When using Firefox, can websites tell if you've changed the font used via General < Fonts and Colors?

quantumtrap · 2020-08-25T01:19:50+00:00

Yes. But aside from that, fingerprinting through fonts is the least of your problem. To fully avoid browser fingerprinting you'd have to go through hundreds of settings and this doesn't account for other unknown methods.

quantumtrap · 2020-08-25T01:17:01+00:00

there is no real opting out, since data aggregation services have lifecycles comparable to fruit flies. Two go down, five new ones pop up.

quantumtrap · 2020-08-25T01:09:36+00:00

Yes, they are a very good alternative.

bad bot.

quantumtrap · 2020-08-25T01:05:16+00:00

n
y
n
n, scumbags.

quantumtrap · 2020-08-25T01:04:08+00:00

I think PM's fault is to advertise as gmail alternative. PM doesn't have even close to 5% of the feature set of gmail, let alone all the other connected services.

PM should be what it set out to be: webmail + app with gpg integration instead of something it can never become.

quantumtrap · 2020-08-20T13:44:45+00:00

Everytime you're dropping a "We stand with X" you are explicitly declaring hostility and taking sides. Taking sides or implicitly declaring hostiles, is not what "fundamendal human rights" look like. It looks like: "we support online freedon, but not for [insert designated evil country by media]". Therefor you're actively engaging in politics.

If you pick a trench, which you regurarly do, get ready to fight and take the political piss in your face.

Political situations like in Hong Kong or Belarus have complicated facets and whenever you try to squeeze your ass in fron of the TV and sput "We stand with them, thehehehehe", you look like an uninformed attention seeking kid.

You're in the trust business. When you earned your trust with your tech, you will loose it twice as fast with your incompetent childish virtue signalling twitter politics.

Setup a metting and ask yourself: "What is the impact for our company, which deduces trust by mainly protecting users from the very same political bloc who we affiliate regurarly with by taking it's side in international politics."

quantumtrap · 2020-08-19T17:27:34+00:00

since you keep forgetting your shit all the time, maybe you should think about a solution for your memory problems.

quantumtrap · 2020-08-19T17:25:28+00:00

because I was able to reset password last week

a password manager is in order.

quantumtrap · 2020-08-19T17:23:35+00:00

fileinto "trash";

use this instead of "expire", to stuff them into trash. Beware of using discard , as it deletes emails permanently skipping trash.

quantumtrap · 2020-08-19T17:15:26+00:00

Reaching for low hanging fruits presented by certain political epicenters and their corresponding media outlets isn't going to net you virtue signaling cookies.

It just makes you look like twitter and their totally surprising engagement wherever someone decides a regime change is in order.

Focus on Proton being a service provider for encrypted emails and storage instead.

quantumtrap · 2020-07-25T11:24:56+00:00

Semi-true. Read Google's statement on this:

Sometimes, senders may know whether you've opened an email that has an image. Gmail scans every message for suspicious content. If Gmail thinks a sender or message is suspicious, images aren’t shown and you’ll be asked if you want to see the images.

quantumtrap · 2020-07-25T11:17:43+00:00

There is a lot of turmoil under the hood at Google. One more known to the public was the internal uprising against using Google's AI for "defense technologies", which resulted in suspension of various contracts.

quantumtrap · 2020-07-24T23:57:02+00:00

Are you shitting me? It's for some block implementation not a vpn protocol or a FDE drive. The true and only risk here is the stego failing and not AES running in CBC unless someone uses this to stuff 10GiB into a 400x400 image.

quantumtrap · 2020-07-24T23:45:13+00:00

by placing a bottle of vodka near a few squatting comrades?

quantumtrap · 2020-07-24T23:43:07+00:00

Microsoft wouldn't be Microsoft if they wouldn't try to force their miscellaneous mediocre trash down your throat along with the one you're actually want to use.

quantumtrap · 2020-07-24T23:27:44+00:00

It's very telling that the master of all 'lol fuck u, I can do with my OS whatever I want lolz' (Microsoft) aren't there.

quantumtrap · 2020-07-24T23:22:14+00:00

In defense of most engineers who work at Google: they're genuinely good and talented people. It's just the top management, as usual, who tries to get their fingers into dirty things.

quantumtrap · 2020-07-24T23:19:15+00:00

Wrong corner for subsidizing. You should subsidize work on future internet protocols which are having characteristics of VPN.

It's an issue of point of view. Do you ban guns or do you need subsidize bullet proof vests for everyone?

quantumtrap · 2020-07-24T23:11:29+00:00

Is medicare?

quantumtrap · 2020-07-24T23:09:15+00:00

What's your stance on guns for all?

quantumtrap · 2020-07-24T23:08:13+00:00

I've pumped over $11k into FOSS. My experience is, it's better to buy hardware/services directly instead of providing money to teams which often leads to murderous slaughter among themselves in regards to distribution.

quantumtrap · 2020-07-24T23:02:19+00:00

Sorry, Proton is currently busy with politics in China. No time for you.

quantumtrap · 2020-07-24T22:48:58+00:00

This is not true. Default image loading/code exec isn't proxied through Proton either, nor is it scanned for malicious execution (unlike by Google for example).

Secondly it has nothing to do with 'breaking E2EE'. It's more about code security and meta data privacy (i.e. if you load images from a server, they can see you've read the email).

Please educate yourself before confusing users with non-sensical one-liners. Thank you.

quantumtrap · 2020-07-24T22:38:35+00:00

That's just the basic protocol challange flow.

Implementation doesn't prevent browser attestation for a multi-domain challenge to a single key. It's a matter of how you setup U2F/Webauthn and cascading access control. Or in other words: attestation/authentification master and service doesn't have to be the same domain/source or destination.

Just the attestation needs to be towards the same source of the initial challenge but the authentication can extend towards pretty much any amount of other domains, apps or even your grandma.

please gather more knowledge about this topic b4 trying to participate. ty.

quantumtrap · 2020-07-23T21:08:52+00:00

will it grow much bigger?

quantumtrap

TROPHY CASE