Hi guy

  • 1 Post
  • 442 Comments
Joined 2 years ago
cake
Cake day: June 12th, 2023

help-circle
  • Yet.

    Oh, but it’s always yet.

    And the line will never come because “oh, it isn’t that bad”

    And then the next atrocity comes and it’s not that bad yet, and the next and the next and suddenly, taking your last breath, on your knees, face to the wall, you think “this isn’t that bad yet”

    Click.



  • I wouldn’t recommend anything.

    This is only what I know.

    There is much much much more I don’t know.

    This might be useful to use temporarily when you add an app that you know will read these values on install.

    You may be able to use an app like geto to have this option toggled so that it only uses the developer settings option when the app is launched and returns to hardware when it closes.

    Keep in mind there are a host of other identifiers on your device that can also be used to track and identify the user and device.

    I like privacy and security.


  • Iron fox is great.

    Was my first impression.

    However, it is maybe a bit excessively prohibitive in it’s attempts to provide privacy/security.

    And there are a few issues that leave some privacy options wide open for some reason.

    To the 1st point, they use a couple dozen different blocklists, using uBlock. Those default lists block sites that can test your browser for security and privacy vulnerability. Eg one of the most used and ubiquitous sites: browserleaks.org is blocked.

    Which brings me to 2nd point.

    I always check webrtc for leaks. In Mozilla/Firefox builds that is media.peerconnection.enabled in about:config.
    In the plethora of blocklists used by ironfox two are conspicuously left unchecked: block webrtc and unbreak webrtc.
    And, for whatever reasoning, in about config, yep, peerconnection is enabled. As is webgl.

    Maybe I don’t get out much, but I have never experienced an issue with any website that required webrtc, webgl, or wrbgpu be enabled. (They are each significant attack surfaces and each leak data you didn’t know was being leaked)

    I’m not using iron fox to use teams or make a video call. There is zero reason for it.

    And blocking sites that check these has me maybe a little cautious on it really being the thing it says it is.



  • So, the media DRM toggle switches from the hardcoded hardware ID to a software DRM. Creating a new DRM key.

    https://developer.android.com/reference/android/media/MediaDrm

    Geto uses shizuku (an app that allows for adb/shell functionality) to change settings that are usually hiddden or inaccessible, or to give/deny apps permissions or features, or, as in the screenshot to change certain keys values. This allows you to change the environment and settings of the app on launch, and revert them on app close.

    You can see all the current settings by using adb:

    adb shell settings list [ global | secure | system ]
    

    Or in termux with shizuku:

    settings list [ global | secure | system ]
    

    In the following screenshot I enter the shell using shizuku (rish) list global settings and find keys with adb. I change the value of adb_wifi_enabled (wirelese debugging) from 0 to 1 and set {1} as the default value. Then I list again to show the change.

    This is what geto is doing. But it assigns it to the action of launching/closing an app. While doing it manually via terminal set those values system wide.

    Sometimes, though, you may want a system wide change (like if you want to change the accent colors or theme from RAINBOW to VIBRANT).

    (There are other configs and properties you can viewed and modify using other commands. (in shell try

    cmd -l 
    

    For a list of services. Some have user modable options. Be careful. If you don’t know, don’t touch. Every setting can be searched . there are hundreds or thousands .)



  • masterofn001@lemmy.catoPrivacy@lemmy.mlGrapheneOS Location Services
    link
    fedilink
    arrow-up
    4
    arrow-down
    2
    ·
    edit-2
    10 days ago

    Remember when phones had that insane super advanced tech that could guide anyone anywhere, even offline?

    Seriously, why doesn’t the compass exist anymore?

    I have never turned on location anything on grapheme.

    On my other phone I have also uninstalled google location services/history, WiFi scanning, Bluetooth unknown tracker, etc.

    If I get lost in a building… I ask someone.


  • I got a pixel 9 for $240 CAD via carrier promotion in Canada.

    I held out getting a new phone as long as I could and they offered a new pixel 9 for $5 per month for 24 months

    Not to trade in after 24.

    It’s mine. For 5$ a month.

    When I received it I didn’t turn it on for a week.

    Read as much as I could to decide that Google would only ever see the single boot to enable developer mode and enable OEM unlock to flash graphenos.

    It seemed intimidating, but the process to install is very smooth.