Some might say interconnecting everything could be a legitimate goal. Nonetheless, some people started to report about huge amounts of data and metadata being sent to Matrix central servers.

Curious that this claim is without source in the original.

I also have porblems with their claims about bridges. Bridges are Band-Aids to allow you to communicate with people not on Matrix, not a dark masterplan to build a central spionage hub.

By default, a homeserver trusts matrix.org in questions of federation and identity of other servers. You have to get that trust from somewhere. You are free to choose another source for that.

(For example, my homeserver isn’t federated at all, and has that trusted server removed; it doesn’t communicate with anyone. Also it’s not synapse, but that’s besides the point.)

That’s great.

Please beware that DNS over TLS is transport protection; the dns server itself of course still sees and knows everything.

Pffft. You just aren’t a Nix enjoyer yet.

Fühl ich, Bruder.

Baby steps: I wish it was mandated that any software receiving even a penny in public funding must be open source down to the last byte.

You are probably half-joking, but… yeah.

I fucking hate this timeline. Actually, scratch that, that is way to placid and abstract.

I hate the assholes in charge. Fuck all of them. Luigi did nothing wrong.

My blood glucose monitor is not on the play store. So one dy next year I’ll wake up and no longer be able to get that data…?

Yyyyyyupp

“Oh no, this device is rooted! :(” Yes because I know what I am doing, now show me my account balance you stupid piece of ahit banking app.

Ah, my bad then! I didn’t see a repo linked in the post or on the site. That’s great, then!

Cool idea. But since it doesn’t seem to be open source and self-hostable, I won’t trust it.

Are we talking permanent background tracking? Or sending a message “hey, I’m here”?

Yeaaaaaaahh the auth thing is really, really complicated to selfhost. There’s a docker project out there that apparently makes it possible, but… No idea. FOr the time being I still use FF’s auth - that’s still an improvement though: Mozilla knows that I am logging in / from what kind of device, but not the content or amount of what I sync.

Probably… I mean, I’d at least start it in a systemd service, but sure, you don’t need a domain.

But of course your mobile won’t be able to access that domain outside your network

No idea - this is my firefox sync NixOS config, in its entirety:

  age.secrets.ffsync.rekeyFile = secrets.ffsync;
  services.firefox-syncserver = {
    enable = true;
    secrets = config.age.secrets.ffsync.path;
    settings.hostname = "localhost";

    singleNode = {
      enable = true;
      hostname = "0.0.0.0";
      capacity = 2;
    };
  };

You can self-host Firefox sync

You can also selfhost sync!

You can also just selfhost Firefox sync!

Yep, that’s right. In theory you could share the encrypted DB with the public and not degrade security. (Still don’t do that though…)

I dont exactly like passkeys, but yes, from a technical standpoint, they do indeed solve Phishing

Oh, absolutely. In case it wasn’t clear, I’m against chatcontrol.

They don’t actually have to enforce that though. Rather, it’s a neat trick: if you do use encrypted chats, well, you’re purposefully doing something illegal! To hide information, no less! That surely means you have more to hide, and since you’ve already broken a law, let’s investigate further!

To be clear: I’m not saying this is the intended effect. But it is a frighteningly possible one. Anyone who has reason to hide their communication (regime critical activists, opposition politicians, investigative journalists,…) either have to

• accept that their communication will be scanned, making it trivial to spy on them and use that information (legally, no less!) to hinder/stop them, or
• do something illegal, giving pretext for hindering/stopping them since they’ve now committed a crime

Didn’t know about this, but sounds like a good cause.

Is there any legal risk involved with this? Is it recommended to run behind a VPN?