Redjard

joined 1 year ago
sorted by: new top controversial old
Robot racism? in c/facepalm@lemmy.wtf
[–] Redjard@lemmy.dbzer0.com 62 points 3 weeks ago (14 children)

The actual reason is space-flight aesthetics, right?
Space stuff itself being white for insulation purposes.

Oh I'm gay now. Huh. in c/microblogmemes@lemmy.world
[–] Redjard@lemmy.dbzer0.com 11 points 3 weeks ago

For e621 consumption, would you recommend chips, chinese food, or something else?

A tip for Android users. in c/privacy@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 27 points 1 month ago (1 children)

Careful, Google is currently forcing apps to migrate from SafetyNet to PlayProtect!
SafetyNet is used by tons of security theater apps like banking 2FA. It is an API of play services.
PlayProtect is basically the same but you have to talk to it though google play. This is a blatant move by google to make exactly what OP is suggesting impossible, and means that if you do this, you may soon see many apps break that you are forced to use.

A web browser extension for accessing I2P network anonymously in c/privacy@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 3 points 1 month ago

Yes, those could be detected.
Ill see how large that portion is on my system in a bit, but I would expect it to come out as the minority.

Non-detectible ones I can think of rn:

  • Tab muting manager
  • VPN manager
  • link redirect skippers
  • stats printers, like a tab counter
  • dynamic shortcuts, like opening the archived version of the current page on archive.org
  • old reddit redirect
  • cookie managers

Many more of the ones you listed won't be detectable on most websites.

userscript managers (grease/tamper/violentmonkey etc.)

A userscript manager is by definition detectible only on pages you define or install a userscript for. Even then, modern userscript managers like tampermonkey are running scripts in a separate scope that is completely sandboxed from the actual websites js context, you can't even pass an object or function to the website and access it there, it will fail.
Youtube has actively fought some userscripts and failed, which they probably wouldn't have if those userscripts were detectible.

User theme managers should be similar, but I can't comment on them as I don't use any.

page translators

Translators are only detectible when enabled.

addons serving in-browser ads

Why would you have an addon that serves ads?

site-specific UI improvements (RES, SponsorBlock, youtube/SNS tweaks)

Are site-specific, i.e. not detectible anywhere else

privacy blockers (CanvasBlocker/JShelter/etc.)

Please don't use those anymore, use only uBo. Same for uMatrix.
uBo is pretty good about not being detected, for obvious reasons.

A web browser extension for accessing I2P network anonymously in c/privacy@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 0 points 1 month ago (2 children)

I found this is the only thing I found on a quick search.
It would indicate that chrome does disclose addons (so maybe don't use it for yet another reason).
For Firefox you can only look for changes typically performed by an addon, something like adblock should be detectible but networking layer stuff like an I2P tunnel should definitely not be.

Most firefox addons dont even have the permissions needed to change anything a website could observe.

A web browser extension for accessing I2P network anonymously in c/privacy@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 3 points 1 month ago (4 children)

I don't see any extension info and I don't see how there could be any. There isn't any api for gaining this info in ff at the very least.

There are other issues, but most extensions can in fact not be detected by websites, unless they specifically add something that makes them detectable.

Signal under fire for storing encryption keys in plaintext on desktop app in c/privacy@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 4 points 1 month ago

TPM isn't all that reliable. You will have people upgrading their pc, or windows update updating their bios, or any number of other reasons reset their tpm keys, and currently nothing will happen. In effect people would see Signal completely break and loose all their data, often seemingly for no reason.

Talking to windows or through it to the TPM also seems sketchy.

In the current state of Windows, the sensible choice is to leave hardware-based encryption to the OS in the form of disk encryption, unfortunate as it is. The great number of people who loose data or have to recover their backup disk encryption key from their Microsoft account tells how easily that system is disturbed (And that Microsoft has the decryption keys for your encrypted date).

Privacy concerns with DHCP (DHCP fingerprinting) in c/privacy@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 2 points 1 month ago

The default on android is to give every wifi network its own random but static mac.

40 Kilobyte Rule in c/196@lemmy.blahaj.zone
A tool for encrypting files using time-lock encryption and password in c/opensource@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 2 points 1 month ago (1 children)

What is the threat szenario?
If you are smart about parallelization and have access to custom hardware, couldn't you turn 5 days into 1 hour or less?

Solutions for backups in c/degoogle@lemmy.ml
[–] Redjard@lemmy.dbzer0.com 3 points 1 month ago (1 children)

Syncthing is excellent for phone sync.
What I did was have it running on a system in the network of the nas, mount the nas on that system, and place the backups folder in the nas.

If you have a system that reliably runs, or can get syncthing running on the nas, I recommend doing that.
Synology has docker iirc, there aught to be a syncthing container.
Else, slapping a pi zero into the nas' network should do the trick and be fully independent of what the nas is.

Sonic's googles in c/games@lemmy.world
[–] Redjard@lemmy.dbzer0.com 5 points 1 month ago

Neon Genesis Sonic

view more: ‹ prev next ›