I think Louis Rossman has a video explaining why F-Droid is not great

Probably also Mullvad Browser and Tor Browser, but I don’t know them much

Vanadium

I don’t think you can install it outside of GrapheneOS though

Sentences?

OP not your pet

You mean Matrix, surely

I’ve looked into the sources because that was weird to me as well.

It’s because the web “client” is using nginx as a local web server. You’re selfhosting the web client

The app still is 100% a frontend js client

OP did link to their public instance of the client, but gives more opportunities

Oh that’s really great news. Thank you for mentioning that!

FUTO keyboard is actually a very good replacement. I think I stopped using it because it didn’t do correction on multiple languages at the same time. Maybe there is an option for that now

You’re wrong on one thing though. A good portion of tracking either takes place in the client or is enabled on the endpoint.

Matrix client on a server with bridges to your proprietary chats

Well if you can stay pressed on the power button it should restart the device and it will be encrypted, with no biometric unlocking

Or Grayjay then

Google does listen, what do you mean? They have a feature in form of their voice assistant to make sure it can

There are browser extensions that block calls to known spy domains like Google ones

This is why Matrix is infinitely better than Signal. This and not having been funded by the CIA through Radio Free Asia. Even with weaker architecture

I didn’t know how to link to the exact video :(

Found a really funny one with two kids doing a skit about a drink in their garden, then an Helicopter crashes in their yard

Edit: this is a montage and the helicopter is part of the skit but unexpected turn of events

Corporate app frontends track everything you do and see. They can record your mouse movement and watch it again, they track your scrolls, every button click, and even sometimes what you type in inputs even when you don’t actually save them (like an Instagram comment you decide not to post, or a video search you don’t actually search). There is a lot of tracking done on the frontend. Some of it could also be done in the backend (and a part of that is), some not

I don’t have any answer for the point where you would not trust Google even for the hardware (even though I don’t think there is any risk on the current devices)

But concerning the “don’t want to support Google” an easier answer is to buy a second-hand Pixel

This has nothing to do with the subject. Unfortunately for all of us, you didn’t have to pass any test

It’s crazy to fear for Chinese espionage/tracking more than European or US one

No? If you accept tracking while on the page, this has consequences on your current session

It’s run by private companies, they’ll sell your location, face, habits, what you do and like in real life in addition to your online profile. Then they can do whatever they want. Sell you things, manipulate what you think

In part, yes it is. In the part where you want privacy from tech corporations

I never understand the presence of right wing people in privacy discussion actually. After everything they deliberately give up to either a fashist state or corporations

Plus, Grayjay is made in part by the guy in the post picture

Congrats on joining the GrapheneOS enjoyers

They stopped doing that unfortunately, I think. I struggled to find all 6 apps

I want Proton to replace Google. I wish for that. And during this time we can use open source software as well

Oh thanks for correcting me

RCS is just SMS experience through Google’s servers, just like what you have with iMessage. It may even be worse in term of what the companies extracts from your messages. Only usage I could see is if you want to use a matrix bridge that only works with RCS, like Beeper (since Apple does not enjoy users signing in with the iMessage bridge)

Oher than that, I enjoyed RCS messages when I was a Google fanboi and did not care about privacy. It still offers a better “security” than regular SMS, but you chose to deliver your texts to Google

It’s a different OS, based on AOSP

It’s not a ROM

Well not really, it’s a good way to do a IDN homograph attack

Indeed I have 1Password (was the best proprietary) and I’m switching to Proton Pass. This year they lacked features but their integration of their Simple login email aliases is game changer

The hacker on the other side of the RAT is getting scared but comes back as a kink

Extensions will soon be ported to mobile Firefox, if the developers do it

Well this is not particular to Beeper, that’s always the case when using Matrix + Bridges for third parties right? Even though they are the main mainteners of a good part of the existing bridges

Ok thank you so much. What I would like to point at in the difference between having an end-to-end encryption between two recipients and at-rest encryption for information owned by Signal (in this example), is the purpose of those two different things. E2E encryption means only the two agents at each end have the mathematical possibility to decrypt the info: this is privacy by design. At-rest encryption on Signal servers of different things is a security layer meant to protect users’ privacy against attackers, but Signal have the means to decrypt it, and they would do it in the normal usage of the service. This would also mean they can (and have to) transmit decrypted information to whatever agency demand them to

Thank you for that info and the link I’ll go into that. Just to summarize, if you have the knowledge and time: this is at-rest encryption? I’m not sure how it could be end-to-end encryption and at the same time enable to start new conversations with other Signal users / discovery based on name / phone number