Genghis @ Genghis @monero.town

Posts

0

Comments

52

Joined

2 yr. ago

lmao please give us another chance

There's no evidence of them actually doing this and if they were to do it, its most likely detectable via reverse engineering.

Keep in mind setting the internet permission on gboard then giving other google apps internet access is privacy theatre. This applies to Google certified devices as well because Google Play Services are privileged.

Here is a more detailed explanation: https://privsec.dev/posts/android/f-droid-security-issues/

Accrescent is a new appstore that fixes all these issues but its still in alpha stage and has 11 apps right now.

I replaced fdroid with Obtainium that pulls apks from github,gitlab,fdroid,etc and it has support for auto updates. It's a little better than Fdroid but still has its own issues.

If your referring to GBoard with network perms disabled, its highly unlikely that its using IPC as keylogger. There would be way too much useless data to store and not useful. Theoretically if they were to be a keylogger, the user would have to be in a super high threat model bracket for them to do this, but there no evidence of Google ever doing this.

Also OpenBoard hasn't been updated since August 2022. I recommend using the OpenBoard Fork.

Why Fdroid is not secure:

1. Hosts an outdated APK client.
2. Utilizes an obsolete installation method.
3. Does not take advantage of modern appstore features.
4. Has no moderation.
5. Has no old app deletion.
6. Has an arbitrary FOSS only rule.
7. Does all building and signing themselves.

The Google Play Store is more secure.

It was working fine for me today.

Lol, I did update it and still wasn't working :(

I actually just installed Arch on my gaming PC a few days ago. I've been testing out many games with it and I'm very happy with it. I was hesitant to switch from Windows because I wasn't sure if the game support would be an issue, but thanks to Proton, I finally switched.

No issues using an Intel CPU and Radeon GPU as of now, except the archinstall wasn't working for me so I had to do it the normal way.

Firefox isn't as secure as Chromium browsers due to its internal sandboxing and site isolation being substantially weaker (especially on Linux). If you are on a Linux machine, I recommend you use Brave with no ad blocking extensions because first, it comes with an ad blocker by default. Also, the more extensions you have, your attack surface increases.

If you are on Windows, you should be using Microsoft Edge paired with UBO Lite as it offers the highest security and UBO Lite doesn't have access to the site data. If you are concerned about the telemetry of using Edge, you can turn it off and if you're still paranoid, you will have to switch to Linux at this point.

Android System Webview allows apps to display browser windows in the app rather than taking you to your web browser app. On Android, chromium is used for webview. If you use Firefox as a default browser, the remote attack surface increases because they're two different browsers with different security issues.

Site isolation enforces security boundaries around each site using the sandbox by placing each site into an isolated sandbox. Firefox doesn't have that feature so they're vulnerable to attacks like Spectre.

I haven't been using Firefox for Android because I heard they don't have a WebView Implementation so the firefox browser has to be used beside the Chromium WebView meaning there's an attack surface of two browser engines. I also heard that the Firefox sandboxing and site isolation isn't very good between websites.

I've been using Vanadium WebView and browser because of that.

Been using this open source app for a while now. AirGuard

I've been using this app for about a year. Its been working well so far, but I frequently don't receive spam calls.

Is there an email client that can sort emails by Primary, Social, and Promotions like how the Gmail client does? Also when using another client to send an email, all the email contacts don't get autofilled like how gmail has it.