Harrison

joined 1 year ago
sorted by: new top controversial old
What’s the tiniest thing about iOS / iPadOS / macOS that really bugs you? in c/apple_enthusiast@lemmy.world
[–] Harrison@infosec.pub 23 points 10 months ago (9 children)

Complete lack of support for clipboard history. This annoys me daily.

What's the consensus on AdGuard? in c/privacy@lemmy.ml
[–] Harrison@infosec.pub 1 points 1 year ago

Yeah that'll block all ads and trackers that're possible without severe annoyance with a non fingerprinted browser etc.

What's the consensus on AdGuard? in c/privacy@lemmy.ml
[–] Harrison@infosec.pub 1 points 1 year ago (2 children)

Specifically, the way iOS content blocking works is guaranteed safe. All it does is write to a file loaded by the Safari browser to block content, the app can't do anything at all itself. No indication any VPN sold by AdGuard (or the local device-wide fake VPN) is particularly unsafe that I've seen.

2FA app in c/privacyguides@lemmy.one
[–] Harrison@infosec.pub 5 points 1 year ago (2 children)

It's less that Twilio specifically owns it than problems resulting from corporate ownership. Briefly:

  1. You can't get your data out of Authy. Actually you can, but it's a long annoying process involving installing an out of date chrome extension and using developer tools.
  2. Privacy issues. Authy links a lot of data including location to your identity.
  3. Authy supports SMS account recovery (which is inherently insecure) and doesn't allow users to disable it.
2FA app in c/privacyguides@lemmy.one
[–] Harrison@infosec.pub 8 points 1 year ago (4 children)

Android is easy, Aegis.

IOS is much harder. Right now, probably "2FAs". Authy is owned by Twilio, Raivo was just bought out by an advertising company, and the others are either too small to get the exposure required for any level of security or charge for the feature.

2FA for iOS in c/privacy@lemmy.ml
[–] Harrison@infosec.pub 1 points 1 year ago

Clearly it will be monetized in some way. Otherwise why would they have bought it?

2FA for iOS in c/privacy@lemmy.ml
[–] Harrison@infosec.pub 1 points 1 year ago* (last edited 1 year ago)

I just tried "2FAs", which seems to be the most recommended free one. It failed to import any 2FAs from the Raivo export with 7 digits, but otherwise worked fine. Problem is it failed to import silently, didn't give any errors, which was offputting. Using it for now, but Raivo was better software. Pouring one out.

2FA for iOS in c/privacy@lemmy.ml
[–] Harrison@infosec.pub 4 points 1 year ago (1 children)

From what I can see on their website, the 2FA feature is only available if you pay $1/month. No gratzie.

What's the consensus on AdGuard? in c/privacy@lemmy.ml
[–] Harrison@infosec.pub 3 points 1 year ago* (last edited 1 year ago) (4 children)

There's zero evidence of any wrongdoing or shadiness other than them having employees living in Russia. The company itself moved to Cyprus, many of their engineers left Russia, none of their servers are physically located in Russia, and they publicly disavowed Russia's invasion of Ukraine.

This doesn't mean Russia couldn't apply massive pressure by threatening family members, etc, of course, but I personally have no concerns at this time and use AdGuard Home (their local adblocking DNS server) in my LAN and their iOS app on my devices. The iOS app in particular uses Apple's content-blocking Safari tech so it should be completely safe so long as you don't pay for a VPN or use a local VPN to block everything outside Safari.

If you're rooted on Android, definitely use AdAway instead, it just replaces the hosts file.

https://adguard.com/en/blog/official-response-to-setapp.html

Proton Pass is now available in c/privacyguides@lemmy.one
[–] Harrison@infosec.pub 4 points 1 year ago (1 children)

I’m all for open source alternatives to bitwarden but this is non competitive with a mandatory subscription fee. Bitwarden is completely free for most users.

view more: ‹ prev next ›