Kyle Rankin @kyle@librem.one

@daniel The phone doesn't know its location yet (GPS isn't enabled, I don't believe Epiphany browser even supports such a thing if it were enabled). It was a *competitor* to the specific medication I bought but in the same category of drug.

1. Buy medication I never have bought or even searched for before at local pharmacy w/ credit card
2. Go to car, decide to test #Librem5 cellular by visiting my account on mobile.twitter.com
3. Immediately see ad for type of medication I bought!

No location tracking possible on this Librem 5 (used browser, not native twitter app), so either a crazy coincidence, or near-real-time reporting between CVS and #adtech w/ linking between my name, card, and twitter account.

Something I didn't know I was missing but now use all the time on my #Librem5 is writing a shell script to perform a task along with a local .desktop file to run it from the home screen. Adding notify-send commands gives me feedback as the script runs in the background.

This is a fun story describing the security measures Tiffany used when it moved millions of dollars of jewelry down to street to a new location: https://www.nytimes.com/2020/01/13/nyregion/tiffanys-store-closing.html

It's refreshing to see a major vulnerability with vanilla advisory pages and no branding. Anyone but the NSA would have registered ecc.fail or ecception.org to pair w/ their BH submission.

If your app wins this war, maybe you won't care, but history tells me tech giant dominance is temporary. All those devs writing proprietary msging apps today are writing tomorrow's abandoned code. We'd all go much farther if we went together. Thank you for coming to my TED talk.

We still haven't learned the lesson. The next decade promises even more duplicated effort as each org reinvents proprietary e2e encryption protocols on private networks in the name of privacy, but with the effect of making compatibility almost impossible.

Is it really better that FB has three incompatible msging apps they now have to wrangle into one new proprietary protocol? In the 20 year fight to own the market, all we have to show for it are mountains of abandoned proprietary code, dead networks, wasted efforts.

These companies went fast alone, but they didn't go far. The last 20 yrs show few real innovations in msging. How many attempts has Google made? If they all had worked together, you wouldn't have a half-dozen incompatible messaging apps with similar features on your phone.

The buildings full of devs he references all labored over the past two decades to reinvent the same messaging wheel, but w/ a network they owned. Libpurple plugins serve as a graveyard of proprietary chat protocols--failures to capture the market, wasted dev effort.

There's a well-known African proverb: "If you want to go fast, go alone. If you want to go far, go together." What Moxie's centralization talk misses is that the faults in early decentralized protocols came because dotcoms wanted to capture the market.

https://invidio.us/watch?v=Nj3YFprqAr8

If you want gpodder to integrate with Lollypop for playback, just go into Lollypop and add ~/gPodder/Downloads to Lollypop's list of music directories.

A two-line change to /use/share/gpodder/UI/gtk/gpodder.ui to change two horizontal panes to vertical ones was all it took to make it fit perfectly on the #Librem5 screen. I love #FOSS.

Many Android phone vendors subsidize their cost w/ malware/spyware/adware just like many laptop vendors, but Android lets vendors make it impossible to remove.

In this case, free Android phones the US govt. handed out to the poor contained Chinese malware. #privacy

https://www.forbes.com/sites/thomasbrewster/2020/01/09/us-funds-free-android-phones-for-the-poor---but-with-permanent-chinese-malware/

The NSA ran into a similar problem. It's hard for people to avoid the temptation to abuse their power for personal benefit.

For services like this, the best approach is not to collect the data in the first place, or else only give users keys to it. #privacy

https://arstechnica.com/tech-policy/2020/01/amazons-ring-fired-at-least-four-employees-for-snooping-on-user-videos/

@nitrokey Congratulations! Having Heads in more hands will be great for security overall.

After a few years my #3dprinted shaving stand got bumped on top and the leverage cracked the base. The great thing about #3dprinting is that I noticed it this morning and by this afternoon I had printed the (now much stronger) replacement.

@HalvarFlake Welcome back!

@kev I have a handful of dress socks and boot socks but rarely need either.