I understand Lemmy doesn’t provide a way to fuse multiple signals like the combination of a high-reputation account with a low-reputation IP address and it would be too much to ask volunteer server admins to develop their own. I’m OK with that answer. I don’t expect to dictate the terms by which they give me free services.
The part I didn’t like was their dim view of the fact that Mullvad actually provides privacy to its users. I believe private internet access is valuable to the world even if it enables some harms.
Over the past few years, there has been a great increase in websites using geoblocking. Half the local news sites in the USA block traffic from the EU for example, likely because they want to inject 300 advertising trackers in a manner that would violate EU law. I’ve been using Mullvad for years, and I am happy with it.
Sometimes lemmy.world blocks me from posting from it, which I am not happy with. They were even critical of its strict privacy stance, which I found to be a weird take from a fediverse project.
I played with it briefly. It looks like a good choice for a situation where security is paramount and the people involved are reasonably motivated. I don’t have those needs, and nobody I know has asked to connect with me using it.
Signal, on the other hand is a familiar experience for most people with no new concepts to learn, and popular enough that I think most people will find a number of contacts already using it.
It does not have the option to encrypt group chats last I checked, and even the one-to-one encryption is not particularly well-liked among security experts.
This isn’t about casual chats with friends and family, but political activism against the actions of a country. People doing that should be willing to put at least a trivial amount of effort into security.
I assume for bribes of some sort from Google
This one is stick, not carrot: apps are generally required to use Google’s notification system to be allowed in the Play Store.
Signal gets notifications without GMS. I think battery use and latency are a little higher. Molly, a fork can use UnifiedPush for better results.
Asking people to leave things means they’re losing a line of communication to friends, family, and interest groups who still use those things. It’s probably more productive to ask people to add the services you prefer rather than leave the ones they’re used to.
I’ve encountered some resistance from Americans who use iPhones and hate the idea of adding a third-party messaging app. None of them seem very interested in justifying that position.
Getting around Google’s attestation with an unlocked bootloader requires root - I believe the go-to is Magisk and the Play Integrity Fix module. It’s also a good idea to put the apps in question on the Magisk denylist. I’ve been using this for years with good results and would not describe it as “a lot of things”.
Is that from installing an app or from install a malicious ROM?
A malicious app could modify the OS, but it would need root permissions. There are three ways that can happen:
- The app exploits a privilege escalation bug in the OS. This can happen even if you don’t have root access yourself.
- The app exploits a bug in a superuser permission manager (e.g. Magisk) to gain root privileges without prompting you.
- A previously legitimate app you’ve given root privileges to gets a malicious update (a supply chain attack).
A malicious ROM is certainly possible. Some random person’s LineageOS fork is slightly less trustworthy than its maintainer (due to supply chain attacks).
Privacy isn’t binary.
LineageOS without Gapps won’t send information to Google unless you install something that does. It won’t do a whole lot to prevent apps from collecting data like GrapheneOS does so it’s up to you to evaluate the privacy implications of anything you install.
A locked bootloader protects against two attack vectors: malware modifying the operating system at runtime, and an unauthorized person with physical access installing a malicious operating system while you’re not looking (an “evil maid” attack). The former is rare on Android. The latter is rare unless you’re a high-value target or dating an abusive hacker.
messengers started to E2EE
This is a big deal. I’ve had the archetypal non-technical user, my mother send me a PGP encrypted email. It will probably come as no surprise to anyone who has done so that this did not become our default.
Now the majority of our messaging and calling is via Signal. It’s effortless.
You’re not surprised. I’m not surprised. People who end up with this feature enabled without having fully understood it or intending to turn it on are surprised.
I’m not sure how much of this is people not thinking things through and how much is Meta being scumbags. There’s probably a little of both.
a lot of them are falling for the privately educated ex city trader Farages nonsense that he’s a “man of the people”
This parallels Trump, but I think it’s mostly not that people are really fooled into believing these wealthy politicians are just like them. I think the attraction is more that the current system isn’t working for a lot of people and hasn’t been for a long time. Someone who offers to tear it down can attract a large following even if they don’t have a good proposal for what to replace it with.
It took a while for me to see that because I find the racist and nationalist beliefs of the likes of Trump, Farage, and the AFD so appalling it’s hard to see anything else.
I never said anything to that effect. The ancestor comment discussed running Signal for Android inside an Android emulator for account creation, after which it could be linked to Signal desktop.
Someone could presumably fork Signal desktop to allow the scenario you’re describing, but I’m not aware of any such efforts.
There seem to be two main arguments put forth here:
- F-Droid does not thoroughly audit the apps it distributes, so they might include bad behavior that is not initially obvious.
- It is theoretically possible to provide a package to F-Droid that does not match the source code it claims to be based on.
To which I respond:
- No app store thoroughly audits the apps they distribute. You must ultimately decide if you trust the developer enough to run their app, or audit the code and build it yourself.
- This creates a theoretical opportunity for a developer or maintainer to upload a package that doesn’t match its purported source code, but it’s possible to check for this manually, and to automate that process. It’s likely anyone exploiting this would be caught and their reputation tarnished. It comes back to the first point: do you trust the developer or maintainer enough to run their app?
If you have average security needs, you probably don’t need to worry about this. If you have reason to believe someone well-resourced and dangerous wants to compromise your phone, you should probably be extremely selective about what apps you install and where you get them.
It is increasingly unrealistic to entirely prevent children from having unsupervised access to internet-connected devices from a young age, but attempts to make it impossible for anyone under 18 to access porn are equally unrealistic, and often far worse than the problem they purport to solve.
With good parenting, the possibility of accessing porn won’t harm most kids. It’s not just about keeping them away from it, but about teaching healthy and realistic attitudes toward sex.
Kids can’t use computers, and that’s not good for the world. If teenagers figure out enough about how the computer works to get around the parental controls and watch porn, I consider that a net win.
I don’t actually care if teenagers sophisticated enough to do that see porn.
In a January blog post, it said age verification should take place on users’ devices, such as through their operating system, rather than on individual, age-restricted sites.
The details of this are potentially problematic, as they could preclude the use of open source browsers and operating systems.
It would be great to standardize an HTTP header that says the user is underage, which could be sent by any OS/browser combination that has suitable parental controls.
Terms like “safe” and “private” are not binary.
Are the contents of your Signal conversations on an iPhone private with regard to mass surveillance conducted by governments and ISPs? Probably. Apple uses security and privacy as marketing points, and there are a whole lot of people looking for vulnerabilities in its products who are incentivized to disclose them (possibly with a delay for patches). Signal itself takes steps to prevent data leaks to less secure parts of the OS and other apps.
Would your conversations remain private in the face of a targeted attack against your device by a nation state willing to spend a significant amount of time and money when you’re using Signal on an iPhone that’s presumably used for purposes other than secure conversations with a small set of people you know? Almost certainly not.
I have never had a web host ask me to prove my identity, and I would probably pick a different one if they did.
They do have my credit card number though, so I’m far from anonymous.