GingerKun

joined 1 year ago
[–] GingerKun@vlemmy.net 2 points 1 year ago

KeepassXC is encrypted locally with no public servers :)

[–] GingerKun@vlemmy.net 9 points 1 year ago (6 children)

Are there really people out there not using a password manager in current year?

[–] GingerKun@vlemmy.net 15 points 1 year ago* (last edited 1 year ago) (1 children)

Doubly so on federated platforms, though. Your ability to delete your posts, toots, and even DMs is at the mercy of other servers deciding to respect delete requests or ignore them. Not to mention completely invisible non-public nodes that are ~~probably~~ definitely as we speak hoovering up all data.

[–] GingerKun@vlemmy.net 1 points 1 year ago

Nice, I might try this setup.

[–] GingerKun@vlemmy.net 7 points 1 year ago

Nice try, Apple /j

[–] GingerKun@vlemmy.net 4 points 1 year ago (2 children)

It seems a lot worse than that... At least somebody would have to hack a 90s forum to see your DMs.

[–] GingerKun@vlemmy.net 21 points 1 year ago* (last edited 1 year ago) (1 children)

A single "entire" instance being ruined is a much smaller problem than a whole platform.

As for the duplicate community problem, I would love to see either a multi-reddit-like feature or the ability to merge/co-mingle "duplicate" communities across instances.

The solution to tyrannical mods or admins is simple: "take your ball and go home" by starting your own instance, or your own community on a separate instance. That said, instances and communities grow by growing trust between users and mods/admins by a track record of acting in a rational and trustworthy way.

Privacy is definitely a problem for Lemmy. You should assume everything you post or comment is public and in the open, and impossible to fully delete, because it is. Post accordingly. You could theoretically be identified by the sum total of all personally identifying information you freely post over a long enough time or by your writing style if a government considered you a real threat.

That said, many instances do not even require an email address. I don't know whether instances store data like IP addresses, but you could check the lemmy source code to find out.

Edit: But also, who's to say their server source code is unaltered? Federation lives and dies by trust and mutual cooperation, and that cannot be guaranteed.

[–] GingerKun@vlemmy.net 1 points 1 year ago (1 children)

What's your favorite color? I'd have to go with cherry red, but white is also tempting.

 

The Gaggia Classic Pro Evo is out! Click here for a full review. This is a 2023 revision on the much loved Gaggia Classic Pro which also punched far above its price class. The Evo is around $500. If you're looking for a deal, now might be a good time to snatch up a refurbished unit of the older model. I found one for $375 with a web search.

Here is a separate video of the differences between the two models in more detail. The title post is a full review/overview.

Edit: I just realized you can't have both an image and a linked video unless you put the link in the body. I added the actual full review link at the top.

[–] GingerKun@vlemmy.net 4 points 1 year ago* (last edited 1 year ago)

That information is easily found with a web search, so there is no need to cast aspersions. It's funded by Brian Acton's "activist" funding (interest-free loans of $100 million+ total to Signal Foundation over the years). I'd guess Acton used it as a huge tax write-off the year he sold WhatsApp to Facebook.

Other revenue sources include voluntary user donations and grants from many free press organizations whose members rely on Signal. Some years they report positive net income, and other years they report negative.

Signal Foundation tax forms, which list all general revenue sources: https://projects.propublica.org/nonprofits/organizations/824506840

What Signal says about how they operate: https://signal.org/blog/signal-foundation/ https://signalfoundation.org/en/

Signal Privacy Policy: https://signal.org/legal/#privacy-policy

All the code, including what runs on their servers and in their apps, so you don't need to take their word for anything. You can compile the signal client from source if you like: https://github.com/signalapp

Article which talks about their audit history (this is their weakest point. The full results of the audits Signal paid for were never published): https://restoreprivacy.com/secure-encrypted-messaging-apps/signal/

However, anybody can check for any spooky stuff in their code, so I doubt they would purposely try to hide anything untoward there.

[–] GingerKun@vlemmy.net 1 points 1 year ago

I haven't liked Brave search results in general lately. SearxNG is pretty good and Duckduckgo as well.

[–] GingerKun@vlemmy.net 5 points 1 year ago (4 children)

It kind of doesn't matter... That's the beauty of fully auditable open source end to end encryption.

[–] GingerKun@vlemmy.net 36 points 1 year ago (7 children)

Basically, it makes the whole platform less secure because you could accidentally send a non-encrypted message at any time. With SMS-free Signal, at least mistaken sent messages are still E2E encrypted.

Is their goal to become the new de-facto messaging app? Or is their goal to become the most secure messaging app for whistle blowers, etc for whom a single mistake could mean losing their life or their freedom?

view more: next ›