Sure, here are some:

http://security.stackexchange.com/questions/259088/ddg#270934

https://en.wikipedia.org/wiki/Digital_signature

The main feature would be that if flathub (or a hacker with access to flathub) acted maliciously, digital signatures would prevent them from issuing malware infested updates to flatpaks. Only the software’s originator would have the cryptographic key needed to sign releases of the software.

The risk of dependency vulnerabilities is real.

Also, flatpak packages are not digitally signed, unlike apt and all other major Linux distro package managers.

Post-quantum isn’t really a big problem because it will be a very long time before there are viable quantum computers (maybe never). You should focus on the very real risks of security breaks from normal negligence and design errors.

Threema seems pretty unpopular, so the risk is highest. Signal and Matrix are both popular and have a lot of scrutiny on their cryptography.

All 3 have open source clients, but Signal contains some binary blobs. Only Matrix has an open source server, though end-to-end encryption enforced by the client alleviates most of the concern of proprietary servers. All 3 support end-to-end encryption.

It’s an issue.

You can’t create an account on desktop. You can’t create multiple accounts. You can’t create an account at all if you don’t have a phone number. You can’t create an account if your phone number’s previous owner created an account. Signal can be subpoenaed for your phone number.

This article seems like a lot of FUD written from an anti-FOSS perspective. In their second point, they say that F-droid’s inclusion policy is “ridiculous” for requiring programs exclude proprietary software. I think the author is ridiculous for asking for this. This is what F-droid is for. I don’t want any proprietary apps or libraries on my phone. If developers only want to work on their proprietary software, they don’t get into F-droid. If they make a modified FOSS version and put it in F-droid, and let it bitrot and go unpatched when vulnerabilities are discovered, and F-droid issues a security advisory for that program, that’s not F-droid’s fault.

I think that wormhole.app page is different software from magic wormhole (and warp). It just has a similar name. wormhole.app does appear to be proprietary.

Thanks. I think I found its homepage, is it the same as this? That looks like part of Gnome, so should be open source too. (It’s maybe available in your operating system without needing a flatpak, if you would prefer it that way)

I’m not familiar with warp, and couldn’t find it with a search. But I did find magic wormhole, and it appears to be MIT licensed, so it is open source. I also searched packages.debian.org and found it, so definitely open source.

As for firewalls: it might only block incoming connections, or has an exception for LAN hosts. I’d have to see the configuration to say more.

I’ve done this with Debian before, and it works fine. Linux usually mounts the root filesystem based on its UUID, so it doesn’t matter if changing the motherboard caused a change from /dev/sda to /dev/sdb .

If you use the proprietary Nvidia driver, make sure to update it to a version that supports the new video card. If you use the open source Nvidia driver, you should be fine even if it’s old, because it will at least support starting up in an unaccelerated mode.

Trump isn’t the politician I most loathe. He’s just the only politician that I’ve ever feared might kill or imprison me purely for who I am.

The article is from December, so the interviewer couldn’t have asked about their CEO’s recent betrayal: https://insights.priva.cat/p/does-proton-still-stand-for-anything

No, I would rate-limit them. OP is getting a non-rate-limited block. If OP has an ISP problem where they can’t access the site, this VPN may be their only option.

I think catloaf’s idea is good, but no tech company accepts RMA requests by paper mail.

I don’t use VPNs, but plenty of sites using datadome.co will arbitrarily block me at my residential ISP. datadome.co will first ask you to complete a captcha, and upon your success, you are immediately blocked with no recourse. Here’s a typical screenshot: (not mine)

The “contact support” link opens a contact form that goes to a black hole. I’ve filled out dozens, and never gotten a response.

That’s no excuse. An RMA form is something that all their customers are entitled to use. If anyone finds their IP address blocked, even a VPN IP address, then their warranty claim has effectively been blocked for an invalid reason.

The company has failed their warranty obligations.

Let me make one final plea, Mr. President. Millions have put their trust in you and, as you told the nation yesterday, you have felt the providential hand of a loving God. In the name of our God, I ask you to have mercy upon the people in our country who are scared now. There are gay, lesbian and transgender children in Democratic, Republican, and Independent families, some who fear for their lives. The people who pick our crops and clean our office buildings; who labor in poultry farms and meat packing plants; who wash the dishes after we eat in restaurants and work the night shifts in hospitals. They…may not be citizens or have the proper documentation. But the vast majority of immigrants are not criminals. They pay taxes and are good neighbors. They are faithful members of our churches and mosques, synagogues, gurudwaras and temples. I ask you to have mercy, Mr. President, on those in our communities whose children fear that their parents will be taken away. And that you help those who are fleeing war zones and persecution in their own lands to find compassion and welcome here. Our God teaches us that we are to be merciful to the stranger, for we were all once strangers in this land. May God grant us the strength and courage to honor the dignity of every human being, to speak the truth to one another in love and walk humbly with each other and our God for the good of all people. Good of all people in this nation and the world. Amen

(This is the end of the sermon, the part that addresses Trump. I couldn’t find the full text.)

I’m just gonna say let’s call a spade a fucking spade. Especially if there were two spades done in succession based on the reaction of the first spade.

If we’re calling a spade a spade, Elon is a flush.