Hey there,

Due to having an unlocked bootloader, I fail safetynet. So Google-Pay is locked out, even if I wanted to use it. I find cash or cards to inconvenient, since my dexterity is impaired.

So I looked into getting an nfc-token to pay with and found that my bank is partnered with Fidesmo. This would allow for mobile-pay without an extra party involved. They seem fine from what I found online and they do publish some client-code on Github, but I had never heard of them.

Does anyone have any info on them?

Hi all,

I'm currently wanting to make a few wiki pages for a community I host here on PieFed. Not trying to advertise the community, but for context, it's a community about BY-NC-SA licensed music, and I'm wanting to create a guide as to how to find new music with that license on certain platforms.

My trouble is this. I want to provide those viewing posts with the ability to find music with ease utilizing search engines when that's the best option to do so. However, I also don't want to have that search engine be Google if that's at all possible.

The main features I'm needing are to only fetch results from certain websites, and to specifically include or exclude specific phrases. For example, if I wanted to find BY-NC-SA power metal music on BandCamp, and exclude songs from the band Blind Desire for some random reason, I'd have the following search:

In this case, Google only fetches results from bandcamp.com, only with the BY-NC-SA license, and only with the words "power metal" in the page, while also removing results from Blind Desire.

Are there any privacy-friendly options that have similar search features? Being made aware of an alternative like this will definitely help me kick what little reliance I have left on Google.

Thanks in advance.

cross-posted from: https://lemmy.dbzer0.com/post/31443410

Cock.li will shut down before becoming complicit in crimes against its own userbase by duress of any government or organization.

For nearly 11 years, cock.li has remained one of the only public e-mail providers to allow registration as anonymously as a library card. The fact that it's still possible to get an e-mail address as easy as 20 years ago is a fact widely *hated* by international governments; at least the parts of those governments which have dedicated countless resources to target our service, our team, our family, and our friends with illegal surveillance, bad-jacketing, organized disinformation, and much worse.

A combination of these illegal tactics have become so serious that the site is now in grave danger.

The only way it's been possible for cock.li to weather this and stay online is thanks to the dedication of our entire lives to this bit. Our small team of 3-5 people have had our lives permanently altered and our stability sacrificed so Internet users worldwide can more-or-less enjoy the comfort of being able to access e-mail without requiring a phone number or other surveillance document.

Despite the constant attacks on the service and our personal lives, no one directly involved has ever been paid in 11 years for their work on cock.li. The personal costs of this volunteer work add up over a lifetime, and as we get older we've slowly taken steps back to compensate, when we should have been stepping up.

Stepping up is exactly what's needed right now, and we're here to do it. These recent issues have forced us to take leave from our jobs to make time just to keep the wheels spinning. I hope you can understand that is why, for the first time ever, I'm asking you to donate directly to the people who make cock.li possible.

Your donation will make a real difference by telling us to use the money where it will help the most right now. We have a sizable war chest for legal expenses that has never once been used to pay us for our work. Problem is, if we can't make time to put that war chest to work, what good is it? We believe cannibalizing this fund to offset our lost time would put cock.li in a worse position, so by creating a new fund we can make it clear what we're doing while keeping our legal funds secure.

It shouldn't surprise you that the people who are so passionate about this service are not profiteers or business people. We are private, unpaid individuals who don't want to see one of the last great liberties of this Internet fall victim to the criminal and violent attempts to shut it down. If these critical threats force us to change the world to ensure e-mail remains recognized as a human right, we won't hesitate to do it.

We never once asked for personal donations specifically in the hopes that if this moment ever came, our userbase would appreciate that we were able to make it this long on passion alone, and trust that your donation will make the best possible impact.

There is much work to be done. I will keep you updated as much as I can. Thank you very much for your consideration.

Monero:  41fqXKYNEWuBDuqYczhoSiE1aUN9tCGdWYrfjynebuTM3tdE5UUHEfeZjZ3iZpgqY8LdYLk9h4As66UBC5mARL4z98PfUwB
Bitcoin: bc1qg9ehmfzusgfd6dvudll0qxkcl8c5q3sh8qnetr

~!~

In the 2022 film `COCKCON 2020 (2019)`[0], a 250MB encrypted file was hidden in a second video track of the 1080p release. You can download this film here[1]. I don't know if the encryption key will ever be released, but if it does, you'll want quick access to that file.

Furthermore, two more files are released today, 2024-11-12: ins10.luks[2] (555MB) and ins11.luks[3] (64MB). Please download these torrents and seed them as long as you can. Please consider your privacy when seeding.

[0]: https://vc.gg/film/cockcon-2020/
[1]: magnet:?xt=urn:btih:TBU2RE2ENTL6USAZVX7HH7V3TYMK2KVI&dn=COCKCON%202020%20(2019)%20(2022)%20%5B1080p%5D%20%5BOvO%5D&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce
[2]: magnet:?xt=urn:btih:RZ5PIPVCPPJC7JWIVU74V5JANJ4O3RXL&dn=ins10.luks&xl=581959680&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce
[3]: magnet:?xt=urn:btih:DX6I2QFYIBYZPCP5FPRBORTQVCM4NVRG&dn=ins11.luks&xl=67108864&tr=https%3A%2F%2Fpub.tracker.aaathats3as.com%3A443%2Fannounce

I just got this email from them. Scary.

You can verify this PGP signed message by checking the fingerprint at the bottom of the welcome e-mail you received when you first opened your cock.li account.

For the first time ever, I'm asking you to donate directly to the team that makes cock.li possible. For 11 years unpaid work has kept this site alive; the war chest for legal funds has never once been used to pay anyone directly related with the service for their work.

Now, an existential threat faces the site which requires the team to take leave from our jobs and daily lives and commit full-time to keeping the service online. Without your help, cock.li might shut down, but we are giving it everything we've got.

From https://cock.li/:

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

Date posted: 2024-11-12

🚨 COCK.LI IS ON RED ALERT.

Cock.li will shut down before becoming complicit in crimes against its own userbase by duress of any government or organization.

For nearly 11 years, cock.li has remained one of the only public e-mail providers to allow registration as anonymously as a library card. This has only been possible by the dedication of our entire lives to this bit. Our small team of 3-5 people has permanently sacrificed the stability of our lives so Internet users worldwide can more-or-less enjoy the comfort of being able to access e-mail without requiring a phone number or other surveillance document.

99% of the sacrifices made to keep this site online have never been made public. Despite the extreme personal costs, no one directly involved has ever been paid in 11 years for their work on cock.li. For the first time ever, I'm asking you to donate directly to the small team that makes cock.li possible.

We have a sizable donation pool for hosting and legal expenses. Sadly, our real lives got in the way as we get older, and we've been taking steps back to compensate when we should have been stepping up. Now is your chance to make a real difference by telling us to use your donation where it will help the most right now: to allow our small team to step away from our jobs and pour all of our passion into this service to keep it alive.

It shouldn't surprise you that the people who are so passionate about this service are not profiteers or business people. We are private, unpaid individuals who don't want to see one of the last great liberties of this Internet fall victim to the criminal and violent attempts to shut it down. If these critical threats force us to change the world to ensure e-mail remains recognized as a human right, we won't hesitate to do it.

We never once asked for personal donations specifically in the hopes that if this moment came, our userbase will appreciate that we were able to make it this long on passion alone, and trust that your donation will make the best possible impact.

There is much work to be done. I will keep you updated as much as I can. Thank you very much for your consideration.

Monero: 41fqXKYNEWuBDuqYczhoSiE1aUN9tCGdWYrfjynebuTM3tdE5UUHEfeZjZ3iZpgqY8LdYLk9h4As66UBC5mARL4z98PfUwB Bitcoin: bc1qg9ehmfzusgfd6dvudll0qxkcl8c5q3sh8qnetr

~!~

In the 2022 film COCKCON 2020 (2019)0, a 250MB encrypted file was hidden in a second video track of the 1080p release. You can download this film here1. I don't know if the encryption key will ever be released, but if it does, you'll want quick access to that file.

Furthermore, two more files are released today, 2024-11-12: ins10.luks2 (555MB) and ins11.luks3 (64MB). Please download these torrents and seed them as long as you can.

~!~

LIBERTY CANARY Date updated: 2024-11-12

Cock.li is in 100% control of all of its hardware, and the service is still operating normally. The website (account registration+pw change) is currently offline.

Cock.li will shut down before becoming complicit in crimes against its own userbase by duress of any government or organization.

Until further notice, THIS CANARY SHOULD BE UPDATED DAILY. Under no circumstances will we let this canary go 48 hours without changing the "Date updated" above unless a PGP-signed message changes the schedule.

The schedule or PGP key used to sign this message may be changed only according to signed message from key 5CB49CDCEAC797FBF8BDC074FD71AD2771A5CC1B. Any message certifying the change of PGP key should be displayed alongside all messages signed with the new key for at least 7 days.

~!~

Fun facts about cock.li:

User count: ~1,400,000

Established: 2013

Domains: cock.li airmail.cc 420blaze.it aaathats3as.com cumallover.me dicksinhisan.us loves.dicksinhisan.us wants.dicksinhisan.us dicksinmyan.us loves.dicksinmyan.us wants.dicksinmyan.us horsefucker.org national.shitposting.agency tfwno.gf cock.lu cock.email firemail.cc memeware.net cocaine.ninja waifu.club

~!~

I LOVE YOU LADAR LEVISON -----BEGIN PGP SIGNATURE-----

iQI/BAEBCAApFiEEXLSc3OrHl/v4vcB0/XGtJ3GlzBsFAmczuaYLHHZjQGNvY2su bGkACgkQ/XGtJ3GlzBtpPw//dAT+Z0LGjpHRqZ26TuphrRLAnsOq+jmBvOlI+kuJ APPdYAB1ZOD76JhhVCQjthuegzfOPzPigvmIoHO47v2kcQXypP2cDM8nwrEdihOW f0WgEjyrn6kKquBl0FMRgrNakFhyqetpDEwK2DrZbA9rUYCu2hop0UazgLGbEsq2 XwvD1piNxQIy4FDJaAO0EnWEz26pLa4PBT+VwGajZS3j2Mxfuj4csQn2vmJRx0NZ ywi+UZk5gwT5lYsTbRouXCvtWfh/K5AKJNUMxMyZFOlNpvxpiK5Nx02klUFpmDAN P1oPXRu9Qb0ujkJclfgxUroHWs5Ck40SS7qM3Cg1ka+mEhXIjkN16dpTpp4AYk4p 0A0j8HwDfv4v97RrkHaF4d1xiztkU97xaL2T84MNCC501C+9yaBnWPbZntyNma1q klglSICAUSdTf9nyMPO8UaTcr1oscpr2GgJ0JAI0UbmKMGqYLRuUR2h355liftHi rWEZXRP1ynBfVnOnHNdfDeBn5UXWxgmJJeHHt+FjRDe81nalTUMu+IXlrbhbvnVl OEgOj/Js7IRYUX7EO6Nyy/yAEw2afBJiClyq2qSBB9DU0WqwUPglrabcdKafot3n O4oXowCeFoa1Up8gFdWEprVzftYwEkXPw0bTQZR67XDkYXP8WIRcOWiwCeUShEIO cbc= =/snU -----END PGP SIGNATURE----- -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v2

mQINBFJstUoBEAC1ynLAfjebYqIRSXxKDhA5NZY5nJ7zviqdWCffO+YuyBkQXThG 79EFTnyjQQE3FyNkboD1jQ74HGuOBoNlw18bo4JZJYwHH9O8T8WZF3FylKftxJgs A1RYwqt/aze09PmTYsViuN1Qs1NAfMTYrMq3YZUHzg+3jsLjOcc/RwOjHdnFMy+Z VB3GDaGHEbCBj1RXlSTd1luVu5G0d3mtdsnGSFFz1AHBXvYD0yL2K6oaU7iSN1Q2 +KYhnz97EZjeTgQj4ujbRLxoSn2NC9E03sA2ENd09bh2PhxD+ypP2dCES9isx9M4 XBzquzDAgAA9JGFDloBKGFrbZ58UmisNfi0EZymoMSRy8RJcSuHXfVnoOf8NP4TL Y0qissp8sX137iY3aXhaeYMo9T6RDSyMh3vUXteQWPdwm+xZAFuhWUOeB12FrD2M Xg98JyP0VKLt/i1sUxjg4UVxSw4YoqCse/wX8oivzcCfP8ggglMQVLGEOncN0KPc t/n94z3a3c8RpdOS7dQvukZNOrOfCpyNQvtsUZTe228fzgSf3CUGirvFt6f9VX11 m8SjZv43fkE0+eN4f45a6Tzco8eKfMQH+4EHlAN1U8H1QlT6oC5xj56627ve898O xQUW303Ll956HMaWyS/fr5Gz8dPi6fKtU8vZq3pmnw27yOYIdFw5tBSpYQARAQAB tB1WaW5jZW50IENhbmZpZWxkIDx2Y0Bjb2NrLmxpPokCOQQTAQIAIwUCUmy1SgIb DwcLCQgHAwIBBhUIAgkKCwQWAgMBAh4BAheAAAoJEP1xrSdxpcwbmR8P/0FPedGv vf67vV7nDX6QkCO63XHkUK7JLe+oQT/iC0TzGbs7/La/VDRXnf84KwSSMbJlCXUr Rq2DH/Reezq52a5GAo+YQ33PV1TwemV4V/VadmHAjkVyfFcTEPiJJqaPX+XX/QVD hFAd0g/3fJQSkeHByNYrJtSxj40JFc5zRVjlAI8s1ST/zkdG+hPK0ehWzeUloqxJ HmnCOZ7yrwqZj+b8B36ro5fXkX++squy6vuN8HvXW2tjD5YgRerXwNThkLtW/2cv +UPLNKmk3Kst5uM8zbTD6CvtteXQtwuQtXGBiyqcfCOyoHwNEPjaK/7vBaMmFWDo OtLHFQ1j0bGW2YbHpD5kqjYTLGZY8W2Zpvju10A6v3DIxZaUrgaouwDJz2DLSBbn 2GPTCXWV2nJaLLVS7S3jsFyKdqMEy4xhBO3PCIUXHmgeArIw0USThbT2zsZ9A3ZC sFjX8F7GKa7/uKXvJZ9ZKFiFZWqw3V2wbT3LfX1u1RDWyn7f8rW5n5HTdQkS6lJ0 yH5ZDsQHT5Ewxy/SCck1IYJ6QRGxoIlhIkm/8VXe4QAkgWIJwUWfplrH/4AK52T+ SdNlMQZoTNj6CQCHhEcaiEv7mVQmC21AwbQQg/AjiwRdlUq2kN/n0xTknxjxpUqT o1wbQh/HchncOijg2J1Z2DzBjzquRNkLyq5v =pe2n -----END PGP PUBLIC KEY BLOCK----- 8========================================D Cock.li news mailing list To unsubscribe, E-mail cock.li-news-unsubscribe@lists.cock.li

On Android/GrapheneOS, Firefox/Mull/variants is the only browser with the needed proxy settings to use with i2p.

After a bit of searching, it works very well!

As i2p servers you can use "i2p", "i2pd" (more minimal but more efficient) or "InviziblePro" which bundles some implementation of i2p.

I am using i2pd currently, and it works well.

Installed the apps with Obtainium

• Mull from the DivestOS F-Droid repo
• i2pd from the purplei2p F-Droid repo
• MullvadVPN from Github, Orbot from the guardianproject repo (as fallback if clearnet sites are used)

The browser can open .i2p and clearnet sites, using a little hack:

network.proxy.no_proxies_on to !.i2p

I was wondering, which country's exit nodes (VPN) do you use and why? Are some countries better than others (in terms of jurisdiction and laws, not latency)?

I use MullvadVPN, GrapheneOS and Linux but I also search for any more apps not like OSes. What'a your favorites?

cross-posted from: https://sh.itjust.works/post/27957996

Hi guys!

Just that...would you recommend any decent free Dynamic domain that is well regarded privacy-wise?

DuckDNS is becoming rather unreliable and prone to failure.

Thanks!

Support will be removed on both client and server side.

The process of removing OpenVPN from our app starts today and may be completed much earlier.

I am thinking about changing VPN, I am currently using ProtonVPN and I was thinking about changing to AirVPN (for its prices and port forwarding) or Mullvad (Everyone says it is better regarding privacy but I don't know why).

Which one would you recommend and why? I have seen a lot of criticism towards AirVPN for being based in Italy, but if they don't collect the data as they say they do, there shouldn't be any problem, right?

The government is being pretty coy about the details, so most of the article is necessarily conjecture.

Selected excerpts from the article:

The definition of a social media service, as per the Online Safety Act

An electronic service that satisfies the following conditions:

1. The sole or primary purpose of the service is to enable online social interaction between two or more end users;
2. The service allows end users to link to, or interact with, some or all of the other end users;
3. The service allows end users to post material on the service.

Under the proposed changes, it will be the responsibility of social media companies to take reasonable steps to block people under 16.

How will your age be verified?

The government's legislation won't specify the technical method for proving a person's age.

Several options are on the table, including providing ID and biometrics such as face scanning.

The government's currently running an age assurance trial to assess all the methods, and it's scheduled to continue into 2025.

Based on the results of that trial, eSafety commissioner Julie Inman Grant will make recommendations to platforms.

It's possible that Australians will be asked to provide their IDs or biometric data directly to social media companies in order to use their platforms, but that's not guaranteed.

Many of the big players, including Meta, have instead argued for the age verification onus to be placed on app stores, rather than individual platforms, as that would mean proving your age once — rather than every time you sign up to a platform.

It's also possible that a third-party company that specialises in ID verification will act as a go-between between users and social media platforms.

No matter which model is adopted, the prime minister has said privacy protections will be introduced to cover any data people end up providing.

Greetings! For the past few weeks, i have been using Apple Maps for navigation. Only to realise that it does not have some specific places i go to regularly. And offline maps are just broken. And since i'm here, what are the best FOSS Map apps that have offline navigation? (i did try osmand and maps.me, theyre both paid)

Greetings fellow privacy enthusiasts!

I'm searching for a privacy-respecting media box that can run Android apps. The streaming device market features options like Shield TV, Chromecast and various Amlogic boxes. However, finding one that truly embraces FOSS principles while meeting essential needs has proven challenging.

Essential requirements:

• Android app compatibility - specifically need to run certain apps
• Strong privacy and security features
• Reliable, long-term software support (I've grown weary of devices becoming obsolete within 2-3 years)
• Budget-conscious: Aiming for under 150€, though I'm willing to invest appropriately for the right solution
• Willing to invest significant time in initial setup, but afterwards it should "just work" with minimal maintenance
• Timely and automatic security updates (ideally close to upstream releases)

My initial research suggests two potential approaches, though I'm not entirely certain about all implications:

1. Mainstream devices (like Nvidia Shield) that can be degoogled through ADB commands
2. Devices that are officially supported by LineageOS

While both paths seem promising, each raises certain concerns. For instance, degoogling might require ongoing maintenance, and running LineageOS could mean losing some device-specific functionality (as is the case with Shield).

The Raspberry Pi, with its open-source foundation and community-driven LineageOS development, seems interesting, though the lack of institutional backing raises some concerns about long-term reliability.

I'm still learning about the security implications of these choices. While I understand that phones running LineageOS don't match GrapheneOS's security standards, I'm uncertain how these considerations translate to a media box environment.

I'm open to exploring:

• Custom firmware solutions
• Alternative hardware platforms
• Creative, FOSS-friendly approaches that preserve privacy while maintaining Android compatibility

Has anyone in the community successfully navigated these choices? Your experiences and insights would be invaluable, particularly regarding long-term viability and security considerations.

Thank god we don't live in some ridiculous Eastern European mass surveilance red terror dystopia. Anything even remotely close will never happen under a democratic leadership

Is there anything like a SimpleX group chat to join for us to talk, or should one be started?

For many, this month is when gift-giving season officially begins in the United States (and several other places, I presume) thanks to Black Friday, which is quickly consuming most of November in many cases. As a result, even though online shopping is something most of us engage in year-round, now it’s particularly important to discuss how to safely shop online. Below is my now-annual updated online shopping tips, reflecting techniques and strategies I've picked up in the last year.