jermanuts

https://0pointer.net/blog/authenticated-boot-and-disk-encryption-on-linux.html https://www.cryptofails.com/post/70546720222/telegrams-cryptanalysis-contest , https://portswigger.net/daily-swig/multiple-encryption-flaws-uncovered-in-telegram-messaging-protocol. Also no E2EE by default only when enabling secret chat, secret chat isn't available on desktop and some groups are censored by app store/play store. https://matt.traudt.xyz/posts/2019-10-17-you-want-tor-browser-not-a-vpn/...

Thanks, glad you liked them.

https://www.bejarano.io/sms-phishing/ https://mega-awry.io/ (mega.nz flaws, don't trust encrypted storage clouds use cryptomator to upload your files to the cloud) https://mjg59.dreamwidth.org/59479.html (The Freedom Phone is not great at privacy)

https://tonyarcieri.com/4-fatal-flaws-in-deterministic-password-managers https://www.ietf.org/archive/id/draft-nottingham-avoiding-internet-centralization-05.html https://pseudorandom.resistant.tech/federation-is-the-worst-of-all-worlds.html https://krausefx.com/blog/ios-privacy-instagram-and-facebook-can-track-anything-you-do-on-any-website-in-their-in-app-browser https://rohanrd.xyz/posts/why-you-should-start-self-hosting/ EDIT: do you think the last 2 links fit/related to security? Not related. Do you have any way of contacting? Might invite you to servers...

Thanks for replying, I was going to recommend #grapheneos:grapheneos.org and https://matrix.to/#/#privacyguides:matrix.org anyway privacyguides is probably not as aggressive as grapheneos when it comes to moderation. What about https://github.com/beerisgood/Security-link-collection/issues/1#issuecomment-1201232671 https://www.hardenize.com/ ,...

https://superuser.com/questions/926517/is-it-safe-to-register-on-an-http-webpage-when-i-am-using-vpn https://matt.traudt.xyz/posts/2019-10-17-you-want-tor-browser-not-a-vpn/#untruth-vpns-protect-you-from-local-network-hackers https://daniel.haxx.se/blog/2022/08/10/ipfs-and-their-gateways/

np, you are on HN rn https://news.ycombinator.com/item?id=32458440 if you don't know yet. Maybe in the future the security links repo wlll be posted on HN when more links are added...

https://www.michaelhorowitz.com/VPNs.on.iOS.are.scam.php Thought we are going to take a break from these amazing blogs but this one just popped on HN. Also I have collected some links that might be interesting...

latest electron addition can be added with electron no sandbox in this repo, also add https://mullvad.net/en/blog/2020/5/4/ios-vulnerability-puts-vpn-traffic-risk/ beside https://www.michaelhorowitz.com/VPNs.on.iOS.are.scam.php as the have mitigation method in the )smartphone security repository). Add https://krausefx.com/blog/announcing-inappbrowsercom-see-what-javascript-commands-get-executed-in-an-in-app-browser...

https://ar.al/2022/08/30/dear-linux-privileged-ports-must-die/ Edit: you added discussion :eyes: _too late_ I guess lol