It's a hardware authentication key. Kinda like a USB flash drive.
You know how some services offer multifactor authentication (MFA), also referred to as two factor authentication (2FA)?
There are typically two types offered: time-based one-time passwords (TOTPs) where you have 30-60 seconds to type in a 6-digit code, and SMS-based where they text you a 4-6 digit code (that also expires within a set time frame).
With a Yubikey, you gotta plug in the Yubikey into your computer or phone. Or, there are some models that use near field communication (NFC) and you just need to bring it near the device you're tryna authenticate.
So rather than typing in those codes you get either from SMS or your authenticator app, you use the Yubikey as your authentication method.
I wanna preface this by saying that I run GrapheneOS (GOS), so idk if that has anything to do with the fact that nothing has flagged my version of KDE Connect. If it's a Google Play Services (GPS) thing, then:
I guess it depends on whether you run GPS on your GOS phone, or
Maybe it doesn't even depend on #1, since GPS runs as unprivileged. I put KDE it on my GPS profile, and didn't get any notification about this.
Guessing this is just a Play Protect thing.
Nevertheless, if you're installing FOSS apps, try installing them via Obtanium instead of the Google Play Store.
You can simply copy and paste the source code URL into Obtanium, and it'll grab the APK, as well as notify you when there's updates.
It supports F-Droid, GitHub, GitLab, and other sources.
There are a couple people who are too lazy to get Signal, and they got iPhones, so I set up an iMessage server to forward messages to my GrapheneOS phone.
But the communication there is extremely sparse and surface level. It's basically just a touch point. The real conversations all go through Signal.
You should vocalize it to the owner (or at least management) if you can. You'd be surprised what comes of it.
I did this once with a restaurant/bar owner, and she was very understanding. Once I took the time to explain how I didn't wanna be subjected to everything that a setup like that brings, she empathized and actually got a standalone website.
Many people aren't aware until you make em aware. And whether they feel the same or not from a consumer standpoint, at least they'll know that there's people out there who do care, and it affects business. And usually, if it affects business, it doesn't matter what their personal feelings towards it are. A good business owner will be sure to adjust because they learned something new about the market.
Other names are blanking right now off the top, but in The Social Dilemma, the engineers and ex-execs talk about not allowing their family members (especially kids) to be on the platforms they themselves built. I specifically remember an Instagram engineer (Bailey?) and a VP/president of Pinterest.
Sometimes you gotta (knowingly) be a little crazy, a little delusional, juuust enough to keep going... otherwise, if it feels like a lost cause, then there's no motivation.
As I got older, I was like damn... Some people work so hard to make things worse, I gotta work at least as hard to combat it lol
Unfortunately, too many hear "encrypted" and assume it's automatically secure or private no matter what.
Facebook told Gizmodo that WhatsApp can read messages because they’re considered a version of direct messaging between the company and the reporter. They added that users who report content make the conscious choice to share information with Facebook; by their logic, Facebook’s collection of that material doesn’t conflict with end-to-end encryption.
Facebook wouldn't have acquired it if they didn't have plans to squeeze the living soul out of it. In due time. Their hope is that by then, all alternatives will be wiped out, and with it being so integrated as a daily driver, we'll be paying a subscription, with no E2EE, sharing metadata (which btw is sometimes more valuable than the content of your messages) unwillingly.
What's funny/crazy too is that all the top execs (including Zuck himself) use Signal. That's the irony of the digital world we live in: the closer you are to these technologies, the more you learn, and the less subjected to it you actually wanna be.
Yeah exactly. All those Google and Facebook tracking pixels are still firing away.
This is merely a privacy facade. What they're really doing is double dipping (same way Twitter's doing), by charging a subscription, but still data mining and harvesting behind the scenes.
The adage of "if you're not paying for the product, you're the product" is gone. Now you're both.
It's a hardware authentication key. Kinda like a USB flash drive.
You know how some services offer multifactor authentication (MFA), also referred to as two factor authentication (2FA)?
There are typically two types offered: time-based one-time passwords (TOTPs) where you have 30-60 seconds to type in a 6-digit code, and SMS-based where they text you a 4-6 digit code (that also expires within a set time frame).
With a Yubikey, you gotta plug in the Yubikey into your computer or phone. Or, there are some models that use near field communication (NFC) and you just need to bring it near the device you're tryna authenticate.
So rather than typing in those codes you get either from SMS or your authenticator app, you use the Yubikey as your authentication method.