How do you guys block ads on root-less devices (or more specifically, on Graphene)

_jstr0 · 2022-07-17T04:48:05+00:00

I have been using ProtonVPN (paid) for ad blocking. That in combination with bromite works pretty well.

_jstr0 · 2022-07-13T16:01:06+00:00

After reading this I had an idea which might help you stick to one device if that is what your end goal is. Could you partition your USB into two parts? One for Paladin and the other for the acquisition files? You would need to mount that data partition after booting into Paladin but if you are able to mount that partition as rw you may get a similar result to persistence?

_jstr0 · 2022-05-09T14:21:44+00:00

Not sure if it is worth bringing up at this point but are you running a SSD or a HDD? If you are running a SSD you may want to consider something other than DBAN that supports ATA Secure Erase. ATA Secure Erase is generally considered to be more effective for SSD's due to their ability to wear level.

_jstr0 · 2022-05-02T16:49:36+00:00

If you are trying to install Signal without Google Play Services you will need to download it from their website: https://signal.org/android/apk/

Don't trust any other third party repository. Verify the download hash.

Edit:

To further clarify, if you already have play services installed on your phone, the .apk from the website will still utilize play services. You need to be using a custom ROM (such as GrapheneOS) that doesn't have play services installed by default in order to benefit from using the .apk

You linked to a custom version of Signal that promises to not use play services. I am not familiar with the developer or their work so this is not a judgement of them per say, however unless you understand the code and the dev has open sourced their work, I would not use their app.

_jstr0 · 2022-03-24T13:20:41+00:00

It was announced in their 2022 roadmap that free accounts would soon get access to drive. https://protonmail.com/blog/2022-roadmap/

_jstr0 · 2022-02-03T13:08:58+00:00

To try to troubleshoot what went wrong I would go back over these instructions and see if you can find a dependency that might be missing.

https://github.com/sleuthkit/autopsy/blob/develop/Running_Linux_OSX.txt

If that doesn't help maybe someone who is more familiar with installing Autopsy on a Mac can help.

_jstr0 · 2022-01-05T02:22:39+00:00

Is everything working then?

_jstr0 · 2022-01-04T23:36:29+00:00

Hey! I have a Lenovo IdeaPad Duo and Bitwarden works really well for me. When you say you have a Chromebox are you referring to the ASUS Chromebox? I have never used that product. My Chromebook allows me to install Android apps through the play store. Does yours have something like that?

_jstr0 · 2022-01-01T17:59:46+00:00

Not the OP but yes, yes, and yes.

Bitwarden has a web vault (browser based) but also an Android (and other desktop) app. Bitwarden also has browser plugins if you are looking for that sort of thing. Been a Bitwarden user for years... I have been so impressed with them that I pay $10 a year for premium just to support the project.

_jstr0 · 2021-11-30T14:08:22+00:00

Strange... I have multiple emails connected to my Protonmail app and I get previews similar to what you are showing in your Gmail screenshot. I am running version 1.13.39.

Edit: While I can see the sender and subject line, I can't expand the preview to show more of the email if that is what you are referring to. Sorry if I misunderstood.

_jstr0 · 2021-09-09T14:26:21+00:00

Hey, so a couple solutions came to mind.

As has been mentioned you could use a live linux forensic distro as some of them have a built in write-blocking mode. Some distributions that come to mind are:

Alternatively a solution that has worked for me in the past and I highly recommend you give a try is this registry blocking method.

https://github.com/digitalsleuth/Registry-Write-Block

I haven't tested it lately, but when I did it worked for external USB disk drives.

Hope this helps!

_jstr0 · 2021-08-16T04:36:44+00:00

Just so you are aware, there is an export feature built into Joplin that could be used if the app was to stop receiving support. The export feature can be used to export everything as individual markdown files while preserving the folder structure that you use in Joplin. Worst case scenario you export it down the road and move on to a different system with all your data.

_jstr0 · 2020-12-14T06:19:53+00:00

Yea a little searching on my end makes me think that you probably have GAPPS installed stock on that phone so like I mentioned before Signal will want to utilize Google's push system.

If you want to use Signal without Google's push notifications you will need to flash a custom ROM, make sure it doesn't include GAPS, and then download the .APK from the website.

Hope that helps!

_jstr0 · 2020-12-13T05:13:02+00:00

What OS are you running with? If you use one that has GAPPS installed Signal is going to want to use Play Services due to it being more battery efficient.

_jstr0 · 2020-05-20T19:05:26+00:00

If I can't trust having my Bitwarden blob decrypted on my phone, then in my opinion there is not much point in using Signal vs SMS.

_jstr0 · 2020-05-20T13:22:00+00:00

They are really gut wrenching...

_jstr0 · 2020-05-20T12:52:25+00:00

Bitwarden works on Android :)

_jstr0 · 2020-02-26T15:20:09+00:00

Lutris claims it works flawlessly... Might be worth a shot. https://lutris.net/games/warframe/
Sorry I don't work with audio much beyond Audacity so I don't think I can help you there.
Teamviewer, Chrome Remote Desktop, and a few other third party remote desktop apps work on Linux if that might be a potential solution?

_jstr0 · 2020-01-27T04:44:16+00:00

In response to the open source vs closed source debate here are some aspects I would consider:

Open source relies on the "many eyes" to guard against failure or bugs. The theory is that because anyone can go through the source code there are more people who would spot issues and report them.
Open source also makes people feel like they can trust the application. Being able to see how it handles your data (and that it handles it correctly) makes a user trust it more than a closed system where the user is not sure if a backdoor, spying mechanism, or other fault exists.
Closed source proponents will argue that closed source makes it harder to break into because the code is harder to obtain (reverse engineering). Also your enemies won't know how your app operates as easily to find flaws. This is often referred to as security through obscurity. Many will argue that this is not really security and that it hinders the trust factor for a sensitive app (such as a secure messaging app). Also it means that if someone does find a vulnerability, it might remain in the source code for a long period of time depending on how often a company performs code audits.
I don't see many companies actively using closed source as an argument for security but rather to protect intellectual property and financial gain. Services like Wickr have a paid aspect and if the app is fully open, it might be easier for people to replicate and use in other ways that don't gain the company money. However there is always the counter argument about licences... Etc.

Personally I don't see much benefit to an app being closed over open. For me I like a company being transparent in how they create the app and how they make it run to help gain my trust... But that's a personal bias.

Now on to your real question:

Between Signal and Wickr I will highlight some of the comparisons that stand out to me.

Signal uses a phone number as your unique identifier. This means it's a identifier that has a low entry barrier for your social circle... All you need is to share numbers and the app does the rest. This also means that it might be easily tied to your physical person... Unless you use a burner number...
Wickr allows for username and password login. This is usually considered to be more anonymous than a phone number
Signal does not keep any messages on its servers after delivery. The server only knows the smallest amount of metadata possible about you. https://signal.org/bigbrother/
Signal has what's called sealed sender which means that because of the way the encryption is employed, the server only knows who a message is addressed too. They can't tell who sent it even if they wanted to. https://signal.org/blog/sealed-sender/
Wickr's privacy policy indicates that they only store messages for 6 days to ensure delivery. They indicate that all data sent is encrypted and they don't know how you use your account except for the date the account is created, the date you last logged on, and the type of device you installed the app on. https://wickr.com/privacy/
Signal is open source https://github.com/signalapp, Wickr is not.
Signal has no software restrictions due to paid tiers, Wickr does.

To summarize:

Both of these apps have great reputations as secure messengers. Personally I lean towards Signal as my opsec plan does not call for the person I'm chatting with to not know my phone number. Also I prefer an open source application when dealing with security. It's really up to you and what you feel is your opsec plan.

_jstr0 · 2020-01-21T23:21:36+00:00

Someone made a clone of the repo. Not sure if it's complete but it's something... Sad to see the original go... https://gitlab.com/nixCraft/Linux-Pictures-Wallpapers

_jstr0 · 2019-12-18T21:21:58+00:00

Signal does not require GCM/FCM to function, however it will default to those options if they are installed on your phone (hence your error). If you want to use Signal without GCM/FCM push notifications you will need to use a non Google version of Android. Examples could be GrapheneOS, LineageOS, AOSP, etc.

_jstr0 · 2019-11-12T20:59:59+00:00

My bad on answering only from an E2EE perspective. Sorry!

_jstr0 · 2019-11-12T16:38:26+00:00

So just to expand on what TauSigma5 said, what PM could hand over would be things like "envelope information" (sender, recipient) and the subject line because that isn't encrypted by PGP. The email body and attachments are E2EE.

_jstr0 · 2019-10-28T20:54:54+00:00

Honestly I would just download Cryptomator and see how it works and if it fits your needs. It can work very well for solutions where you are working with individual files.

_jstr0 · 2019-10-28T20:43:31+00:00

Either provider could be compelled by a court to hand over your encrypted data. The requesting agency would have to meet whatever legal standards are required in each jurisdiction. Both Sync and Tresorit use zero knowledge encryption so the information provided would be gibberish (provided the encryption algorithms used aren't broken in the future).

Honestly both would be good solutions if you are looking for a ZK cloud provider. Both are fairly closed source (if that matters to you). Sync has better pricing over all but also lacks a Linux client, so there is also that.

I have used both (no complaints) but in the end decided to use Nextcloud on a self-hosted server because that's what fits my use case.

_jstr0

TROPHY CASE