@Scorpion8741

0 Followers
44 Following
304 Posts
InterestsSecurity and privacy of OSs and browsers.
Happy user ofGrapheneOS <3, Arch btw
Scorpion8741Mar 26, 2025
Show threadPeergos protocolMar 26, 2025
@Scorpion8741 Yes we have an android app ready to release, just waiting on google bureaucracy. The next version will likely have a media backup client (slightly different to sync, or I guess like 1-way sync).
Scorpion8741Mar 20, 2025
GrapheneOSMar 19, 2025

Chromium team developed a new font rendering library (Skrifa) as part of their Fontations library written in Rust. Skrifa now provides memory safe rendering for all web fonts since Chromium 133 for Android, ChromeOS and other Linux distributions:

https://developer.chrome.com/blog/memory-safety-fonts

Memory safety for web fonts  |  Blog  |  Chrome for Developers

Learn how and why the Chrome team has replaced FreeType with Skrifa.

Chrome for Developers
Scorpion8741Mar 20, 2025
GrapheneOSMar 19, 2025

Latest release of Vanadium has support for passkeys without Google Play services via the Android 15 credential manager:

https://grapheneos.social/@GrapheneOS/114186195115859187

Proton Pass and Bitwarden are examples of apps providing passkeys without Play services.

GrapheneOS (@[email protected])

Vanadium version 134.0.6998.108.0 released: https://github.com/GrapheneOS/Vanadium/releases/tag/134.0.6998.108.0 See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog. Forum discussion thread: https://discuss.grapheneos.org/d/20963-vanadium-version-134069981080-released #GrapheneOS #privacy #security #browser

GrapheneOS Mastodon
Scorpion8741Nov 21, 2024
AI6YR BenNov 20, 2024

"Come to the dark side, load Linux" we say.

Consumers: "No, no, we prefer the adware loaded OS, really. We only trust large corporations, Microsoft loves us. Please give us AI, and I like the advertising in my Start Menu. It will even be better occupying my screen! How dare you suggest a non-corporate OS!!"

#Microsoft #Windows #FOSS #Linux

https://arstechnica.com/gadgets/2024/11/microsoft-pushes-full-screen-ads-for-copilot-pcs-on-windows-10-users/

Microsoft pushes full-screen ads for Copilot+ PCs on Windows 10 users

Microsoft has frequently used this kind of reminder to encourage upgrades.

Ars Technica
Scorpion8741Nov 6, 2024
René Mayrhofer  🇺🇦Nov 5, 2024

Happy to report public availability of a new paper "A Data-Driven Evaluation of the Current Security State of Android Devices" at the IEEE CNS 2024: https://www.android-device-security.org/publications/2024-leierzopf-cns/Leierzopf_2024_IEEECNS2024_AndroidDeviceSecurityState.pdf

It describes our security scoring algorithm for Android devices using specific threat models.
The application is available at https://www.android-device-security.org/database and the collected data partially consists of crowdsource contributions.
Please see https://www.android-device-security.org/app/, if you want to contribute non-personal data of your device.

Scorpion8741Sep 30, 2024
GrapheneOSSep 29, 2024

GrapheneOS users on 8th/9th gen Pixels are making a massive contribution to getting memory corruption bugs in the open source ecosystem thanks to the nice crash report notifications created by our hardware memory tagging feature. One of the latest fixes:

https://github.com/mullvad/mullvadvpn-app/pull/6727/files

Replace GoString with our own function to fix mte issue by Pururun · Pull Request #6727 · mullvad/mullvadvpn-app

This change is 

GitHub
Scorpion8741Jun 18, 2024
epicenter.worksJun 18, 2024
⚠️ Morgen ⚠️ könnte die verpflichtende #Chatkontrolle beschlossen werden. Parlamentarier aus 🇦🇹 🇩🇪 🇱🇺 & 🇪🇺 sprechen sich heute in einem offenen Brief klar gegen diese gefährliche anlasslose Massenüberwachung aus. https://www.derstandard.at/story/3000000224787/klima-des-generalverdachts-letzter-widerstand-gegen-die-eu-weite-messenger-ueberwachung
"Klima des Generalverdachts": Letzter Widerstand gegen die EU-weite Messenger-Überwachung

Schon am Mittwoch könnte über die EU-Chatkontrolle abgestimmt werden. Abgeordnete aus Österreich, Deutschland und Luxemburg warnen vor den Folgen

DER STANDARD
Scorpion8741Jun 8, 2024
TaviJun 8, 2024

Encrypted Client Hello is dead: https://divested.dev/misc/ech.txt

Extra sad since Mozilla is rolling out HTTPS record support without their in-built resolver requirement on Tuesday with 127.

Scorpion8741Mar 10, 2024
Show threadGrapheneOSMar 10, 2024

GrapheneOS is the first platform using MTE in production, and does a lot more too:

https://grapheneos.org/features#exploit-protection

Our Vanadium browser is the first browser using it in prod:

https://grapheneos.org/features#vanadium

We plan to add stack MTE, improve PartitionAlloc and make new kernel slab MTE.

GrapheneOS features overview

Overview of GrapheneOS features differentiating it from the Android Open Source Project (AOSP).

GrapheneOS
Scorpion8741Mar 8, 2024
Russell IvanovicMar 6, 2024

China: “Remove all VPNs”
Apple: “Sure thing”

China: “…and podcast apps”
Apple: “Can do boss!”

China: “…and also hand over all iCloud data for our citizens”
Apple: “I mean why wouldn’t we? Here you go!”

EU: “Allow alternate app stores, and do it fairly”
Apple: “Ahhh hell no! This is so unfair you guys are bullies! Malware! Privacy! We have standards! Unlike you we care about our users!”