These are all examples of why having the tech alone won’t make you money because you need to be able to sell it. Doesn’t relate to this article at all.

yeah, I’m well aware of these features. Just didn’t get the benefit of running a private instance vs. using a trusted public instance, which would hide my IP from the search engines.

it doesn’t exist on youtube or on any other streaming platform

Imagine defending forced arbitration just to try to score on Valve…

Do you want good products? That happens through telemetry. Simple as that.

Nothing wrong with Invidious and everyone will need to use it when the ad injections start but claiming your app is better than FreeTube because it’s written in Rust makes no sense when it can’t ever stream in the same quality consistently.

I’d expect free software people to not have the funds to sue corporations. Are there any examples of these major lawsuits I can take a look at? I do remember a telecom company in France was fined quite a large sum but that was reported as a rare incident.

FreeTube streams from googlevideo. This app is a frontend for Invidious AFAICT. Different stuff. Streaming googlevideo directly is the only method that works properly on 1080p+. Also, this doesn’t work.

man, this is cringe…

there’s a security researcher in the US currently being sued by some state because he downloaded breached data from TOR that the state was saying didn’t leak.

unfortunately… noone seems to stop and think for a second why Meta would maintain an infrastructure/team, spending millions upon millions to provide a service that seemingly has no monetization built-in.

I’m asking global override vs application manifest (not application override). So the app asks for access to home/some-dir but I have a global override that blocks access to home entirely.

how do credit agencies even work? what data do they collect and how?

So I need to go look at what filesystem each app is requesting and manually disable that on top of disabling home access entirely? What’s the point of being able to do filesystem=!home in the global config?

Those type of stuff should come preinstalled in phones rather than fucking Candy Crush or Facebook.

Which is how we know their self-rolled encryption is shit.

There’s a reason why Telegram CEO can be arrested when Signal’s can’t. Because Telegram has information they can give but refuse to whereas Signal give everything they’ve got, which is basically nothing.

Am I too harsh in believing that if you claim to have E2EE but I can’t verify a) your source code b) my client was built from that source code (i.e. reproducible builds) then you don’t have E2EE? The whole point of encrypting my traffic on the client is I don’t trust you. Why would I believe you aren’t sending the encryption keys off to your server if I didn’t trust you before?

Their TOS says they don’t record but who knows…

The amount of malware you can cram in a source-code patch without drawing attention vs. in a binary is vastly different.

There’s also the fact that if you want to ship binaries, you can just wget them from source during the build process. Not a perfect solution but much better than what’s ventoy doing. The source code updates works the same in every project because it has to. That’s why this is drawing more attention.

Yep, some people these are saying just 7 of the 150 binaries don’t have source or build info. Yeah, one binary is enough to do all the evil in the world, not that other binaries support reproducible builds anyway.