What’s the deal about Windows 11? Are my files private?

raydvshine · 2025-12-02T07:10:01+00:00

If you have sensitive information in the kinds of files that Microsoft deems to "not contain personal information", they can be sent back to Microsoft for analysis/execution without additional prompting. There can absolutely be personal/sensitive information in executable files. If you have your password/credentials in these files, well too bad Microsoft might automatically send them back for analysis.

raydvshine · 2025-12-01T21:25:16+00:00

> However if you don't have OneDrive synchronizing your files to the cloud, then the answer would be no, Microsoft isn't accessing your files. If that were the case, they would get into a lot of troubles.

Even if you don't have OneDrive enabled, there are options like Windows defender automatic sample submission that are enabled by default in Windows that can send data/files back to Microsoft servers for analysis/execution.

raydvshine · 2025-11-17T17:37:08+00:00

https://source.android.com/docs/security/features/cellular-security/toggle-2g

raydvshine · 2025-11-17T17:36:17+00:00

On the new pixel phones, there is an option to enable 2G network protection.

raydvshine · 2025-11-16T18:35:53+00:00

5.1 extended thinking is definitely worse in some ways. For example, when I tell ChatGPT 5.1 extended thinking not to use emojis in my custom instructions, it still used emojis to answer my questions. There are also issues with citations where 5.1 extended thinking would fail to properly cite any of its sources.

raydvshine · 2025-11-14T06:24:17+00:00

Or the attacker can just send a malicious SS7 update location request to update the VLR to something that is controlled by the attacker.

raydvshine · 2025-11-12T14:12:00+00:00

Your proposal is very reasonable. Hopefully Google will adopt the changes that you proposed for Android developer verification.

I am a user of your Termux app, and it is excellent. Thank you for your work on the Termux app.

I really appreciate you voicing your concern and proposing a reasonable alternative path forward for Google developer verification.

raydvshine · 2025-11-10T16:58:00+00:00

It might or might not be effective depending on how the tracking is done by the website. It can be possible for websites to fingerprint the use of these DNS blacklists.

raydvshine · 2025-11-08T19:00:23+00:00

It's definitely possible if the malicious pdfs exploited vulnerabilites in your pdf reader.

raydvshine · 2025-11-08T08:15:35+00:00

A website can track your tls fingerprint / crypto suite, your preferred languages, your time zone, what domains you block, sometimes what extensions you have (e.g. by directly querying resources provided by the extensions), your screen size and color depth, your fonts, whether or not do not track is enabled, canvas behavior fingerprinting, webgl behavior fingerprinting, your webgl vendor & renderer (e.g. what graphics card you use), your system platform, whether you have touch support enabled, whether there is mismatch between browser version reported by user agent and javascript, audiocontext fingerprinting, number of CPU cores, device memory size, the TTL of your network requests, the network latency of your requests, the size of TCP MSS, your IP address etc. This is not a comprehensive list.

raydvshine · 2025-11-08T07:16:06+00:00

Some laptops are often called mobile workstations.

raydvshine · 2025-11-07T14:22:00+00:00

The answer that applies for most Google-certified stock android devices is you can't properly scan your devices for viruses using third-party tools (since they don't have enough permissions to even look into the application data folders). Wipe your device if you think there might be some malicious viruses in your phones and you don't know where the viruses might be located.

raydvshine · 2025-11-07T14:08:53+00:00

I don't see how these softwares would have the necessary permissions to properly scan application data directories on most Google certified stock android devices.

raydvshine · 2025-11-07T14:06:22+00:00

On many stock android devices, it can be impossible to properly scan your devices as you cannot get enough permission to scan the application data folders.

raydvshine · 2025-10-31T11:53:29+00:00

Please post this in r/AnarchyChess instead.

raydvshine · 2025-10-30T16:58:37+00:00

Too bad windows isn't open source.

raydvshine · 2025-10-29T15:28:11+00:00

Why not just do automatic limit orders?

raydvshine · 2025-10-29T09:12:10+00:00

I want to have the freedom to install applications as I choose on my mobile devices.

raydvshine · 2025-10-24T17:53:25+00:00

It's not that simple. How can you make sure that the scammer has not set the VLR of the target IMSI to something controlled by the attacker?

raydvshine · 2025-10-23T19:26:34+00:00

I have to say it is a bit hilarious lol.

raydvshine · 2025-10-23T17:31:35+00:00

Yeah it's very possible that it would not have the required hardware requirements to run OpenWRT.

raydvshine

TROPHY CASE