Did they open a PR?

Still can’t play any 3d games on Qubes OS :(

Debian. Pine Phone.

The worst part about Android is that I, as the owner of the device, can’t deny permissions to apps at this granular of a level.

There should be a setting for enabling or disabling every single system call under the “advanced” permissions menu for each app.

SE Linux my ass.

Thanks but omg no. I’m happy to use awk like cut.

All of that should be doable with IMSI catchers, no? Except it would certainly allow intercepting communications.

Can you elaborate?

Are we saying CSS instead of IMSI catchers now? Why?

That usually doesn’t end well with these two

I dont do meetings before noon either

No PGP support kinda kills it imho

Maybe we can just ban copyright then?

Gross. Dont buy from evil corporations

Fortunately package managers already do this for you. Open a bug report to add to apt. Easy.

TLS is a joke because of X.509.

We dont need to trust any publishing infrastructure because the PGP private keys don’t live on the publishing infrastructure. We solved this issue in the 90s

Yes.

All publishing infrastructure shouldn’t be trusted. Theres countless historical examples of this.

Use crypto. It works.

No, you download the key from many distinct domains and verify it matches before TOFU

In not talking about the CAC. I’m talking about the members of the botnet.

Or are you hinting at Linux based IoT devices?

Both are a security nightmare, if you’re not verifying the signature.

You should verify the signature of all things you download before running it. Be it a bash script or a .deb file or a .AppImage or to-be-compiled sourcecode.

Best thing is to just use your Repo’s package manager. Apt will not run anything that isn’t properly signed by a package team members release PGP key.