Hans-Christoph Steiner @eighthave@librem.one

@jaschop I agree there needs to be better funding models, that's very difficult to establish given the cartel nature of the current copyright regimes. This handful of large copyright corporations have managed to buy lasting influence in so many governments.

Its frustrating to see how deeply #Copyright cartels have infiltrated our culture, that people call making cost-free digital copies "theft" even in countries where it is fully legal to do so. It is not even "copyright infringement" if it is not against the local copyright laws. And yes, unlike laws about theft, copyright laws vary widely around the world. I've always liked "Copying Is Not Theft" has an illustration of the difference https://yewtu.be/watch?v=IeTybKL1pM4

I still don't get why #Apple #AppStore or #GooglePlay do not allow devs to give source when uploading apps for review. It makes review tasks much easier and more reliable, as we've seen with #FDroid's review. Would it scare the #proprietary app devs too much? Are they more interested in cheap "window dressing" reviews than actually catching things? It is hard not to see bias since both are #gatekeepers getting lots of money from apps they are policing.
For example
https://arstechnica.com/gadgets/2023/07/apple-tries-to-close-privacy-loopholes-with-new-app-submission-policy/ 1/

@rene_mobile I can't think of a technical measure to detect any compromise, but it would surely be possible to detect compromise using other evidence. For example, someone suspects foul play, they ask group members they trust to let their devices be forensically inspected. Then any differences between the group transcripts should be clear upon visual inspection, and probably provable based on an export of Signal history from the devices. This kind of investigation caught NSO's #Pegasus

@rene_mobile In theory, it sounds great. I'm still curious to see how much it will affect real world communications. I haven't really heard about exploits to Signal's lack of Group Integrity.

@gwagner Victor Gruen, the inventor of the mall who grew up in Vienna, would agree: "...those bastard developments. They destroyed our cities." It is a classic example of someone with an idealistic vision being derailed when they partnered with people who were just in it for the money: https://www.theguardian.com/artanddesign/2022/jun/24/bastard-developments-inventor-world-first-shopping-mall-denounced

He did manage to redeem himself by helping to pioneer the car-free pedestrian zones in #Vienna in the sixties.

@mark22k yeah me too, that's the hard part. We want to make it easy for users stuck on #Google to escape. That means making things work well on Google devices.

@MyWoolyMastadon F-Droid Nearby is actually a different app, it is not the #FDroid client app, it is just the nearby app swapping functionality, nothing else. #GooglePlay does not allow other app stores in.

Crazy #circumvention tool idea: set up #spam #honeypot then mine the emails for #IPFS gateways, which are then automatically shared out to users who have browser plugin installed which unblocks access to anything in IPFS.

@pimterry OTF has been a major funder of #Tor #Signal @guardianproject #FDroid #LetsEncrypt and many other key #FreeSoftware projects. I've applied for and run a number of projects with OTF funding. I can recommend them as a funder. I'm happy to help free software projects get started asking for funding from OTF, #NLnet, and others, especially if it is software that I rely on.

@profoundlynerdy @silvereagle Chrome does fare better than Firefox in pwn2own and 0day pricing. Given a chosen target, Chrome is probably harder to break than Firefox. Real world security also means considering targeting. Holders of 0day exploits don't go around exploiting anyone they can, because that's a good way to burn your 0days. They choose targets. That means tracking targets. Firefox provides much stronger tracking protection than Chrome, making it harder for 0days to find their target.

@fsfe great book! My 10 and 12 year old boys both were quite interested in it, it clicked with them. I even saw them rereading it on their on, without prompting, and referencing it when talking about video games. This book should be in schools!

Looks like the latest release of #FDroid, v1.17.0, does not get flagged by #Google, at least in the #Android 14 emulator. I heard some reports that v1.16.4 also isn't flagged. I don't really know why its flagging F-Droid then. v1.16.4 has an unchanged #targetSdkVersion, but v1.17.0 has it bumped to 28. I have found no way to get info on why they are flagging the app, just this silly "unsafe" warning screen. Is F-Droid being flagged by Google Play Protect on your devices? Please let me know.