• 1 Post
  • 12 Comments
Joined 1 year ago
cake
Cake day: July 8th, 2023

help-circle
  • Their own encryption technology is kind of useless because impractical. However I don’t want to judge whether it’s secure or not. You can only send encrypted messages to other tuta users. No pgp / smime support. If you want to send someone without tuta an encrypted message, they will send them an email with a link where they can enter a password you have agreed on. So if you want to communicate with officials, banks, companies etc. you will always disable it. Also those encrypted messages will never be deleted as one might be able to access it via the link later. This causes your ‘free’ storage to fill up with old garbo.







  • EunieIsTheBus@feddit.detoOpen Source@lemmy.ml*Permanently Deleted*
    link
    fedilink
    arrow-up
    6
    arrow-down
    1
    ·
    edit-2
    11 months ago

    The default app is only just like any other app. The fact that it is the default / preinstalled doesn’t mean it is minimal or necessary software. In fact any company can release their own slightly modified version of Android. That’s also the reason why a Samsung smartphone, a google pixel and some other random small company might all have Android xyz installed but you get a different set of preinstalled apps, different Launcher / home screen or standard settings.

    So what your default app does or can do depends what or whose app it actually is and random people from the internet cannot tell you more about it if you don’t give more context.






  • And that’s the issue. I totally understand that one does not want to look through tens of thousands of lines of code just to use a silly little app. Even if you can understand the programming language and even if you took your time to look into it, its really unlikely that one would find either malicious code or simply security relevant bugs just from skimming through it.

    However, if everyone just relys on others no one actually checked it. Yes it is possible to look into OS code but that alone doesn’t make it better. There has to be at least someone to check it. The open source community is such a small one already.

    It’s like buying a ticket for the train. There might be controls so almost everyone does it. But as soon as it gets common knowledge that there are never any checks some will start to not do so. And in case of software even if something gets spotted eventually it might have had enough time to cause serious damage