Blog post by crypto professor Matthew Green, discussing what Telegram does (I wasn't familiar with it) and criticizing its cryptography. He says Telegram by default is not end-to-end encrypted. It does have an end-to-end "secret chat" feature, but it's a nuisance to activate and only works for two-person chats (not groups) where both people are online when the chat starts.

It still isn't clear to me why Telegram's founder was arrested. Green expresses some concern over that but doesn't give any details that weren't in the headlines.

This is a good blog post, with die photos of the new RP2350 chip and a brief description of what they show. There is a link to a 12 minute youtube video that is also very good, that discusses the die shots in more detail and also goes over the rest of the Pico 2 circuit board, including die shots of the QSPI flash chip and the voltage regulator chip.

This is a technical but quite informative article, nominally about which elliptic curves have good security properties, but also discusses the intentions behind using EC instead of older systems like RSA (basically, EC is safer against some known classes of attacks).

Posting partly because EC vs RSA came up here a few days ago.

cross-posted from: https://lemmy.world/post/18617290

The National Institute of Standards and Technology has finally published the world’s first three official post-quantum cryptographic algorithms, tools designed to protect key systems against future quantum computers powerful enough to crack any code generated by a modern computer.

Basically more everything. 2x Cortex M33 cores with floating point, 520KB ram, more PIOs, bunch of secure boot stuff (I have mixed feelings about this), and can boot to a mode with risc-v cores instead of the M33s.

I get spammed by them all the time but have so far resisted and stayed with my crappy, slow, and expensive ADSL provider out of principle. But the ADSL provider just raised prices on me AGAIN and it's ridiculous.

What do I do? Is Google Fiber as invasive as other Google stuff? What if I just use it to tunnel a VPN to a non-Google endpoint?

This is sure annoying. It occurs to me that Comcrap might be available here as an alternative, but that must be as evil as Google. At least the ADSL company is reasonable about privacy, as such companies go.

Thanks for any thoughts.

It's a pain that search results on lemmy show by default ordered by some useless relevance ranking. I can't think of a single time I didn't want newest first. I couldn't find a preference to request that. It would be great if there was one.

The suggestion on c/support on lemmy.world was to make this kind of request on github, but it seems anti-FOSS to me to require a Microsoft account for a fediverse request, so I'm posting here and hoping for the best.

Thanks for any consideration!

Example (spam post containing an amazon affiliate link, post hopefully deleted by now but I assume mods/admins can see it): https://lemmy.world/post/15846936

Also there are tons of links people post legitimately but have tracking parameters, gclid=this, fbclid=that, etc. Those can be cleaned up too.

By editing out these parameters automatically when the link is posted, people's privacy can be protected and the incentive to post affiliate spam can be decreased.

It could be a server config parameter and/or put into the posting UI: "your post contains [link] with flagged parameters, choose between a) post cleaned up version (shown), or b) post link without changes (may go into moderation queue depending on community settings)."

Voyager 2.3.1 on Android. I visit a community and select "hide read posts" and those posts disappear a they should. But there is no apparent way to undo this. The pulldown still has "hide read posts" instead of "unhide" them.

Sofirn confirmed by email that it is discontinued. No idea about other LT1 series models. A shame. I like the Mini and kind of wanted another one. Oh well.