Always consider what you say on Discord as potentially public, since there is no E2EE.

https://techcrunch.com/2024/05/08/encrypted-services-apple-proton-and-wire-helped-spanish-police-identify-activist/

Can’t protect someone from bad OPsec.

Acronym for Know Your Customer, requiring some kind of identity verification before enabling service.

And some TOTP apps don’t interpret the algorithm parameter correctly, which makes it safer to go with the default SHA-1.

Lemmy in fact was using SHA-256 for its earlier TOTP implementation and reverted back to SHA-1 since some people locked themselves out due to poor support in some TOTP app (among other issues, another was that the activation workflow never asked you to confirm the code you enrolled was working and generating the correct code…).

Oh yes, one example is Naomi Wu.

I suppose they all use the same challenge-response key?

A strong and unique passphrase is indeed really important here, but you need to keep in mind that once the kdbx file is in the attacker’s hand, that’s the only thing that keep them out.

There’s no 2FA, and no throttling on the bruteforce process. So it’s really important to use a strong password there to avoid it being the weakest link.

One trick is that you can enroll your TOTP codes on more than one device, the only thing the device need is the clock to be synced to provide the correct code.

You can store your TOTP codes in many places:

• A mobile app like Aegis (Android) or 2FAS (Android, iOS). Those even offer a way of backing up your TOTP codes, but you need to take the proper measure to store them safely.
• A password manager that can handle TOTP like Bitwarden (with a premium subcription) or KeePassXC.
• A security key like the Yubikey 5 can safely store TOTP keys (up to 32) and generate them through the Yubikey Authenticator app.

That way you don’t get caught your pants down if one of your device dies, get stolen, etc. Also, keep the recovery keys / backup keys in a safe place just in case of a worst case scenario.

Keep in mind that your TOTP backup and Password Manager files like KeePassXC can be the weakest link in your OPsec if you’re not careful.

I more dissapointed that Pebble was unable to find a viable financial path forward :(

Initially the software wasn’t very stable, but that was fixed over time. Overall I liked it a lot, and the available “apps” for it all filled a niche I looked for.

I switched because I wanted to go back to a more classic watch I can simply wear and forget about. I don’t have all the bells and whistles from the BangleJS2, but now I have a watch to see my notifications and step counter that I don’t need to recharge every week, the battery (CR2032) is said to last about 2 years in the GBD-200.

I would suggest to look at the models supported by Gadgetbridge and pick one from there. I know I can trust Gadgetbridge not to leak my data since it doesn’t ask for network permission.

https://gadgetbridge.org/gadgets/

I used it for several years, through multiple gadgets (in chronological order)

• Pebble
• Pebble Steel
• Pebble Time Steel
• Mi Band 4
• Amazfit Bip
• Bangle JS2
• Casio GBD-200

Apple already does it with their iPhone, just saying.

Depends how it’s implemented, my bluetooth “smartwatch” runs for around 2 years on a single CR2032.

Fast charging is constantly improving though, I wouldn’t be surprised if we reach a point where EV charging improves to a point where it takes roughly the same time as charging an ICE vehicle in the 2030s.

https://driving.ca/auto-news/technology-news/toyota-says-ev-batteries-will-charge-to-near-full-in-10-minutes-by-2027

They target the most common denominator. Once EVs are everywhere, look at the chargers getting filled with ads.

One could use one of the Lemmy instance dedicated at mirroring reddit (ex: https://lemmit.online/) as a workaround I suppose.

The carrier can still roughly triangulate your position based on the signal strength. Not much you can do on that front but to go in airplane mode if you don’t want to be tracked through the cell towers.

My name is totally the ex-manager everyone hated before he left.

Even with a clean install / profile?

I also sync other stuff, so it’s useful anyway.

And with Syncthing’s Untrusted Device Encryption feature I can use my VPS as an extra node for synchronization without worrying touch if it becomes compromised without me knowing.

I even used it while traveling with friends. We couldn’t have our seats together in the airplane and the capability to chat and shitpost over bluetooth securely was kinda nice without annoying everyone.

My biggest annoyance is the inability to migrate a profile and the existing chats across devices, even though that’s good security-wise.

Best of luck getting access to a MRI or ultrasound machine that runs on Linux.

I hope so, as I use it on the Steam Deck and on Fedora Onyx (Budgie Atomic), which both rely on Flatpak for desktop applications.

Their small business stuff (Omada) is decent though.

Same but with a QR code

And even if they’re deleted by the archive program, it’s likely a normal deletion, and not a secure delete where the original data is overwritten with random data before deleting the entry in the file system, which could be potentially recovered.

For cookies you just need to enable one of the Cookie Notices list in uBO, and for paywalls you can add the https://gitlab.com/magnolia1234/bypass-paywalls-clean-filters/-/raw/main/bpc-paywall-filter.txt filter list.

What I like is how easy it is to become a Snowflake proxy. Just install the addon on your normal browser, and turn it on.

https://snowflake.torproject.org/

DoH: https://sky.rethinkdns.com/
DoT: max.rethinkdns.com

Why not use DoH or DoT instead? At least those are encrypted by default.

The issue is with support not giving you an adequate account recovery method, they’re correct about validating ownership of the account tho.

Emails can be spoofed.

If you leave it on as much as you can, and make it generate random traffic, then you’re effectively obfuscating the pattern.

I backup the videos I transcoded myself on Google Drive (encrypted, Google can’t see the content), since I buy the extra storage anyway.

Bilingual MKVs (English and French (preferably Canadian French when available)) are kinda rare online, and they help me save some storage instead of having two copies of the same movie for each language.

A warp doesn’t technically lose the information, it merely displaces it. A good blur algorithm on the other hand will lead to loss of information.

Sadly you need to reach out to the caller ID app developers and ask them to remove your info.

improving the security and privacy of mobile devices, not being anti-Google.

Talk about an oxymoron…

I keep my subscription proxied through Piped, and I back it up when I change my subs. Also if you create an account on one of the Piped instance you get an RSS feed of your subscriptions.

Maybe we’ll eventually see a version of FreeTube running on Tauri one day (one can dream).