Hahaha, SimpleX on Android is fine, the Desktop client is kinda incompatible with anything (no flatpak, the ubuntu version is kinda broken, no repo, their sync requires a random firewall port to be open)
Security is a compromise between convenience and safety.
However, simply using flatpaks isn’t inherently more secure than using a binary or compiling from source. But it can make it easier to be secure for people that don’t want to manage their own sandboxes.
It’s also easier for devs so they only have to make one version of their app which in theory should work on all systems. But in practice I find it doesn’t always work that way
The AUR is not verified or audited at all, isnt it? So you need to check every release if that script was modified to download something malicious. For sure this works somehow, but idk how.
And sandboxing… flatpak has GUI tooling unlike anything else. Bubblejail is usable.
From a maximum security perspective, you should be checking all the code you install on your computer. No matter if it is foss, audited by some group, or proprietary (if possible). What would stop a bad actor from auditing malicious code and approving it?
As for sandboxing, there’s multiple options, not the least of which is containerization.
Again, security is a compromise. More security normally comes at some cost just as less security does.
But back to the topic of the post. You are complaining that SimpleX doesn’t work when installed though a flatpak (because one doesn’t exist). So perhaps it’s not a good software to rely on flatpaks for. Unless you choose to only install software via flatpaks, to which I’d say that’s admirable but also perhaps needlessly limiting. Either way it’s your choice, but I would suggest some open mindedness of options that may let you use the software you want.
Yeah I tried the ubuntu version through Distrobox, which is way more secure. But they have no repo, and it broke apt lol.
Appimages are completely insecure, there are literally no updates. Its a random bundle of libraries, as old as possible to work on every old kernel, and they are just broken by design (see an old post of mine).
There is flatpak packaging work done and I want to learn that and help, as Flatpak is just the best.
GrapheneOS, based on AOSP, is really the only truly private and secure option. Android offering interoperability is not a downside and Apple having a walled garden does not mean it provides increased security. Apple is decidedly not transparent and this is ultimately not a good thing.
You’re talking about data stored in the apple cloud (I think without the account recovery turned off, but I’m not 100% on that). The same is true of googles cloud services.
Agencies haven’t been focusing on getting the actual texts that say “here I go, doing something you don’t like!” For quite a while because of the amount of variability involved. What I hear spooks talking about is building enough pc for a rubber hose interrogation with unsecured parallel data streams like push notifications.
So I see a company thay duplicates phones, with no source on cracking encryption, other than their own company got hacked. And if you have a GrapheneOS phone you can shut off external USB. like connecting a cord , headset to computer does nothing unless you can login to phone and turn the USB option on.
After months of claiming that Apple’s privacy protections had stalled its investigation, the Justice Department said Monday that it had accessed a terrorism suspect’s iPhone
it took “months” for the fbi to crack one iphone, that belonged to a terrorist…
and that was in 2020, those holes have long been patched.
I once wanted to repair an older Ipad because the screen was cracked. The repair would have cost 600€ at an Apple reseller. A new Ipad would have been about 700€ at the time.
There is a reason why Apple is so against the right to repair.
Even their “self-repair” option nowadays is a load of bollocks. You have to rent the expensive machine, order a new part (which can only come from them of course), send out your part and wait before they will send the replacement part, then hope you don’t fuck up slightly, causing you to break the screen and you having to pay through your nose again to order a replacement.
So it only costs slightly less, but you will not have a phone for weeks.
There really is no reason third party hardware can’t be installed at the users own risk. But that would mean competition for Apple, and they don’t like that.
slrpnk.net
Top