You’ve helped enough :)
Hmmm I see.
We have an app in the making, so I guess we will eventually implement proper e2ee there and then just try our best in the browser.
- 3 Posts
- 25 Comments
Joined 3 years ago
Cake day: December 25th, 2021
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
I’m not saying that a single bot hasn’t gotten through, but probably you’re referring to the auto filled profiles? It’s just a way for them to be non-empty.
The sanest option in terms of user practicality to me appears to be storing the private key on the server, maybe encrypted with the user’s password, and sending it to the user on successful login where it would be decrypted client side.
That does seem reasonable, but it doesn’t solve the trust issue. The server might always send a modified script that just uploads the plaintext private key.
That said it would still be useful in other ways. Like in a breach the data would be secure.
Or it might encourage someone to learn a new paradigm :)
Thanks for the tip!
I have somewhat of a grasp on how Signal does it, but that’s very client oriented. How to go about it a web app is a mystery to me.
That’s true. It’s due to lack of implementation.
Getting e2ee right is tricky business. Any help or insight would be appreciated.
I can’t take too much credit myself, but yes, effort has been put. 😄😌
3·4 months agoYeah Gramps allows you to export pretty neat graphs!
Cool, now drop the CLAs and we’re good.
1·6 months agoRight now I’m solving this by having two separate ingress controllers in one cluster - one for private stuff only available over a vpn, and one only available over public ips.
How’s this working out? What kinda alternatives are there with a single cluster?
Tasks.org for tasks and Joplin for notes. Both can be synced with various technologies.
I really like simple black&white T-shirts with just a logo.
Some will recognize it and come say hello. Most will think it’s just a brand. Some will ask what it is and I will gladly explain.
This Creative Commons shirt is one of my favourites.
Yeah. I have a strict policy of never signing any CLAs. Their loss.
That while changing the licence to copyleft was an action in the right direction, it also means that they could switch the license again [for worse]. Apparently they hold the copyrights…?
If you don’t need fiscal hosting then LiberaPay is the superb recurrent donations platform.
Luckily not! There’s LiberaPay, which I find preferable to OpenCollective anyway. No confusion with hosts and it’s clearly non-profit.
Looks like AnySoftKeyboard
It’s quite interesting to read about these hurdles, even though I’m not planning to publish anything in the foreseeable future. Always just on the downloading side. Thanks for posting. Hope you get it sorted out!
Noted, thanks!