lightscription

joined 6 months ago
sorted by: new top controversial old
7 Things You Should Know Before Switching to GrapheneOS in c/privacy@lemmy.ml
7 Things You Should Know Before Switching to GrapheneOS in c/privacy@lemmy.ml
7 Things You Should Know Before Switching to GrapheneOS in c/privacy@lemmy.ml
[–] lightscription@lemmy.world 7 points 2 weeks ago (8 children)

Unfortunately, Tinder doesn't work and that is helpful to get in touch with the ladies. That app is too hell bent on location data which GOS handles more privately.

NFC should work, it is just scheduled to be deactivated after 3 months if not used for security reasons.

I think GOS is very user friendly and has many positive privacy and security enhancements. I would like to see if they can surpass sandboxed Google Play and officially support other repositories and updaters like Accrescent. Also, a standard way of securing traffic beyond encrypted DNS would be good such as a tor client like Orbot.

Looking into the Veilid ecosystem might also be a source for further development ideas.

IBM CEO: We Listen to What Israel and Saudi Arabia Consider “Correct Behavior” in c/world@lemmy.world
[–] lightscription@lemmy.world 1 points 3 weeks ago

They made a mistake. As history proves, a big one. But any technical company could. So did the makers of cyclon. Apple or Windows could. The AI could exterminate us all as useless humans with low worth. The values of the current CEO should matter if they translate into real world policies, such as, defending human rights.

I just started caring about my own privacy. What apps should i get rid of, why and what can i replace it with? in c/privacy@lemmy.ml
[–] lightscription@lemmy.world 4 points 3 weeks ago* (last edited 3 weeks ago)

Don't use Discord. That is a major vector for attack. Seen it happen myself.

Even Sandboxed Google Play has problems.

I don't think there is any equivalent of Graphene for Mac hardware. With Pegasus and Predator software around, phones are very hard to secure.

Rely on tor browser and torrifying where you can with Orbot (Guardian Project).

Instead of Telegram, how about Signal and Briar? We just heard about how Telegram's executive got hit and may now have to bow to pressure. Signal has kept its design integrity as far as we know.

Minimal apps are better than many to reduce attack surface. Maybe try accessing some of those services on other devices instead of on your personal tracking device.

Under Meredith Whittaker, Signal Is Out to Prove Surveillance Capitalism Wrong in c/technology@lemmy.world
[–] lightscription@lemmy.world 0 points 1 month ago

Also a nickname for Molybdenum which makes Iron stronger like torrifying Signal makes encrypted communication stronger by protecting metadata from interception.

Routing all traffic through Mullvad? in c/privacy@lemmy.ml
How was my 2FA on Lemmy turned off and why? in c/asklemmy@lemmy.ml
[–] lightscription@lemmy.world 0 points 1 month ago

Ah, that must be it. 2FA is still a very good security feature to have.

But there is nothing only you know that is still useful because a secret must be shared in order to be useful (unless you just have full disk encryption and then when it is unlocked and network connected, it is still vulnerable). In short, admins could change your password since you are not the sole admin of your own server but then you would have to have mass appeal to be "useful", i.e. popular.

In theory, Tim Cook might have a keybearer who could usurp the throne with all the proprietary OEM crypto keys that only the Company knows, but everyone knows who the CEO is and the keybearer could get in big trouble unless he had an army...

Things can be changed on the server side and the network is not the same as the device: these are technology truths some people refuse to ever understand.

1
Do you know how 2FA could be disabled on Lemmy without consent? (lemmy.world)
 

How could 2FA be disabled if you need 2FA in order to login to disable it and my free OTP+ is biometric protected?

10
How was my 2FA on Lemmy turned off and why? (lemmy.world)
 

Do you know how 2FA is disabled without your consent on Lemmy.world?

Linux Desktop reaches New All time high. 4.45%(+0.4) 📈🐧 in c/linux@lemmy.ml
[–] lightscription@lemmy.world 1 points 2 months ago

Best still rare even though potentially very user friendly and accessible.

Autonomy Cube Technical Design in c/privacy@lemmy.ml
[–] lightscription@lemmy.world -1 points 4 months ago

I thought these stills from Paglen recent CCC talk were pretty funny.

0
Autonomy Cube Technical Design (revolver-publishing.com)
 

https://paglen.studio/2020/04/09/autonomy-cube/

Does anyone know what the technical design model of this project might entail? Its last iteration was a tor exit node, which is straightforward enough, but how would you design a gateway router accessible via WiFi that would direct all traffic over tor? This is not idea. The client (or full OS like TAILS or Whonix) is ideal and many common sites block tor (like this one). There must be a design for combining proxies with tor to get this AP to work practically for conventional use, as it seems to be advertised. Maybe early on, before tor got blocked so much, it did work as simply as it sounds.

Has anyone read the book or theories that inspired this work? Probably perfect for this community. I want to see if I can get a hold of a copy.