Flmaker

I used to have the usernames and passwords saved on the login pages of the websites before formatting and reinstalling my system. They are no longer available, and I have to enter them again and again.

P.S. All the password files are accessible through the password area within the browser settings, as I have already imported them from an existing password file (passwords.csv).

Current privacy and security settings: Strict

Operating System: Windows 10

Browser Version: 138.0.2

========================

Windows 10

========================

Started first with Thunderbird (W10):

-No configuration options

-No full text option

-Dropped

Then discovered the Raven Reader:

-Best interface

-No longer maintained

-No full text feature

-Dropped

Next, I found RSSGuard:

-Does Not Provides the "full text" feature for offline reading

-More configurable features

-Regularly maintained

-Will drop it if I find a Reader to provide a "full text" or the developer updates it accordingly

=======================

Android

=======================

I started with FocusReader:

-Full text feature, which is a must for me

-Many other features

-Regularly maintained

-Still the best Android option for me for now (I wish any windows RSS Feeder be like this)

Also discovered the RSS Reader feature of a podcast player (PodcastRepublic):

-Always provides the "full text" function which is a must for me

-Not Enough options to configure the RSS Reader or improvement and or add features at all

• Been using it primarily as a podcast player, with the RSS Reader, as a bonus

-I wish the RSS Reader configuration could be improved to accommodate additional settings and new features added

YOUR ideal RSS Readers ? and why?

Handy News Reader

free and open-source (FOSS), so you can snag it from F-Droid . It’s loaded with many features

Features:

-full articles at hand

-convenient reading: switching articles by volume buttons or swipe, Tap Zones, remembering the position of reading per article,

-important articles' notification: You will no longer miss anything

-"Read It Later": You can quickly flick through articles

-"Remove When Finished" - once You've finished such an article - it may be automatically removed from the 'Favorites' (='Read It Later') set,

-ready to go off-line

-save the bandwidth: go on-line only for new articles

-gesture-friendly

-the left edge of the screen to adjust text brightness,

-user-friendly: care about Your eyes with a dark theme, adjust text size, color

-neat ideas: non-hyperlinked article headers

-scrolling article pages by 90% of their height can make reading less confusing

-customizable: from Tap Zones' size to hyperlinks' color and underlining & a bunch of details

-advanced features: auto-backup (export/import to/from an .opml format), providing content out of non-RSS websites

https://github.com/yanus171/Handy-News-Reader/releases

https://handynewsreader.blogspot.com/

cross-posted from: https://lemmy.world/post/27977693

Hey everyone!

So, I've made some small progress in switching things up on my Android:

Replaced  Gmail app with Thunderbird
Replaced Google Calendar with FOSSify Calendar
Replaced Google Play Store with Aurora & F-Droid
Replaced  Android file manager with FOSSify File Manager
Replaced  Android keyboard with Heliboard

But now I’m hitting a wall trying to find ones on root of problem:
free replacement for Gmail
free Google Calendar alternative that works well
 on both Android and via Thunderbird    Windows 

Self-hosting isn’t really an option for me, so I’d love to hear your suggestions!

If you’ve found something you really like, please share your experiences.

Thanks!

UPDATE

just started a free account with infomaniak so far happy with infomaniak except the free email extensions like @ik.me @etik.com or @ikmail.com addresses whether will be accepted / recognized by institutions like banks etc

also found a community group at https://www.reddit.com/r/Infomaniak/ will search if any group here as well

Hey everyone!

So, I've made some small progress in switching things up on my Android:

Replaced  Gmail app with Thunderbird
Replaced Google Calendar with FOSSify Calendar
Replaced Google Play Store with Aurora & F-Droid
Replaced  Android file manager with FOSSify File Manager
Replaced  Android keyboard with Heliboard

But now I’m hitting a wall trying to find  ones on root of problem:
free replacement for Gmail
free Google Calendar alternative that works well
 on both Android and via Thunderbird    Windows 

Self-hosting isn’t really an option for me, so I’d love to hear your suggestions!

If you’ve found something you really like, please share your experiences.

Thanks!

UPDATE

just started a free account with infomaniak so far happy with infomaniak except the free email extensions like @ik.me @etik.com or @ikmail.com addresses whether will be accepted / recognized by institutions like banks etc

also found a community group at https://www.reddit.com/r/Infomaniak/ will search if any group here as well

Trusting Open Source: Can We Really Verify the Code Behind the Updates?

In today's fast-paced digital landscape, open-source software has become a cornerstone of innovation and collaboration. However, as the FREQUENCY and COMPLEXITY of UPDATES increase, a pressing question arises: how can users—particularly those without extensive technical expertise—place their trust in the security and integrity of the code?

The premise of open source is that anyone can inspect the code, yet the reality is that very few individuals have the time, resources, or knowledge to conduct a thorough review of every update. This raises significant concerns about the actual vetting processes in place. What specific mechanisms or community practices are established to ensure that each update undergoes rigorous scrutiny? Are there standardized protocols for code review, and how are contributors held accountable for their changes?

Moreover, the sheer scale of many open-source projects complicates the review process. With numerous contributors and rapid iterations, how can we be confident that the review processes are not merely cursory but genuinely comprehensive and transparent? The potential for malicious actors to introduce vulnerabilities or backdoors into the codebase is a real threat that cannot be ignored. What concrete safeguards exist to detect and mitigate such risks before they reach end users?

Furthermore, the burden of verification often falls disproportionately on individual users, many of whom may lack the technical acumen to identify potential security flaws. This raises an essential question: how can the open-source community foster an environment of trust when the responsibility for code verification is placed on those who may not have the expertise to perform it effectively?

In light of these challenges, it is crucial for the open-source community to implement robust mechanisms for accountability, transparency, and user education. This includes fostering a culture of thorough code reviews, encouraging community engagement in the vetting process, and providing accessible resources for users to understand the software they rely on.

Ultimately, as we navigate the complexities of open-source software, we must confront the uncomfortable truth: without a reliable framework for verification, the trust we place in these systems may be misplaced. How can we ensure that the promise of open source is not undermined by the very vulnerabilities it seeks to eliminate?"

cross-posted from: https://lemmy.world/post/27344091

1. Persistent Device Identifiers

My id is (1 digit changed to preserve my privacy):

38400000-8cf0-11bd-b23e-30b96e40000d

Android assigns Advertising IDs, unique identifiers that apps and advertisers use to track users across installations and account changes. Google explicitly states:

“The advertising ID is a unique, user-resettable ID for advertising, provided by Google Play services. It gives users better controls and provides developers with a simple, standard system to continue to monetize their apps.” Source: Google Android Developer Documentation

This ID allows apps to rebuild user profiles even after resets, enabling persistent tracking.

2. Tracking via Cookies

Android’s web and app environments rely on cookies with unique identifiers. The W3C (web standards body) confirms:

“HTTP cookies are used to identify specific users and improve their web experience by storing session data, authentication, and tracking information.” Source: W3C HTTP State Management Mechanism https://www.w3.org/Protocols/rfc2109/rfc2109

Google’s Privacy Sandbox initiative further admits cookies are used for cross-site tracking:

“Third-party cookies have been a cornerstone of the web for decades… but they can also be used to track users across sites.” Source: Google Privacy Sandbox https://privacysandbox.com/intl/en_us/

3. Ad-Driven Data Collection

Google’s ad platforms, like AdMob, collect behavioral data to refine targeting. The FTC found in a 2019 settlement:

“YouTube illegally harvested children’s data without parental consent, using it to target ads to minors.” Source: FTC Press Release https://www.ftc.gov/news-events/press-releases/2019/09/google-youtube-will-pay-record-170-million-settlement-over-claims

A 2022 study by Aarhus University confirmed:

“87% of Android apps share data with third parties.” Source: Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies https://dl.acm.org/doi/10.1145/3534593

4. Device Fingerprinting

Android permits fingerprinting by allowing apps to access device metadata. The Electronic Frontier Foundation (EFF) warns:

“Even when users reset their Advertising ID, fingerprinting techniques combine static device attributes (e.g., OS version, hardware specs) to re-identify them.” Source: EFF Technical Analysis https://www.eff.org/deeplinks/2021/03/googles-floc-terrible-idea

5. Hardware-Level Tracking

Google’s Titan M security chip, embedded in Pixel devices, operates independently of software controls. Researchers at Technische Universität Berlin noted:

“Hardware-level components like Titan M can execute processes that users cannot audit or disable, raising concerns about opaque data collection.” Source: TU Berlin Research Paper https://arxiv.org/abs/2105.14442

Regarding Titan M: Lots of its rsearch is being taken down. Very few are remaining online. This is one of them available today.

"In this paper, we provided the first study of the Titan M chip, recently introduced by Google in its Pixel smartphones. Despite being a key element in the security of these devices, no research is available on the subject and very little information is publicly available. We approached the target from different perspectives: we statically reverse-engineered the firmware, we audited the available libraries on the Android repositories, and we dynamically examined its memory layout by exploiting a known vulnerability. Then, we used the knowledge obtained through our study to design and implement a structure-aware black-box fuzzer, mutating valid Protobuf messages to automatically test the firmware. Leveraging our fuzzer, we identified several known vulnerabilities in a recent version of the firmware. Moreover, we discovered a 0-day vulnerability, which we responsibly disclosed to the vendor."

Ref: https://conand.me/publications/melotti-titanm-2021.pdf

6. Notification Overload

A 2021 UC Berkeley study found:

“Android apps send 45% more notifications than iOS apps, often prioritizing engagement over utility. Notifications act as a ‘hook’ to drive app usage and data collection.” Source: Proceedings of the ACM on Human-Computer Interaction https://dl.acm.org/doi/10.1145/3411764.3445589

How can this be used nefariously?

Let's say you are a person who believes in Truth and who searches all over the net for truth. You find some things which are true. You post it somewhere. And you are taken down. You accept it since this is ONLY one time.

But, this is where YOU ARE WRONG.

THEY can easily know your IDs - specifically your advertising ID, or else one of the above. They send this to Google to know which all EMAIL accounts are associated with these IDs. With 99.9% accuracy, AI can know the correct Email because your EMAIL and ID would have SIMULTANEOUSLY logged into Google thousands of times in the past.

Then they can CENSOR you ACROSS the internet - YouTube, Reddit, etc. - because they know your ID. Even if you change your mobile, they still have other IDs like your email, etc. You can't remove all of them. This is how they can use this for CENSORING. (They will shadow ban you, you wont know this.)

1. Persistent Device Identifiers

My id is (1 digit changed to preserve my privacy):

38400000-8cf0-11bd-b23e-30b96e40000d

Android assigns Advertising IDs, unique identifiers that apps and advertisers use to track users across installations and account changes. Google explicitly states:

“The advertising ID is a unique, user-resettable ID for advertising, provided by Google Play services. It gives users better controls and provides developers with a simple, standard system to continue to monetize their apps.” Source: Google Android Developer Documentation

This ID allows apps to rebuild user profiles even after resets, enabling persistent tracking.

2. Tracking via Cookies

Android’s web and app environments rely on cookies with unique identifiers. The W3C (web standards body) confirms:

“HTTP cookies are used to identify specific users and improve their web experience by storing session data, authentication, and tracking information.” Source: W3C HTTP State Management Mechanism https://www.w3.org/Protocols/rfc2109/rfc2109

Google’s Privacy Sandbox initiative further admits cookies are used for cross-site tracking:

“Third-party cookies have been a cornerstone of the web for decades… but they can also be used to track users across sites.” Source: Google Privacy Sandbox https://privacysandbox.com/intl/en_us/

3. Ad-Driven Data Collection

Google’s ad platforms, like AdMob, collect behavioral data to refine targeting. The FTC found in a 2019 settlement:

“YouTube illegally harvested children’s data without parental consent, using it to target ads to minors.” Source: FTC Press Release https://www.ftc.gov/news-events/press-releases/2019/09/google-youtube-will-pay-record-170-million-settlement-over-claims

A 2022 study by Aarhus University confirmed:

“87% of Android apps share data with third parties.” Source: Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies https://dl.acm.org/doi/10.1145/3534593

4. Device Fingerprinting

Android permits fingerprinting by allowing apps to access device metadata. The Electronic Frontier Foundation (EFF) warns:

“Even when users reset their Advertising ID, fingerprinting techniques combine static device attributes (e.g., OS version, hardware specs) to re-identify them.” Source: EFF Technical Analysis https://www.eff.org/deeplinks/2021/03/googles-floc-terrible-idea

5. Hardware-Level Tracking

Google’s Titan M security chip, embedded in Pixel devices, operates independently of software controls. Researchers at Technische Universität Berlin noted:

“Hardware-level components like Titan M can execute processes that users cannot audit or disable, raising concerns about opaque data collection.” Source: TU Berlin Research Paper https://arxiv.org/abs/2105.14442

Regarding Titan M: Lots of its rsearch is being taken down. Very few are remaining online. This is one of them available today.

"In this paper, we provided the first study of the Titan M chip, recently introduced by Google in its Pixel smartphones. Despite being a key element in the security of these devices, no research is available on the subject and very little information is publicly available. We approached the target from different perspectives: we statically reverse-engineered the firmware, we audited the available libraries on the Android repositories, and we dynamically examined its memory layout by exploiting a known vulnerability. Then, we used the knowledge obtained through our study to design and implement a structure-aware black-box fuzzer, mutating valid Protobuf messages to automatically test the firmware. Leveraging our fuzzer, we identified several known vulnerabilities in a recent version of the firmware. Moreover, we discovered a 0-day vulnerability, which we responsibly disclosed to the vendor."

Ref: https://conand.me/publications/melotti-titanm-2021.pdf

6. Notification Overload

A 2021 UC Berkeley study found:

“Android apps send 45% more notifications than iOS apps, often prioritizing engagement over utility. Notifications act as a ‘hook’ to drive app usage and data collection.” Source: Proceedings of the ACM on Human-Computer Interaction https://dl.acm.org/doi/10.1145/3411764.3445589

How can this be used nefariously?

Let's say you are a person who believes in Truth and who searches all over the net for truth. You find some things which are true. You post it somewhere. And you are taken down. You accept it since this is ONLY one time.

But, this is where YOU ARE WRONG.

THEY can easily know your IDs - specifically your advertising ID, or else one of the above. They send this to Google to know which all EMAIL accounts are associated with these IDs. With 99.9% accuracy, AI can know the correct Email because your EMAIL and ID would have SIMULTANEOUSLY logged into Google thousands of times in the past.

Then they can CENSOR you ACROSS the internet - YouTube, Reddit, etc. - because they know your ID. Even if you change your mobile, they still have other IDs like your email, etc. You can't remove all of them. This is how they can use this for CENSORING. (They will shadow ban you, you wont know this.)

Need Your Suggestions: RSS Reader for Windows PC

I have been happy with a podcast player's feed reader on my Android for some time,

but I am about to give up because its screen size makes it difficult to read long articles and need an app for windows PC (getting the full text then let me read them offline)

I would appreciate your guidance on the best recommended RSS readers for Windows PC that are:

-Visually good app  for a Windows Laptop
-Able to get the feeds with full text then let me read them offline

Need Your Suggestions: RSS Reader for Windows PC

I have been happy with a podcast player's feed reader on my Android for some time,

but I am about to give up because its screen size makes it difficult to read long articles and need an app for windows PC (getting the full text then let me read them offline)

I would appreciate your guidance on the best recommended RSS readers for Windows PC that are:

Visually good app  for a Windows Laptop

Able to get the feeds with full text then let me read them offline

Ref: https://www.rottentomatoes.com/tv/zero_day

Started watching the series the other day and completed…

Here’s a short comment I have come across, I kind of agree somehow

Zero Day Netflix Series and the New America by M. M SAGMAN

The Zero Day series highlights the dangers of a “new America” through its plot and themes. Released by Netflix shortly after Trump’s re-election, the six-episode series features Robert De Niro as G. Mullen, a former president leading an investigation into a nationwide cyber attack. Mullen, portrayed as a patriotic and intelligent figure, faces moral dilemmas as the commission he heads prioritizes private law, allowing controversial decisions in a crisis.

The series also critiques the relationship between capital, media, and politics, exemplified by the character of President Mitchell, who embodies a mix of Obama and Harris. The narrative reveals how political figures, including Mullen’s daughter, navigate ethical challenges amid a backdrop of systemic issues, suggesting that the American dream often masks deeper problems.

While the series addresses the cyber attack as a societal crime, it emphasizes the rise of fascism as a more pressing concern. Mullen’s character reflects the complexities of leadership, as he grapples with personal loss and moral integrity. Ultimately, Zero Day presents a narrative that critiques the American political landscape while reinforcing the notion of the American dream, albeit through a flawed lens.

Despite its engaging premise, the series sacrifices truth for fiction, simplifying complex issues and portraying individual actors as the sole sources of systemic problems. This approach risks obscuring the broader capital-centered networks that shape American society and its global actions.

M. M SAGMAN He is a PhD student in Sociology. He has been actively involved in various civil society organizations. He worked as an editor for a while. He is married and has 2 children.

I like the review above more than the series itself and would currently rate the series no higher than 7 out of 10.