ddnomad

joined 1 year ago
sorted by: new top controversial old
A question about secure chats in c/[email protected]
[–] [email protected] 2 points 11 months ago

And E2EE is only available on phones, circa a couple of years ago anyways

A question about secure chats in c/[email protected]
[–] [email protected] 1 points 11 months ago (1 children)

Telegram’s servers are located in US, Singapore, Netherlands (and maybe some other countries) from what I’ve gathered. And all chats that are not E2EE’ed are stored there, encrypted at rest at best with keys in the same database, or somewhere else that can still be accessed in automated way. Maybe it is not even encrypted at rest.

The point is, all those countries are either in 5 eyes or have information sharing agreements with 5 eyes countries. So as far as I’m concerned, TLAs can still have their fingers in those pies, in addition to Telegram’s overall shadiness and Russian ties. So maybe you get KGB strongman keeping a watch over your chats too.

This is not something I’d have much confidence in to be honest.

A question about secure chats in c/[email protected]
[–] [email protected] 32 points 11 months ago* (last edited 11 months ago) (8 children)

Switch to Telegram

You know it’s not even E2EE by default, and when it is it uses a homegrown algo that is not exactly well spoken of? (at least V1)

Why do password managers charge for TOTP code generation? in c/[email protected]
[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

It is reasonable yet subpar under a threat model where you do not trust any single provider, which is a model I find appropriate most of the time.

Why do password managers charge for TOTP code generation? in c/[email protected]
[–] [email protected] 1 points 1 year ago

You should not assume your password manager is unhackable.

That’s my main point. Perfect is an enemy of good indeed, but I feel that doing things properly the first time is a good idea in general, especially when it as easy as using a different app for your TOTP tokens. It’s a low hanging fruit really.

Why do password managers charge for TOTP code generation? in c/[email protected]
[–] [email protected] 19 points 1 year ago (16 children)

Please don’t use your password manager for TOTP tokens. It is called two factor authentication for a reason.

Britain Admits Defeat in Controversial Fight to Break Encryption in c/[email protected]
[–] [email protected] 37 points 1 year ago

Until next time they try to push through something similarly stupid. Now it’s EU’s turn to make their mind too.

Any way to get Brilliant.org courses for free. in c/[email protected]
Any way to get Brilliant.org courses for free. in c/[email protected]
[–] [email protected] -1 points 1 year ago

Books, online courses. Education in depth, ideally.

Any way to get Brilliant.org courses for free. in c/[email protected]
[–] [email protected] -1 points 1 year ago* (last edited 1 year ago) (1 children)

Yeah but… Brilliant has… a trial period. Seven days is plenty to realise that there’s next to zero educational value in that platform no matter how hard it is shilled online.

Any way to get Brilliant.org courses for free. in c/[email protected]
[–] [email protected] -1 points 1 year ago (7 children)

They are pretty poor courses anyway, why would you want them?

After Raising $235K, Abode Remains Committed to Taking on Adobe in c/[email protected]
[–] [email protected] 1 points 1 year ago

I've never heard of that project, looks pretty cool! To be clear, I do not say that "one guy" cannot possibly make great software. Passion projects are a thing. What differentiates them from the Abode situation, in my opinion, is that passion projects rarely have strict deadlines and paying backers who expect software that is Adobe-level in terms of quality and polish in a roughly 1 year.

view more: next ›