Most of the popular open-source ones are fine. VSCodium if you want a rich GUI or perhaps Geany if you want a lightweight but beginner-friendly editor. Only things you’ll have to watch out for are editors with online features like AI integration, particularly Microsoft VSCode and the new notepad.exe with AI.

This is for a SeaBIOS system without functional TPM.

Bypassing either password challenge for simplicity’s sake is just defeating the purpose of having LUKS on the full disk anyway. Just encrypt your home of that’s a problem for you and simplify things.

Could you explain this? I do not see how it would compromise the security model since the lock screen would be dismissed only after the LUKS password is entered. The screenlocker is only relevant when suspended to RAM as the LUKS key is no longer in RAM once hibernated.

Killing your lock screen from the session manager is going to cause all kinds of problems, so that’s not going to help. It’s not JUST a plain old process to kill, it’s the session manager. You kill it, and it’s going to ask you again anyway, and likely destroy your existing session.

I am using slock, which is separate from my session manager (startx in ~/.profile), and in my testing, I was able to kill it without issue.

What a shitty banking app. The malware explanation could just be customer service boilerplate. They might have just implemented some commercial fingerprinting/analysis/security library in the app that freaked out at the minimal fingerprint of the GrapheneOS profile and defaulted to locking you out.

As individuals, we need to continue defending and advocating for our privacy - using privacy-respecting phones and software even if it’s difficult and organize against surveillance capitalism, or at least donate to existing advocacy groups. And the developers that make privacy-respecting alternatives more accessible. Not much of an easy way out since we’re up against Big Tech on a profoundly uneven playing field.

But for immediate issues like this, I would get a cheap separate phone with regular Android to handle the app if the bank doesn’t offer the same services through a browser. Try to keep it on an isolated network and only power it on when necessary.

I understand the intent, but it is rather optimistic in light of recent events.

I keep it around and don’t use subscription services or DLC, but the physical media itself doesn’t see everyday use, excluding books. When I had a bit more time during the quarantine, I digitized about half of my physical media library. Now if I need to pull something off the shelf, I’ll digitize it individually while I’m at it. After that point, I just run it off a hard drive or whatever portable device it’s on.

Most of my media purchases nowadays go to independent artists/developers where producing a physical copy is not always practical. Old stuff that was released on physical media often can be tracked down on archive.org since trawling eBay and thrift stores for those can get unsustainable. Everything else may be found in the high seas.

As for books, I’ll take physical copies whenever I can. I can’t stand prolonged reading on a backlit screen and I don’t do a good enough job keeping my e-ink reader charged.

The waterproof 3M Nexcare bandages are pretty similar to Tegaderm, but for smaller cuts

Sometimes I want to create my own products and sell them as a side hustle. Sometimes I doubt it’ll work. But other times I am reminded how long MALIBAL has been kicking around. Ironically inspiring.

Very much agree with the encryption key management. My friend group and I stopped using Matrix because the getting encryption right between all of our devices proved frustrating, especially if a reinstall or phone upgrade comes up.

If you have $150 to spare (depending on country), a secondhand Pixel 7a is a great starting point to try out GrapheneOS without directly contributing to Google. Just make sure it’s carrier unlocked so it allows bootloader unlocking. For $100 more, a Pixel 8a will get you several more years of software support. Practically everything just works with GrapheneOS.

Fairphone with /e/OS is leagues better than Googled Android, but little to no additional security hardening has been done over plain AOSP (which itself is quite secure against non-state-sponsored attacks to be fair). Also, some pings to Google have yet to be patched out, see https://eylenburg.github.io/android_comparison.htm

Linux phones are much better than they were a few years ago, but unless your workflow tolerates the occasional disruption due to a bug or missing feature, they aren’t exactly production-ready for most users. But a good sneak peek into the future of privacy phones given the way Android is headed now.

MicroG works for many things, but not everything. Google’s own apps don’t play well and some of my work apps don’t send notifications when using MicroG. But GrapheneOS supports a sandboxed, proper instance of Google Play Services should you need it.

Google Wallet and anything requiring the Play Integrity API will not work with third-party OSes, not even GrapheneOS (perhaps until they release their own phone).

Easy, don’t use digital technology and live in a shack in the middle of Bir Tawil. That’s the exact attitude Apple, Google, et al. want people to have.

Privacy is not a game of absolutes. You make a threat model and do the best you reasonably can. I hope you at least enjoyed your head start on privacy by choosing GrapheneOS.

Fine choices and nothing wrong unless there’s someone actively out to get you. In that using TOR as VPN leaves a very distinct fingerprint compared to the vast majority of Tor users on the standardized Tor Browser.

Unfortunately, the post radiates small 🍆 energy.

No idea tbh, but I don’t remember mentions of the tools working on Honor phones released after 2019, so maybe 2020?

Probably not what you are looking for, but it reminds me of reading “This Is Not a Book” by Michael Picard.

While in line for a banquet. Had to show my pass sent to me by email, had my laptop on me, and didn’t want to log in on my phone.

RAM doesn’t expire, but “end-of-life” is probably corporate speak for the product being discontinued or no longer eligible for support and service from the vendor.

To be fair, I only have a few of my friends and some of my family on XMPP. I’m also guilty of having WhatsApp on my work phone for colleagues and the rest of my friends.

Some people just like to be upset

It’s on the IzzyOnDroid repo: https://apt.izzysoft.de/fdroid/index/apk/com.cyb3rg0d.canvass

Fossify Paint does the same thing without adding the IzzyOnDroid repo, I just happen to have Canvass since it was the first thing that showed up when I searched.

My take is that Proton CEO Andy Yen’s pro-Trump comments were born out of naïvety, not the same mindset that plagues tech CEOs in the US. Combining that with Proton’s benign actions since then, I think it’s a good time to diversify, become familiar with alternatives like Tuta as you say, and make a backup plan should they enshittify, but don’t rush to jump ship now.