Wasn’t euronews bought up by one of Orbans buddies?

Full disk encryption always seemed the most sensible to me, but I’m not sure whether that needs to be decrypted after hibernation.

That’s pretty much my ThinkPad’s Specs. Fine for almost all stuff I have to do on the go (expect CAD, don’t try to run BricsCAD on the thing, it’ll make you go crazy.)

I use full disk encryption on it, as on all my other devices, and it’s fine, speed-wise. The SSD is NVME, not SATA, but I doubt the performance impact would be noticeable on a SATA SSD if that’s what you’ve got.

That’s just normal fan design to make sure the motor has maximum torque on startup.

It sounds like you don’t necessarily like the idea of using a container (I tend to use podman, but most guides are for docker, so that’d probably be easier for you). From my experience, containerising things actually makes things a lot easier, especially in the long run, and getting started is a lot easier than it seems. You can probably find a ready-made guide to set up a plex or jellyfin container on Debian.

one of my favorite games unfortunately cannot be run on linux at all, and it’s a gacha. I don’t want to gamble with my account being banned

Yeah, let’s keep it to one kind of gambling. I like and use opensuse tumbleweed. Rolling release, never had stability problems.

I have never worked on a properly hardened desktop app, so I don’t have much of a perspective on that, and can definitely see that it might not be worthwhile for the signal team.

I would appreciate some level of encryption, thinking that it might help with less targeted attacks. I’d also appreciate a Web client, like Threema’s with none permanent sessions. But all that’s, as you’d say in German, “Meckern auf hohem Niveau”, especially since I’m not currently contributing to Signal.

Yes and no. I personally would like to be asked permission for such behaviour, but a gallery application, for example, could have legitimate reasons to index all photos on your system. I personally prefer to manually set the folders it is supposed to index, but that doesn’t seem to be a generally accepted paradigm.

In general, I see why you need to trust that a system your app runs on is uncompromised to a a certain degree, but measures to potentially limit harm in case it is still seem sensible, especially for an app with a focus on privacy and security.

Yes, full disk encryption helps against intruders with device access, but not against the files being indexed by other application. My phone is encrypted, but I still use a signal client that is encrypted again.

Yeah, fuck the KMT. But as you have recognised, they aren’t a dictatorship anymore.

And the status quo is that they are de facto a small independent island nation, that is de jure claiming mainland China.

For the most part, I don’t care about App Size. Storage is cheap. What I miss with the Signal Desktop App is the option to save everything in an encrypted container.

You have an island governed by a democratically elected government, with a population that from what I remember mostly doesn’t want to be assimilated into the PRC. The PRC taking it by force would, in my eyes, be rather imperialistic.

but I don’t see why a one plus should be any better than Xiaomi

It likely isn’t. I just got it very cheap some years back, and don’t see a good reason to replace it while it still works.

a random ROM with possible unknown interference should be safer/better regarding privacy

You could always have bad actors, of course, but these Roms tend to be mostly open source community projects, so the incentive structure leading to bad behaviour seems less clear to me, and such behaviour would theoretically be more detectable (how much anyone actually audits the code in practice is another question, of course.) In the end, running any Software you haven’t written yourself involves a certain amount of trust.

That does make sense, I guess. I forget that most people aren’t hardcore privacy nuts sometimes. I’m currently on a OnePlus with a custom rom, which’ll probably be good for a few more years, but the only new phone I’d consider at the moment would be a pixel with Graphene.

I get people buying cheap Xiaomi phones because they can’t afford a more expensive phone. I kinda don’t get why people buy expensive Xiaomi phones.

If you wanna court the laptop oem market, windows is the safer bet.

Depending on how in-depth they co-operated with the windows for arm team, keeping some details confidential till launch might have also been easier that way.

Lucky for me, I can’t afford a backyard.

Why does that sound like a threat?

You can mount the efi partition, but I don’t think you can usually mount the uefi or bios. I’ve only ever edited vbios, and haven’t done so in quite some time, but I remember needing to clamp the vbios chip. Dunno if motherboards make their bios chips more accessible, but I kinda doubt it.

Some motherboard support starting bios/uefi updates from a booted OS, so there might be a vector to be found there.

OpenOffice and OnlyOffice aren’t related. OnlyOffice is way closer to MS Office in look and feel.