This is just one of the comments on the Revolt E2EE issue, I guess the author felt so proud of their opinion to make it into a blog post, I wouldn’t say anything if they at least revisited the whole discussion and tried to make a reasonable summary.
The argument provided in the article against features is simply “too hard to develop, too hard to maintain, nobody cares enough”.
If nobody cared, nobody would go on Matrix, if everything that was hard to develop were just dropped before even trying, we would have stopped at the hello world (not implying I’m not a lazy developer, but I surely don’t want to imply that there aren’t brilliant people out there who can undertake scarily big tasks).
Giving another feature as a sort of replacement: federated identities, is not a replacement at all, it’s a completely different scope. I just can’t empathise with the point that they try to make
- 4 Posts
- 66 Comments
0·3 months agoRoll the credits boys 👏👏
when during job interview the recruiter ask if you code on the weekend
I think it’s more to see if you’re actually passionate about what you do and you don’t “just” do it for work, which definitely is a bit of a twisted view, when on average you’ll already be spending 40 hours a week doing that, but I think people tend to make this sort of evaluation, because people who love programming so much to also do it on their free time will usually be better, since they simply have more experience than those who only do what they’re assigned to do
I rudely agree with your opinion
Let the Zucc feel the heat
mullvad for looking shit up on ecommerce sites with new ID each time
Is it sufficient? I’d always assumed it was easily targetable with the IP so I started using TOR for that purpose
The tool presents a significant privacy risk, and shows that people may not be as anonymous in the YouTube comments sections as they may think.
I don’t understand how this makes the privacy on YouTube any worse when all the information it sources from is already public, this is just automated doxxing, which, while we’ll agree to be unethical, was never a privacy violation, it is just the consequence of the actions of who posted the information to begin with.
Also does it really violate YouTube’s privacy policy? It’s new to me that service consumers can be subject to the policy when it’s not the third parties that YouTube actively sends the information to, that sounds more to me like Terms of service, which are hardly enforceable fully (thank goodness, so we can have our yt-dlp and PipePipe)
That’s different, it’s technically possible not to comply with that statement because the location data is sent and stored, it takes just not deleting it to violate that, it just evaluates to a pinky promise that has to be verified by inspecting their systems.
This, on the other hand, is a technically verifiable claim, the code is open and it all runs locally on the same machine, the TEE will give the green light and that’s how apps will accept your biometric verification, the only thing that might be suspicious is with the implementation of the TEE, I don’t know if every manufacturer keeps the data it gets on the device or secretly communicates outside, this unknown is also a good reason to use a Google Pixel device if you care about thatGoogle Pixel phones use a TEE OS called Trusty which is open source, unlike many other phones.
From the Privacy Guides Mobile phones page
I’m all for not giving more data points where it’s not needed, but is this as bad it seems? All biometric data remains stored on the device, it isn’t sent to Google, or any app for that matter, that’s how the API works
0·5 months agoDo you remember where you read that from? I thought having qi certified equipment sufficed
Guess I’ll try to see if anyone I know has it, otherwise I might buy another one and see
If we take only the battery pack into consideration, where it directly takes power from its own circuit and delivers it through the coil it has, I’ve tried with and without case on the phone and it didn’t look like it made any difference, always around that wattage, is it not strange that it wouldn’t even be able to reach half the maximum speed in pretty much optimal conditions?
Proton explicitly enabled keeping 2 free accounts on the mobile apps quite some time ago, probably more than a year, so they’re cool with you having 2 like that.
If you get more, you’ll be hampered at the application level, but, unless it’s like a load of accounts for spam purposes, having just a handful shouldn’t get you banned, I believe
Math is a human right
Oh I see, my bad, I just remembered wrongly from back when I used both repositories alongside each other
Interesting, I wonder if the 2 facts are somehow related, I don’t know what their stance was on the free software side of things, though I may have some emails saved from GitHub notifications that say something, I’ll look for those.
Edit: I don’t have any on the topic of F-droid inclusion, unfortunately, just one about language support
We are a small team and are not looking for people who can contribute to the project
This bogus argument is always big no no for me, clearly if they’d just been a small team they would not only accept, but enjoy whatever kind of contribution they can get from external people.
They just don’t want to deal with the community and do whatever they want, I’m guessing.they don’t want our help, their loss
Spot on!
Glad to know I wasn’t alone on this, it is a shame really
Honestly if you don’t want to think too much about it, go with Briar, it’s way more battle tested, while Berty seems like it hasn’t seen much adoption since it’s younger, both have a bit of development activity I saw, so I can’t say if one is more or less maintained than the other
As for the actual question of gauging which has the better cryptographical implementation, I don’t know either, beside the most surface level information I know very little.
I believe if you want to look into it, you’ll have to start from their whitepapers
100% agreed, use the right tool for the right job, that’s what the author doesn’t get