Stories written by life – or in this case by Licaon_Kter, one of F-Droid’s contributors: „From user to contributor and beyond“. To help support the work of Licaon_Kter and other contributors, please consider donating to F-Droid. We’re looking to raise €1,200 per week so Licaon_Kter can keep contributing full-time.
If you are a developer who has posted on public mailing lists, watch out for spearphishing replies to your posts https://guardianproject.info/2022/02/23/spearphishing-for-developers/
User accounts are so often a method of tracking users, yet they are not a requirement for running most internet services. #FDroid #Jitsi #CleanInsights #Wikipedia #Briar #FirefoxFocus all provide shining examples of working without accounts. https://f-droid.org/2022/02/28/no-user-accounts-by-design.html
"EU data protection authorities find that the consent popups that plagued Europeans for years are illegal. All data collected through them must be deleted. This decision impact Google's, Amazon's and Microsoft's online advertising businesses."
#Munich regional court finds embedding Google Fonts in a website violates #GDPR, "legitimate interest" did not apply since the fonts can easily be directly integrated into their website, thereby avoiding sending IP addresses to #Google.
Like many problems with targeted ads, both Naviance, the platform, and college officials who use the platform to target applicants by race, are at fault. Children aren't products. https://themarkup.org/machine-learning/2022/01/11/this-private-equity-firm-is-amassing-companies-that-collect-data-on-americas-children
The US State Dept's "Global Internet Freedom" funds (#OpenTechFund #StateDRL #USAGM and more) now require #OpenSource: section 7050, "Funds... may only be made available to support open-source technologies that undergo comprehensive security audits...".
With #Debian, it is now possible to get all updates from official HTTPS sources. In combination with other work from the apt developers, this improves privacy and provides backup security https://guardianproject.info/2021/12/08/debian-over-https/
The FBI produced this nice chart comparing what kinds of privacy leaks the various messaging apps have.
One of the hazards of #TLS #ECH is that a deployment could end up leaking as much information as a non-ECH TLS connection if the ECH Config in DNS is only associated with a given domain. https://blog.cloudflare.com/handshake-encryption-endgame-an-ech-update/#focusing-on-deployability
#Android apps can track users based on their wallpaper: https://lwn.net/Articles/873921/ https://fingerprintjs.com/blog/how-android-wallpaper-images-threaten-privacy/
#Debian created an ecosystem where the software available there is reviewed and trusted, so the system can prioritize flexibility over security. In #Google Play, there are many apps we feel forced to use, despite knowing they are unethical or are tracking us. Google responds by locking down #Android to reduce data leaks, which also reduces the system's flexibility. #FreeSoftware puts the user in control so we can build user-friendly systems without being forced into bad decisions.
People, apps and code you can trust