flawedworld
flawedworld
@francislavoie on Debian 11 this file is provided by the media-types package and on Ubuntu 20.04 by the mime-support package
> So that's the trouble, the `.deb` we ship is distro-less. That's the risk in adding a `require` to it, cause if the distro doesn't ship something with that exact...
@mateusz-markowicz do you think you could push this minimal app source code please? My very vague and speculative hunch is that when the VPN is down, and the killswitch is...
I think if we decide to do anything like this, we would rather implement a whitelist of apps for this, and then we should do a regular OS notification stating...
Cannot replicate.
It would be acting as a very strict NAT slipstream mitigation. You can see them doing this right now with a blacklist currently by blocking port 10080 for example. https://grapheneos.org:10080/...
This was also mentioned here: https://github.com/whatwg/fetch/issues/1189
The issue demonstrated in the video is a device issue with the firmware. It does not fall in scope of Wasted in my opinion. Also see: https://discuss.grapheneos.org/d/10023-exploit-of-device-after-first-unlock-to-obtain-data-that-isnt-at-rest/27
https://source.android.com/docs/security/bulletin/pixel/2024-04-01 https://twitter.com/GrapheneOS/status/1775619234204197234 https://twitter.com/GrapheneOS/status/1775305179581018286 Use a supported Pixel with the April ASB with either GrapheneOS or the stock Pixel OS and you will mitigate this attack. @x13a This is basically solved,...
If you don't use a Pixel and instead use another Android device, buy a Pixel. That's the fix. I don't trust 3rd party OEMs to properly implement mitigations in firmware,...