> Jailbreaking the device is the last thing you want to do if you are worried about security. The best way to get shady apps on an iPhone is to jailbreak and use a 3rd party app store to load crap on to the phone. Just like a PC. You can use every app, without any signatures, restrictions, etc. WHAT? Everyone can program a PC app? You can install programms, which are not verified by your OS manufacturer? This MUST be dangerous! Let's outlaw such devices!
But as said, iOS jailbreaks ARE quite shady, because they are uncommon and apple actively works against an open ecosystem for jailbroken phones. On Android, the "jailbroken" phone is the better one.
You're just thinking of the mic, i am thinking of a solution to all data leaks. And there is no help on iOS, neither on most stock androids. But on android phones YOU can fix it. on iPhones... good luck.
For your phone: 1) Use an android phone. If you have an iPhone, forget it. There is no way to help you* on the iphone, except installing no apps at all. 2) Root your phone. I hope you thought about buying a rootable phone in step 1). 3) Install XPosed http://repo.xposed.info/ 4) Install XPrivacy https://github.com/M66B/XPriva... 5) Consider donating for XPrivacy to get a Pro-Key and to help them develop this awesome project. 6) Think about installing AFWall+ as well, to cut internet access for some apps. XPrivacy can do this, but using AFWall is an easy way.
* Maybe with a jailbreak, i do not know the ecosystem of free apps for jailbroken iPhones. On the other hand, who wants to fight with apple all the time, who tries to lock you out again with each update? Just upgrade to an Android Phone. Nexus phones are a good choice.
Ad targetting means trying to get the ads to certain groups of people, to get it to the people interested in the product (or falling for your scam). If you target on the finanicial income, gender, the color of my car or the color of my skin doesn't matter. People may target their ads based on stereotypes, but they probably won't. They will target them in a way, which maximizes their profit. The evolved way (think of a-b-tests) will possibly show, that some stereotypes emerge, because they are true (in the sense of the law of big numbers, not in the sense of every individual), others will just be equal as the stereotype isn't verified by the data.
You may argue, that targetting is bad for several reasons (i.e. that this is the reason why companies think they need to spy on you), but if you accept targeting, you should not make any difference in the criteria.
you're confusing color with brightness. In the best case you would have good e-paper and light it as you like it. We're currently stuck with backlights, but you just do not know the brightness of the monitor. Wait... for black you know it. That's why some people like light on black, as the background will always have a nice dark tone (as black as the device can get). See the hackaday example above.
It's still only informing them, that the certificate is still in use. And if its your lan and you're really want to avoid it, switch OCSP off in the browsers in your lan. You can do it there, not like an internet site, which cannot avoid the default config of its visitors.
Stop domain grabbing and forbid to use domains, which do not match the purpose.
a.com domain should be commercial, some american site should use.us. Use other country codes for offers in the country (i.e. bmw.de for german BMW site, bmw.us for the american one linking to bmw.com for some online shop with car parts), restrict.info to non-affiliated information sites, etc.
With such a rule, people could finally get free TLDs again. Try to get a four letter domain. Everything already registered, mostly redirecting to the main domain. Let some organization with initials bmw have bmw.org! some person with initials BMW gets bmw.name and bmw.email is reserved for a mail provider.
TLDs have failed. People just use country codes or.com and redirect others. Only exceptions are people using cool domain hacks (think of del.icio.us) or nice domains in the new namespaces like hilbert.space. But that are mostly nerds, anyway.
> By that standard, just using the web amounts to using spyware It is. Without adblock, self-destructing-cookies and so on, almost every site is spyware. Have a look at the domains, which such tools block on slashdot. And then on a major news site. Its a nightmare, really.
that's wrong. A few telemetry features are in each firefox and on the first run you get a passive notification "Firefox collects some data [learn more][disable]".
They try to be a new facebook, as investors do not understand what makes twitter a great tool. And on the other hand, the twitter idea may be hard to monetize anyway. So a small fee may be the better idea.
I like the concept of gnusocial, which is more or less a twitter clone without the crap and a api which isn't limited. It just doesn't have the users... And i am not sure if the federation scales, but that's the same for diaspora ans similiar networks. OTOH it will concentrate on big hubs anyway.
I would have thought they come and want me to get them data. No way i let them install something in the server room without internal procedures, which ensure security and so on, that my admins know what happens and why, if they cannot do something with it they need at least to know that someones IS changing things. Then i would of course want to talk with other management staff, even when i do not tell them what exactly is happening.
What you write sounds more like james bond operation, where the secret agents come in and walk with suction cups into the server room to avoid any traces a admin can find afterwards, while threatening me with a machine gun, so i won't have the idea to object to anything.
The moral side of the story is another one. If you trust your government, there isn't so much to object giving out the data, as far as its limited enough to one person and i.e. without contact lists which may contain innocent persons. Of course you may have a strong stance against it, but i at least understand why some people do not have it. But i doubt, that they only target terrorists. If they knew it was an terrorist, they would target him and not his data. Good old police work instead of demanding data. Leading to persons instead of surveilance.
More and more unfeatures, but not listening to its users anymore.
The app has way too much ads (open a tweet and you see always a big ad below the replies), the web interface is slow inefficient and buggy. Users demand since years an "edit last tweet" function, but they always get something else they did not ask for and do not want - Videos have now autoplay! - You can retweet yourself! - We change the length of tweets, fuck you users of the old app - Moments
Further they have strange ideas about blocking. Following is asymmetric. Cool. I do not need to read you, but you can still read me. Thats better for a site like Twitter than mutal friendships. But blocking is symmetric? I block you (my good right), but suddenly you cannot read me either? That's strange.
I would like them to remove all shit and let the users pay 2 eur per month. That's fair. But then remove all ads and move the t.co tracking links back to nontracking ones.
okay. They got the letter with some agents attached. Don't they get the piece of paper? If not... they at least get all relevant information, as what (who) they want, that this actually IS a NSL and so on. Some rumors which may be more or less confidential dending ond the handling of the issue.
I do not even mean to be disobedient about some measures, but transparent. This means, give them the suspect's data, but make sure your users know, that their data be at risk.
Looking at lavabit, it they must have some real threats, because they did everything to comply without complying (printing the Server Key with a tiny font, but then giving it to the FBI) instead of just deleting it accidentally when asked for it. So they must have feared something.
I am not speaking about this case, but in general. Because my impression is, leaking something like this is what a nice company would try. But they are not allowed to do so. But if enough people know it (so nobody can later be sure, who of the 100 employees were involved in the leak) something may happen. Of course its quickly undone and internet is known for forgetting leaked things really fast. And the revision tracking system just had the need to restore a backup, which sadly overwrote the logs of the changes in between.
> FBI would go after Google's deep pockets rather than try to pin the crime on an individual. That's the interesting part. What does happen to a company, which does not comply to the gag-order part of the NSL? If only all companies at once would start publishing NSLs as soon as they get in, the FBI could not prosecute them all. It's the atmosphere of fear, which prevents civil disobedience. You hear NSL and get images of guantanamo in your head.
Slashdot Mirror
> Jailbreaking the device is the last thing you want to do if you are worried about security. The best way to get shady apps on an iPhone is to jailbreak and use a 3rd party app store to load crap on to the phone.
Just like a PC. You can use every app, without any signatures, restrictions, etc.
WHAT? Everyone can program a PC app? You can install programms, which are not verified by your OS manufacturer? This MUST be dangerous! Let's outlaw such devices!
But as said, iOS jailbreaks ARE quite shady, because they are uncommon and apple actively works against an open ecosystem for jailbroken phones.
On Android, the "jailbroken" phone is the better one.
You're just thinking of the mic, i am thinking of a solution to all data leaks. And there is no help on iOS, neither on most stock androids. But on android phones YOU can fix it. on iPhones ... good luck.
For your phone:
1) Use an android phone. If you have an iPhone, forget it. There is no way to help you* on the iphone, except installing no apps at all.
2) Root your phone. I hope you thought about buying a rootable phone in step 1).
3) Install XPosed http://repo.xposed.info/
4) Install XPrivacy https://github.com/M66B/XPriva...
5) Consider donating for XPrivacy to get a Pro-Key and to help them develop this awesome project.
6) Think about installing AFWall+ as well, to cut internet access for some apps. XPrivacy can do this, but using AFWall is an easy way.
* Maybe with a jailbreak, i do not know the ecosystem of free apps for jailbroken iPhones. On the other hand, who wants to fight with apple all the time, who tries to lock you out again with each update? Just upgrade to an Android Phone. Nexus phones are a good choice.
Mozilla does enough tracking with firefox as well. Have a look at ffprofile.com for what actually happens (and how to disable it).
Ad targetting means trying to get the ads to certain groups of people, to get it to the people interested in the product (or falling for your scam).
If you target on the finanicial income, gender, the color of my car or the color of my skin doesn't matter.
People may target their ads based on stereotypes, but they probably won't. They will target them in a way, which maximizes their profit. The evolved way (think of a-b-tests) will possibly show, that some stereotypes emerge, because they are true (in the sense of the law of big numbers, not in the sense of every individual), others will just be equal as the stereotype isn't verified by the data.
You may argue, that targetting is bad for several reasons (i.e. that this is the reason why companies think they need to spy on you), but if you accept targeting, you should not make any difference in the criteria.
you're confusing color with brightness. In the best case you would have good e-paper and light it as you like it. ... for black you know it. That's why some people like light on black, as the background will always have a nice dark tone (as black as the device can get). See the hackaday example above.
We're currently stuck with backlights, but you just do not know the brightness of the monitor.
Wait
You're missing out the major ones.
vi(m), emacs, nano, kate, gedit, notepad++
Who uses stuff like atom.io? Thats niche.
"because it's better" are four words.
What a horror of a law :-(. No wonder, the USA cannot guarantee things like the safe harbor agreement.
It's still only informing them, that the certificate is still in use. And if its your lan and you're really want to avoid it, switch OCSP off in the browsers in your lan. You can do it there, not like an internet site, which cannot avoid the default config of its visitors.
From the beginning it was the shitposter-frog.
Stop domain grabbing and forbid to use domains, which do not match the purpose.
a .com domain should be commercial, some american site should use .us. Use other country codes for offers in the country (i.e. bmw.de for german BMW site, bmw.us for the american one linking to bmw.com for some online shop with car parts), restrict .info to non-affiliated information sites, etc.
With such a rule, people could finally get free TLDs again. Try to get a four letter domain. Everything already registered, mostly redirecting to the main domain. Let some organization with initials bmw have bmw.org! some person with initials BMW gets bmw.name and bmw.email is reserved for a mail provider.
TLDs have failed. People just use country codes or .com and redirect others. Only exceptions are people using cool domain hacks (think of del.icio.us) or nice domains in the new namespaces like hilbert.space. But that are mostly nerds, anyway.
I am having 45 ESR from mozilla.org
My 45 ESR asks me if i want to disable it on first run. Did not try newer ones, yet.
Its on by default, but you get a notification on the first run that it's enabled with a "disable" button.
> By that standard, just using the web amounts to using spyware
It is. Without adblock, self-destructing-cookies and so on, almost every site is spyware. Have a look at the domains, which such tools block on slashdot. And then on a major news site. Its a nightmare, really.
And you should read the section about ocsp stapling.
that's wrong. A few telemetry features are in each firefox and on the first run you get a passive notification "Firefox collects some data [learn more][disable]".
They are spying and it's called telemetry. There are ways to disable it.
Have a look at ffprofile.com for more firefox tweaks. There is a lot of internal spying, which can be removed on a profile generated with ffprofile.
They try to be a new facebook, as investors do not understand what makes twitter a great tool. And on the other hand, the twitter idea may be hard to monetize anyway. So a small fee may be the better idea.
I like the concept of gnusocial, which is more or less a twitter clone without the crap and a api which isn't limited. It just doesn't have the users ...
And i am not sure if the federation scales, but that's the same for diaspora ans similiar networks. OTOH it will concentrate on big hubs anyway.
Maybe i underestimate this ...
I would have thought they come and want me to get them data. No way i let them install something in the server room without internal procedures, which ensure security and so on, that my admins know what happens and why, if they cannot do something with it they need at least to know that someones IS changing things.
Then i would of course want to talk with other management staff, even when i do not tell them what exactly is happening.
What you write sounds more like james bond operation, where the secret agents come in and walk with suction cups into the server room to avoid any traces a admin can find afterwards, while threatening me with a machine gun, so i won't have the idea to object to anything.
The moral side of the story is another one. If you trust your government, there isn't so much to object giving out the data, as far as its limited enough to one person and i.e. without contact lists which may contain innocent persons. Of course you may have a strong stance against it, but i at least understand why some people do not have it. But i doubt, that they only target terrorists. If they knew it was an terrorist, they would target him and not his data. Good old police work instead of demanding data. Leading to persons instead of surveilance.
More and more unfeatures, but not listening to its users anymore.
The app has way too much ads (open a tweet and you see always a big ad below the replies), the web interface is slow inefficient and buggy.
Users demand since years an "edit last tweet" function, but they always get something else they did not ask for and do not want
- Videos have now autoplay!
- You can retweet yourself!
- We change the length of tweets, fuck you users of the old app
- Moments
Further they have strange ideas about blocking. Following is asymmetric. Cool. I do not need to read you, but you can still read me. Thats better for a site like Twitter than mutal friendships. But blocking is symmetric? I block you (my good right), but suddenly you cannot read me either? That's strange.
I would like them to remove all shit and let the users pay 2 eur per month. That's fair. But then remove all ads and move the t.co tracking links back to nontracking ones.
okay. They got the letter with some agents attached. Don't they get the piece of paper? If not ... they at least get all relevant information, as what (who) they want, that this actually IS a NSL and so on. Some rumors which may be more or less confidential dending ond the handling of the issue.
I do not even mean to be disobedient about some measures, but transparent. This means, give them the suspect's data, but make sure your users know, that their data be at risk.
Looking at lavabit, it they must have some real threats, because they did everything to comply without complying (printing the Server Key with a tiny font, but then giving it to the FBI) instead of just deleting it accidentally when asked for it. So they must have feared something.
I am not speaking about this case, but in general. Because my impression is, leaking something like this is what a nice company would try. But they are not allowed to do so. But if enough people know it (so nobody can later be sure, who of the 100 employees were involved in the leak) something may happen. Of course its quickly undone and internet is known for forgetting leaked things really fast. And the revision tracking system just had the need to restore a backup, which sadly overwrote the logs of the changes in between.
> FBI would go after Google's deep pockets rather than try to pin the crime on an individual.
That's the interesting part. What does happen to a company, which does not comply to the gag-order part of the NSL? If only all companies at once would start publishing NSLs as soon as they get in, the FBI could not prosecute them all. It's the atmosphere of fear, which prevents civil disobedience. You hear NSL and get images of guantanamo in your head.
Maybe google exercises its right to be forgotten? :D