Yeah, using your 12 or 24 words you saved elsewhere safely. First create a new wallet having a new set of 12/24 words and select an address to receive coins. Then restore the original wallet with your saved words and transfer you coins to the selected new address. Now your coins are safe in the new address and the new set of words are the ones you have to keep safe.
Interesting, I’ll check it out. I see the flapak release, will you make it available from flathub?
There are a couple of things you can do:
In both cases is extremely improbable that someone that grabs it will start to look for hidden or disabled apps in an old and seemingly discarded phone. That’s why nobody has to know that you save your keys in this way. Just grab an old phone, the older, cheaper and unatractive the better. Nature teaches us that disguise is the best way to hide. And in case is stolen, you have a good amount of time to move your coins to another wallet.
What you really need is an air gapped or cold storage and you can achieve this in many ways. I found that one of the best ways to do it is grabbing an old phone and following this guide. TLDR: install the software wallet and never connect the phone to the internet again and use QR codes to sign transactions using the camera. Practical, cheap, truly air gapped and doesn’t attract attention like a hardware wallet.
Posteo has an anonymized payment system, so you could pay with credit card and your payment information won’t be linked to your account.
Incarceration protects you from thieves and murderers, and sacrificing some liberty makes you safer.
It’s a script that I made some years ago. Give it executable permission and you can search (e.g. streema-cli jazz) play and save radio stations. I uses mpv. It loads saved stations when run with no arguments.
I moved to Linux, use Freetube, LineageOS on the phone, listen all day to internet radios from the command line, browser with uBlock add on and it’s been years since I saw or listened an ad.
No, IMO. For a real private android experience you have to switch to Lineage or Graphene and F-droid apps. I’m writing this from a Galaxy A5 2016 with LineageOS with F-droid only apps in one (main) profile and WhatsApp and a couple of other (in my case, sadly unavoidable) proprietary apps in another profile.
Here is a list of supported phones by LineageOS in case you are willing to switch.
Should I do the same if I want to expose an OpenAI compatible API to access an LLM to chat remotely on local technical documents?
Brother HL-1212w fully FOSS USB only monochrome laser. If you have a router with USB and openwrt installed you can share the printer over the network. Cheap old printer but works great for just printing.
Using vanilla LineageOS and apps from F-droid which are open source you are fine. Most spyware and malware come from apps so LineageOS with F-droid is huge step from stock android concerning privacy and security. And improved version is GrapheneOS but I don’t think is a necessity for the average user, if that’s your case.
If you use stock android and proprietary software, YES. Everything you type can be recorded before it’s encrypted.
Don’t fall into the illusion that you can have privacy with stock android. Google has admittedly igrored user settings to continue spying them.
Signal would only shrug and hand them metadata
So at the very least by using Signal the government can know everyone you communicated with, at what time and where. And still is considered a private messenger. Amazing.
Obviously you are missing the point. Even Gmail is private if you are going to do the job of encrypting your messages by yourself, but that’s irrelevant with what we are discussing here.
What we are discussing here is that if you are a company offering a service of encrypted communications located in the US, the government has all the power to force you to shut down if you don’t give them access to what they want. And that’s not speculation, they’re actively doint it because they are backed by the law.
Why people are so naive thinking that the government are not going to do something to get what they want when the law is on their side, when sometimes they don’t hesitate to do it even when it’s blatantly illegal?
The only way to avoid surveillance is with free, open source and descentralized software. If there is a company in charge of running the software that’s a vulnerability and, like the cases already mentioned, those in power are going to exploit it shutting the service down if the company doesn’t comply.
It doesn’t matter how much you like or trust the service, there’s simply no reason why they wouldn’t do it again when they already dit it successfuly. Why some people who care about privacy can’t see this obvious fact is beyond my understanding.
If it’s so easy why Lavabit and Silent Circle had to shutdown?
Since when is encryption dependent on the service’s jurisdiction?
The US has a law that applies to any US company operating within its borders: it is illegal to tell your users that the US government has asked your company to spy on their behalf. This is called a key disclosure law, and the US’s version of it, called National Security Letters, underwent an expansion with the PATRIOT act; by 2013, President Obama’s Intelligence Review Group reported issuing on average, nearly 60 NSLs every day.
Companies that don’t comply with this law are forced to shut themselves down, or remain open, and grant access to user communications to the US government. The Signal foundation is a US domiciled company and must comply with this law without being able to disclose that they have been issued an NSL letter.
Luckily we don’t yet live in that world
Comply with the government order of granting access to messages or shut down implies that we are already in that world, long ago. What makes you think that what happened to Lavavit and Silent Circle would not happen to Signal? Only wishfull thinking can make you think that, evidence tells you otherwise.
You are very naive if you think that a company located un the US can provide an encrypted messaging service that can be used by anyone including terrorists, druglords and US enemies without the government being able to access the messages. Lavabit was a famous case and had to shutdown because its founder rejected to comply with an order from the US government to grant access to information. If you are using centralized communication service located in the US forget about privacy.
”Lavabit is believed to be the first technology firm that has chosen to suspend or shut down its operation rather than comply with an order from the United States government to reveal information or grant access to information.[3] Silent Circle, an encrypted email, mobile video and voice service provider, followed the example of Lavabit by discontinuing its encrypted email services.[25] Citing the impossibility of being able to maintain the confidentiality of its customers’ emails should it be served with government orders, Silent Circle permanently erased the encryption keys that allowed access to emails stored or transmitted by its service.[26]"
“Levison (founder) explained he was under a gag order and that he was legally unable to explain to the public why he ended the service.[21]”
So it seems that letting LLMs to write sloppy posts for us can be useful after all. May be c/privacy should implement an automatic AI reformating XD