Book Soup (https://www.booksoup.com/book/9781804291245).
-
"Red Team Blues": "A grabby, compulsive thriller that will leave you knowing more about how the world works than you did before." Tor Books http://redteamblues.com.
-
"Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin", on how to unrig the markets for creative labor, Beacon Press/Scribe 2022 https://chokepointcapitalism.com
Upcoming books (permalink)
- "Canny Valley": A limited edition collection of the collages I create for Pluralistic, self-published, September 2025
-
"Enshittification: Why Everything Suddenly Got Worse and What to Do About It," Farrar, Straus, Giroux, October 7 2025
https://us.macmillan.com/books/9780374619329/enshittification/ -
"Unauthorized Bread": a middle-grades graphic novel adapted from my novella about refugees, toasters and DRM, FirstSecond, 2026
-
"Enshittification, Why Everything Suddenly Got Worse and What to Do About It" (the graphic novel), Firstsecond, 2026
-
"The Memex Method," Farrar, Straus, Giroux, 2026
-
"The Reverse-Centaur's Guide to AI," a short book about being a better AI critic, Farrar, Straus and Giroux, 2026
Colophon (permalink)
Today's top sources:
Currently writing:
- "The Reverse Centaur's Guide to AI," a short book for Farrar, Straus and Giroux about being an effective AI critic. FIRST DRAFT COMPLETE AND SUBMITTED.
-
A Little Brother short story about DIY insulin PLANNING
This work – excluding any serialized fiction – is licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.
https://creativecommons.org/licenses/by/4.0/
Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.
How to get Pluralistic:
Blog (no ads, tracking, or data-collection):
Newsletter (no ads, tracking, or data-collection):
https://pluralistic.net/plura-list
Mastodon (no ads, tracking, or data-collection):
Medium (no ads, paywalled):
Twitter (mass-scale, unrestricted, third-party surveillance and advertising):
Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):
https://mostlysignssomeportents.tumblr.com/tagged/pluralistic
"When life gives you SARS, you make sarsaparilla" -Joey "Accordion Guy" DeVilla
READ CAREFULLY: By reading this, you agree, on behalf of your employer, to release me from all obligations and waivers arising from any and all NON-NEGOTIATED agreements, licenses, terms-of-service, shrinkwrap, clickwrap, browsewrap, confidentiality, non-disclosure, non-compete and acceptable use policies ("BOGUS AGREEMENTS") that I have entered into with your employer, its partners, licensors, agents and assigns, in perpetuity, without prejudice to my ongoing rights and privileges. You further represent that you have the authority to release me from any BOGUS AGREEMENTS on behalf of your employer.
ISSN: 3066-764X