My setup on GrapheneOS with all the exploit protections on except some off for apps with compatibility issues. Thoughts?
Are those green mini icons an indication of a PWA shortcut?
I use the app Hermit to run isolated websites, usually as PWAs. It’s replaced quite a few apps, but I’ve noticed that many companies are intentionally making their web experience shit so they force you to use invasive apps.
Anyway, it can create home icons for those sites, and they run separately (i.e. in your task switcher), so it works better than browser shortcuts.
It does, that’s the icon for Cromite.
I didn’t quite catch that actually but yes it’s cromite PWAs
What device are you using
From the wallpaper and theme, looks like grapheneos on a pixel
It’s also in the description lmao, good catch
Google Pixel 8 with GrapheneOS
KeePassDX, nice choice! I really wish I could have DX or XC on both phone and desktop. Love both but would prefer to donate to one. Wallet is unhappy but I really try to donate to all FOSS apps I use…
Yeah keepass the goat! I use mainly proton and keepass for when I’m more paranoid
For me that has lately been always
Do you have a backup? I recently lost my crypto due to my KeePassDX getting deleted accidentally (I saved the seed there) :(
(I didn’t have a wallet at the time so I was cooked)
Oh shit… Damn. sorry that happened to you :(
I do back it up with the rest of my stuff to an external hard drive, but that’s… Like once in a year so could be better.
I have my keepass database file in my cloud that i use to sync it between phone and PC. I create a backup of all of my files on my PC + cloud folder once a year to an external hard drive. Better than nothing but probably would be better to do this more frequently 😄
I also empty my phone from time to time and move everything I want to keep to my PC (like photos).
BTW I find SimpleX is great for syncing between your phone and PC. I used it with multiple computers/profiles on GOS and just created an incognito group without history and with disappearing message and that’s how I moved stuff like addresses and passwords to my PC. The app is also great for communication ofc
Nice tip, thanks! still haven’t given simpleX a try. Mostly because it was hard enough to get family and friends to move to signal :)
Note is that I don’t link my SimpleX to my PC but create separate profiles
Wait isn’t that defeating the purpose of KeePass? I strictly use it as a local password manager (no cloud backups and such), since I thought that was the main spelling point
You can of course. I think the selling point is that you control it and it’s a single file that you can decide where you’ll keep it, how you access it, and what app you use to interact with it.
I can copy, delete, move it all without needing a service for it. Can modify it offline and everything!
I don’t host the file on a password manager dedicated cloud, it’s my own cloud space with other files I have there as well. So the file is just in my cloud space, with other files, and i have a synced folder on my phone + pc and just access that cloud folder with the file from keepassXC on my PC and keepassDX on my phone :)
For me keepass offered a single databae file that I can decide where and how I keep it. Also works offline because the cloud syncs folders and even without internet a version exists on my phones cloud folder (until it gets synced again with internet).
Or is the database file encrypted with a password? If not you might want to use something like VeraCrypt to encrypt and password protect the database files on the cloud
Nobody seems to talk about the OG pen and paper password manager!
What’s the chrome app?
Is nano GPT 100% offline? Or self hosted?
I see two: Chromite (Green) and Vanadium (Gray, Chromium variant by GrapheneOS)
In NanoGPT You also got TEE (Trusted Execution Environment) models which are more private/secure from my understanding. From GPT-OSS 120B TEE:
“TEE‑based AI models run their inference or training inside a Trusted Execution Environment (TEE), a hardware‑secured enclave that isolates code and data from the rest of the system. This provides data confidentiality, protects the model’s IP, enables cryptographic attestation of the exact model version, and satisfies regulatory privacy requirements, making AI services trustworthy and suitable for secure multi‑party or decentralized applications.” One downside is that they are usually pretty expensive to run
You are also able to bring your own S3 compatible storage
NanoGPT is more “no-logs” from what I understand buttt you can pay in XMR and have a dedicated “account” (you get a sign in link to keep safe) and run it under tor
Removed by mod
I mean currently I only have protonpass and whatsapp from aurora so I’m chilling, everything else is from obtainium. But I’ll try it out (last time I didn’t understand how it works, idk If it’s bugged for me but the apps I put in the private space stayed on my “desktop”)
Proton Pass can also be downloaded from Obtainium, if you’d rather go that route.
I wasn’t able to find a release on github for ProtonPass, I did find releases for ProtonMail tho
Is this my phone? Lol
You might wanna run auditor lil bro
Some apps that you use are not safe. Aurora store doesnt send too much data to google but it doesnt verify app signatures which can lead to installing malicious apps, use normal play store instead which verifies app signatures (its also suggested to use by grapheneos devs). Whatsapp, collects data about you. Cromite, uses adblock plus which is really bad. Also here is another reason why cromite is bad:
“Cromite has very problematic changes included which substantially reduce privacy and security. It reduces security more than it improves it. For example, it includes the highly problematic Eyeo filtering engine from the company behind Acceptable Ads, Adblock Plus, etc. which took over the forked uBlock extension misleading people with the name pretending to be the uBlock Origin project among other extensions. Eyeo’s C++ code is low quality and has memory corruption issues… Cromite including the incredibly sketchy Eyeo content filtering engine and stuff like additional codecs goes against what we’re trying to achieve. We also don’t think the randomization-based anti-fingerprinting approach works, among other issues”.
deleted by creator
Ah fuck, I use Cromite because I find vanadium PWA for the stuff I use are buggy and slow. I used to use brave for this purpose, should I go back? Damn I guess I will need to link this phone to my throwaway gmail account (which still has private data) WhatsApp I can’t ditch due to family and Signalphobic friends
On grapheneos you should be using vanadium since its most secure browser on phone. On other android devices, use brave instead. Also if family and friends dont want to use signal but want to use whatsapp then uninstall whatsapp, one way or another they would have to either end up using sms or other form of contact
Hmm I might do that actually, I’ve been wanting to get rid of WhatsApp for a while now, I think I’m still gonna use a second browser (Brave now) for my PWAs, my threat model allows it
On the contrary if in the end everyone moves to SMS and normal calls wouldn’t that actually be pretty bad? Since WhatsApp is E2EE (with the major flaw of default unencrypted backups which are shoved down your throat). But maybe it’s not that big a deal since I assume most if not all of the people I’m talking to likely have unencrypted backups
"Casually reminds you that Ironfox exists & it’s a lot more “private” than most chromium-based browsers, & has ublock origin. (slow by default tho)
also while aurora store doesn’t verifies signatures, is has Exodus integrated which dynamically analyses & warns about spyware, tracks and telemetry so you more caucious about the littered “free” apps…
Pro tip. If you go to an apps notification settings, then set a category to silenced and option called “minimize” should show up which allows the notification to be hidden from the notification bar, but shown in the drawer
Oh that’s very cool, I didn’t know that. Although I think it isn’t the most useful for me since I don’t have lockscreen notifications and I have all my apps on the home screen
It doesn’t bother you to see mullvard in the top all the time?
Quite the opposite, I rather it be up there so I see it’s running. Altough not that it matters much since I have a killswitch
If anyone Is wondering, this setup was based mainly on PrivacyGuides
Kind reminder that Brave is a crypto browser and the devs are against LGBTQ+. Also, it’s closed source.
UPDATE: Switched from AuroraStore to Google Play Store, switched from Cromite to Brave, and lastly I deleted WhatsApp
deleted by creator
I’m thinking if I need to use WhatsApp again I’ll try to download it, connect to WhatsApp web on my laptop and then delete it from my phone. Idk if it’ll work but it’s worth a shot
Brave is WAY worse than cromite. And, why aren’t you using Vanadium more?
I am, it’s just that for some of my PWAs they are unusable/buggy/slow on Vanadium. And lol I’m going around in circles. Do I reinstall Cromite now haha?
Don’t!
Your whatsapp session will expire over time & you gonna need to reinstall it on your phone.
Ether install whatsapp on private space or, if you feel adventurous, selfhost a Matrix-Whatsapp bridge.Alternatively, convince your socials to use smh foss & more reliable,
Maybe telegram if they insist on mainstream,
It got a foss client but telegram doesn’t enable E2EE by default (Secret Chat).Signal would be better for a mainstream secure communication as Telegram has its flaws, and E2EE is not enabled by default. It’s also not available in channels.
I use Molly with Orbit proxy, so I feel Signal is the next best thing after SimpleX
Yeah I would rather just nudge them towards Signal, I very much dislike telegram and have recently retired it
deleted by creator
Firefox is not secure on mobile, Vanadium is a great browser made by the GrapheneOS devs
deleted by creator
I mean Gecko based browsers are actively recommended against on mobile. Chromium based browsers are recommended. Also I use mullvadVPN DNS based ad blocking, and I also have Brave that has built in ad blocking. Do yourself a favor and ditch adblock in favor of Ublock origin
deleted by creator
Only one: ditch that crap named Proton.
Bring the downvotes bots 🤣
Also ditch WhatsApp.
I wish
You mean the Kryptonite? That is what kills a lot of privacy setups.
Can you elaborate? From what I understand GOS does a good job at isolation. But I might just create a separate proprietary profile
I meant that this is the Achilles heels. A lot of us have it. It has the meta AI on it that we can’t deactivated. It is EEE and GoS does a good job isolating it but still a non privacy app.
It would have been helpful to explain why, whether that’s privacy, ethical, or political concerns.
But maybe the use of “🤣” says it all
And calling “bot” anyone who disagrees. Peak Reddit behaviour.
The peak Reddit behavior is the squadrons defending that crap 😂
I mean bro, they aren’t really defending Proton here but rather they are calling out childish behaviour. Since why should I be downvoted for using an app? I didn’t even know Proton was so controversial up until now
“Childish behavior” is calling out a “privacy” company that does questionable stuff.
Noted.
My man, you are twisting my words, I was very clear about what I considered childish
Like I already said this isn’t about any company but rather encouraging griefing
Real mature bro, ignore my constructive criticism and just downvote me like a bot. You really are something
Don’t post your setup if you can’t stand criticism 😂
Just because you don’t agree to something doesn’t mean you should try to make it unpleasant for the other person, you could of just called out Proton without encouraging people to grief me
AHAHAHAHAHAH
Don’t cry bro, I only told you to ditch an untrustable company which at first supported Trump and then was called out for silencing journalists.
I am 100% going to make it unpleasant for all who still use it, especially if they seem to care about privacy.
Ceo of Proton is a huge Republican fan, that might deter some people. Are you not interested in this?
I would be in the loop, but not necessarily OP. I am calling out OC to defend their suggestion with more than a simple accusation.
As a looped in person. Do you think I should stick to Proton for less hassle (migration) or is moving to Tuta for example the right move currently?
You are indeed correct, I’m not the type currently to stay up to date on news
Not this shit again.
What you mean? You do realise most of us degoogle to get away from American grasp on technology, what’s the purpose of switching to Proton if there’s services even more independent?
The problem is I have been using proton for years and I have 385 entries so switching to say Tuta would be a drag (unless there is an option to migrate, I haven’t checked) Proton IIRC is also the cheaper of the two. Or would you say I should suck it up and make the switch?
After thinking some more this mindset is not good at all. If everyone becomes complacent due to habit and convenience that would be bad
I’m not sure, does managing two email accounts would be difficult for you? It wouldn’t be too bad having one extra, having some accounts on a different mail might work for you, if one gets hacked you don’t lose access to everything right away. Also you don’t have to migrate all the entries right away, you can always just make new accounts on a new email provider, and if you do use password expiry in your pw manager you can migrate emails right then
Yep, says it all about you fanboys 🤣
Uhhh why?
Goldfish memory? It was one of the biggest things on lemmy
https://lemmy.world/post/24301835
Proton ceo not politically neutral as he advertised
And they recently were caught in the “accidental” suspension of the accounts of two journalists.
There has been enough information released to essentially debunk the connotation you are implying.
It looks like protonpass, OP uses mullvad instead.
Is the controversy about the VPN?
Nah the controversy was with some executive at the company thanking trump for some stuff
I mean isn’t proton recommended on privacyguides? Do you think they need to update it?
Privacy guides recommends Brave. I’ve said enough.
What’s wrong with brave? I didn’t like the crypto feature but I got the impression that it’s a good privacy browser for people that need syncing
Do your own research, this is the most useful thing I can tell you and it applies to anything.
Yes that is correct, I just wanted to hear what people on Lemmy have to say
Brave, like Proton, has a lot of fanboys (assuming they aren’t bots) that blatantly ignore key informations about the companies of said products.
In this kind of scenario resorting to your own independent search is the only thing you can do.
I see, good to know
I’m too far gone
