fxnn

  • 2 days ago
  • Joined 15 Mar
  • Dear developers, when the "lte only" mode is enabled, the phone does not accept calls and cannot ring itself. When switching to the LTE mode, this problem disappears. I ask you to pay attention to this, thank you.

    • This discussion goes into it quite a bit as well as some input regarding electron by Daniel Micay. I would like to hear thoughts on it.

      I ask because I want to know if using the Proton Mail electron app for example would be better than using Proton Mail on the web.

    • Hello,
      If the mods allow it I would like to promote a petition for the EU citizens to call for the realisation of an open desktop OS dedicated to european administrations in order to replace Windows
      https://www.europarl.europa.eu/petitions/en/petition/content/0729%252F2024/html/Petition-No-0729%252F2024-by-N.-W.-%2528Austrian%2529-on-the-implementation-of-an-EU-Linux-operating-system-in-public-administrations-across-all-EU-countries
      I regret some parts of the petition such as calling for the adoption of /e/OS but ... it happens to be european.

      • https://nerdculture.de/@Olly42/113441902491483032

        The Federal Ministry of Justice has drafted a law to provide legal protection to security researchers who discover and responsibly report security vulnerabilities to vendors. Those responsible will be excluded from criminal liability & the risk of prosecution.

        Press release: https://www.bmj.de/SharedDocs/Pressemitteilungen/DE/2024/1104_ComputerStrafR.html

        • Hi all,

          I've had a Google Pixel 8 Pro (bought new and unlocked from Best Buy) for a few months now and I'm mostly getting used to it but there are a few things I still haven't figured out. One of those is my total inability to send SMS/MMS messages to certain people. This issue has gone through a few iterations but seems to have gotten worse just recently, and I didn't change anything at all except regular OS updates. Initially, using the stock messenger app, my texts would mostly be sent, but I had trouble replying to group chats. Some chats would let me respond, others would not. My messages would just be stuck in a never ending "Sending..." status to those particular group chats, but they would never actually send. Eventually that began to include seemingly random contacts. Some people get my messages just fine, others my message wouldn't send, it would just get stuck in that loop. Then, the "Sending..." message started to go away and was replaced with "Not Sent. Tap to try again." At this point it was still only some contacts that I couldn't text, but it seemed to begin to encompass all MMS/group chats. Also I couldn't send image files to many people, same message.

          A few days ago, the problem changed. Now when I try to text some people, (and that group now includes some people I could text before but can't anymore) I get the "Not sent. Tap to try again." message three or four times in rapid succession and I have no way to send anything to those people unless I want to use Facebook Messenger.

          I tried some other apps, Handcent and Chomp, neither one made any difference at all. Same failures, like the phone itself is getting in the way and saying "absolutely not, you can not send anything to that number." I thought the number might be a problem, so I selected one of the contacts and edited their information to ensure there was only one number available and it didn't have a +1 in front of it or anything. Same exact result. Nothing seems to be working.

          Again, I can receive SMS/MMS messages. That's a little buggy too, but I do receive them all (as far as I know). I can also text some people with no trouble, but not others. Some of the people I can't text have Androids, some have iPhones. I have tried three different apps, setting each to the "default messenger app" and ensuring the apps had all the permissions they requested. Nothing.

          Unfortunately I'm not the world's most tech savvy guy, so beyond the handful of basic changes I knew to try I'm out of ideas. Most information I find in a Google search is about not receiving texts, or them all going out at once. Neither of those seem to be my problem.

          My business is paralyzed. Please help!

        • Is this going to be possible?

          It would be so nice to be able to use Debian Fedora or another OS within Graphene if somespecific piece of Linux software needs to be used.

          • rkeenan The source code is on github. What does the license mean?

            "Open Source" does not mean the same thing as "the source is on GitHub".

            The current FUTO keyboard license is here. It is different from licenses recognized as "open source" by the OSI because it forbids people from doing things that are allowed by the OSI-approved "open source" licenses.

            The current FUTO license isn't necessarily bad in an absolute sense. But it is very possible that the GrapheneOS developers won't accept it.

            • If you want to have reasonably secure hardware for Qubes, wait until Qubes is available for the V54 series from NovaCustoms. This would give you at least reasonably secure boot (heads without boot guard is a security theater as Tommy likes to call it https://deploy-preview-244--privsec-dev.netlify.app/posts/knowledge/laptop-hardware-security/#heads).

              The problem with modern Dell Latitudes or Thinkpads is that you will no longer have boot security (QubesOS does not support UFEI Secure Boot and Heads is not available for modern Latitudes/Thinkpads).
              You could try to solve this with Trenchboot, but iirc Tommy gave up on it at some point.

              JackMurphy opinions on Qubes OS vs Windows (WDAC + WDAG + VMs)

              Under the right conditions (e.g. 7th generation Surface Business laptops and a well configured Windows 11 Enterprise) HyperV VM spamming would be more “secure” than Qubes (e.g. you could use the hard and firmware security features of the MS Surface devices, have better boot security with Windows Trusted Boot, have secure guest VMs if you use Windows 11 VMs, ...).
              This is not just my opinion, wj25czxj47bu6q from Privsec once posted this in a similar way in the Privsec Matrix Room.

              If anything I have written is wrong, please feel free to correct me

              • fxnn Well, for one, I personally don't like that part of the dark web. Secondly, I don't much believe in fear-inspiring headlines. If someone wrote a Reddit post, it might be beneficial with an attention-grabbing headline, sure, but I think an explanation of an issue should also illustrate the situation in a reasoned way (preferably without pressing the Caps Lock button), and not invoke imminent fear and uncertainty.

                • matchboxbananasynergy I continue to doubt that this has reached the development team. I might be wrong, however.

                  Proton support sent me the following, on Sep 11:

                  The Android development team is already aware of some crashes happening with WireGuard due to memory corruption, and they're actively being looked into.

                  Unless they are not speaking truth, I have to assume that the sentence means it has, at some point, reached the ears of a development team. Although "some crashes" is vague enough to not aspire much confidence that the support team relayed my emails to the development team, it sounds like at least some memory corruption was being looked into at some point in the past.

                  Extremely frustrating that a company heavily marketed towards privacy continue to not prioritize this (but at least we now have confirmation of that). Also does not inspire confidence that, with the exception of Proton Pass, all their apps have obvious incompatibilities when being run with memory tagging. A direct competitor has fixed a memory safety issue reported by a GrapheneOS user and is now running their Android app with memory tagging on GrapheneOS in order to debug further issues. That appears to be in stark contrast to what Proton is doing. I will be relaying the Go bug to them, then I will give up on their support team. Someone else is welcome to pick up the ball!

                  Wishing you all a happy day.

                  (And thank you for your patience with my expressed frustration!).

                  • I asked Proton support for information on the current status on the investigation into this memory safety issue. Here is the reply I received today:

                    Hello,

                    Thank you for reaching out to us!

                    Kindly note that there are unfortunately no updates regarding this. Our team is currently busy at the moment with other more prioritized matters, but they will hopefully take a closer look in the upcoming period.

                    Have a nice day!
                    Kind regards,

                    [removed name]
                    Customer Support
                    Proton VPN

                    Let's hope that "more prioritized matters" implies fixing other, and perhaps more serious, privacy and security issues. What's certain is that the public knows virtually nothing about their investigation into the issue – which was first reported to them at least 8 months ago. The bug might be related to this Go issue, which Mullvad seems to have already worked around. Not clear if Proton knows about this…

                    • fix ancient Android bug causing widgets to disappear from the user's home screen when the user stops, which was a major usability issue for secondary users

                      Thanks. Tomorrow morning it will be easier to read the time with the clock widget.

                    • fxnn All this does on stock is launch the play store in the private space. You still have to install it separately. We removed that button because it was confusing people.

                      Simply install the app stores you want in the private space and install the apps as you would normally.

                      • In the new private profile (Android 15) there seems to be no phone or sms app, unlike in user profiles.

                        What are the consequences for apps that require phone permission and that are installed in such a private profile?

                        Will those apps still be able to read the sim cards phone number if phone permission is granted?

                        • randallont The described symptoms are a hardware failure, not data corruption. GrapheneOS was not impacted by those series of data corruption bugs due to having newer kernel LTS revisions with the patches for them. We've also avoided shipping any serious data corruption regressions impacting any significant number of users in the newer kernel LTS revisions, which is something we're always worried about. The LTS kernel revisions have very poor testing and the f2fs changes scare us. We're cautious about them.

                        • fxnn It's similar, but they run within the same overall SystemUI and also have a shared clipboard. We can likely easily add a toggle for isolated clipboard but it's still less separate than users due to shared UI. We haven't checked exactly how an accessibility service in Owner interacts with a Private Space, but that's one example of a case where it would be much less isolated.

                        • yore You can have a single Private Space and a single work profile in the Owner user. It's worth noting that the Private Space clipboard is currently shared, but we can likely add a toggle for this fairly easily.

                          • GrapheneOS fully supports the Private Space feature in Android 15, which is essentially a separate user nested inside of the Owner user.

                            We strongly recommend it as a replacement for a work profile managed by a local profile admin app. It has better OS integration and isolation.

                            Private Space is an isolated workspace (profile) for apps and data similar to both user profiles and work profiles. All 3 forms of profiles also have entirely separate VPN configuration which is very useful even if you connected to the same VPN, since exit IPs can be separate.

                            All forms of profiles have separate encryption keys. You can keep a Private Space at rest while the Owner user is logged in just as you can with a secondary user.

                            Private Space makes it easier to share data than users. The clipboard is shared, but we could add a setting for it.

                            GrapheneOS users choose to use the OS in different ways. A lot of people largely use open source apps and not sandboxed Google Play. Others use sandboxed Google Play in their main profile. Many use sandboxed Google Play in a dedicated profile to choose which apps use it.

                            Regardless of how people choose to use sandboxed Google Play, they're regular sandboxed apps without special access. Private Space makes it easier to use a dedicated profile for sandboxed Google Play though.

                            It's also worth noting you can still use a work profile alongside it.

                            All of our features including Contact Scopes, Storage Scopes and sandboxed Google Play have full support for Private Space. We added support for it significantly before the release of Android 15, even before the initial early release of the source code was published in September.


                            Social media threads:

                            Mastodon: https://grapheneos.social/@GrapheneOS/113351721569189227
                            Bluesky: https://bsky.app/profile/grapheneos.org/post/3l74cuxsgee2x
                            X :https://x.com/GrapheneOS/status/1848744438568263956