Show more
Guardian Project boosted
Nextcloud 📱☁️💻  

Dropbox was caught enabling "Third-party AI" as an opt-out default to all user accounts.
Meanwhile users were deeply uninformed of the changes..

This is our new world: If your privacy matters, keep your data yours!

Our friends @arstechnica explore the debacle:

arstechnica.com/information-te

1+
Guardian Project boosted
@PrivacyMatters  

The jury in Epic v. Google has delivered its verdict — and it found that Google turned its Google Play app store and Google Play Billing service into an illegal monopoly.

theverge.com/23994174/epic-goo

Also need to address Apple’s monopoly too. gov.uk/cma-cases/investigation

ec.europa.eu/commission/pressc

1+
Guardian Project boosted
IzzyOnDroid ✅  

1.2+ million downloads and a rating of 4.2 – a good indicator for a safe app in Google's #PlayStore? One should think so – until one takes a look at its #permissions (46, including access to quite personal data) and the number of KNOWN #trackers #ExodusPrivacy reports (28!!).

Just wow. Had to add that one to my app lists, as a warning example.

android.izzysoft.de/applists/c

0
Guardian Project boosted
julian  

Who Cares Who Delivers Our Notifications? wrily.foad.me.uk/who-cares-who

0
Guardian Project boosted
UnifiedPush  

In addition, we strongly advise developers to encrypt their push notifications, recommending #WebPush (following RFC 8291, forget about this draft abandoned 7 years ago!) or to adopt a sync-on-push strategy (which is what Signal does).

Show thread
1
Guardian Project boosted
Hans-Christoph Steiner  

@Mer__edith Here is one thing Signal could be doing that it is not: the Signal fork @mollyim has already implemented support, Signal can help there, or even integrate that work github.com/mollyim/mollysocket

0
Guardian Project boosted
Hans-Christoph Steiner  

@Mer__edith @unifiedpush @fdroidorg and since you mentioned the world, there are 1.4 billion mobile phone users in China without Apple or Google push. There are half a billion users around the world who do not have access to Apple or Google push. devices are sold around the world, including here in Austria. Signal's stance on push really only works in North America. 2/2

1
Guardian Project boosted
Hans-Christoph Steiner  

@Mer__edith I respect the work that Signal has done, and Signal has been a great leader in pushing e2ee over the past 15 years. Signal can also do better on push. It is not a binary choice, other options provide much improved privacy with smaller hit on battery usage. @unifiedpush does that and falls back to Google push for devices that don't have built-in. @fdroidorg is also helping to get it integrated into etc f-droid.org/2022/12/18/unified

1/

1
Guardian Project boosted
Meredith Whittaker  

PSA: We've received questions about push notifications. First: push notifications for Signal NEVER contain sensitive unencrypted data & do not reveal the contents of any Signal messages or calls–not to Apple, not to Google, not to anyone but you & the people you're talking to. 1/

1+
Guardian Project boosted
Molly  

Molly now officially supports #UnifiedPush with a separate app, available for download on GitHub and F-Droid through Molly's FOSS repository. Say goodbye to relying on Google for #Signal push notifications. Setting up your MollySocket server is all you need to start receiving notifications. 📡 Big thanks to @S1m for making this possible! ❤️ github.com/mollyim/mollysocket

0
Guardian Project boosted
UnifiedPush  

Unidentified governments are surveilling smartphone users via their apps' push notifications, a U.S. senator warned : reuters.com/technology/cyberse

That's why it's important to offer your users alternatives.

1
Guardian Project boosted
NGI Zero open source funding  

We invite you to nominate a FOSS project for the Bluehats prize. There are four prizes of €10.000 each, to be spent freely.

Bluehats are civil servants who promote the use and development of Free Software in public administrations.

The French public administration has established the Bluehats prize for maintainers of critical Free Software. To be eligible the software must be in use by at least one agency of the French administration.

nlnet.nl//bluehatsprize/2024/

1+
Guardian Project boosted
Delta Chat  

Seems google/apple's push notifications services are regularly queried by state authorities for obtaining user data -- see this german #netzpolitik article netzpolitik.org/2023/push-dien --
#deltachat only uses apple's push notifications on iOS for "heartbeat" services -- otherwise it's too hard to ensure the app can show messages for their user (and many users are asking for tighter integration). On Android and Desktop platforms no push notifications are used or needed, also no heartbeat ones.

1
Guardian Project  

"Unidentified governments are surveilling smartphone users via their apps' push notifications".
reuters.com/technology/cyberse

services from and are used in many messaging apps, letting those companies see a lot of about what the users are doing on their devices. It is clearly a rich source of with huge concerns.

1
Guardian Project boosted
Hans-Christoph Steiner  

@dethos Use a Google- and Apple-free device and apps that respect privacy. I can recommend for the system, and @Tutanota, , and others that have removed proprietary

1
Guardian Project boosted
Jon S. von Tetzchner  

Been a good day in #Brussels. Attending the #DigitalCompetitionDay event.

I believe that the Digital Markets Act (#DMA), has the potential to make a significant difference.

Explained a bit what I have experienced over the years with #Microsoft , #Apple and #Google.

Talked about the importance of not leaving holes through not designating products, such as #edge

Talked about the importance of regulating use of data. Data may be the new oil and oil is ruining the planet. We can allow use of data for services, without saying that the data can be used for profiling and marketing as well!

Got great feedback, so happy about that.

@EU_Commission @Vivaldi #Regulation

1
Guardian Project boosted
The Tor Project  

We couldn't be happier that one of the most recognized human rights organizations has adopted an onion service to provide greater online protections for those seeking information, support, and advocacy. Amnesty's choice to offer an onion version of their website underlines the role of this open source privacy technology as a vital tool in our shared work of advancing human rights.
🧅 amnestyl337aduwuvpf57irfl54ggtnuera45ygcxzuftwxjvvmpuzqd.onion

ℹ️blog.torproject.org/amnesty-in

1+
Guardian Project  

Our (RFC9180) implementation shipped by has been audited, and passed with flying colors: "Auditors did not identify any directly exploitable vulnerabilities". Nice work, Stephen Farrell!

7asecurity.com/blog/2023/12/de

opentech.fund/security-safety-

,

0
Guardian Project  

We hit a major new milestone our DEfO partnership project to accelerate adoption of Encrypted ClientHello (): Stephen Farrell made a pull request to with a complete, working implementation: github.com/openssl/openssl/pul

0
Guardian Project boosted
Debian  

TOR support for Debian bullseye and buster have been marked End-of-Life (EOL). Consider upgrading to bookworm to continue receiving TOR support and updates. lists.debian.org/debian-lts/20 micronews.debian.org/2023/1701

0
Show more

calyxos

2
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml