On the occassion of german reports of exploits against #whatsapp Web ... you can use Delta Chat Desktop app without any dependency on a mobile phone. And a second independent security review is currently ongoing. get.delta.chat

Still hosting data at a US firm and worried about the recent ECJ ruling that deems those incompatible with EU #privacy law? There is NO GRACE period! In a lawsuit you have to show you took timely action. Here's help from NOYB on what to do:
noyb.eu/en/next-steps-eu-compa

new in-depth analysis of apps: "[The part]... seems to call home every ~20 minutes and shares the handset IMEI, SIM serial, phone number, email address and WiFi MAC address and lots of still-to-be-decoded data with Google. (Presumably more detailed app telemetry.)" scss.tcd.ie/Doug.Leith/pubs/co

The governments and organizations that built their apps on /Apple Bluetooth tech are now waking up to the fact that Google requires sending them a constant stream of location data in order to use that API nytimes.com/2020/07/20/technol

@gradle now offers complete verification of all the artifacts it downloads and uses, as of v6.2. gradle-witness and others were always limited to a small subset. It is time to switch to the built-in verification: docs.gradle.org/current/usergu

Proprietary software companies and anti-end-to-end-crypto politicians are working to shutdown , the org who funded , , , , TLS ESNI/ECH, , , , , , , , Please sign to help stop it: saveinternetfreedom.tech

Back in 2011, @eighthave and @n8fr8 had a crazy idea to turn SQLite guts into a standalone wrapper for , funded by money. made it a well-engineered product. Latest user: German gov's Corona Warn App. Technical projects with high risk of failure, without paths to massive profits rarely get developed in the private sector. This project highlights mixing public grants and private enterprise to deliver security and privacy in essential software.

It is proven!

Android apps can be built using only standard packages from Debian Buster!

gitlab.com/Matrixcoffee/hello-

"This project helps to document the Android tools in Debian by providing an example build, and can serve as a base template for new projects for those who would like to develop Android apps using only truly Free and Open Source software."

It seems that Google wants to make using app bundles a requirement for new apps on Google Play in 2021: youtube.com/watch?time_continu

This would mean developers have to upload their signing keys to google play even though there's no technical benefit in doing that. You can achieve the same efficient download sizes by using bundletool locally and uploading all generated apks. But it seems google will stop allowing that and just wants your signing keys.

will require App Bundles for new apps in Play, thereby forcing developers to give Google their app's private signing key. This further centralizes the ecosystem and strengthens their by making it harder to publish outside of Play xda-developers.com/google-play

ByteHamster wrote a blog post about supporting newer TLS versions on older Android devices. Read about possible solutions to this for the F-Droid ecosystem here: f-droid.org/2020/05/29/android

users and usage is an essential element of data analytics, so what exactly is tracking? Here is our first attempt at an overarching definition:
guardianproject.info/2020/05/2

Am. 7. Mai hat @IzzyOnDroid einen Vortrag privatsphärefreundlichen Umgang mit #Android für unsere Schwestergruppe in #Bayreuth gehalten. Inzwischen ist auch die Aufzeichnung via #Peertube verfügbar. Viel Spaß!
libre.video/videos/watch/37c7d

#Digitalcourage #Privacy #FDroid #LineageOS

Often the most surveilled work places, whether in a warehouse, a call centre or as a delivery driver - are those where people’s job security and rights are the most precarious and these tools and data, can be used as a tool to target and sanction.

privacyinternational.org/case- nitter.net/privacyint/status/1

#fdroidserver v1.1.7 was released to have a stable version that works with the main repo (e.g. fixes the "litecoin validation" error message).

It also fixes nightly --archive-older flag.

Its great to see the current explosion of public Meet. To help choose which one works for you, we set up a test project "jitsi-monitor" to gather data on public instances daily:

* config including STUN, analytics, etc.
* TLS setup
* TCP traceroute
* what else?

This should run locally for choosing the closest instance. Our results are in basic HTML format. This can be used to make Javascript UIs. The full JSON, source, etc. are available at
guardianproject.gitlab.io/jits

We have started a public wiki page to gather all the gov/etc apps, we are also monitoring what is in those apps. Please let us know if any are missing, or direct edit if you have access.
gitlab.com/trackingthetrackers

Looking for an #opensource alternative to #skype #zoom and other tools? Here are 7 options from @opensourceway@twitter.com
opensource.com/alternatives/sk

Show more
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml