It should be safe. It only shares the secrets with legit domains. That’s one of the powers of this tech: it won’t share your secrets with something that looks like a legit domain.
No, some of the functionality is definitely accessible without that, e.g. if you use ykman oath accounts code on Linux to read the TOTP codes you don’t need to click and I seem to recall some of the functionality has a configurable click requirement.
Setting restrictions on what 2FA/authenticators we can use. I imagine it’s only a matter of time before Google functionally makes it so you can only use theirs when using their services.
Edit: I assumed it was some of the messages I’ve seen elsewhere, my mistake. I don’t need everybody repeating the same comment. Please read the responses before telling me the exact same thing over and over again guys lol
At least for what I just posted this isn’t a restriction. Its a recommendation. You can still use any other app. I thought its nice that they recommend the privacy friendly ones.
I’ve gone tons of places that say use Google Authenticator (only) and I just summon the QR code and scan with Aegis anyway and it always works fine. I’ve never seen a place that required a certain one.
Been using it for a while as the 2FA app used and recommended by Leo Laporte. I’ve had a good experience with it, but if it has any issues, I would love to know.
Neither is a teen freely sending a nude selfie of themselves to their teen SO.
Many family photo albums feature naked kids in various stupid situations that were just thought to be cute and funny at the time, which would nowadays melt peoples brains if they'd hear about it, and certainly would fall under the same laws that would punish the teen in the other example.
Not to mention it is all based on the questionable assumption that porn is somehow harmful for teens to watch but the exact same porn is not harmful for adults.
‘cause if there’s one demographic that couldn’t possibly have the aptitude, resourcefulness or motivation needed to defeat a scheme like this it’s horny teenagers.
Microsoft will insert their left-leaning propaganda into the Windows start menu, innocently pretending it’s just trending news. Brainwashed Democrats don’t even realize that it’s normalizing an authoritarian society through unquestioned acceptance of government authority. In fact, Democrats are so shielded from criticism…
For android, Google uses Firebase Cloud Messaging, basically a server that pings the phone when a notification for an app is available, which wakes the app up to receive the notification. There are alternatives but they need to be adopted by app devs for them to work.
For people running a degoogled android, they’ll notice most apps won’t receive any notifications until they open the apps since most apps rely on Google Play Services to receive a ping from FCM.
I don’t have any google play services so most of my apps don’t give me push notifications but I do have WhatsApp installed and that still receives notifications, they’re sometimes delayed by a few minutes which makes me think Meta have their own implementation/alternative to FCM but I’m not sure.
For Signal, their servers tell Googles FCM servers that you have notifications waiting on Signals servers and to wake up your Signal app so it can communicate with Signals servers to receive your messages.
WhatsApp and Signal claim/have end-end encryption on their messages but that shouldn’t matter when specifically looking at Googles FCM servers so, at most it would be meta data that could be obtained from the FCM servers.
jami.net/unifiedpush/ has a pretty basic explanation of push notifications on android and also showcases an alternative to FCM unifiedpush.org which has a nice little diagram about push notifications on android. Unfortunately, Unifiedpush is not widely adopted by many applications.
So there are ways to avoid Googles FCM servers on android using Unifiedpush or always having the application on in the background but for the most part FCM is used.
I’m pretty sure Element stays active in the background, it may have asked you to turn off battery optimisation and have a silent notification always active. This decreases battery life which is why most apps don’t do this but it allows the app to constantly ping the server to check for new messages and is one way around using FCM.
Fair email uses en.m.wikipedia.org/wiki/IMAP_IDLE instead of FCM, I’m no expert and this is just my guess but it seems to also need the app to run in the background for this to work.
Silence is SMS and MMS only and so doesn’t use internet and so has no need for FCM or any alternative anyway
Curious about this too. From what I could find, for those it seems like the push is being used to wake up the app and tell it to connect to the server where it grabs the data and then creates the notification locally. Even if a bare minimum is used there is room for traffic analysis, and I imagine Google can easily tell the app being targeted for the push, but it shouldn’t mean the contents of the displayed notification are necessarily what was sent through the server. It’s hard to find info without digging because consumer-facing stuff just calls every notification a push notification.
The alternative is an app keeping a constant connection open to the server, which understandably mobile OSs don’t like. With push only the one service needs to keep an open connection to provide updates for all the apps.
The government says selfies for AI verification are to “protect” children from such content but in reality we know it’s all to create a database with biometric hashes of everyone and create the long-awaited dystopia of 24/7 mass surveillance. The government that completes the task first comes out ahead, and it seems that China is winning the dispute
I’m not a power user by any means but I moved over from obsidian and haven’t had any issues so far. I’m using the free cloud storage right now but will look into self hosting if I get more serious about it.
Can’t say for sure. Everything is considered an object in anytype. As I understand it every line of text, every bullet point could be its own file. Instead of one markdown file for each page like obsidian does. How this will affect the syncing I can’t say.
Right now you can’t turn off the built-in sync with their servers (except by blocking traffic with a firewall). So there isn’t really anything to gain in hosting the files yourself.
I have the GL.inet Beryl router, absolutely the best addition to my travel tech. I’ve considered upgrading to a newer model for faster vpn for torrents, but this can still easily run off a 2.4v usb battery pack and handles everything reasonably.
privacyguides
Active
This magazine is from a federated server and may be incomplete. Browse more on the original instance.