• 0 Posts
  • 13 Comments
Joined 4Y ago
cake
Cake day: Jun 08, 2021

help-circle
rss

If I remember correctly, I chose ravio over freeotp because the later lacked:

  • Scanne functionality didn’t work.
  • No export / inport
  • Freeotp seemed like abondonware

Jokes on me.



How do you do that? Monero is one of few coins that interested me back in the day, so I am not a hater at all. But adoptation is very much lacking, and i I have no idea how you but groceries with xmr.


I love that fmd can make your phone ring of you lose it. Who would have thought of that :)




My take: if your camera is spying on you, there is a big chance that your entire device has been compromised. Ig that happens, it’s game over and me masturbating to bdsm furry porn is the least of my problems. Especially now that AI video exists anyway.


I am no expert, so this is just my understanding: pgp encrypts the message, with the the recipients public key. Once the private key is compromised , bruforced or cracked, all messages are compromised. With signal, and all the other apps that uses signal protocol, it’s different. Here, the key is renewed often (i think for each message) and the key is device dependant. Therefore if the key is compromised no previous messages are compromised and neither are communications with other people. This is what e2e means, and pgp is not that. Also the key or self is harder to crack I think, but i am not sure how strong signals elliptic curve crypto is finished to a 4096 rsa key.

Tldr: pgp is a simple encryption at rest, that can be cracked once and for all. Signal et. All is e2e encrypted and much harder to compromise one and for all.


My 2 ¢: Email is inherently not private. With tls you have encryption in transit, but as soon as the data hits the server no metadata is ever encrypted. With pgp you can encrypt the message content, sure, but not with many of the advanced features we expect from e.g. Signal and matrix. Therefore it doesn’t really matter if you use proton ot tuta, unless you exclusively mail other proton/tuta users.

I am extremely happy with purelymail.com. extremely cheap and versatile. I also use mailfence.com but that’s only because i’d like to have two different servers for something as important as mail. Been a customer with purely for probably 3+ years . Mailfence probably 6+ years. Have seen two small outages with mailfence. None with purely.


Well. I personally am very annoyed that i can’t choose a specific pin for signal. That means my kid can read my messages, because yes… Keeping password from a child is neigh impossible. But my pin for element, fairmail, telegram he don’t know.

So i get a lot of the criticism. For me personally, it’s still a matter of trust. A future malicious molly version might eavesdrop. Signal will probably not do so.

Encryption at rest on an unlocked phone is probably a hard problem. But if somebody is targeting me to that extent, i am probably toast anyways.

I try to create enough usage so that journalists and activists can hide in the mob, and i can hide from fang.

I use element, but do worry about the local server implementation and leak of metadata.


My confidence in signal is greater than my confidence in a random fork. Privacy is hard… So I feel it’s better to trust something less than ideal, than to trust a random dude promising to solve all problems…

That’s just my threat model.


Not sure I trust a random repo here. I dont have the skill to look through the code. In this regard I prefer - after all - gboard. The changes me login credentials get stolen by google are smaller than the chanches I am duped into installing a random keyboard from github. Just based on my threat model and my skillz.