22·
11 months agoOn Android its NewPipe. No ads, free, I can create playlists, and I dont have to store anything local.
- 0 Posts
- 323 Comments
Joined 1 year ago
Cake day: August 8th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Firefox (invidious). Its free, no ads, and I dont have to store files locally.
Likewise between Nepal and India
Please dont just post screenshots of text. Post a link to the content.
This sort of thing happens dragnet. And mullvad users are definitely a group to be targeted. Dont assume OP isnt a refugee or journalist and give them bad advice that could get them killed
That’s why you download the key from multiple distinct domains from multiple distinct locations using multiple distinct devices and veryify their fingerprints match. If the key/fingerprint is only available on one domain, open a bug report with the maintainer.
No, you’re confusing two vectors of attack. I’m saying that if you fan trust the vendor, then you’re still at risk from downloading malicious software that was manipulated between the vendor and you (man in the middle attack), unless you verified a signature using a key stores offline (note https is still vulnerable because the keys are stored online)
Https is vulnerable to loads of attack. That’s why we sign packages.
5·11 months agoOf course it matters.We dont want to support or contribute content to a service that could go down one day and all the data is lost because we can’t fork it.
Homebrew is extremely insecure. It doesn’t verify package signatures, so its just as bad as the “just donloaf some sketchy untrusted binary off a website” approach
You might want to say why or you’ll get downvoted. Spoiler: its not safe and this is how you get malicious software on your computer
ChatGPT is garbage in garbage out. It’ll probably tell you to curl a file off the internet and pipe it to bash as root.
More Performant, yes. More Secure? Not sure about that
They probably lowered it became mullvad is a security company and downlaoing .deb files from the Internet ia a vector for attack
Yes, there is. You’re risking downloading malicious software.
Its more secure to go through a package manager. Checking signatures is important.
checks alternativeto
2·11 months agoYou should ask on the OSM self-hosted stack exchange. It will be better indexed by search engines so others can find it
4213·11 months agoBroom
This. Yubikey is not libre hardware, not sure why they’re so popular. I’d avoid any closed-source hardware for security devices. Its a bad idea.