I generally think arstechnica.com does a decent job of being a non-garbage news site. I pay a couple bucks a month for the ad-free RSS feed. This story feels terrible to me. I don’t doubt a law suit has been filed, but I would expect some investigation by the reporter of the extra-ordinary claims of privilege escape the application is claimed to be capable of.
I use Adguard, vinegar and baking soda, but wasn’t aware of Wipr. I might give it a try as a replacement for Adguard. Glad you mentioned it.
I’m not an Apple apologist, but I feel there are some things Apple does that are privacy focused.
The things I hate about Apple are generally not privacy related.
I really enjoy Apple products, but this is my biggest peeve. It’s not like I cannot manage without a different browser—certainly about half of americans primarily use Safari—but the flexibility and customization of Firefox or chromium would be very welcome.
I think there is some thought going on about what it means as a society to discriminate against people with disabilities during immigration.
It seems like the US would have a similar problem with people moving between states that had medicaid expansion and ones that do not. I don’t know if there are any studies on the issue.
Discriminating during immigration based on a congenital disability feels like discriminating based on race to me.
I get 17.45 on an iPad Pro. This is with all extensions disabled and my adblocker off. They say I am unique in the past 45 days. Looking through the info I don’t see how this works. Could it be that no one else has tested with an iPad Pro? It’s not like the hardware in this model is different from a similar one. You really just cannot meddle with it. It’s a fairly locked down ecosystem.
If I took an iPad, reset it and ran the test. Then reset it and ran the test again, would both be unique?
I’ve moved to WinPE for its immutability.
Most Apple services can be encrypted including iCloud. Basically email and calendaring are not covered.
https://support.apple.com/en-us/102651#advanced
If you set it up as “advanced” then only you hold the recovery keys.
That’d be one tough old bird. I wouldn’t eat it either.
Maybe he is going to live a couple centuries and your short window onto his life has foreshortened your view?
Birds are basically today’s lizards and like most lizards can live a very long time and grow throughout their lives. When you think about how big alligators can get in a similar amount of time, it isn’t surprising that chickens can also.
I have Server 2022 with a GUI installed on my laptop because it lets me use all the server features, play Windows games that use DRM and not spend time messing around with getting linux to run on a laptop. I have Linux on the laptop, but running inside VMs.
I still don’t want copilot installed. I can confirm it is installed on my Windows Server 2022 laptop. I don’t see any entry points on the desktop or start menu. I haven’t checked Edge yet.
I wonder if copilot is released to all update channels or if it is only on a subset?
I don’t even see a link. Though I guess I should look inside Microsoft Edge.
Edit: I cannot find anyway to get to it in either the desktop or Edge. I do not have a signed in Microsoft account on this machine, so that may be why I don’t see it. I’m not willing to sign in to see.
Surprisingly, I thought the article was a reasonable summary of the actual paper. I think some people might think this was a poke at privacy on Apple, but it really focused on how hard it is to create accessible settings despite the enormous number of options.
I have found that navigating the menus in Apple iOS is quite a bit easier than on my Android devices. Mac seems more difficult as the settings tend to be inside the individual apps and don’t surface as well through the search.
The paper hammered home the point that Siri configurations were particularly hard, but they also mention that Siri data is end-to-end encrypted. I thought all those points were fair.
I do believe settings need to be improved, but I have little faith they will ever be useful for 99% of users who will simply never change anything from the default. At this point I believe any meaningful improvements for the majority of users will come from useful defaults that include E2E encryption on basically all user data. I feel Apple is coming close with iCloud Advanced Data Protection that was introduced last year, but that needs to become a default. Maybe it cannot though—too many users will lose all their data and then the trade off of security to convenience will not be worthwhile.
I don’t think a big business should have an advantage over a small business that cannot afford that technology while using public airwaves. A better solution imo would be to prioritize all very low-bandwidth traffic.
Especially the babies. They know what they did.
I agree that decrypt/encrypt is bad—it is simply not E2EE. The solution would have to be a better method of public key distribution for ‘federated’ systems.
While I don’t know anything specific about facebook messenger, E2EE doesn’t necessarily preclude what you suggest. A messaging service could store the entire chat history encrypted without decryption keys. When you get a new client you could restore the entire history in encrypted form onto your device. You would then use a recovery key you would possess to decrypt the message history on your end. At no time would the messaging service have the keys to decrypt. I’m not saying that is what facebook does.
Why do you need to control both ends for E2EE? Both ends need a public and private key to encrypt and decrypt messages. You need a method of key exchange. I would prefer to have an offline method (phone call, in-person) of validating a key (like iMessage and Signal have). But I don’t see a reason to need to control both ends.
I read it….
I would feel that it would be a reasonable if it was my local paper running the story. Arstechnica IS a primarily technical news site—I believe they should have a higher bar—otherwise they are just parroting a report and not providing useful (to me) news.