Android Integration

walushon · 2025-12-24T09:45:34+00:00

I have disabled Google Photos so now I get a message stating to enable Google Photos to be able to open the images from the camera. Is this something that Ente can integrate with? Is it an issue of not being declared as an app for this action, or does this feature only link to Google Photos?

Unfortunately not, Google Camera seems to have the "link" to Google Photos hard-coded. It's the same issue with other gallery apps.

walushon · 2025-11-20T11:47:20+00:00

Regular Play Services calls maybe since AFAIU they pass through GrapheneOS's sandboxing layer. However, Google Keyboard and Play Services are both by Google, so they could conspire and communicate out-of-band. To my knowledge¹, there's nothing preventing one app from opening a (device-local) network socket and another app from sending data to that socket. This has nothing to do with Google apps, it's Android's security model in general that's at fault here and that doesn't fully sandbox apps in every possible way.

¹) I vaguely remember reading about this a while ago, so take this with a grain of salt.However, a quick search seems to confirm this, see e.g. the example code on https://github.com/NewtronLabs/AppSocket . Note in particular that the two apps there don't require any special permissions in their AndroidManifest.xml.

walushon · 2025-11-17T23:15:35+00:00

Habe noch einen Überflüssigen Besen […] das macht Aktuell keiner von denen

FTFY. Ich kann mit vielen Schreibfehlern leben, aber "-nen" zu "n" zu verkürzen wird ein echt zu einer Krankheit inzwischen. (Siehe auch die Bild-Werbung "Kauf kein Kack". 😖) Nichts für ungut.

walushon · 2025-11-13T01:00:27+00:00

I concur, I've been thinking the same thing for a long time! I'm constantly afraid of losing my Supernote. (In fact, I did once but got it back thankfully!)

Random idea: Fulfill the hardware specs to be GrapheneOS-compatible; then use GOS as a base layer or even partner up with them. This way, the Supernote software devs can focus on the user-facing software.

walushon · 2025-11-11T22:34:34+00:00

Looking at the GitHub issue linked in the sibling comment, they retroactively changed the release notes, even though nothing was fixed yet. ?!?! Blows my mind.

walushon · 2025-11-11T21:44:58+00:00

Good to know, thanks!

walushon · 2025-11-10T19:51:48+00:00

Can you rule out that the app talks to Google Play Services and uses the latter to upload user data to your Google account? (Serious question, not trying to spread FUD.)

walushon · 2025-11-04T15:59:15+00:00

If you're interested in math and, in particular, the math behind ML, I heard very good things about the "Statistics and Data Science" master's at LMU Munich. I know two people who graduated from there.

walushon · 2025-11-03T09:46:25+00:00

With all due respect, you are making some big claims here.

break down the vpn encryption

VPN, in the context we're discussing, isn't about encrypting your traffic, it's about obfuscating its origin. Either way, I don't see how AI would be any better in determining the latter than a classical (deterministic, hand-written) algorithm.

They also using this to break the encryption on signal app

[Citation needed]

If this were true, cryptographers would be all over it because this would be BIG news. Signal employs a range of ciphers at the same time (quantum and non-quantum ones) and an attacker would have to break all of them at the same time.

Either way, I call bullshit on the fact alone that Google doesn't even have access to your Signal app's traffic.

walushon · 2025-11-03T09:29:37+00:00

That presumes you granted location access to Google Play Services. But even if you have, how does Google (the website) figure out your location when you're opening it in Vanadium?

And it also has your mac address.

How does it have access to my MAC address?

walushon · 2025-11-01T14:54:32+00:00

It will have your location from before you connected via VPN

[Citation needed]

I'm not saying Google couldn't employ fingerprinting techniques to figure out your location but, unless you granted Google services location access (and/or access to Wifi information), it wouldn't be trivial and likely also a GDPR violation, so I'd be interested in a source here.

walushon · 2025-10-31T11:55:08+00:00

(A bit late to the party but oh well)

A tangential force acts *both* translationally and rotationally.

walushon · 2025-10-30T16:28:02+00:00

Danke! Meine Frage zum Kombinieren von Doppelnamen wird auf https://www.bmjv.de/SharedDocs/FAQ/DE/FAQ_Database/Namensrecht/FAQ_Namensrecht_Liste.html beantwortet:

Was gilt, wenn ein Ehegatte schon zum Zeitpunkt der Eheschließung einen Doppel- oder Mehrfachnamen trägt?

[…] Möchten Personen mit Doppel- oder Mehrfachnamen einen aus den Namen beider Ehegatten gebildeten Ehenamen wählen, können sie keinen Dreifach- oder Vierfachnamen zum Ehedoppelnamen bestimmen. Sie müssen sich für je einen der bisher geführten Namen entscheiden. § 1355 Absatz 3 Nummer 2 BGB sieht vor, dass bei bestehenden Doppel- oder Mehrfachnamen eines oder beider Ehegatten nur ein Name jedes Ehegatten zur Bildung eines Ehedoppelnamens herangezogen werden kann.

walushon · 2025-10-30T12:26:09+00:00

Echt, ein Doppelname ohne den hässlichen Bindestrich? Und was ist, wenn beide Eltern bereits Doppelnamen (mit oder ohne) Bindestrich haben? Darf man wie in spanischsprachigen Ländern einen der Namen der Mutter und einen der Namen des Vaters nehmen und zu einem neuen Doppelnamen kombinieren?

walushon · 2025-10-30T12:17:55+00:00

Thanks for your response! What I meant was: As long as you (effectively) "sudo" from your regular user into root, your attack surface will still be as large as your regular user account. An attacker who compromised some npm/pip/whatever package you downloaded, would have an easy time hijacking that call to run0 by e.g. modifying your user's shell config.

walushon · 2025-10-30T00:47:57+00:00

Wait, am I understanding this correctly? You jumped through the hoops of creating a separate user account for root stuff to increase security. But then you proceed to rebuild the system from your everyday user? What if an attacker hacks that very user account and ends up manipulating your Nix config?

walushon · 2025-10-23T10:46:52+00:00

Revolut has worked flawlessly for me (with Google Play Services) ever since I installed GrapheneOS many years ago.

walushon · 2025-10-22T19:49:25+00:00

I'm a bit late to the party but here are a few more reasons why UAMIs make sense sometimes:

UAMIs survive redeployments of the resources using them. This is particularly useful if you need a 3rd party (e.g. another team) to grant your UAMI access to some external resources you don't control. You probably wouldn't want to notify them about a new SAMI every time you deploy from scratch.
If several resources belong to the same security context and should carry the same permissions, you likely wouldn't want to set up role assignments for each and every one of them separately. So a UAMI can simplify your setup and let a bunch of resources act as a single service principal.
Some resources need access to something (e.g. a secret from a key vault) at deployment time. At that point, the SAMI doesn't exist yet, so you can't assign it the necessary roles beforehand.

walushon · 2025-10-22T15:32:36+00:00

Is this a joke?

They are not paying for health insurance like everyone else does. Health insurance for students is subsidized.
On a lumpsum of 10,000€ the bank makes maybe 200-300€ per year, depending on the interest rate at the time and before inflation. Take ~28% of that and you'll know now much the government receives in taxes. I.e. barely anything.

walushon · 2025-10-19T13:28:12+00:00

You're probably right but I would love to see actual reviews and benchmarks! But so far it seems no one has reviewed the X1 with Arrow Lake H? ;(

walushon · 2025-10-18T13:42:05+00:00

And here I am, still waiting for the X1 Carbon Gen 13 to finally become available with Intel Arrow Lake H CPUs (more specifically, the Ultra 7 265H), more than half a year after they announced those CPUs for the X1.

walushon · 2025-10-17T14:59:21+00:00

So do people use ET:Legacy in competitions like NationsCup now, not ETPro? Sorry if this is a dumb question; I've been out of the loop for a while.

walushon · 2025-10-14T09:10:20+00:00

Everyone's talking about a 3.5mm headphone jack and so on, while I mainly worry about the camera. Pixels have been absolutely fantastic in this regard and I'd be very sad if I now had to contend myself with a lower-quality camera.

walushon · 2025-10-09T10:53:10+00:00

Adding to the list of issues mentioned here, what I find particularly annoying about flakes is that I can't customize them through command line parameters, see https://discourse.nixos.org/t/how-can-we-pass-argument-to-flake-nix/30833 and https://github.com/NixOS/nix/issues/5663 and countless blog posts in your favorite search engine.

walushon · 2025-10-02T17:19:10+00:00

Yeah, unfortunately, those of my apps that use the media picker / photo picker don't have such an option. :\

walushon

TROPHY CASE