• 74 Posts
  • 87 Comments
Joined 1Y ago
cake
Cake day: Jun 29, 2020

help-circle
rss

Ohh, because of being Qt, I tend to prefer Qt, :) Dino is mentioned not to support video here: https://joinjabber.org/clients/gnulinux. As per omemo supporting clients: https://en.wikipedia.org/wiki/OMEMO#Client_support, well psi and psi+ are mentioned, and are the only 2 Qt ones, :) I can use Gajim, though it’s python + GTK, and the “official” omemo (gajim-plugin-omemo) plugin is not in Artix/Arch official repos (though python-axolotl might do, I don’t know). Sadly, I don’t like depending on qt-webengine (blink based), so if using psi, most probably I’d go for the non-webengine version, though not sure what limitations it would bring…

That server is hosted in Germany, while joinjabber.org is hosted in both France and Germany. Then I wouldn’t know… Perhaps the France hosted one… Can’t tell… In the end all would be central, since not self-hosting… I can’t tell, any preference?


I’m wondering, are there Switzerland (ch) non profit xmmp hosted server supporting omemo encryption? Also, what about psi as a client for gnu+linux? I guess several would self host, but some, including me, can’t… That said, I’d prefer Switzerland hosted servers over France hosted servers… In the end, if not self hosted, then it’s a centrally hosted mechanism as well, and most probably with even less users, who knows, but worth exploring for sure…


see my question about Jami and other Matrix hosts…


how about jami? it’s distributed, no need to self host, and encryption is native. Also, wouldn’t other Matrix hosts, other than Matrix itself, make it less for-profit?




I can’t, but not just because of being the best, but because to me there’s no suitable solution for email services, unless self hosted. See, if interchanging emails with someone out of those services the emails are by definition non private.

On this particular topic, of not using google push notifications, any email client not doing so will do, like K9. And I was commenting just on that, not the whole privacy discussion, which is really a hard topic when talking about email.

An interesting solution would be one where you can set multiple email servers, on computers and phones (so they have to be somehow light enough), the servers synchronize between all of them when available (the solution should consider some devices being down, but at least one running at least at any given time), and the client being attached to the local device server only. Of course, support for GPG encryption on the client side is a must. Such a solution perhaps might be an interesting box… But as with self hosting servers, security is hard, and having email servers is no exception, having to take into consideration additional solutions (firewalls, containerization, isolation, etc) to prevent attacks… As soon as one has to trust a service provider, then it’s hard to say your emails are private, cause the percentage of encrypted email will hardly ever get close to 100%… And for just a limited amount of people you really care, perhaps any service (again, not the big corps) would do, as well as any client, as long as the client and those you care encrypt through GPG…


ohh well, Thunderbird, KMail and K9 allow encrypting. Some people say that very few people use GPG to encrypt emails, and one can only encrypt to others also using GPG. But guess what, the same is with Proton and Tutanota, if you email to users out their services, it’s exactly the same, :(

But encryption is a different argument than non using google push notifications. It’s sort of a different topic… And unfortunately, I haven’t found a good standard way to get privacy on emails. To me, using any service, as long as not big companies, would do just fine, if you encrypt with those close to you, helping them setup GPG for encryption… But again, that’s a totally different discussion, :)



Imap email services have supported email push notifications for years, isn’t it true? Why an email app would require google push at all? Thunderbird has supported push notifications on the desktop for years, which are not related at all with GCM. And K9 supports as well use imap push notifications, which are not related to Google at all. So I’m unclear whether this sound more like marketing, than a real motivation to use Tutanota. There might be other motivations to use Tutanota, but if using imap (avoiding big companies apps, which more probably rely on GCM, like gmail, hotmail, outlook, yahoo, mac, and so on) pretty much any email client should be able to just get away with imap push, which has been supported for years.

https://k9mail.app/documentation/faq.html#anchor14

https://superuser.com/questions/1066596/does-mozilla-thunderbird-support-push-notifications

https://en.wikipedia.org/wiki/Push-IMAP



OK, I see. When you click on a display name, it’ll take you to the user account any ways, doesn’t it? So using a display name doesn’t prevent looking at your username, does it?

I’ll think about what I should do then, whether just using a different display or deleting my account to create a new one (in which case my whole history won’t belong to me anymore).

Thanks !


how to change account username?

I want to change my account username, but I see no option other than “delete account”, :( …



axolotl should work as a client for Signal. I’m still missing a Matrix client as complete as element.io that would work on a gnu/linux phone


I’m not concerned about the ubuntu issue. I’m sure it’ll be figured out.

I’m concerned about HW being locked out to a particular cert, otherwise not working. Whatever things MS has done in the past, didn’t prevent HW to be able to be used with an entirely different OS. I hope that doesn’t become the norm/trend for most consumers HW, and only things like surface or MS specific HW, which is still sad in the end, since the HW might be attractive for non MS users as well…


It seems something new, ubuntu using MS certifates for secure boot on 21.04 release (apparently not allowing installing anything else than official ubuntu, not sure if able to disable secure boot or not, though this is just my interpretation, since the article is not that clear). Also, what seems more serious is new ARM based computers to be sold with windows, which won’t be able to disable secure boot at all, and this seems really bad if one wants to try ARM based computer rather than X86 ones, :(



https://www.theregister.com/2021/04/29/stealthy_linux_backdoor_malware_spotted indicates the backdoor is not part of original systemd code, but some how instanced there…


this clarifies further: https://www.theregister.com/2021/04/29/stealthy_linux_backdoor_malware_spotted yeah, I was looking for what piece of SW was offering the backdoor, and if there was any attempt to remove it. It seems systemd is where the backdoor is placed, but it’s not a systemd’s vulnerability, but rather where the backdoor gets instanced. I’m still wondering how to prevent that backdoor getting instanced in the 1st place, and how come systemd was the target and not anything else like linux itself, wouldn’t that reflect some weakness, like being easier to place backdoor there, than any other piece of SW?





Any more info on this one? Is this actually a linux (the kernel) vulnerability, or in other components of a GNU+Linux system, like encryption algorithms, or perhaps systemd… The files shown as infected are almost all systemd and one gvfsd, but I can’t figure what one can wait to be patched for example



@je_vvtoPrivacy ToolsFreetube
7
edit-2
20d

I use it a lot, but I still wonder how come javascript is the only thing used for portable solutions, and what’s worse, electron. If there was a multi-platform native Qt alternative that would be my preference, and if not at least flutter (though not sure if flutter can be used for free SW solutions), which is closer to native than electron, which is in essence chromium, :(

The same goes for desktop element and signal apps… and some privative ones I’m forced to use such as slack, :(















Moderates