Show more

So there is a lack of accessibility to folks in the #GlobalSouth in particular. These Motorolas cost around half of what the budget versions of Pixel phones cost and are sold in many countries in continents where Pixels are not, including in #SouthAmerica #Asia and #MENA

Thank you to #StartSmall and jack dorsey for believing in us, and for the funding that made this possible ! And a BIG thank you to our friends at @LineageOS for their work on platform support for the Motorola phones

Show thread

Huge announcement ! @calyxos is now available for the Motorola G32, G42 and G52 ! Why is this a big deal ? Because it helps us further our mission of making #PrivacyByDesign available to the maximum amount of people around the world as we can..

Google Pixel phones are the default and easiest phones to support while maintaining the #Android security model with a locked boot loader and full verified boot. But they are only sold in around a dozen countries around the world...

EFF's latest report shows that many of the internet's ills have one thing in common: they're based on the business model of widespread corporate surveillance online. eff.org/deeplinks/2023/11/addr

Oh, and lastly, this whole Mastodon thread as a much more convenient blog post 😜:

netmeister.org/blog/https-rrs.

#dns #svcb #https #rfc9460 ✌️

I just started a thread on Hacker News about Encrypted Client Hello (ECH):
news.ycombinator.com/item?id=3

Feel free to comment either here or there.

#ECH #DoH #Firefox #Mozilla #Chrome #Chromium

I hacked some ECH (encrypted client hello) support in the JDK network stack the other day (in TLS 1.3).
github.com/johanvos/jdk/tree/e

#java #ECH #openjdk

Hey, so #RFC9460 HTTPS/SVCB records are neat, right?

They...
- speed up your time-to-first-packet (by basically stuffing the Alt-Svc HTTP header / ALPN TLS extension into the #DNS);
- let you do redirection on the zone apex without using CNAMEs;
- allow for simple DNS load distribution and failover;
- obviate HSTS and the cumbersone preloading process;
- enable stronger privacy protections via Encrypted Client Hello aka #ECH

can now present some of the details of in streams, as of v4.2.0. For example, it can dissect the config data that comes from DNS. gitlab.com/wireshark/wireshark

We have started the second round of our partnership defo.ie to ensure that the new standard called () works for public interest use cases. We also are working to reduce the pressure towards inherent to the improvements of hiding the domain name. You can find more details in our project announcement: guardianproject.info/2023/11/0

We just created a for how to set up dev/test servers using our enabled forks of and running on . It should be very quick to get started using a new domain: guardianproject.info/2023/11/1

We are looking for feedback about how to help interested devs start messing around with . What are your blockers and interests?

The first fully merged, audited and shipped bit of code from our defo.ie project is Hybrid Public Key Encryption ( RFC9180), it has been shipped by openssl.org/blog/blog/2023/10/ It is a building block for and , providing standard methods for using public key cryptography to encrypt arbitrary blocks of data.

For anyone who is interested in implementing Encrypted ClientHello (), we have set up a new public room: matrix.to/#/#ech-dev:matrix.or or irc://irc.oftc.net/ech-dev

Willkommen bei #ORFodon!

Der @ORF_News Bot hat jetzt seine eigene Instanz und eine Menge neuer Funktionen. Die Sparten und Bundesländernachrichten haben jetzt ihre eigenen Konten und dementsprechend ist eine viel flexiblere Filterung der Nachrichten und Beiträge des #ORF möglich.

Um Mehrfachbeiträge zu vermeiden, boosten die Kanäle einander.

Der Dienst wird weiterhin inoffiziell und privat betrieben.

Viel Spaß!

Weitere Informationen:
orfodon.org/about

#Mastodon #Fediverse #News

austrian public broadcaster is on the fediverse, in case you are into monitoring int'l news: orfodon.org/@ORFodon/111375092

Apparently 's MAC privacy protection never really worked as released in 2020, they apparently just fixed it in 17.1 after years of touting this privacy protection.
arstechnica.com/security/2023/

For example, the biggest incident that I know about remains en.wikipedia.org/wiki/XcodeGho, which got into over 4000 apps, which all passed 's review and were shipped by the Apple App Store. All told, those apps were installed 128 million times. Another measure is which seems to have maintained zero click access to and for years. That is spread by exploiting messenger apps, not by or "sideloading" 3/

Show thread

Google and Apple provide data about the malware they catch in their app store review processes. Both of them talk about "sideloading" as a security risk. Notably, neither Apple nor Google provide data on how much malware comes from outside of their app stores. Nor do they provide data-based analysis of which is the bigger threat: malware that makes it into their app stores or from other channels. They have this data, they track installs and active apps plus there is etc 2/

Show thread
Show more
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml