For Signal/Molly, it’s less that the notification is encrypted as I understand it. It’s more the notification content is just “Hey! Stuff happened” for Signal. The app then reaches out directly to the Signal servers to see what’s new. So the message content is never sent via the push notification service (UnifiedPush or Google’s service).
I’ve got a few old PCI cards around somewhere. I should pull one of them out and give them a try at this.
That would require a lot of data privacy concerns to be addressed. Even if it’s an explicit opt-in. The current method uses sample text which can’t include PII. Using user supplied text would almost guarantee they’d get names and other PII in their data set.
I also imagine it’s harder to train the model when you don’t know exactly what the user was trying to type. I.e. Was the swipe detection wrong, or did the user delete the word because they changed their mind on what to write?
The issue isn’t a big deal for the average user. The vulnerability required them to first get your username and password, physically steal your Yubikey, spend half a day using $10-15k worth of electronics equipment to repeatedly authenticate over and over, they then could potentially make a clone of the key.
She’ll independently recycle your matter into more coffee.
I’d say it’s worth doing this regardless to help determine if it’s an application or system issue causing them not to go off.
It’s a good game. Just don’t take the content warning at the start lightly. I’ve tried to finish it twice but haven’t been able to get more than a couple of hours in.
When I migrated emails last time, I setup my old email to automatically forward to the new email. Then on my new email, I setup an automatic label for any email that was addressed to the old address. Every week or two I’d review what was sent to it and either update the email address used or unsubscribe. Eventually it got to a level where I wasn’t getting much at the old email anymore and finally deleted it.
It’s a bit similar. However this goes a bit further than I understand those projects do. They’re creating a game like the original. With this decompilation project, if you use the N64 compiler you will get a ROM which is 100% identical to the original.
The ROM in this case is only used for game assets, like maps, models, and textures. All the game logic in native code. This allows is to be easily modified to add in new features without trying to hack it into a 20 year old game/console.
I haven’t played it properly either. But there’s a community mod called Deus Ex Revision (It’s also on Steam). Which improves some of the graphics, and looks to include a bunch of QoL features.
The page says it captures game audio only by default. But you can switch it to all audio if UPI want to capture something like external voice chat.
I know GrapheneOS implenents Contact Scopes so you can choose which contacts an app can see.
Bridge doesn’t support the calendar yet from what I’ve heard.
It’s not that it’s closed, it’s more that none of the exiting email protocols support a server which can’t read your email (as it’s all encrypted). They do offer Proton Bridge which you can run locally which will handle all the decryption and local mail clients can talk to that as the would any other mail server.
I don’t know off hand if it supports calendar syncing though.
I’d say the main benefit Futo has over Heliboard is that it has native swype typing with its own model (and also own voice typing model).
Still a bit light on customisation (certainly compared to Heliboard), but a nice first release certainly.
Proton is not the same as a VM. It has direct access to your filesystem. It could delete your entire home directory if it wanted to.
Even if it doesn’t look as good, it’ll hopefully include some better APIs that extensions can utilise to improve their experience. E.g. hide the native tabs.
As I understand it (from my non-legal casual read of the new coverage). Having a monopoly isn’t illegal, abusing it is. For Google they found that google was secretly paying companies to not put their apps on other stores. That was what they got the judgement against them. They didn’t find anything like that for Apple.
I’m self hosting both too. MollySocket’s docs are pretty clear that it never gets an encryption key for your account, so it can’t read your messages. It only gets/forwards alerts that something happened on your account AFAIK. So I’m not sure what data it has that’s worth encrypting.