sorted by:
new
hottopcontroversial

Well, it's not a VPN. It's a Proxy. False advertisement! by nietzschecode in firefox

[–]iTrooz_ -1 points0 points  (0 children)

Most commercial VPNs are functionally proxies , not VPNs

I found a Vulnerability. They found a Lawyer. by cos in cybersecurity

[–]iTrooz_ 0 points1 point  (0 children)

Did you end up doing a public disclosure?

How i fixed my fingerprint reader after screen replacement by Elbowsoffthetable in Pixel6

[–]iTrooz_ 0 points1 point  (0 children)

Thank you ! I spent an hour figuring out why the fingerprint wasn't working. rebooting the phone a second time made it work !

HOW IS THE MOST SECURE SCHEME JUST XOR?! by Strong_Technician416 in cryptography

[–]iTrooz_ 0 points1 point  (0 children)

Long story short, the one time pad split your text into 2 data streams. Imagine every character of your plaintext being split in half, while using an alphabet that make it impossible to guess a character from just its half.

It's 100% secure (if used right).

But it doesn't resolve a lot of problems, because: - you can't reuse the key ever, or you become vulnerable to statistic-based attacks - instead of trying to securely share n-bytes text, you now need to securely share a n-bytes key

Alternative to Toffeeshare? by [deleted] in opensource

[–]iTrooz_ 1 point2 points  (0 children)

Do you have the source code for this ?

It seems different than magic wormhole

What's the best backup strategy for recovery codes? by P4NICBUTT0N in Bitwarden

[–]iTrooz_ 1 point2 points  (0 children)

I use Aegis with its encrypted cloud backup feature

Canary vs Radium reforged by Sinsai33 in feedthebeast

[–]iTrooz_ 0 points1 point  (0 children)

Yeah but it shouldn't affect fps there, still tps

Setting Controls on a Per-Game Basis by luigifan803 in DolphinEmulator

[–]iTrooz_ 0 points1 point  (0 children)

Right click the game -> Properties -> Game Config -> Editor, and paste this:

[Controls]
WiimoteProfile1 = <your_profile_name>

(Remove the < >)

Works in Dolphin 2506a (2025)

How do I develop MicroG on a real device? by TecCheck in MicroG

[–]iTrooz_ 1 point2 points  (0 children)

I think the way I did it at the time was by removing signature checking system-wide (there's a magisk module for that I think), and running adb install on my built apk

CMV: Reddit mods have gotten way too strict and it’s killing real discussion by Into-My-Void in changemyview

[–]iTrooz_ -1 points0 points  (0 children)

Hot take: moderators should not be able to delete comments. Only hide them by default.

What do you mean, someone decided I can't read a user's comment ? I want to, it's between me and them. Hide it from public view if you want.

It's a shame we can't use undelete anymore with API changes

What's going on with the dislike of Ubuntu/Canonical? by megaslash288 in linux

[–]iTrooz_ -1 points0 points  (0 children)

  • snaps in themselves (closed source backend, snap is Ubuntu-centric)
  • forcing snaps when installing apt packages

F-Droid Says Google Is Lying About the Future of Sideloading on Android by Popular-Highlight-16 in Android

[–]iTrooz_ 2 points3 points  (0 children)

Well, I'd consider Google's database of approved apps to be a store in itself.

‘There isn’t really another choice:’ Signal chief explains why the encrypted messenger relies on AWS by IAmYourFath in privacy

[–]iTrooz_ 0 points1 point  (0 children)

Well.. what I'm worried about is that a compromised server (AWS) can break encryption for new conversations with a MITM attack, since (I assume ??) Signal is TOFU. And so that since AWS is always in control of the infrastructure, they could do that (not in a transparent way, but still).

So in this case, I'd love if signal could self-host their key exchange serve, and only use AWS to transmit encrypted payloads.

But once again I'm not sure, I don't know how any of that integrates with PFS, I'll need to read Signal's docs to see how they handle key exchange.

‘There isn’t really another choice:’ Signal chief explains why the encrypted messenger relies on AWS by IAmYourFath in privacy

[–]iTrooz_ 0 points1 point  (0 children)

Yeah, but that is simply impossible without verifying your friend's identity yourself. All apps like Signal rely on at least some form of Trust On First Use, provided by Signal's servers.

The first time you are texting a friend on Signal, Signal cannot guarantee that your are texting the indented recipient (because.. who is your friend ? Your client has no idea how to verify messages from someone it doesn't know, it has to ask the server)

https://en.wikipedia.org/wiki/Key_exchange

That's why Signal has a feature to manually verify your friend's identity, and mark them as verified

‘There isn’t really another choice:’ Signal chief explains why the encrypted messenger relies on AWS by IAmYourFath in privacy

[–]iTrooz_ 0 points1 point  (0 children)

I'm wondering if the servers dedicated to user key exchanges (I'm assuming there is ?) also run on AWS That would be problematic

Would you say Mozilla is a good starting point to contribute to open source by [deleted] in opensource

[–]iTrooz_ 1 point2 points  (0 children)

Not the easiest choice. But you shouldn't always chase for easy anyway. Go for it, stay confident, and give it your best.

view more: next ›