Nostr Web Client

Everyone who says f-droid is insecure and asks ppl to switch to accrescent or obtainium is a troll. First of all, you are claiming something is "insecure" without any proof and you don't even ask for the OPSEC of the person you are supposedly helping. Second of all these trolls don't bother to tell this minor detail about accrescent, that it has closed source apps which is very misleading and dishonest IMO. The accrescent and f-droid app stores have clearly different goals so they are made for different people, meaning there is not a single answer which one of them you should be using. Not everyone has this insane "cybersecurity first" OPSEC where you are not allowed to use any software that is security first. If you want more privacy I'd stick with f-droid since all of its apps are open source.

#foss #fdroid #cybersecurity #privacy #android #tech

ABH3PO 9mo ago

Zapstore is the ONLY app store that does signed builds which means you can verify the code of the apps your phone is running, not to say the other stores are bad choices per say, but at least now there is a clear distinction between a good way to do things and something that's clearly a security hole.

Reply to this note

Please Login to reply.

Discussion

ithfUPW¤Uhtap85n9riozdxf9w043HT589GTIS 9mo ago

what is zapstore? which apps does it include?

ABH3PO 9mo ago

https://zapstore.dev/

Seoclaid12 9mo ago

Zapstore is cool but is your npub still tied to your app list and known to Zapstore and the public? I like Zapstore but that may be a concern for some threat models to have installed apps known.

Also, I've been watching for more apps on Zapstore to be signed by devs themselves rather than Zapstore. Some are, most aren't. Should improve.

ABH3PO 9mo ago

You don't have to login to zapstore, you decide whatever info you want to make public

ABH3PO 9mo ago

Also it's good even if it's signed by zapstore since it at least makes it reproducible, even if not by dev signatures themselves