It's usable (?) as a toy: numerous gui inconsistencies and lack of security isolation [0]. Can't say whether the of lack funding (move to Cockpit from Red Hat) is the reason, or maintainer is just an obstructionist…
Is this some kind of FUD? Shady sponsors (if there is any) doesn't matter when transparency is in place. Want to reveal malicious intent? Provide a PoC. Only hardware that supports bootloader relocking are Pixel…
"These no life where data broker isn't needed"
Every time GrapheneOS "just works" should be mentioned, because some ecosystems are straight hostile to user-controlled systems.
Its a renderer. It bakes live OSM data once very few weeks.
Because exposed, non-private, abused by-default is a business model. The company is incentivised to not provide restricted access - otherwise you can't have a cut from apps revenue. It's defective by design.
Outdated, but gives the general idea: https://github.com/nandan-desai-extras/PrivacyBreacher
Memory safety is good, but does not protect from every threat. In this day and age infrastructure operators should familiarize themselves with proactive defenses, MAC: SElinux and AppArmor. It required much friction…
Attack surface of this thing gives me existential dread.
> Freexian aims to keep the updates available for individual users and non-profit organizations.
Best among existing. Anti-fingerprinting field is still in it's early stages. I wouldn't say Tor Browser is the best because it requires custom configuration to be usable conveniently, which will make the connection…
You could test with this: https://github.com/abrahamjuliot/creepjs Does it store the data? Unknown. The best browser for protection is https://mullvad.net/en/browser because it makes the connection uniform, to better…
pmOS device compatibility matrix: https://wiki.postmarketos.org/wiki/Devices
Therapy booth from 1971: https://www.youtube.com/watch?v=U0YkPnwoYyE
Isn't owned by advertising company. https://en.wikipedia.org/wiki/Startpage#Merger_and_recent_hi...
http://youmightnotneedjs.com
Same. I sighed when they continued to run telemetry after disabling it - I blocked it (don't care if it's a dry run or not). Bit the bullet when they discontinued FF/TB in favor of snaps - installed them from tar. But…
Updates are a necessity, and they don't have to be feature-breaking. More distributions need to adopt security-only channels.
I'm trying to solve the lack of tools for AppArmor profile composition: https://github.com/nobody43/apparmor-suggest
It's a symptom. Seems that label-based MAC is too tightly coupled with other parts of the system. With path-based, there's no need to disable it (entirely) because each part have their own separated strict scope.
AppArmor is not less restrictive, it's less fine-grained, at the current stage of development at least.
It's usable (?) as a toy: numerous gui inconsistencies and lack of security isolation [0]. Can't say whether the of lack funding (move to Cockpit from Red Hat) is the reason, or maintainer is just an obstructionist…
Is this some kind of FUD? Shady sponsors (if there is any) doesn't matter when transparency is in place. Want to reveal malicious intent? Provide a PoC. Only hardware that supports bootloader relocking are Pixel…
"These no life where data broker isn't needed"
Every time GrapheneOS "just works" should be mentioned, because some ecosystems are straight hostile to user-controlled systems.
Its a renderer. It bakes live OSM data once very few weeks.
Because exposed, non-private, abused by-default is a business model. The company is incentivised to not provide restricted access - otherwise you can't have a cut from apps revenue. It's defective by design.
Outdated, but gives the general idea: https://github.com/nandan-desai-extras/PrivacyBreacher
Memory safety is good, but does not protect from every threat. In this day and age infrastructure operators should familiarize themselves with proactive defenses, MAC: SElinux and AppArmor. It required much friction…
Attack surface of this thing gives me existential dread.
> Freexian aims to keep the updates available for individual users and non-profit organizations.
Best among existing. Anti-fingerprinting field is still in it's early stages. I wouldn't say Tor Browser is the best because it requires custom configuration to be usable conveniently, which will make the connection…
You could test with this: https://github.com/abrahamjuliot/creepjs Does it store the data? Unknown. The best browser for protection is https://mullvad.net/en/browser because it makes the connection uniform, to better…
pmOS device compatibility matrix: https://wiki.postmarketos.org/wiki/Devices
Therapy booth from 1971: https://www.youtube.com/watch?v=U0YkPnwoYyE
Isn't owned by advertising company. https://en.wikipedia.org/wiki/Startpage#Merger_and_recent_hi...
http://youmightnotneedjs.com
Same. I sighed when they continued to run telemetry after disabling it - I blocked it (don't care if it's a dry run or not). Bit the bullet when they discontinued FF/TB in favor of snaps - installed them from tar. But…
Updates are a necessity, and they don't have to be feature-breaking. More distributions need to adopt security-only channels.
I'm trying to solve the lack of tools for AppArmor profile composition: https://github.com/nobody43/apparmor-suggest
It's a symptom. Seems that label-based MAC is too tightly coupled with other parts of the system. With path-based, there's no need to disable it (entirely) because each part have their own separated strict scope.
AppArmor is not less restrictive, it's less fine-grained, at the current stage of development at least.