![](/static/66c60d9f/assets/icons/icon-96x96.png)
![](https://lemmy.one/pictrs/image/0f5e05b5-d351-4add-9667-1df4c43091b4.png)
You could archive chats encrypted too.
You could archive chats encrypted too.
Something you know, something you have, something you are.
3FA:
You could also start with just one of these
Some way to encrypt the decryption key.
This could also mean TPM + Pin. Or using a Nitrokey, externally, which stores the password to decrypt the decryption key.
That is how user account unlocking (on GrapheneOS with Pixel phones) is done.
opportunistic TPM integration would be nice.
I.e. use the security chip of the device, if one is found. Otherwise use password.
OR use a Nitrokey etc, which can act as a secure device to store these keys too.
Take that, Windows. You dont need a builtin TPM if you can use a Nitrokey 3 with a secure element, externally.
Finally! Their deb was broken even on Ubuntu, and Appimages are no real option.
But the size is insane, Electron is really an issue.
Also, the app just works if your phone is in the same LAN, and requires an open port which is also randomized, so secure firewall configs are very problematic, as you need to open the port manually every time.
Horrible… this is just horrible. The Android app is 300MB and it is the actual client.
The Desktop app is just a relay “receiver”, it doesnt work without the phone.
And it also uses a randomized port everytime which you need to allow, every time… at least using normally secure firewalls.
Thanks for the info
Yep and hope their servers dont have equally bad code.
He says Windscribe sucks. Mullvad obviously not as they are regularly audited
Killswitch is the extreme one, if the VPN is off no connection gets through.
Blocking is similar but allows to split tunnel
Yes, blocking mode and kill switch.
Yes you can do that. Keep an eye on blocking mode as that may be unavailable
And you can still contact the FSF so mail you a copy of the GPL ;D
Damn! This is good news as I use NoScript for years now.
Noscript manages cookies? Are cookies only loaded if you enable javascript?
PiHole is obviously not a solution…
Yeah that factor may not be wanted. But it is a security factor, because only you have it.
You could hash it securely so the computer gods dont know your fingerprint. And you could only use it in addition to another factor.