Posts by aaravchen@fosstodon.org
(DIR) Post #AAIhXmKHFr9gu0EyUy by aaravchen@fosstodon.org
2021-08-14T01:04:34Z
0 likes, 1 repeats
I got reassign to a new manager in my group recently. My prior manager insisted on "more than a 2 sentence email, needs a meeting" and closely questioned why I needed to pursue a CISSP certification (I'm 1 of 3 security professionals for a team of 100+ on medical products).My new manager is focused on reducing the 90% time I'm in meetings and made the CISSP exam one of my yearly goals. It's amazing what a technically aware manager is worth.
(DIR) Post #ABHFmTXt60Fc2l6bOS by aaravchen@fosstodon.org
2021-09-11T17:32:24Z
0 likes, 0 repeats
Thinking of self-hosting more services (might include Hubzilla, Mastodon, NextCloud, Photoprism, etc). I have a low-power physical server I'm already using for home media but it's in my home network served by a US ISP (read: traffic sniffing and some port blocking). What should I use?
(DIR) Post #ACPLniAAMAQNiaruwy by aaravchen@fosstodon.org
2021-10-16T02:20:00Z
0 likes, 0 repeats
@urusanBuilding from source is a necessity, but the way you do it makes a difference. There are package managers like Nix that overlay on top of your regular OS package manager to provide additional options.Building directly from source isn't that bad either though. Install "build-essential" and any other dependencies the project lists, then download source, extract, and run whatever build command they say to.
(DIR) Post #ACQdC7gL1R7eC06RRw by aaravchen@fosstodon.org
2021-10-16T17:09:30Z
0 likes, 0 repeats
@fatboyI'm curious though whether the hardware specs are going to be sufficient. The biggest difficulty I have is avoiding comparing to Android phones that need really high specs just to do the basics anymore. Does a Linux phone need desktop specs to keep up with the software (Android apparently does)? Does it need higher specs only in the short term while software catches up, or are things going to get worse as more is adapted?
(DIR) Post #AF1QA4CB6mvZdPIHxI by aaravchen@fosstodon.org
2022-01-02T06:52:05Z
0 likes, 0 repeats
@DeveloperMemesI'd be thrilled if work was giving me old school moddable ThinkPads.
(DIR) Post #AF3XQOtizdzSTEJmXQ by aaravchen@fosstodon.org
2022-01-03T07:22:53Z
0 likes, 0 repeats
@fatboyIt's not privacy friendly or opensource, but literally the only RSS aggregator I've found that supports my minimum necessary filtering is Inoreader. They support regex pattern matching for automatically marking as read so I can filter out all the trash from even the best feeds (e.g. "year in review", "Deals...", etc)
(DIR) Post #AISdS91ogJ7BzwbByq by aaravchen@fosstodon.org
2022-04-15T03:33:59Z
0 likes, 0 repeats
@DeveloperMemesI guess it could be python. That would be super fun to figure out when indentation is syntactic.
(DIR) Post #AISq6CdrrcMGEtGTgm by aaravchen@fosstodon.org
2022-04-15T05:55:46Z
0 likes, 0 repeats
@DeveloperMemesWait for when they let you create a long password, but then won't let you log in with it because the login password box is capped at fewer characters than the password creation. Fun figuring that one out after 10 forgot password changes and multiple "no password reuse" errors.It's a weirdly common problem I've found.
(DIR) Post #AJ47QRXfEwOiHHOlCi by aaravchen@fosstodon.org
2022-05-03T05:34:43Z
0 likes, 0 repeats
@fatboyI see you're going thru the obligatory early self-host/federate phase, or getting questions from a lot of new users. F-Droid for store with repos exported from Aurora Droid.Element (previously Riot) for mobile Matrix client.FediLab for mobile Mastodon (and PixelFed, Plerama, etc) client.Mull for Firefox Android fork for private that's close to current, LibreWolf for desktop. IceRaven is very out of date and focused on maintaining compatibility with old-style plugins.
(DIR) Post #AJbKHRUrLdmmqNgM4G by aaravchen@fosstodon.org
2022-05-19T06:04:15Z
0 likes, 0 repeats
@fatboyThe irony is that the article itself cites the competitors that have already done it. ProtonMail of course is the heavy hitter and expanding into the calender and incidental cloud storage space. Slightly less well known and not so extreme is Fastmail. The issue is that email is federated without encryption, and there are half a dozen protocols for attempting to overcome that in a user friendly way.
(DIR) Post #AJbM7OYhcHl8kCogQS by aaravchen@fosstodon.org
2022-05-19T06:24:05Z
0 likes, 0 repeats
@appsOP here.Toot thread broke on most clients (including FediLab ironically) because the @ reply was removed.When I look in Google Play store it's still listed as free for me. Maybe it's because I was on the beta there for a year. I get the cost thing, I'm more than happy to contribute, I just didn't want the the app to suffer consequences of being paid if it wasn't getting the money.@Framasoft
(DIR) Post #AJbPIvvADTgBGOW3FI by aaravchen@fosstodon.org
2022-05-19T06:59:57Z
0 likes, 0 repeats
@digdeeperNot defending Google here, but this is actually a positive change for security, while unfortunately hammering on the little/simple applications that want to connect (often insecurely).The US CISA even just sent a list around that said lack of MFA, and password leaking are the top threats to security. (it's the US Gov, so you know it must be really obvious if they're taking about it).Saving your password in a 3rd party - 1/5
(DIR) Post #AJbPIxRoXZOHzwndmC by aaravchen@fosstodon.org
2022-05-19T06:59:59Z
0 likes, 0 repeats
app is already terribly insecure, and there's no real way to do MFA. The industry standard way for the last 5+ years has been OAuth/OAuth2. This works by the 3rd party app requesting access to Gmail and getting a redirection response. The user is asked to authenticate with Google directly using a normal browser and whatever mechanisms, and it returns an authorization token. The 3rd party app uses that auth token without ever seeing any of the @digdeeper - 2/5
(DIR) Post #AJbPIytVA78GU6lGZU by aaravchen@fosstodon.org
2022-05-19T07:00:01Z
0 likes, 0 repeats
credentials you entered, or needing to know how you authenticated with Gmail.Unfortunately OAuth2 isn't simple to implement, and Google seems to be using this as an opportunity to also vet the apps trying to use OAuth2 for access. That's resulting in very limited permissions, even for authenticated clients, unless they undergo a security check. If you're offering a 3rd party app for this, almost no one is trustworthy or skilled enough to not make a @digdeeper - 3/5
(DIR) Post #AJbPJ0Ga3nBgjyZDBQ by aaravchen@fosstodon.org
2022-05-19T07:00:02Z
0 likes, 0 repeats
security mistake and you really need an outside security check. That's expensive, and I'm sure Google has a small list of reviewers they accept. If you happen to be over of the few people in the world who can actually do it right on your own, you're the extreme exception and being lumped in with the plebs anyway.The outcome sucks, but realistically the bar for entry into the app space for something like a person's primary email is too high between @digdeeper - 4/5
(DIR) Post #AJbPJ1uJxWZPpWASlU by aaravchen@fosstodon.org
2022-05-19T07:00:04Z
0 likes, 0 repeats
the security threats and the user ignorance for plucky developers to be a reality in the area anymore. Gmail targets the particularly ignorant user, so it's not really a surprise. @digdeeper - 5/5
(DIR) Post #AJh5LWuCqamwPgmwIy by aaravchen@fosstodon.org
2022-05-22T00:44:27Z
0 likes, 0 repeats
@appsNot sure what's going on with your instance/account, but none of your replies to anyone are linked to what you're replying to. This is just another one.
(DIR) Post #AN73D1YQLk1QKPLxB2 by aaravchen@fosstodon.org
2022-09-01T07:00:00Z
0 likes, 0 repeats
@fatboyI've heard bits. Apparently they're using SMS/MMS as a communication channel to do encrypted chat. It's not clear whether it's like TLS on TCP, or more like steganographic SMS.They mention something about one sending to other Silent users and not having any centralized servers, so it sounds like some key exchange is happening P2P.They say they use similar protocols to Signals I think, but build traceability is unclear.
(DIR) Post #AQDOFKrVD85PeIm8Uy by aaravchen@fosstodon.org
2022-12-03T01:58:31Z
0 likes, 0 repeats
@appsConfusingly, the link preview on Fedilab (@fedilab) shows this as a link to Fritter on Fdroid, even though the actual link is clearly to Fediphoto-lineage.@fediphoto_lineage
(DIR) Post #AQlQeRR8i0KqYxBHuK by aaravchen@fosstodon.org
2022-12-16T19:10:49Z
0 likes, 0 repeats
@thedylanarts I suspect it's related to the long and tumultuous history of GrapheneOS and CalyxOS.I don't know anything about this specific case, but also make sure you do your own research. Both sides in the arguments have been notoriously strongly opinionated.@GrapheneOS