I dont know how you say: “This is fucking scary” in British English, but in Canadian English, I’d say it like: “This is fucking scary”.
this post was submitted on 07 Feb 2025
65 points (98.5% liked)
Privacy
727 readers
44 users here now
Protect your privacy in the digital world
Welcome! This is a community for all those who are interested in protecting their privacy.
Rules
~PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!~
- Be nice, civil and no bigotry/prejudice.
- No tankies/alt-right fascists. The former can be tolerated but the latter are banned.
- Stay on topic.
- Don't promote proprietary software.
- No crypto, blockchain, etc.
- No Xitter links. (only allowed when can't fact check any other way, use xcancel)
- If you post news exclusive to a country please name it. ~(This isn't a bannable rule, just a recommendation!)~
- If in doubt, read rule 1
Related communities:
founded 3 months ago
MODERATORS
It's scary in that they don't understand why that's a bad idea, but it's kind of stupid in that Apple probably can't, if Apple implemented E2EE at all correctly.
Assuming that's true, they can demand all they want, but you can't just:
if government_order == true:
iCloud.unlock()
...assuming they use any of the usual encryption algorithms.
What is interesting is that they've ordered Apple to do it but (maybe) not Google, which has a much larger share of Android users in Europe. Is the UK iOS-heavy?
Assuming that’s true, they can demand all they want, but you can’t just:
if government_order == true: iCloud.unlock()…assuming they use any of the usual encryption algorithms.
Proton services are encrypted, but if Andy Yen goes full nazi (which he haven't done yet), he could just send you a javascript on the browser UI / update the apps, with code that extracts your keys and sent it over to their servers.
And they could force the update by refusing you to access your data until you've updated.
If encryption can be backdoored, then it was never encrypted anyway.
I mean, it could be.
Proton services are encrypted, but all that they have to do to "backdoor" it is just sending you a javascript to your browser / update your app with code that would extract your keys and sent it over to them.
The encryption was not "backdoored", they just retroacrively backdoored it.
They could even hold your data hostage until you update the apps.
This is why FOSS is so important. Then you can at least control the app and know that it's not being updated with malicious code.
Yes, i talked about this in another comment (off this acc tho) that you can't perfectly trust anything. Not even free software, so you have to cross your fingers and hope they are truly private and secure.
Self hosting is the best private and secure way to store files.
Encoded would be the proper term then.
Yep. What's the point of trusting "encoded" sensitive content that can be cracked at a whim by the company?
It's times like these where self hosting is a blessing.
For those of you not in the UK, or unfamiliar, its important to understand just how intrusive the gvmt are in terms of privacy and how intrusive they want to be. We are world leaders in gvmt led privacy oppression.
We're not far behind you and firing up a gasoline engine in a runners marathon going the wrong way, too.