TLDR: i complain about samsung's flagship and newer android. I use samsung flagship phone and it's crazy, how unable I am to use full potential of my phone, just because I don't want to log in to google neither to samsung. I try to use F-droid and Aurora Store whenever possible, but its so bad experience...for maps I use Organic Maps, but google forces it to be installed specifically from Google Play Store to work with Android Auto, so I have to log in every time there is an update. Most of games won't work, because they require being signed-in to google, and thats actually kinda weird..before my phone now I had an old Galaxy S5 Android 6.0 and games there didn't complain that much as here on Android 14 (so the newer android the less privacy you get, while them all companies "focus on privacy", bullshit liars), samsung requires signing-in to usd like 1/10 of the flagship features..It's so sad, as I love samsung's quality, phone is really outstanding, overall all samsung products are very good quality, but pushing these fucking accounts is convincing me not to buy samsung's flagship anymore. We need to finally unite and make some alternative to those close-sourced bloatware, as phone industry is nowhere near to being as free as desktop industry. I feel more free using Windoze than those fucking " smart"phones. Really if you have to buy new smartphone and are into privacy, think twice before you buy samsung..phone itself is great, but software side is a nightmare.

I used google for most of my life, for the past couple months I’ve been using brave search, but I still end up using google often because google images is far better than brave search images. I’m also worried that maybe brave search isn’t the best choice. What would you guys recommend?

cross-posted from: https://lemmy.zip/post/26423177 > cross-posted from: https://sh.itjust.works/post/28167168

I have now a pixel 8, which was working OK from the past 8 months and using grapheneos. Unfortunately, today out of nowhere got the green screen bug (searched around, this seems to be really a thing with pixel 8 and some pixel 7). This really stroke me a nerve. Previously I had a pixel 5 which at some point also got screen problems and later the speaker piece just straight up did not work properly. And now this with the pixel 8. So my question is: what other phones could potentially be used with a custom ROM that allow bootloader relocking? Other Roms can be something like divest or calyx (I used calyx before, so I am fairly familiar with it). It really pisses me off the only option until now are pixel phones for proper relocking (from what I know from a while back), and then they have these annoying issues. It makes my skin crawl, but if required I would change to an iPhone (and throwaway a lot of things that android is actually superior, such as proper tor browser, VPN split tunneling, work/user profiles, no bloody account to use a phone). Thanks for the responses in advance.

> Border Protection (CBP) released its long overdue Privacy Impact Assessment (PIA) on Commercial Telemetry Data. CBP defines Commercial Telemetry Data (CTD) as historic location data collected from mobile devices by tracking their advertising ID’s (adIDs). > > Importantly, CTD can encompass more than just historic location data from smartphones. For example, ICE has been accessing car telemetry data from OnStar, a security system installed in millions of vehicles worldwide. In fact, most car companies sell your data. Arguably, CBP should have a much broader view of what constitutes telemetry data. The Berlin Group, an international working group on data protection, has defined telemetry data more broadly as “data that is collected and transmitted by a device or application on a more or less continual basis. Telemetry data usually consists of information on operational behavior or environmental parameters but may also include elements like location information.” Any connected device can create telemetry data—and where it is created, it is also sold. > > Thus, CBP’s PIA has an extremely narrow view of what constitutes CTD—which is no surprise. CBP’s PIA on CTD is extremely vague, years too late, and is a complete failure to comply with federal privacy regulations. PIAs are statutorily required by the E-Government Act prior to implementation of any information technology that has privacy implications. But there is a pattern of DHS and its components doing PIAs after implementing the technology and nonchalantly violating our civil liberties. This PIA is the latest example.

Hey there, Due to having an unlocked bootloader, I fail safetynet. So Google-Pay is locked out, even if I wanted to use it. I find cash or cards to inconvenient, since my dexterity is impaired. So I looked into getting an nfc-token to pay with and found that my bank is partnered with Fidesmo. This would allow for mobile-pay without an extra party involved. They seem fine from what I found online and they do publish some client-code on Github, but I had never heard of them. Does anyone have any info on them?

TL;DW   LINDDUN card deck PDF for reference: https://downloads.linddun.org/linddun-go/default/v240118/go.pdf

Hi all, I'm currently wanting to make a few wiki pages for a community I host here on PieFed. Not trying to advertise the community, but for context, it's a community about BY-NC-SA licensed music, and I'm wanting to create a guide as to how to find new music with that license on certain platforms. My trouble is this. I want to provide those viewing posts with the ability to find music with ease utilizing search engines when that's the best option to do so. However, I also don't want to have that search engine be Google if that's at all possible. The main features I'm needing are to only fetch results from certain websites, and to specifically include or exclude specific phrases. For example, if I wanted to find BY-NC-SA power metal music on BandCamp, and exclude songs from the band Blind Desire for some random reason, I'd have the following search:  In this case, Google only fetches results from bandcamp.com, only with the BY-NC-SA license, and only with the words "power metal" in the page, while also removing results from Blind Desire. Are there any privacy-friendly options that have similar search features? Being made aware of an alternative like this will definitely help me kick what little reliance I have left on Google. Thanks in advance.

On Android/GrapheneOS, Firefox/Mull/variants is the only browser with the needed proxy settings to use with i2p. After a bit of searching, it works very well! As i2p servers you can use "i2p", "i2pd" (more minimal but more efficient) or "InviziblePro" which bundles some implementation of i2p. I am using i2pd currently, and it works well. Installed the apps with Obtainium - Mull from the DivestOS F-Droid repo - i2pd from the purplei2p F-Droid repo - MullvadVPN from Github, Orbot from the guardianproject repo (as fallback if clearnet sites are used) The browser can open .i2p and clearnet sites, using a little hack: `network.proxy.no_proxies_on` to `!.i2p`

I was wondering, which country's exit nodes (VPN) do you use and why? Are some countries better than others (in terms of jurisdiction and laws, not latency)?

cross-posted from: https://lemmy.dbzer0.com/post/31443410 > ``` > Cock.li will shut down before becoming complicit in crimes against its own userbase by duress of any government or organization. > > For nearly 11 years, cock.li has remained one of the only public e-mail providers to allow registration as anonymously as a library card. The fact that it's still possible to get an e-mail address as easy as 20 years ago is a fact widely *hated* by international governments; at least the parts of those governments which have dedicated countless resources to target our service, our team, our family, and our friends with illegal surveillance, bad-jacketing, organized disinformation, and much worse. > > A combination of these illegal tactics have become so serious that the site is now in grave danger. > > The only way it's been possible for cock.li to weather this and stay online is thanks to the dedication of our entire lives to this bit. Our small team of 3-5 people have had our lives permanently altered and our stability sacrificed so Internet users worldwide can more-or-less enjoy the comfort of being able to access e-mail without requiring a phone number or other surveillance document. > > Despite the constant attacks on the service and our personal lives, no one directly involved has ever been paid in 11 years for their work on cock.li. The personal costs of this volunteer work add up over a lifetime, and as we get older we've slowly taken steps back to compensate, when we should have been stepping up. > > Stepping up is exactly what's needed right now, and we're here to do it. These recent issues have forced us to take leave from our jobs to make time just to keep the wheels spinning. I hope you can understand that is why, for the first time ever, I'm asking you to donate directly to the people who make cock.li possible. > > Your donation will make a real difference by telling us to use the money where it will help the most right now. We have a sizable war chest for legal expenses that has never once been used to pay us for our work. Problem is, if we can't make time to put that war chest to work, what good is it? We believe cannibalizing this fund to offset our lost time would put cock.li in a worse position, so by creating a new fund we can make it clear what we're doing while keeping our legal funds secure. > > It shouldn't surprise you that the people who are so passionate about this service are not profiteers or business people. We are private, unpaid individuals who don't want to see one of the last great liberties of this Internet fall victim to the criminal and violent attempts to shut it down. If these critical threats force us to change the world to ensure e-mail remains recognized as a human right, we won't hesitate to do it. > > We never once asked for personal donations specifically in the hopes that if this moment ever came, our userbase would appreciate that we were able to make it this long on passion alone, and trust that your donation will make the best possible impact. > > There is much work to be done. I will keep you updated as much as I can. Thank you very much for your consideration. > > Monero: 41fqXKYNEWuBDuqYczhoSiE1aUN9tCGdWYrfjynebuTM3tdE5UUHEfeZjZ3iZpgqY8LdYLk9h4As66UBC5mARL4z98PfUwB > Bitcoin: bc1qg9ehmfzusgfd6dvudll0qxkcl8c5q3sh8qnetr > > ~!~ > > In the 2022 film `COCKCON 2020 (2019)`[0], a 250MB encrypted file was hidden in a second video track of the 1080p release. You can download this film here[1]. I don't know if the encryption key will ever be released, but if it does, you'll want quick access to that file. > > Furthermore, two more files are released today, 2024-11-12: ins10.luks[2] (555MB) and ins11.luks[3] (64MB). Please download these torrents and seed them as long as you can. Please consider your privacy when seeding. > > [0]: https://vc.gg/film/cockcon-2020/ > [1]: magnet:?xt=urn:btih:TBU2RE2ENTL6USAZVX7HH7V3TYMK2KVI&dn=COCKCON%202020%20(2019)%20(2022)%20%5B1080p%5D%20%5BOvO%5D&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce > [2]: magnet:?xt=urn:btih:RZ5PIPVCPPJC7JWIVU74V5JANJ4O3RXL&dn=ins10.luks&xl=581959680&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce > [3]: magnet:?xt=urn:btih:DX6I2QFYIBYZPCP5FPRBORTQVCM4NVRG&dn=ins11.luks&xl=67108864&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce > ```

I use MullvadVPN, GrapheneOS and Linux but I also search for any more apps not like OSes. What'a your favorites?

I just got this email from them. Scary. You can verify this PGP signed message by checking the fingerprint at the bottom of the welcome e-mail you received when you first opened your cock.li account. For the first time ever, I'm asking you to donate directly to the team that makes cock.li possible. For 11 years unpaid work has kept this site alive; the war chest for legal funds has never once been used to pay anyone directly related with the service for their work. Now, an existential threat faces the site which requires the team to take leave from our jobs and daily lives and commit full-time to keeping the service online. Without your help, cock.li might shut down, but we are giving it everything we've got. From <https://cock.li/>: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Date posted: 2024-11-12 🚨 COCK.LI IS ON RED ALERT. Cock.li will shut down before becoming complicit in crimes against its own userbase by duress of any government or organization. For nearly 11 years, cock.li has remained one of the only public e-mail providers to allow registration as anonymously as a library card. This has only been possible by the dedication of our entire lives to this bit. Our small team of 3-5 people has permanently sacrificed the stability of our lives so Internet users worldwide can more-or-less enjoy the comfort of being able to access e-mail without requiring a phone number or other surveillance document. 99% of the sacrifices made to keep this site online have never been made public. Despite the extreme personal costs, no one directly involved has ever been paid in 11 years for their work on cock.li. For the first time ever, I'm asking you to donate directly to the small team that makes cock.li possible. We have a sizable donation pool for hosting and legal expenses. Sadly, our real lives got in the way as we get older, and we've been taking steps back to compensate when we should have been stepping up. Now is your chance to make a real difference by telling us to use your donation where it will help the most right now: to allow our small team to step away from our jobs and pour all of our passion into this service to keep it alive. It shouldn't surprise you that the people who are so passionate about this service are not profiteers or business people. We are private, unpaid individuals who don't want to see one of the last great liberties of this Internet fall victim to the criminal and violent attempts to shut it down. If these critical threats force us to change the world to ensure e-mail remains recognized as a human right, we won't hesitate to do it. We never once asked for personal donations specifically in the hopes that if this moment came, our userbase will appreciate that we were able to make it this long on passion alone, and trust that your donation will make the best possible impact. There is much work to be done. I will keep you updated as much as I can. Thank you very much for your consideration. Monero: 41fqXKYNEWuBDuqYczhoSiE1aUN9tCGdWYrfjynebuTM3tdE5UUHEfeZjZ3iZpgqY8LdYLk9h4As66UBC5mARL4z98PfUwB Bitcoin: bc1qg9ehmfzusgfd6dvudll0qxkcl8c5q3sh8qnetr ~!~ In the 2022 film `COCKCON 2020 (2019)`[0], a 250MB encrypted file was hidden in a second video track of the 1080p release. You can download this film here[1]. I don't know if the encryption key will ever be released, but if it does, you'll want quick access to that file. Furthermore, two more files are released today, 2024-11-12: ins10.luks[2] (555MB) and ins11.luks[3] (64MB). Please download these torrents and seed them as long as you can. [0]: https://vc.gg/film/cockcon-2020/ [1]: magnet:?xt=urn:btih:TBU2RE2ENTL6USAZVX7HH7V3TYMK2KVI&dn=COCKCON%202020%20(2019)%20(2022)%20%5B1080p%5D%20%5BOvO%5D&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce [2]: magnet:?xt=urn:btih:RZ5PIPVCPPJC7JWIVU74V5JANJ4O3RXL&dn=ins10.luks&xl=581959680&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce [3]: magnet:?xt=urn:btih:DX6I2QFYIBYZPCP5FPRBORTQVCM4NVRG&dn=ins11.luks&xl=67108864&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce ~!~ LIBERTY CANARY Date updated: 2024-11-12 Cock.li is in 100% control of all of its hardware, and the service is still operating normally. The website (account registration+pw change) is currently offline. Cock.li will shut down before becoming complicit in crimes against its own userbase by duress of any government or organization. Until further notice, THIS CANARY SHOULD BE UPDATED DAILY. Under no circumstances will we let this canary go 48 hours without changing the "Date updated" above unless a PGP-signed message changes the schedule. The schedule or PGP key used to sign this message may be changed only according to signed message from key 5CB49CDCEAC797FBF8BDC074FD71AD2771A5CC1B. Any message certifying the change of PGP key should be displayed alongside all messages signed with the new key for at least 7 days. ~!~ Fun facts about cock.li: User count: ~1,400,000 Established: 2013 Domains: cock.li airmail.cc 420blaze.it aaathats3as.com cumallover.me dicksinhisan.us loves.dicksinhisan.us wants.dicksinhisan.us dicksinmyan.us loves.dicksinmyan.us wants.dicksinmyan.us horsefucker.org national.shitposting.agency tfwno.gf cock.lu cock.email firemail.cc memeware.net cocaine.ninja waifu.club ~!~ I LOVE YOU LADAR LEVISON -----BEGIN PGP SIGNATURE----- iQI/BAEBCAApFiEEXLSc3OrHl/v4vcB0/XGtJ3GlzBsFAmczuaYLHHZjQGNvY2su bGkACgkQ/XGtJ3GlzBtpPw//dAT+Z0LGjpHRqZ26TuphrRLAnsOq+jmBvOlI+kuJ APPdYAB1ZOD76JhhVCQjthuegzfOPzPigvmIoHO47v2kcQXypP2cDM8nwrEdihOW f0WgEjyrn6kKquBl0FMRgrNakFhyqetpDEwK2DrZbA9rUYCu2hop0UazgLGbEsq2 XwvD1piNxQIy4FDJaAO0EnWEz26pLa4PBT+VwGajZS3j2Mxfuj4csQn2vmJRx0NZ ywi+UZk5gwT5lYsTbRouXCvtWfh/K5AKJNUMxMyZFOlNpvxpiK5Nx02klUFpmDAN P1oPXRu9Qb0ujkJclfgxUroHWs5Ck40SS7qM3Cg1ka+mEhXIjkN16dpTpp4AYk4p 0A0j8HwDfv4v97RrkHaF4d1xiztkU97xaL2T84MNCC501C+9yaBnWPbZntyNma1q klglSICAUSdTf9nyMPO8UaTcr1oscpr2GgJ0JAI0UbmKMGqYLRuUR2h355liftHi rWEZXRP1ynBfVnOnHNdfDeBn5UXWxgmJJeHHt+FjRDe81nalTUMu+IXlrbhbvnVl OEgOj/Js7IRYUX7EO6Nyy/yAEw2afBJiClyq2qSBB9DU0WqwUPglrabcdKafot3n O4oXowCeFoa1Up8gFdWEprVzftYwEkXPw0bTQZR67XDkYXP8WIRcOWiwCeUShEIO cbc= =/snU -----END PGP SIGNATURE----- -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v2 mQINBFJstUoBEAC1ynLAfjebYqIRSXxKDhA5NZY5nJ7zviqdWCffO+YuyBkQXThG 79EFTnyjQQE3FyNkboD1jQ74HGuOBoNlw18bo4JZJYwHH9O8T8WZF3FylKftxJgs A1RYwqt/aze09PmTYsViuN1Qs1NAfMTYrMq3YZUHzg+3jsLjOcc/RwOjHdnFMy+Z VB3GDaGHEbCBj1RXlSTd1luVu5G0d3mtdsnGSFFz1AHBXvYD0yL2K6oaU7iSN1Q2 +KYhnz97EZjeTgQj4ujbRLxoSn2NC9E03sA2ENd09bh2PhxD+ypP2dCES9isx9M4 XBzquzDAgAA9JGFDloBKGFrbZ58UmisNfi0EZymoMSRy8RJcSuHXfVnoOf8NP4TL Y0qissp8sX137iY3aXhaeYMo9T6RDSyMh3vUXteQWPdwm+xZAFuhWUOeB12FrD2M Xg98JyP0VKLt/i1sUxjg4UVxSw4YoqCse/wX8oivzcCfP8ggglMQVLGEOncN0KPc t/n94z3a3c8RpdOS7dQvukZNOrOfCpyNQvtsUZTe228fzgSf3CUGirvFt6f9VX11 m8SjZv43fkE0+eN4f45a6Tzco8eKfMQH+4EHlAN1U8H1QlT6oC5xj56627ve898O xQUW303Ll956HMaWyS/fr5Gz8dPi6fKtU8vZq3pmnw27yOYIdFw5tBSpYQARAQAB tB1WaW5jZW50IENhbmZpZWxkIDx2Y0Bjb2NrLmxpPokCOQQTAQIAIwUCUmy1SgIb DwcLCQgHAwIBBhUIAgkKCwQWAgMBAh4BAheAAAoJEP1xrSdxpcwbmR8P/0FPedGv vf67vV7nDX6QkCO63XHkUK7JLe+oQT/iC0TzGbs7/La/VDRXnf84KwSSMbJlCXUr Rq2DH/Reezq52a5GAo+YQ33PV1TwemV4V/VadmHAjkVyfFcTEPiJJqaPX+XX/QVD hFAd0g/3fJQSkeHByNYrJtSxj40JFc5zRVjlAI8s1ST/zkdG+hPK0ehWzeUloqxJ HmnCOZ7yrwqZj+b8B36ro5fXkX++squy6vuN8HvXW2tjD5YgRerXwNThkLtW/2cv +UPLNKmk3Kst5uM8zbTD6CvtteXQtwuQtXGBiyqcfCOyoHwNEPjaK/7vBaMmFWDo OtLHFQ1j0bGW2YbHpD5kqjYTLGZY8W2Zpvju10A6v3DIxZaUrgaouwDJz2DLSBbn 2GPTCXWV2nJaLLVS7S3jsFyKdqMEy4xhBO3PCIUXHmgeArIw0USThbT2zsZ9A3ZC sFjX8F7GKa7/uKXvJZ9ZKFiFZWqw3V2wbT3LfX1u1RDWyn7f8rW5n5HTdQkS6lJ0 yH5ZDsQHT5Ewxy/SCck1IYJ6QRGxoIlhIkm/8VXe4QAkgWIJwUWfplrH/4AK52T+ SdNlMQZoTNj6CQCHhEcaiEv7mVQmC21AwbQQg/AjiwRdlUq2kN/n0xTknxjxpUqT o1wbQh/HchncOijg2J1Z2DzBjzquRNkLyq5v =pe2n -----END PGP PUBLIC KEY BLOCK----- 8========================================D Cock.li news mailing list To unsubscribe, E-mail cock.li-news-unsubscribe@lists.cock.li

Support will be removed on both client and server side. >The process of removing OpenVPN from our app starts today and may be completed much earlier.

I've been reading upon improve security and privacy. I was wondering how many mail addresses you should have. Is it one per social media, one for everything finance, ... Next to this, are the mail addresses you use aliases or actual mail addresses and do you create them on outlook, proton or self host the mail server?

Hi guys! Just that...would you recommend any decent free Dynamic domain that is well regarded privacy-wise? DuckDNS is becoming rather unreliable and prone to failure. Thanks!

I am thinking about changing VPN, I am currently using ProtonVPN and I was thinking about changing to AirVPN (for its prices and port forwarding) or Mullvad (Everyone says it is better regarding privacy but I don't know why). Which one would you recommend and why? I have seen a lot of criticism towards AirVPN for being based in Italy, but if they don't collect the data as they say they do, there shouldn't be any problem, right?

What's going on with that?

The government is being pretty coy about the details, so most of the article is necessarily conjecture. Selected excerpts from the article: >**The definition of a social media service, as per the Online Safety Act** > >An electronic service that satisfies the following conditions: > > 1. The sole or primary purpose of the service is to enable online social interaction between two or more end users; > 2. The service allows end users to link to, or interact with, some or all of the other end users; > 3. The service allows end users to post material on the service. > Under the proposed changes, it will be the responsibility of social media companies to take reasonable steps to block people under 16. > **How will your age be verified?** > >The government's legislation won't specify the technical method for proving a person's age. > >Several options are on the table, including providing ID and biometrics such as face scanning. > >The government's currently running an age assurance trial to assess all the methods, and it's scheduled to continue into 2025. > >Based on the results of that trial, eSafety commissioner Julie Inman Grant will make recommendations to platforms. > >It's possible that Australians will be asked to provide their IDs or biometric data directly to social media companies in order to use their platforms, but that's not guaranteed. > >Many of the big players, including Meta, have instead argued for the age verification onus to be placed on app stores, rather than individual platforms, as that would mean proving your age once — rather than every time you sign up to a platform. > >It's also possible that a third-party company that specialises in ID verification will act as a go-between between users and social media platforms. > >No matter which model is adopted, the prime minister has said privacy protections will be introduced to cover any data people end up providing.

cross-posted from: https://lemmy.world/post/21884908 > Is this possible on any modern day phone or tablet? Selfhosting as made me very privacy-consciouss and am concerned about my iphone.

cross-posted from: https://sh.itjust.works/post/27957996

Greetings! For the past few weeks, i have been using Apple Maps for navigation. Only to realise that it does not have some specific places i go to regularly. And offline maps are just broken. And since i'm here, what are the best FOSS Map apps that have offline navigation? (i did try osmand and maps.me, theyre both paid)

I made [this post](https://lemmy.ml/post/21887275), outlining my verdict about whether or not Chromium is more secure than Firefox. At the very end of the post, I noted "GrapheneOS did not respond to my requests for a comment." Well, after weeks with no reply, they finally responded. I don't plan to do any more research about this topic, but this information is still incredibly valuable. Keep in mind the questions I asked the GrapheneOS team were created before I had done much research about the topic. Here are the questions and GrapheneOS's replies: ##### Does Firefox have isolation between tabs? incomplete ##### Is Firefox's implementation of tab isolation as secure as Chromium's? no, it's incomplete and their sandbox is significantly weaker across all platforms, but it varies based on platform ##### Firefox uses Fission to isolate embedded content from the main website. Is Fission used for tab isolation as well? it's incomplete ##### Is Fission the main cause of concern about Firefox's security? there are many ways in which it's less secure than Chromium, but the weak sandbox particularly that's entirely not implemented on Android is one of the main issues ##### Are there other reasons why Chromium is more secure than Firefox, besides Fission? Chromium uses full garbage collection for a lot of the C++ objects, has much more hardened memory allocators for native allocation, has the V8 sandbox as another layer of security missing in Firefox before the OS sandbox, has much more fuzzing, auditing, etc. and much more modern exploit mitigations implemented too Firefox is far behind in nearly every way and laid off a lot of their security people ##### Isolation of embedded content is important to prevent Spectre and Meltdown exploits, but is this actually something that an everyday user will be majorly affected by? It seems that, unless you are logging in through embedded content, there is far less risk associated with this from an everyday standpoint. Again, more security is obviously better, but is this as big of an issue as it's made out to be? yes it impacts users because browser vulnerabilities are widely exploited in the wild and the OS sandbox is one of the main defenses against it, as is the V8 sandbox feature entirely missing in Firefox Google heavily monitors for browser exploits and catches a lot of it happening in the wild Mozilla / Firefox has little visibility into it therefore, it's much more widely reported for Chrome but does not mean it isn't happening with Firefox regularly ##### Is Firefox less secure on Linux (besides Qubes, Tails, etc.) than other desktop operating systems? Tails is not a hardened OS at all, that's a misconception about it, and it has nearly all the problems of desktop Linux Firefox on desktop Linux has weaker sandboxing than elsewhere on Android they haven't even implemented a content sandbox, although the OS provides an app sandbox around it as a whole but that's not the same thing ##### In which ways are Fission less secure than Chromium's Site Isolation? it's not even completed yet, the issue is still open since not everything is isolated yet and there are known ways out ##### Does Brave provide the same privacy against fingerprinting as the Tor Browser? Tor Browser's anti-fingerprinting is greatly overestimated and does not really work with JavaScript enabled, which it is for most users Brave's is not strictly better or worse neither anti-fingerprinting approach works well ##### Could you provide good resources for my article about the state of Firefox security on Android? no, but it is awful, they don't even implement any content sandbox let alone site isolation, and have almost no exploit mitigations or anything implemented ##### Would it be easy for a developer to create a fork of Firefox for Android that uses isolatedProcess? no, but it's easy for them to do it relative to doing it elsewhere ##### Would using isolatedProcess in Firefox fix isolation issues? If not, what would still need done? no, but it would allow them to provide a content sandbox on Android and partial site isolation to the extent they implement it overall ##### Is there tab isolation for Firefox on Android? Is this as secure as Chromium's? there's an incomplete implementation, and no, it's not nearly as secure aside from being incomplete

A philosophical project for an open source non-government ID: https://memdeklaro.github.io/ Article: https://medium.com/@memdeklaro/self-declaration-of-identity-memdeklaro-de-identeco-5fd96231da44 There's no central database, just a self-declaration of your (self-chosen) name, birth date, photo and signature that you print yourself. Looks similar to the Digitalcourage ID (https://shop.digitalcourage.de/gadgets/lichtbildausweis-mit-selbst-waehlbaren-daten.html) and World Citizen Passport (https://worldcitizengov.org/what-is-the-world-passport/).

Greetings fellow privacy enthusiasts! I'm searching for a privacy-respecting media box that can run Android apps. The streaming device market features options like Shield TV, Chromecast and various Amlogic boxes. However, finding one that truly embraces FOSS principles while meeting essential needs has proven challenging. Essential requirements: - Android app compatibility - specifically need to run certain apps - Strong privacy and security features - Reliable, long-term software support (I've grown weary of devices becoming obsolete within 2-3 years) - Budget-conscious: Aiming for under 150€, though I'm willing to invest appropriately for the right solution - Willing to invest significant time in initial setup, but afterwards it should "just work" with minimal maintenance - Timely and automatic security updates (ideally close to upstream releases) My initial research suggests two potential approaches, though I'm not entirely certain about all implications: 1. Mainstream devices (like Nvidia Shield) that can be degoogled through ADB commands 2. Devices that are officially supported by LineageOS While both paths seem promising, each raises certain concerns. For instance, degoogling might require ongoing maintenance, and running LineageOS could mean losing some device-specific functionality (as is the case with Shield). The Raspberry Pi, with its open-source foundation and community-driven LineageOS development, seems interesting, though the lack of institutional backing raises some concerns about long-term reliability. I'm still learning about the security implications of these choices. While I understand that phones running LineageOS don't match GrapheneOS's security standards, I'm uncertain how these considerations translate to a media box environment. I'm open to exploring: - Custom firmware solutions - Alternative hardware platforms - Creative, FOSS-friendly approaches that preserve privacy while maintaining Android compatibility Has anyone in the community successfully navigated these choices? Your experiences and insights would be invaluable, particularly regarding long-term viability and security considerations.

First, I understand that the best options are cash, gift cards, burner cards, XMR, etc. However, that isn't practical for my day to day use. My goal is minimizing how much information is collected/sold by advertisers. I need a new physical credit card and figured I should look for one with a decent privacy policy. I'm curious if anybody has any suggestions. The only one that I've found even decent so far is Apple's card, but I don't have an iPhone. I also know Apple is generally disliked on here.

Is there anything like a SimpleX group chat to join for us to talk, or should one be started?

> For many, this month is when gift-giving season officially begins in the United States (and several other places, I presume) thanks to Black Friday, which is quickly consuming most of November in many cases. As a result, even though online shopping is something most of us engage in year-round, now it’s particularly important to discuss how to safely shop online. Below is my now-annual updated online shopping tips, reflecting techniques and strategies I've picked up in the last year.