GFY! 🐶🐾🤣🫂🫂🫂

Imagine being a developer of the software trying to help a user to solve their issue with it, and being muted by that user. Just a hypothetical scenario 🐶🐾🤣🤌🏻

Just checking out Obsidian because I haven't heard of it before.

Any particular shortcomings you wish it had?

Comparing to Evernote, price comparison is an obvious benefit - free for personal use while EN subscription is > $100. Also EN feels bloated and they just dropped Linux native beta support.

Brave?

I predict #Bitcoin tomorow will go up if in other case maybe goes down. You know, in cock bucks.

oof, definitely not like ancient aliens.

Automatic reboot is used to restart the device after a user-determined period of time where the device is inactive.

When a device (and user profile) have been unlocked once by the user, sensitive derived encryption keys run within memory to allow the disk encryption/decryption while in use. People determine this state as After First Unlock (AFU) while a state where the device has not been unlocked at all as Before First Unlock (BFU). These descriptions are common amongst exploit developers and forensics analysts. Automatic reboot is an overall security improvement but for most people they use it as an anti-forensics feature.

When a device or profile is in a BFU state - the attack surface is much less, there is no keys in memory, less OS components are running, the device runs in a limited state among many other details. For an exploit to work against a BFU device they'd need an extremely sophisticated and unlikely to be performed attack, an example being to brute force the device's PIN would involve exploiting the tamper-resistant secure element before even attempting the brute force process.

The recent affair involving the project discovering exploits used by forensic companies is directly related to this. The exploit involved bypassing protections in Fastboot firmware to perform a RAM dump after an unsafe reboot, allowing a company to brute force the encryption keys from that dump without any throttling, completely avoiding the secure element's protections. This attack is only possible in AFU. Many forensics companies rely on phones being AFU to extract data, although some companies may be able to get data BFU depending on device manufacturer, OS version and many other circumstances.

We always had the autoreboot, but for the current affair - it was decided to reduce the timer from 72 hours to 18.

If a user sets automatic reboot to a time low enough that suits them, they can keep the phone at the most secure state when they aren't around it but need to keep it on. This does come with the cost of notifications for apps, except for alarms and default calls and texts (providing you don't use a SIM pin). Manually restarting and powering off in sticky situations is always the best choice though.

GrapheneOS also takes additional steps in User Profile improvements, as user profiles run with their own separate encryption keys, and can be purged from memory at any time with the End Session button unlike the Owner profile, which needs a device power off or restart. This is why users of GrapheneOS working in high security setups make the owner profile empty and just manage everything in separated profiles, as if someone breaches the Owner profile, they can't breach the other users if they haven't been unlocked once or had their session ended.

What is everyone using as a knowledge management system? Obsidian, Roam, Logseq, Notion, Evernote?

Do you see nostr improving these in any way, or should its usage remain private?

#SovEng

i'm done with using the browser integration for keepassxc

just gonna do it old school style copy and paste search for the entry do it manually

the thing is just too damn temperamental and i'm not leaving my passwords in a chrome fork no thankyou very much

and you all ass hats who think that bitwarden is great because it's ... idk what... the fact it doesn't have the simple fucking option of using your own computer's local storage is sus as fuck

fixed the problem with google shite, it was just the fucking keepassxc/secret service integration

and frankly i don't trust gnome anymore either but hey what ya gonna do?

Does anyone remember geocities?

i'm here in the trenches... i see what shitcoiners are doing right and i'm gonna build on that because... what is built on what is right will stand

they are mostly retarded btw, but they don't entirely reject wisdom

i'm just not gonna go in close, just gonna hit the targets where i can

It's a lot of hope, faith and trust but I still am in and having it. Just relaying my long term fears of what could happen, so hopefully the right people notice and prevent it from happening

I ahree. That's what I fear though and I sincerely hope you (and me) will be wrong

What a week. #SovEng

#m=image%2Fjpeg&dim=736x736&blurhash=UMDA4C%7ET-m-oxuofWVkCWCj%5Boej%40%25OozW-kC&x=6a20bfcc2252050f3eb6739f716fe88a9ae1d1eedfa1229333498995e7d3b805

Some of the #ETF companies now pledged to support #Bitcoin development. I like this in general, it makes me think though.

Call me paranoid, but I am wondering if this might be a way of trying to get control on Bitcoin development. Opinions please.