blacklight447 @blacklight447@social.privacytools.io

@maryjane @sir @kev dunno, you tell me, but porting it would be a massive undertaking , if you were to do that, i would port it to power 9 instead of arm, so you can run it on ACTUAL open source hardware like the talos II :D

@maryjane @sir @kev well qubes is not a distro that you can port easily, this is because it utilizes hardware features for its isolation, currently it uses intel vt-d and vt-x. Btw yes im a qubes user ;)

https://www.qubes-os.org/team/

@vancha @kev @purism currently ( or last i checked) it requires you to either find an already written flatpack policy or write your own, if there is no policy, then it runs uncontained, which is why i said unsandboxed by default.

@sir @kev better something then nothing ;p

@sir @kev i would say thats less unlikely then you think, android has had default encryption since (i think?) Android 5, ios has had it for ages as well. Laptops are more problematic, but atleast mac os and linux have out of the box support(not turned on, but support). Regarding windows, MS need to get their ass of the enterprise throne and allow windoes home users to utilize bitlocker

@Erik fietste hier laatst nog langs, best grappig gedaan!

@sir @kev thats okay, my opinion on the matter is: if you are a tinkerer who likes messing around with your device, then the librem 5 is just for you, but its just not ready for normal end users to adopt, i would say having default disk encryption enabled is a fair minimum requirement for mobile devices.

@sir @kev but if your not expected to run the stock os: 1. Why do they even develope it in this case?
2. Then it shouldn't be marketed as something normal end users could/should use, but only tech savvy folks with 800$ to burn.

P.s. the librem 5 is still full of binary blobs, so its not even nearly "truly open"

@sir @kev I never said it should be at any cost, but i do say that it should be attempted when possible, it doesn't have to be somr radical over night change, android started out with prettt crappy security as well, but grew to what it is now over the years.

@sir @kev "we can improve a users security by a long shot by providing sandboxing, but we trust the repo maintainers so lets not"

Thats kinda weird logic.

Remember security should be done in depth, if the trust in the maintainers fails, you still have trust in the isolation. Also what about folks who want/need software outside of the default repo's? Dont they deserve protection?

@kev @purism unless something changed recently, yes.

@sir @kev just because desktop linux is slacking behind on securiry advancements doesn't mean its a smart idea to recommend to end users to pay 800$ for a device which is significantly less secure the mature platforms. If the librem five was clearly marked to be experimental and should be used with caution, i would be fine with it, but currently thats not the case.

@sir @kev there is no reason to not sandbox your apps, why give needless trust to app distributers?

@kylejj if you could, then that would be really need :)

@kev @purism you may also wanna add that it lacks default disk encryption, apps run unsandboxed by default, and lacks any kind of boot security.

It litterly sets back years of security advancements made in the mobile space.

@micahflee Their TV spots in the netherlands interestingly enough mention they "give you a feeling of safety", like they know that it doesn't providd any actual safety at all.

Worsed part is that some towns now subsidise people to buy security cameras, and report its location to a police database.
"for safety".

@kev @squire@mstdn.io @write_as @jlelse@social.jlelse.me if you post your blog on our writefreely instance, (write.privacytools.io), you will get an rss feed as well :D

@micahflee "google has to be such a great place to work, they have slide instead of stairs!"

@kev @woodfobm our proprietary smart blockchain utilizes advanced and unbreakable military grade encryption and artificial intelligence to prevent big data to be used against you!