True, but not entirely, signature spoofing needs OS support, and LOS and divestOS don't, whereas murenaOS (/e/OS) and lineageOS for microG do. Other than that microG's own f-droid repo makes it easy to keep microG's component up to date.
That's why I mentioned it would be nice to upstream divestOS bootloader lock/unlock at will solution, so that not just LOS, but derivative ROMs can inherit that solution. As some people don't like the tight integration from murena (/e/) with all of its rebranding, LOS for microG is a very appealing option, if wanting full microG's support. Actually LOS for microG was there quite before /e/ was created.
That's great if not having to use any proprietary apps depending on google services, including push notifications, since part of divestos unsupported stuff includes:
Google Apps or microG or Sandboxed Play Services are NOT supported.
Which is fine, if you don't need to use such apps. An alternative to /e/os, which now a days is actually murenaOS, is lineageOS for micro G, which does sort of monthly releases based on whatever is available as nightly releases on lineageOS. It does provide you with microG and also with F-Droid with privileged extensions installed and already set for you. This might be more suitable than divestos if in need for some such apps.
Yup, divestOS allows for booloader lock though unfortunately they don't support microG. I hope they somehow help upstream their relock solution to LOS. I use LOS for microG instead, since I need stupid bank apps and also for the office some stupid proprietary multi factor authentication apps... If only LOS for microG could lock the bootloader at will (it needs to be unlocked for major upgrades, like on regular LOS), that'd be great.
There's as well CalyxOS, which uses microG and also locks the bootloader, however I do prefer LOS since the strategy from CalyxOS and GrapheneOS trying to deGoogle pure Android in my mind sound like having some limitations, as opposed to LOS approach to be based on AOSP instead. Though that's just in my mind, I'm sure those guys in Calyx and Graphene are the best at security and privacy.
Not sure what updates you are expecting to happen.
I'm not aware of any effort trying to identify the traffic going in and out on Thunderbird under android. The guesses from the one reporting about what happens when configuring a new email account is of no use since it's easily associated to Thunderbird looking for ways to easy automation on new accounts settings.
Unless there's a throughout analysis of the traffic, I'm not aware of anything to be expected. You can try reaching the one reporting his concern, and ask if he has looked into how to report an actual issue/bug to Thunderbird, or if someone else has done it
Quick question, why not considering lemmy as your "blog" provider? If the "community" concept wouldn't apply, perhaps creating your own "community" and becoming its "mod", disabling posts from others except yours, wouldn't that work? Lemmy already provide RSS feeds so others can follow/track your posts without any lemmy account, just like with any blog providing RSS/atom feeds, and you get "blog" feedback through lemmy, but the same applies to other blog providers, only the ones subscribed can provide feedback.
I was looking for an anonymous blogging mechanism with digital signature (not to identify the author but to verify its authenticity). Long story short, nothing out there seemed to really fit into what I was looking for, but among the suggestions lemmy was there as an option. You can avoid following anything, and looking into lemmy's default from page, just use it to post and get feedback, forgetting about the social networks characteristics of lemmy, and make it work as your blog provider...
Neither servo rendering engine (like gecko), nor verso (an actual rust based web browser based on servo) are quite ready for prime time. But I'm hoping they will be there sooner rather than later. I don't use Firefox directly, but rather wrappers based on it, Librewolf for the desktop and Mull in part because I'm lazy (I prefer the ankerfox stuff and other to be done for me), and if I want to avoid chromium based browsers, dominating big time (MS browser edge is as well chromium base, electron is chromium in disguise, and now a days QT web engine underneath is chromium as well) well there's no option yet.
On the other side, nothing guarantees servo and verso (or whatever other servo based browsers in the future) will care about net free advocacy, neither user freedoms, just be concerned about being better technical solutions, :( But I still have high hopes as you might...
Just being a good technical alternative is not good enough now days, :(
This is sad, not just because it's a trend on Mozilla, but because it shows how mozilla has embraced the corporative kind of mindset. The advocacy team was fundamental for net free principles.
Mozilla based browsers keep being the only practical alternative to web browser dominance, but it itself has degrading its status of resisting bad practices against users and the web in general. And emerging alternatives are also technical alternatives only, with no intention of net freedom advocacy, GPL sort of principles to protect the user and so on.
Sad days indeed, :/
cross-posted from: https://lemmy.ml/post/22214348
> Some weeks back apkupdater stopped being able to download/upgrade/install from apkpure, but now a days I see issues with apkmirror as well (I see way less apps when searching for them). There was an initial issue about not being able to install from apkpure, but it seems more than that. > > Agreed there's aurora store, but to be honest, I pretty much prefer avoiding the Google Play store at all, and I haven't found an issue with apkpure. > > There was apkgrabber, but it was not working since so long, and finally it got archived on github. > > Is there some FLOSS app similar to apkupdater, other than aurora store? > > Anyone experiencing issues with it? Issues are not meant to be status reports once filed, but it seems not many have even noticed about the referred issue.
What they're saying there is that when trying to auto detect the server configurations, there are unexpected connections to cloudfare IPs, which didn't usually happen with K9. Who posted the concern associated this to telemetry, but the answers are pointing a different direction. But at this point it just guesses, :(
I guess some more formal traffic inspection needs to happen to understand if truly there's unexpected traffic, where it is directed to, and hopefully infer somehow its purpose. The guesses about what's happening suggest it's just about the auto connection, but again, just guesses.
I explored the configurations, and I didn't find anything about telemetry, and so neither how to disable it. K9 does not have an about:config advanced configuration like desktop Thunderbird does, so if there's truly telemetry or some other sort of information leakage, then after proving it, perhaps developers realize they can do better. But so far nothing really proving telemetry or information leakage.
F-Droid produces its own builds, with its own signatures, so to get f-droid going, you'll need to install from F-Droid. However the import mechanism seems really nice. Perhaps you can install from F-Droid the official release, which can co-exist with your upstream installed beta release, import from it from the F-Droid app, then remove the upstream installed beta release, and if you wan to keep on beta, then install the beta release from F-DRoid (be careful right now, given a bug made K9 show up as beta release as well, but the app ID is clear, just being careful is enough), and then import from the official release, then remove the official release and you're all set. The idea is not to reconfigure a thing by doing those steps, and perhaps you wouldn't like to go to beta, and remain on the official release, which is not that behind, and perhaps better tested.
Did that, thunderbird release no beta, and no issues since I don't have google account. For people with google account requiring to re-sign in, and who don't often do so, signing in is really hard if they don't registered their phone number to google. It's sad, I commented about it in some other post. Understandable in reality they are different apps, but in the end it should be the same user ID, but nevertheless it's a PITA if people don't have a device permanently logged in, :( For them it's better to stay on K9,and hope K9 doesn't go away, or else find out how the heck to login to google once again.
correct, that's the official release, the other is beta for testers...
Sadly, when having a gmail account, the migration is not possible, if the user doesn't keep permanently logged in somewhere. TB is not taking the current K9 OATH, and tries to establish it's own authentication, which on a K9 + desktop TB user not logging often to google at all, it's really almost impossible to login to gmail, since it ask as security the user 1st phone number, which could have never been registered to google, and beyond that it requests to use a different device which is already logged in, but it you go to the desktop, and attempt to login, it does exactly the same thing, the same stupid question or requesting for another device. So it gets into a loop of devices which can't be resolved. And for this other user I tried to setup TB for, they don't authenticate near often to google, but they use both desktop TB and K9 quite well.
For now, for such users, until they figure out how the hell to login to their google account again, they better don't try migrating to Thunderbird, since the import functionality is not quite enough to get google mail working fine, again if the user doesn't login to google often. A bit sad, though it makes sort of sense, since the apps registered to google would be different. Sad in the sense that an already working setup for gmail on K9 can not just be imported as is to TB, and keep just working.
While K9 remains working, there's no issue for such users though. Hopefully that doesn't happen,
It works great when not having a google/gmail account, :)
Ohh, it needs to import though. I was afraid in case there would be sort of two different directories over the same data, or that on TB dir it would be to start fetching stuff. But it seems it literally copies over the directory contents, which is fine, since the then the other app could easily been removed.
And it works with TB non beta, I guess it works with beta for testers a well (though I like the release, and see how it goes). I'll be using non beta for now, a bit behind, I prefer to use releases rather than beta releases, and on f-droid I enabled unstable upgrades...
Anyone played with push vs. pull on TB? On K9, I ended up having both. With the last years changes, it removed the push option selecting from the fetching configs, but the push could be selected/deselected from each folder, and I keep them both. Pulling makes the requirement of not having restrictions on battery usage though.
Not sure if that's getting any better with TB (non beta or beta), and if push has gotten any better. In the end, imap push/idle pretty much depend on the server, and not so much on the client I'd guess...
Thanks !
OK, many thanks !
I'll just do nothing for now then. I hope if at some point a migration is required, it's sort of automatic, f-droid just starts using the Thunderbird app rather than the K9, without user intervention other than performing the f-droid upgrade, one and that would be it. But we'll see.
If you ask, knowing it's the same thing, I would have gone with just one app, replacing the other one, and that would be easier and clearer, :)
Thanks a lot again !
I'm long K9 user, and I was aware of it becoming Thunderbird, but I need to clarify what should I do to easy eventual transition, hopefully without having the deal with all my K9 settings...
Today K9 turned into Thunderbird Beta for Testers, however there's already an app called that way Thunderbird Beta for Testers showing up on f-droid. Thoug the actual ID of each differ (com.fsck.k9 vs. net.thunderbird.android.beta).
What should K9 users do, to avoid losing its current settings (accounts, folder settings, encryption and so on)? Should we remain using the K9 app, and hope that when it goes away then the thunderbird app replaces it somehow automatically and pick all accounts and settings? Should this period when the two apps with the same name coexist be used to install thunderbird beta for testers, hope that it pick all settings from K9 up, and then remove K9?
It's somehow confusing, I was originally hoping at some point K9 just turned into thunderbird, but at once, automatically, without still having two apps, so I'm wondering what's next. For now I'm just still using the K9 app with thunderbird name...
Thanks !
Edit 1: Many thanks for those who replied, at least I don't have a google account, and no need to inherit the OAuth to google, or any other of such account for that matter, although I could remain to K9 I migrated to Thunderbird official release (no beta) without issues. It sounds like a good opportunity to migrate to Thunderbird.
Edit 2: It's sad that the OAuth can not be inherited, though understandable. For those who were just using TB or K9 for a long time with gmail, and the account gets into the infinite dependency loop of requiring a device already logged in, given the stupid security question has no answer, then perhaps it's time to ditch google and look for an alternative, I haven't found anything useful to help around there. Google actually sent a message indicated it has protected the user from herself, and inhibited her attempt to reach her own account. Meanwhile, just staying with K9 seems OK, since it's still there (just a metadata name corrupted but the app ID remained K9 still).
Oh, you mean using divestos-fdroid-repo? Well, before it became part of official f-droid I used to do that. I'm not sure how long it'll take to fix the official f-droid.org builds though, since I'd like to go back to it. The sad thing is that to move from one repo to another one loses all configurations/settings, :( But perhaps it's truly unsafe to wait until the build on f-droid.org gets fixed, if it ever does it.
Anyone aware if there are efforts to get it back building for f-droid.org? Does it depend on the Fennec issue getting resolved?
I use mull from f-droid, and f-droid started showing that when upgrading Today to version 1.21.1. No idea why until this f-droid app upgrade.
I guess the mull issue is the same. Both fennec and mull are at the same version on f-droid, 129.0.2, and both show in their anti-features that the app contains a known security vulnerability, indicating firefox has fixed several security vulnerabilities since 130.
Is it right to hope that once fennec can get distributed on f-droid, then mull will follow? I'm not planning to move away from mull.
Thanks !
cross-posted from: https://lemmy.ml/post/21673875
Cross posting so that the OP realizes this community is alive. I have no issues with qemu, which is installed on my system with no issues.
> Posting here as there doesn't seem to be an active Arch Linux community.
>
> I noticed while updating my system today that I have a bunch of qemu packages I don't recall installing. So I took a look at why they were there and found this:
>
> > Name : qemu-base > Required By : qemu-desktop > Install Reason : Installed as a dependency for another package > > Name : qemu-desktop > Required By : None > Optional For : qemu-base > Install Reason : Installed as a dependency for another package >
>
> It seems like qemu-desktop was a dependency for something I later removed and pulled in qemu-base. However, because of the dependency cycle, they aren't showing up as orphans and has just been hanging around in my system along with 150mb of other dependencies.
>
> Correct?
Edit: Adding clarification on why this was cross posted, and no I'm not the OP.
cross-posted from: https://lemmy.ml/post/21522958
> (cross-posted from: https://lemmy.ml/post/21522265) > > A group of people including Drew DeVault are trying to cancel RMS again, basing their claims on ancient misinterpreted quotes. Stallman may be controversial, but these activists are just acid for the entire Free Software movement.
Darn, and I just got Librewolf upgraded to 131.0, meaning needing to wait further for 131.0.2.
Updated Aug. 28, 2024. Take back your privacy Firefox is rolling out Total Cookie Protection by default to more Firefox users worldwide, making Firefox the
Is this total cookie protection something embedded, not requiring any user intervention? I know with librewolf we get the strict enhanced cookie protection mode, but I don't know if for this total protection there's something required, if not turned on by default...
Greetings !
The work done on real-time Linux has benefitted the open-source OS for years, but it was only this week that Linus Torvalds admitted its last piece into the mainline kernel. Exactly what took so long?
Hello !
I'm wondering if there's some blogging mechanism which would allow some sort of unique digital signature (PGP perhaps) to prevent personification, but which allows non traceable and fully anonymous author. Not looking for blockchain like stuff (apart from the layer Monero adds, blockchains are totally transparent, traceable and non anonymous). Not looking for bigotry, attacking people or anything like that.
The idea is to be able to share ideas, even corporate related, without being afraid of retaliations whether at work, corporations or governments. Expressing something at pubic might bring unexpected consequences, particularly if not aligned by the corporation one works on if that's the case, or might provoke AI, bots, or paid/unpaid people looking around, to include anyone in a particular list, without even warning the writer about it.
So I was looking if such thing is possible, and if it exists. Social networks of course wouldn't be an option, they're not anonymous, and at contrary can be used to cross-reference and trace people.
If such solution doesn't exist, I'm wondering if something based on gnuNet might get close, although gnuNet is not meant to make users anonymous. Or perhaps something based on i2p.
Of course the digital signature should be used exclusively for the blog posting, and can't be associated to any real email, host, or whatever...
Feedback on the blog posts should also be allowed to anonymous people with their own unique digital signatures. But this is harder, since depending on the technology, not sure if moderation would be allowed, or even if it would make sense, in which case, no blog feedback should be allowed, though no feedback is really a down side for blog posts. Maybe allowing just the original post to remove feedback. Some other down side, but that's unavoidable, is the lack of non on thread feedback, meaning giving feedback through email or any other medium, since if that was available would make the writer non anonymous...
If such thing is not available, and eventually based on something like gnuNet or i2p, most probably clients would be needed to write blogs but another one that would offer some sort of RSS/atom functionality for the blog to be accessible from current RSS/atom readers.
XMPP [https://xmpp.org/about/] (aka Jabber) is the community-owned standard for real-time federated messaging. For a quick start click here [https://joinjabber.org/docs/] JoinJabber.org support chat [https://joinjabber.org/support] JoinJabber.org admin support chat [https://chat.joinjabber.org/#/gue...
Hello, !xmpp@lemmy.ml was locked by my mods, and continued on !xmpp@slrpnk.net which is entirely fine given federation, so I guessed I could follow it on the lemmy sort of synced space/community, !xmpp@slrpnk.net, where I can post to the slrpnk community without having an account there. But for some reason recent posts on slrpnk real xmpp community are not showing on !xmpp@slrpnk.net, like if they're not syncing anymore.
Any way to remediate it?
Innovation and privacy go hand in hand here at Mozilla. To continue developing features and products that resonate with our users, we’re adopting a new a
I believe the settings to disable this on Librewolf are set by default...
cross-posted from: https://lemmy.ml/post/12692350
> Anyone aware of a conversations fork with support for unified push notifications? Or a similar xmpp android app with omemo (just the same as conversations' support) and unified push notifications support, available through the official f-droid repor or a f-droid repo if not available from the official ones? > > BTW, I noticed !xmpp@lemmy.ml community was locked. Any particular reason for that?
Also, Converstions requests to set unrestricted use of battery, to use battery under background without restrictions. So it seems unified push notifications would help, though this github issue sort of indicates unified push notifications wouldn't help, so it just tells me there's no intention to include support for it on Conversations, but not that it wouldn't help save battery.
Anyone aware of a conversations fork with support for unified push notifications? Or a similar xmpp android app with omemo (just the same as conversations' support) and unified push notifications support, available through the official f-droid repor or a f-droid repo if not available from the official ones?
BTW, I noticed !xmpp@lemmy.ml community was locked. Any particular reason for that?
Also, Converstions requests to set unrestricted use of battery, to use battery under background without restrictions. So it seems unified push notifications would help, though this github issue sort of indicates unified push notifications wouldn't help, so it just tells me there's no intention to include support for it on Conversations, but not that it wouldn't help save battery.
https://disroot.org provides several decentralized federated services, as email and xmpp, besides other cloud services as well... But not sure if asking here is right or not, but don't know anywhere to ask either...
Is it having a license issue, does anyone know about it? Any status updates?
``` Websites prove their identity via certificates. LibreWolf does not trust this site because it uses a certificate that is not valid for disroot.org. The certificate is only valid for p1lg502277.dc01.its.hpecorp.net.
Error code: SSL_ERROR_BAD_CERT_DOMAIN ```
But also:
``` disroot.org has a security policy called HTTP Strict Transport Security (HSTS), which means that LibreWolf can only connect to it securely. You can’t add an exception to visit this site.
The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website’s administrator about the problem.
```
I also tested with ungoogled chromium and pretty similar thing...
Anyonea aware, and also about disroot saying on this?
Edit (sort of understood already, no issue with disroot at all): The issue only shows up under the office VPN. It seems like disroot is not recognizing the office's cert...
Edit: Solved. Yes it's the office replacing the original cert with its own, as someone suggested. Thanks to all.
Shuttle is a library for testing concurrent Rust code, heavily inspired by Loom.
Anyone aware of a testing framework hopefully integrating well, and abstracting the shuttle testing functionality?
BTW I found rtest, but it doesn't in particular abstracts shuttle at all, it's a fixtures generic framework.
Planning to use shuttle to do MT testing targeting C binded code, and looking for a way to abstract as much as possible the shuttle scheduler trait and such...
Thanks !
COSMIC at LFNW, and updates from January’s alpha checklist.
Floating windows, UI implementation, and compositor improvements for the new COSMIC desktop environment.
cross-posted from: https://discuss.tchncs.de/post/6777822
> Notable changes: > - Tracking improvements. For example, if you use the launcher to launch an application and then switch workspaces, it will still launch in the workspace you opened it from; > - Supported the ext-session-lock protocol, which authenticates the user and informs the compositor when the session should be unlocked > - XDG activation and DBus activation support > - work on HDR > - Ongoing work to package COSMIC on NixOS: tracking issue
August updates on COSMIC DE include new systems for theming, third-party apps, tiling, and more!
Hello !
As Mint is based on Ubuntu, I’m wondering if it will follow the missteps (to me at least) Ubuntu is doing to demote *.deb packages in favor of snaps?
Well that based on Ubuntu 23.10’s New Software App Will Demote DEBs (Apparently) post, and its lemmy.ml discussion.
From all ubuntu based distros, Mint seems not to follow those missteps, but I'm wondering if Rhino will do the same. Actually I don't like Rhino created a wrapper package manager which actually gets snap support as well as apt on the same bucket. But who knows, it might be they won't follow ubuntu on this.
Does anyone know?
My interest on Rhino comes from it being rolling release. But I don't want snap to become the source of common/important packages.
Thanks !