177
submitted 10 months ago by citytree@lemmy.ml to c/privacy@lemmy.ml

Examples of passive defenses against surveillance:

But why not actively combat surveillance instead of passively defending against it? Examples of active combat:

We must poison the data of those who are violating our privacy. Let us waste their time, increase their data storage costs, and waste their processing power. Let them drown in an ocean of data. Let them search for tiny needles in huge haystacks, with no way to distinguish between needles and hay.

Some ideas:

  • Sending fake data to Google Analytics (How does Google Analytics prevent fake data attacks against an entity's traffic?)
  • Create fake contacts lists to mislead those who are building social network graphs.
  • Encrypt lots of worthless data, store them in the cloud or send them by email. If the encrypted data is intercepted by any nosy entity, they will have to waste storage space while waiting to be able to break the encryption.

What are some other possible methods?

Let us turn the tables on those who have been violating our privacy. Why do we have to be on the defense? Let us waste their resources in the same way that they are wasting ours!

[-] citytree@lemmy.ml 8 points 10 months ago

Source for your claim? Otherwise it’s fud

I am not making any definite claims. I am just wondering whether or not the reasoning in the question makes sense. If it does not, please tell me why the reasoning is wrong. Thank you.

8
submitted 10 months ago* (last edited 10 months ago) by citytree@lemmy.ml to c/firefox@lemmy.ml

I am using Firefox ESR on Linux. Does it make any sense to disable hardware acceleration for security reasons?

Whereas Firefox is open source, many hardware drivers, and most computer hardware are not. Enabling hardware acceleration in Firefox means using these non-open-source components, which could be a security risk. My impression is that bugs in drivers and hardware are able to cause far more damage than ones in userland software. Does this reasoning make sense?

6
submitted 11 months ago by citytree@lemmy.ml to c/signal@lemmy.ml

For those who have installed Signal Desktop in Linux, do you use an AppArmor profile to harden the program? If so, can you share your AppArmor profile for Signal Desktop?

[-] citytree@lemmy.ml 14 points 11 months ago* (last edited 11 months ago)

When ZipoApps adds advertisements and telemetry to a future version of the Simple Mobile Tools apps, will my Google-Play-installed apps be automatically updated to the newer version with ads and telemetry? I don't want ZipoApps to get any of my data.

[-] citytree@lemmy.ml 9 points 1 year ago* (last edited 1 year ago)

What's to stop the installer on Linux from configuring the service such that the service always runs on boot? e.g. systemctl enable malware.service.

[-] citytree@lemmy.ml 10 points 1 year ago

If you did not enable end-to-end encryption for your WhatsApp backups on Google Drive, the US government could possibly compel Google to hand over your encrypted (but not end-to-end encrypted) backup, and compel Meta to hand over the decryption keys for the backup.

Details about how WhatsApp backup works: The Workings of WhatsApp’s Backups (and Why You Should Enable End-to-End Encrypted Backups).

26
submitted 1 year ago by citytree@lemmy.ml to c/3dprinting@lemmy.ml

Are consumer level 3D printers able to print plastic objects of similar quality to ones produced using injection molding? Or is 3D printing useful mostly for the prototyping stage before a design is finalized and a steel mold is produced for injection molding?

44
submitted 1 year ago* (last edited 1 year ago) by citytree@lemmy.ml to c/privacy@lemmy.ml

I am using Mozilla Firefox as my web browser. I have configured it to clear cookies, active logins, form & search history, and offline website data when I close Firefox. Should I also configure it to clear the cache? What are the privacy implications if I don't clear the cache?

EDIT: additional information:

  • My goal is to reduce fingerprinting and tracking by websites.
  • I use Mozilla Firefox on my personal laptop that almost never leaves my residence. The laptop has full disk encryption. I am the only user of the laptop.
  • I don’t erase my web browser history. I want to keep browser history for my future reference.
18
submitted 1 year ago by citytree@lemmy.ml to c/opensource@lemmy.ml

I have a "Digipass GO 6" hardware token generator that is issued by my bank. Is there a way to import the token generator into an open source authenticator app such as Aegis Authenticator?

I suspect that Digipass uses a proprietary TOTP algorithm, but I am hoping that there is an open source software solution.

[-] citytree@lemmy.ml 5 points 1 year ago* (last edited 1 year ago)

People like giving recommendations like Super Tux Kart that haven’t aged well and don’t play well.

What's the issue with SuperTuxKart? I thought that it was great fun when I played it.

[-] citytree@lemmy.ml 6 points 1 year ago

Time to use Framatalk instead of the main instance. Framatalk is an instance of Jitsi Meet.

[-] citytree@lemmy.ml 13 points 1 year ago* (last edited 1 year ago)

LocalSend is not exactly an alternative to AirDrop. In LocalSend, two devices must be connected to the same LAN to share files with each other. In AirDrop, no LAN connection is necessary. Files are transferred directly between devices, similar to Bluetooth file sharing between devices.

[-] citytree@lemmy.ml 20 points 1 year ago

Why would I use this ChatGPT thing when I can self-host Llama 2 or Falcon, which is free and open source?

6

I am looking for a target-maturity bond ETF for UK Gilts but I couldn't find any by using an internet search engine. I would like something similar to iShares iBonds Dec 2033 Term Treasury ETF but for UK Gilts instead of US treasury bonds. Does such an ETF exist? If not, what are the practical alternatives for getting UK government bond exposure that have the following characteristics:

  • Easy for foreigners to purchase
  • Easy to liquidate
  • Has a fixed maturity date
  • Has a low minimum investment requirement (e.g. less than 1000 GBP).
1
submitted 1 year ago by citytree@lemmy.ml to c/lisp@lemmy.ml

cross-posted from: https://lemmy.ml/post/3549323

John Cowan has resigned as chair of the R7RS-large project.

3
submitted 1 year ago by citytree@lemmy.ml to c/scheme@lemmy.ml

John Cowan has resigned as chair of the R7RS-large project.

7
submitted 1 year ago by citytree@lemmy.ml to c/android@lemmy.ml

My mother uses a prepaid phone plan where mobile data usage is charged by the megabyte. It is currently not cost-effective to switch to a monthly fixed-cost subscription plan.

  • When she is at home, she should:
    • Switch off mobile data.
    • Switch on WiFi (because her home WiFi has a fixed monthly cost).
  • When she is outside home, she should:
    • Switch on mobile data (so that others can contact her using messaging apps such as Signal and WhatsApp).
    • Switch off WiFi (to conserve battery).

The problem: she often forgets to do the above. Sometimes she leaves home without switching on mobile data. Sometimes she accidentally uses lots of mobile data when at home.

Is there an app that can automatically switch on/off mobile data and WiFi based on the phone’s location? Location should be detected based on all the following data: latitude/longitude coordinates (if location is enabled on phone), WiFi networks in range (if WiFi is enabled on phone), and cell tower signals (if airplane mode is not on).

We would strongly prefer to use a privacy-respecting open source app for this. Phone: Samsung Galaxy A series. OS: Android 13.

58
submitted 1 year ago* (last edited 1 year ago) by citytree@lemmy.ml to c/books@lemmy.ml

I have been reading about Hachette v. Internet Archive, but as a layperson with little knowledge about legal matters, I was not able to completely understand the current situation.

Do the court cases mean that the Internet Archive is about to be forced to shut down its e-book lending system? If so, would such a shut down affect US users only, or would it be worldwide?

1
submitted 1 year ago by citytree@lemmy.ml to c/scheme@lemmy.ml

R7RS-large has been in development for a really long time (10 years?). What is the status of the standardization effort? When is the estimated time of completion of R7RS-large?

[-] citytree@lemmy.ml 10 points 1 year ago

Behold the Rise of the Cybermen! Elon Musk is the John Lumic of our world. Humanity will be upgraded! https://piped.video/watch?v=TQs3gVobcfg

[-] citytree@lemmy.ml 8 points 1 year ago* (last edited 1 year ago)

If and when Signal is packaged for F-Droid, how is the British government going to stop people in the UK from using Signal?

[-] citytree@lemmy.ml 5 points 1 year ago

What is meant by “non-free network service” in this context?

Geometric Weather gets its weather data from AccuWeather and OpenWeatherMap, which are not open source weather APIs. In contrast, omWeather gets its weather data from Open-Meteo, which is open source.

[-] citytree@lemmy.ml 6 points 1 year ago

Looking forward to greater support for "driverless printing" in more Linux distributions, especially via IPP-over-USB. This would allow most consumer-level printers to be used directly from Linux without needing proprietary drivers and/or explicit Linux support from the printer vendor. This solves one of the common pain points when using desktop Linux at home.

view more: next ›

citytree

joined 1 year ago