fsebugoutzone.org:9999

       Post B2m5vd4lt7fEiotN7A by pacman@swiss.social
 (DIR) More posts by pacman@swiss.social
 (DIR) Post #B2lx7qF1rkKNRQRFZY by aral@mastodon.ar.al
       2026-01-29T09:10:28Z
       
       0 likes, 0 repeats
       
       RE: https://mas.to/@nemo/115977538504295603Rule of thumb: End-to-end encryption is meaningless unless you know exactly who the ends are. (Let’s call this the Waltz principle.)Same goes unless the context your encrypted messenger is running in is secure. Signal can encrypt your messages all day long but you’re still screwed if the custom keyboard app you installed on your phone is sending them off to someone else before they even reach Signal.
       
 (DIR) Post #B2lxKN1lnGOwbJD8HQ by nemo@mas.to
       2026-01-29T09:11:59Z
       
       0 likes, 0 repeats
       
       @aral :) ✅ 💡
       
 (DIR) Post #B2lyRUIFHIeV7GsIMq by only_ohm@mas.to
       2026-01-29T09:25:16Z
       
       0 likes, 1 repeats
       
       @aral Or indeed the manufacturer-provided keyboard app.
       
 (DIR) Post #B2lyvKZE0JTJdf2yg4 by aral@mastodon.ar.al
       2026-01-29T09:30:35Z
       
       0 likes, 0 repeats
       
       @only_ohm Indeed.
       
 (DIR) Post #B2m07esiOx3U4Vbbo8 by cos@sauna.social
       2026-01-29T09:44:02Z
       
       0 likes, 0 repeats
       
       @aral good rule. Also applies if the messenger is closed source or you can&#39;t trust it&#39;s source in other form.. For example closed source third party libraries bundled to the app.
       
 (DIR) Post #B2m3T7ts0Pws104ewK by omz13@mastodon.social
       2026-01-29T10:21:35Z
       
       0 likes, 0 repeats
       
       @aral If you can’t trust your current OS, then you need a better OS and/or better (more stupid) hardware to operate in. I would not be surprised if somebody did dedicated hardware with software updates done by swapping EPROMS, because it seems like we need to go backwards to go forwards.
       
 (DIR) Post #B2m5vd4lt7fEiotN7A by pacman@swiss.social
       2026-01-29T10:48:25Z
       
       0 likes, 0 repeats
       
       @aral Am I right in thinking that Linux is not yet infested with  AI and other spyware or was that yesterday ?
       
 (DIR) Post #B2mKhDEmen2LqM9uoi by aral@mastodon.ar.al
       2026-01-29T13:34:36Z
       
       0 likes, 0 repeats
       
       @pacman Depends on the distribution. I see no reason why corporate Linux wouldn’t go all-in on AI.
       
 (DIR) Post #B2mRCdmGdBVsrGBpXk by craignicol@glasgow.social
       2026-01-29T14:47:23Z
       
       0 likes, 0 repeats
       
       @aral @MHowell isn&#39;t that basically what Pegasus exposed? If a malicious 3rd party can get on your phone, all other protections are meaningless.
       
 (DIR) Post #B2mTYXpZcZ8Ih5JCb2 by stf@chaos.social
       2026-01-29T15:13:46Z
       
       0 likes, 0 repeats
       
       @aral in this e2e context Landau&#39;s Law is most relevant as well: &quot;A cryptosystem is incoherent if its implementation is distributed by the same entity which it purports to secure against.&quot;  -- https://www.devever.net/~hl/webcrypto
       
 (DIR) Post #B2maivFk5nO5uYRcvI by pacman@swiss.social
       2026-01-29T16:34:05Z
       
       0 likes, 0 repeats
       
       @aral I&#39;m not very clued-up about this. I&#39;m just a home user running Ubuntu Linux. Is that different from corporate Linux ?