Hans-Christoph Steiner @eighthave@librem.one

Yikes, a scary email phishing attempt for this person’s GitHub credentials. Shows how using a browser web extension for your password manager can help detect this by its autofilling.

https://nitter.snopyta.org/jedisct1/status/1278353703456706567

#Phishing

So what you're saying is, after 18 months you've mined all the profit you can out of your users' data, which is the real heart of what you do.

https://twitter.com/sundarpichai/status/1275835273637576704

Original tweet : https://twitter.com/DuckDuckGo/status/1278686616953987076

V2 Onion Services are going away. Time to migrate to V3! 🧅 https://blog.torproject.org/v2-deprecation-timeline

There's some crazy internal US politics right now that threatens #OpenTechFund, who funded #LetsEncrypt, #CertBot, @torproject , #NoScript, TLS ESNI/ECH, #DNSPrivacyProj, #ReproducibleBuilds, #Wireguard, #DeltaChat, #OpenKeychain, #pypi, @guardianproject , @signalapp , and more. Looks like a couple proprietary software companies are trying to take over this #FreeSoftware money. Please sign on to the campaign to try to stop it: https://saveinternetfreedom.tech

The German Corona Warn App went live today. F-Droid cannot distribute the app for multiple reasons:

1) The core bluetooth contact tracing functionality is only implemented in Google play services and requires proprietary client libs to be included in the app.
2) The google api mentioned above is only available for use by apps which are whitelisted by google and distributed through the play store.

You can read about the api usage terms here: https://blog.google/documents/72/Exposure_Notifications_Service_Additional_Terms.pdf

And more generally about how the whole system works here: https://www.google.com/covid19/exposurenotifications/

German Version:
Die #CoronaWarnApp wurde heute veröffentlich. DIe app kann es nicht bei F-Droid geben, da die Kernfunktionalität in den Google Play Services implementiert ist und proprietäre Bibliotheken in der App benötigt.
Außerdem erlaubt Google die Benutzung der Contact Tracing api nur speziell freigeschalteten Apps, die über den Play Store installiert worden sind.

It seems that Google wants to make using app bundles a requirement for new apps on Google Play in 2021: https://www.youtube.com/watch?time_continue=320&v=cMr-b660Esw

This would mean developers have to upload their signing keys to google play even though there's no technical benefit in doing that. You can achieve the same efficient download sizes by using bundletool locally and uploading all generated apks. But it seems google will stop allowing that and just wants your signing keys.

Also of note, if you are a play store user but still get some apps from F-Droid, Play Store billing will stop working for apps in F-Droid:

https://www.xda-developers.com/f-droid-android-apps-google-play-purchases/

Many fellow open-source projects are hit hard by the COVID crisis. These are FOSS crowdfunding campaigns that need help! Check out their call for support:
https://fossresponders.discourse.group/t/foss-crowdfunding-campaigns-that-need-your-help/61

Guerilla Pop Up Bike Lane, ausgerollt über parkende Autos auf dem Radweg

https://urbanshit.de/guerilla-pop-up-bike-lane-ausgerollt-ueber-parkende-autos-auf-dem-radweg/

Back in 2011, @eighthave and @n8fr8 had a crazy idea to turn #Android SQLite guts into a standalone wrapper for #SQLCipher, funded by #USGovt #InternetFreedom money. #Zetetic made it a well-engineered product. Latest user: German gov's Corona Warn App. Technical projects with high risk of failure, without paths to massive profits rarely get developed in the private sector. This project highlights mixing public grants and private enterprise to deliver security and privacy in essential software.

It is proven!

Android apps can be built using only standard packages from Debian Buster!

https://gitlab.com/Matrixcoffee/hello-world-debian-android

"This project helps to document the Android tools in Debian by providing an example build, and can serve as a base template for new projects for those who would like to develop Android apps using only truly Free and Open Source software."

#Google will require #Android App Bundles for new apps in Play, thereby forcing developers to give Google their app's private signing key. This further centralizes the ecosystem and strengthens their #monopoly by making it harder to publish outside of Play https://www.xda-developers.com/google-play-billing-v3-app-bundle-requirement-2021/

Welcome to 2020, where you need more than 2GB of ram in order to run the signal-desktop client. :-(

In einer Stunde geht die Pressekonferenz von @neos_eu@twitter.com und uns los. Hier könnt ihr live dabei sein!

https://tvthek.orf.at/live/Pressekonferenz-der-NEOS-Massives-Datenschutz-Leck-um-Wirtschafts-und-Finanzministerium-und-WKOe/14064964

🎉🎈 Mastodon.Social has just welcomed its 500.000th user 🎂

At this 🌟special🌟 #milestone I would like to thank everyone in the #fediverse for the numerous interesting posts, the wonderful time and the untiring voluntary #community contributions that make it all possible.❤️

@Gargron #mastodon #mastodonSocial #500k #freedom

Vice dot com (a website that sends data back to Google, Facebook, and Segment, even if you don't have a Facebook account) reports that the Zoom iOS app sends data to Facebook even if you don’t have a Facebook account