No requirement to have your legal name in Signal. Though, I do wish it was possible to set a different name for group chats though. Happy to use my real name with friends and family, but would prefer an alias for group chats.

I've seen posts by the GrapheneOS team about recommendations against using both F-Droid and Aurora. F-Droid had a decent sized list of issues they raised. One of the key ones they raised against both was that it added an extra person to trust. You always need to trust the code of the developer of the app. No way to avoid that. With F-droid you need to trust that their build system/infrastructure is serving you the app as per the developers code. With Aurora you need to trust the Aurora devs are giving you the app unmodified from Google.

There were other criticisms on F-Droid that they sign almost all apps with their own key rather than the developers. They do offer to serve apps with the developer keys, but it's difficult to setup and not many apps implement it. Google Play also does the same thing though, so I feel this risk isn't that big. Generally they seem to recommend getting apps directly from developers rather than via a 3rd party. They offer Accrescent in the GrapheneOS app store which is designed for this, just pulls files from Github AFAIK.

All that said. I prefer to get all my apps from F-Droid (NeoStore technically) and Aurora for anything without a F-Droid repo.

I'm just using Mozilla's Multi-Account Containers extension. In my work's infinite wisdom I have a total of five "single sign on" accounts. So I have different containers for each account so I avoid the endless "which account would you like to use" and "this account doesn't have access to this resource".

The extension allows me to set specific domains to always open in container X. That covers 90℅ of my use cases. Some sites I need to use different accounts with and for that I have to select which one to use each time.

As I understand it (from my non-legal casual read of the new coverage). Having a monopoly isn't illegal, abusing it is. For Google they found that google was secretly paying companies to not put their apps on other stores. That was what they got the judgement against them. They didn't find anything like that for Apple.

I've never worked directly with FCM, but that's my understanding of the issue. I don't know about WhatsApp. But it may do the same thing as Signal where the notification is just a wake up call and then the app connects directly to the WhatsApp servers to get the actual message.

Signal has stated they won't be connecting with WhatsApp/Meta as it would reduce their user's privacy.

It's not about it being locked. It's being able to re-lock it after unlocking. You can unlock it, flash something like GrapheneOS on to it and then re-lock it. If it's left unlocked, then anyone with a few minutes access to your phone could flash anything over the top allowing them to bypass the standard protections, install any app as at the system level.

I swapped to it at the start of the year. I've been really enjoying it so far. I'm down to a single app which requires Google Play Services installed. As it's only one app I've created a second profile specifically for it and only have Google services installed in that one. I've disallowed it running in the background too, so my phone is never running the services outside the brief times I need to use the app.

Losing contactless payments was a minor inconvenience, but I picked up one of the cases which can fit a couple of cards inside as an alternative.

I really wish vertical tabs could make it in as a core feature to Firefox. Currently I have to rely on manual user style sheet changes to hide the horizontal tab bar.

Got a source for that? Proton isn't able to access to any user emails. I believe Swiss law also makes it illegal for them to provide user information without a (Swiss) court order.

The only case I've heard of that was similar was when the Swiss court ordered them to provide all the info they had on a user. This was the last IP address they logged on from and a recovery email the user had entered. The recovery email is an optional thing the user had set up on their account. They also used this same email address to sign up for a Twitter account. They were able to get enough data from Twitter to identify the person.

1. We get paid $70 per weekday and $105 per weekend. I think it's $140 for public holidays.
2. Eh, it can be a bit annoying at times. It's pretty easy to swap with people as needed. I believe we're allowed to opt out of it too, some of the other devs have. Since we've started it we've tuned our monitoring scripts that false alarms are pretty rare.
3. Any time spent on incidents is rounded up to 15m. Which can make it feel quite unworth it if you get an alert in the middle of the night. Unsurprisingly since they reduced down from an hour it's taken at least 16m to investigate any alert.
4. We've got a decent number of people on rotation that I'm only on call about three weeks a year.
5. Australia