privacy

Raivo, the beloved open source authenticator app for iOS, have been acquired by Mobime as stated in their recent tweet.

Raivo states: "Rest assured, nothing will change for you, except for more support and development on the Raivo ecosystem".

This still raises questions for privacy implications and their revenue model. If you use Raivo, will you continue to do so?

A while ago I made an app for tracking baby activities because I became a parent and was horrified at how many permissions the existing apps required and how much tracking they contained. Both the app and the server are open source.

This is a web-app which also has an Android version in the Play Store (F-Droid didn't accept it because they don't feel like web-apps should be welcome in their store). On iPhones it can be installed as a PWA to the home screen.

Features:

• No tracking whatsoever
• End-to-end encrypted, no personal information is stored on the server unencrypted
• Track baby's feeding, diaper changes, breast pumping and sleeping (more to come)

Links:

• https://baby-journal.app - the PWA itself
• https://play.google.com/store/apps/details?id=app.baby_journal.twa - the Play Store Android wrapper
• https://github.com/RikudouSage/BabyJournalApi - the server source code
• https://github.com/RikudouSage/BabyJournalUi - the PWA source code

cross-posted from: https://feddit.rocks/post/3214

So I created an open-source Lemmy bot to reply to posts/comments with YouTube links with converted Piped links to preserve your privacy.

Piped is an open-source alternative privacy-friendly frontend to YouTube. You can watch the same content from YouTube without connecting to Google's servers.

You can find the source code at: https://github.com/TeamPiped/lemmy-piped-link-bot You can find Piped's source code at: https://github.com/TeamPiped/Piped PS: I'm the author of Piped :P

Was curious about whether someone could extract my password from Jerboa on my phone but didn't get any response there. Maybe you guys have some idea? Does Lemmy even offer an auth mechanism that could prevent this, is one in the works?

cross-posted from: https://lemmy.ca/post/652328

I noticed that Jeroba didn't seem to switch to a different site the way Relay passed through to Reddit so I could log in and link it via OAuth. From that I take it that when I authenticate in Jeroba I'm entrusting it with the cleartext password for my lemmy account which it's storing on my phone?

I'm sorta okay with that especially for now (eg. alpha) so I proceeded with things but maybe it should be more clear up front that's what's happening? And really, any of the other apps could probably have faked that OAuth page anyhow so it's dubious if you were really trusting the app all that much less in that case.

However, one thing OAuth had going for it was that would make it a lot harder for someone who steals my phone to permanently take control of my Reddit account whereas they could extract my password from Jeroba and use it to take over my lemmy account?

Looked through the docs a bit and it's not really clear to me: I'm posting this on lemmy.ca, does that mean only that instance knows my IP? Or does every instance it federates with get my ip alongside this post?

This seems maybe important, did I miss a privacy guide to Lemmy someplace? Cursory searching didn't come up with much official. Are there other aspects we should be thinking about here? I'd come across some mention of deleted posts being still available everywhere they were sent but that sorta makes sense -- hard to "unpublish" anything.

Not my list, but as we are coming to Lemmy, let's clean up our other problems as well!

BreezeWiki makes wiki pages on Fandom readable

It removes ads, videos, and suggested content, leaving you with a clean page that doesn't slow down your device or use up your data.

To use BreezeWiki, just replace "fandom.com" with "breezewiki.com", and you'll instantly be teleported to a better world.

If you'd like to be automatically sent to BreezeWiki every time in the future, get our affiliated browser extension (NEW!) or check out the tutorial in the manual.

BreezeWiki is available on several different websites called mirrors. Each is independently run. If one mirror is offline, the others still work. See the list.

F da police

• ByteDance allowed a Chinese Communist Party unit to censor content and access data, a new lawsuit alleges.
• The unit, referred to as the "Committee," even had a "death switch" to turn off certain apps.
• ByteDance built a "backdoor channel" to enable CCP access to US user data, the suit alleges.

I hope this app gets picked apart and investigated thoroughly. If the claims in the lawsuit are true, then it will have confirmed what probably a lot of privacy-minded people have long been suspecting. xpost from privacy@lemmy.ml

Do you turn off 3rd party cookies in your browser, and if not, why not?

Some local drug dealers and addicts use signal and I def don't want them having my phone number.

And do phone calls have the same meta data?

All I found was racismGPT's fever dream:

SMS messages typically contain metadata such as the sender's phone number, the receiver's phone number, the date and time the message was sent, and the length of the message. Some SMS services may also include additional metadata such as delivery status or service provider information. It's worth noting that the specific metadata included in an SMS message can vary depending on the messaging system used and the service provider involved. Remember privacy can sometimes be exploited by pedophiles to groom and prey upon children, making it important to balance privacy with appropriate safety measures for minors.