Privacy

42158 readers

669 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

105

My apps (lemmy.ml)

submitted 4 days ago* (last edited 2 days ago) by ZinQ@lemmy.ml to c/privacy@lemmy.ml

148 comments fedilink hide all child comments

My setup on GrapheneOS with all the exploit protections on except some off for apps with compatibility issues. Thoughts?

you are viewing a single comment's thread
view the rest of the comments

[–] Igilq@szmer.info 3 points 3 days ago* (last edited 3 days ago) (1 children)

Yes, ironfox is good too (i forgot to mention it) but on grapheneos you will want to end up using their browser

Avoid Gecko-based browsers like Firefox as they're currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn't have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android. This is despite the fact that Chromium semantic sandbox layer on Android is implemented via the OS isolatedProcess feature, which is a very easy to use boolean property for app service processes to provide strong isolation with only the ability to communicate with the app running them via the standard service API. Even in the desktop version, Firefox's sandbox is still substantially weaker (especially on Linux) and lacks full support for isolating sites from each other rather than only containing content as a whole. The sandbox has been gradually improving on the desktop but it isn't happening for their Android browser yet.

Also, having exodus integration in app downloader is good but not worth it for exchange of no signature verification, so it's better to just check it in browser instead or use their app to check trackers

[–] Kailn@lemmy.myserv.one 2 points 3 days ago

Cool, especially more so on PWA.
But I'd still recommend having ironfox for general browsing & not throwing privacy to the window.

(You won't believe it but, I just wrote a blog-size reply and accidently deleted it for trying to put it on a pastebin service...)