Thread - Nostr Hypermedia

Final 🛡️ 3 months ago

Essential reading for hard-line GrapheneOS users in the quote note. Almost all of the major state-sponsored or mercenary exploits you hear about are possible through memory corruption vulnerabilities in their exploit chain. They make up most of the Critical / High vulnerabilities in Android even when the amount of them have reduced due to an increase in code written in memory safe languages.

Final

Deep dive showcase of #GrapheneOS hardened malloc by Synacktiv, a well-known offensive security company. https://synacktiv.com/en/publications/exploring-grapheneos-secure-allocator-hardened-malloc

View quoted note →

Replies (3)

Billy Bapparoo 3 months ago

Do you have a recommendation for : calendar, Gmail client? Trying to see what users who are security/privacy aware use. Of course best to move of gmail but required as intermediate step

Final 🛡️ 3 months ago

↩ replying to Billy Bapparoo

FairEmail is a nice email client. For Calendar, you could use a local app like Fossify Calendar or a calendar service like Tuta, Proton, etc. Whatever service you use is up to you.

Hanshan 🛡️ 3 months ago

↩ replying to Final

Proton has nice functionality if you just want to opt out of default surveillance and dont want to self host one.