simon

joined 9 months ago
sorted by: new top controversial old
Vibe coding is to coding what microwaving is to cooking. in c/showerthoughts@lemmy.world
[–] simon@lemmy.sdf.org 8 points 2 weeks ago (2 children)

I'm asking for more extensive documentation these days. Helps show the author themselves understand the code they're asking me to review. The code itself I just skim.

India Wants Wide Business Use Of Its Huge Aadhaar Biometric Database, Now With Facial Recognition in c/privacy@programming.dev
[–] simon@lemmy.sdf.org 1 points 4 months ago

Isn't this the same as personal numbers for identification/authentication? Sounds like what already exists in Europe, but with a biometric passwords instead of a code.

I assume the companies won't get access to the actual biometric data but some hash or something to just validate that is the same face etc.

Making it (the hashes) available seems harmless in itself. The more concerning part is that companies would start to require your fingerprints to log in somewhere, and then they would have them that way, instead of the government giving it to them. And the other side of this is that the government will be able to track all the places you log into using their system, if you need to connect to it for the validation.

Reminds me of "EU Digital Identity Wallets" (which is just a proposal as far as I can tell).

Are Android's contacts safe? in c/privacy@programming.dev
[–] simon@lemmy.sdf.org 2 points 6 months ago

Yes, that seems like a great feature to have! I know the Pixel Android allows me to select individual photos that apps get access to. Maybe worth switching to Graphene OS to get the contact scopes also.

I used to think that Graphene OS is useless in my case since I need Google Play Services anyway, and if I install all that, I figured I'm basically going back to default Android. But if they have this sandboxing stuff also, it could be worth it.

7
Are Android's contacts safe? (lemmy.sdf.org)
 

I want to keep a list of my contacts on my phone so I can call them, but I never want the list of contacts to leave the device, through contact sync or similar. I'm using the Android built-in Contacts app.

On my old phone I used an F-droid app called 'local contacts' or 'offline contacts', but I can't find it with my new phone. It would create a new account, separate from your gmail account, to associate the contacts with. Something like that might be nice to have, although I don't know how effective it is.

I see in my settings under "Google Contacts sync" that "Sync is off" and "Also sync device contacts" is off. "Device contacts" sounds like maybe some Android built-in version of the offline contacts app I mentioned before. Does anyone know if this is the case?

I'm worrying that if I use a builtin features, Google will ask me about backup for photos or something at a later point, I'll reflexively click 'proceed' without realizing what I'm doing, and this will activate all Google-related sync features, including contact sync, updating my Xkeyscore (NSA) profile with my social graph before I know what's happening.

Perhaps it's best to assume my social graph is already known by Google? Then maybe I should focus on limiting others from getting access to it? I believe apps have to ask before accessing any contacts so I guess I could just deny access for apps I don't trust.

There are few questions above, but I'm really mostly looking for a discussion about what good security practices are when it comes to phone contacts. It seems like one of the more sensitive sets of information on a phone.