this post was submitted on 09 Apr 2024
958 points (97.8% liked)

Linux

48185 readers
1529 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 48 points 7 months ago (7 children)

What’s odd to me is the cultural zeitgeist has moved to folks being aware that Microsoft (& Google & Apple) is collecting data on them to being the butt of jokes, yet those folks aren’t adopting an alternatives. With over a decade on Linux I’m now pretty out of touch with the opposite feeling. I guess the closest analog I have is not being able to realistically leave Android behind, but that is more hardware than software (banking app already don’t let you root or otherwise flash your device so I have given up hope in trying with them).

[–] [email protected] 29 points 7 months ago (1 children)

A few days ago I tried to install Windows 11 on the PC of a friend. It didn't work because of missing SATA drivers. Anyway, I was shocked how many points there are where Microsoft or Apple (we used his mac to create the USB drive) tries to sell something (buy pro version of fan controll now) or wants your permissions to gather all your data.

I convinced him to let me install debian. When it came to creating the default user he was hesitant to use his full name, because telemetry :D

[–] [email protected] 7 points 7 months ago (2 children)

I mean I don’t really see the point of using your real name on your system unless you often forget who you are. I would praise my friend tho for having the correct skeptical reaction even if it should be relatively harmless.

[–] [email protected] 4 points 7 months ago (1 children)

I also think it's a healthy attitude but at the same time it's sad that people can't trust their own devices any longer.

Using your real name can have benefits, like metadata in office documents or things like that. If you are sure your devices are yours and secure, there shouldn't be a reason not to use your own name. Unfortunately this isn't the case anymore if you are using anything else but Linux

[–] [email protected] 1 points 7 months ago

Many jurisdictions recognize pen names & other aliases which a username is & could also be put in the document. Many might prefer not inserting their real name into things by default & if that privacy is desired as default, all the more reason to skip the real name.

[–] [email protected] 2 points 7 months ago (1 children)

If a machine is going to have multiple users (all my computers have multiple profiles for family members) all those users have to be called something, and I've not got the energy or the creativity to come up with fun and funky usernames for every system when my actual name is more than good enough.

[–] [email protected] 4 points 7 months ago

Username is required for the home folder & login; name isn’t required for anything

[–] [email protected] 7 points 7 months ago (2 children)

banking app already don’t let you root or otherwise flash your device so I have given up hope in trying with them

You can get around that pretty easily by fooling SafetyNet / Play Integrity and hiding root from those apps. My phones have all been rooted for years and I never had issues with banking apps. I don't even run any google services anymore and the apps I use are fine with that.

[–] [email protected] 5 points 7 months ago (2 children)

I would not say easily. And even if you pass SafetyNet, your banking app may still not work. I have one, and I haven't figured out what it checks for, maybe LineageOS name or something. Would probably have to tear the apk apart to find out.

[–] [email protected] 5 points 7 months ago* (last edited 7 months ago) (2 children)

Do you use Magisk? I assume you have done the following already?

  • Enable Zygisk & the DenyList
  • (If Google apps are installed, deny all Google apps root access)
  • Deny the app in question root access
  • Install PlayIntegrityFix on newer devices OR SafetyNetFix on older devices (don't install both)
  • Reboot, force stop app and clear storage/cache
  • (Check if it works with this and this)

That should do it for all apps that do not require strong integrity.

[–] [email protected] 1 points 7 months ago (1 children)

Have you managed to get Google Wallet/Pay working?

[–] [email protected] 1 points 7 months ago

Yes, on my old phone it worked fine with the SafetyNetFix. I use microG now so Google Wallet is not implemented (yet).

[–] [email protected] 1 points 7 months ago

Thanks for the list. I didn't have PlayIntegrityFix. Unfortunately it does not seem to be helping with the app.

First one doesn't pass all checks, but the second one does.

[–] [email protected] 1 points 7 months ago

Right. It’s always going to be an arms race that isn’t going to get easier as Google announces the next version will require Play Services & Play Store. Maybe someone will find a workaround, but there will be constant downtime in between these gaps. You’d think they would allow someone technically savvy enough to pass as they are probably rooted/custom ROM for a reason… but no.

I’ve since switched to carrying a separate credit-card-sized apparatus for payments. It’s called a debit card + bank notes folded over. Transfers, I use their ancient website that detects Netscape Navigator 4 & disables paste & their encoding doesn’t allow English punctuation, but it works in a pinch. The hard part will be pushing against cashless as the banks & government want all the reporting/data collection—something customers & vendors aren’t the keenest towards but ultimately I think would acquiesce under enough pressure which I am fearful of.

[–] [email protected] 2 points 7 months ago (1 children)

Previous phone it worked up until it didn’t. New phone I left unrooted since that was the error they gave me. Now without the root/jailbreak error, I get a useless generic error & the app crashes. I’ve been too lazy to root it just choosing alternative payment methods.

[–] [email protected] 5 points 7 months ago

just choosing alternative payment methods.

Probably the better method, no bank is worth going through all that hassle.

[–] [email protected] 5 points 7 months ago

I'm using Kitsune Mask right now and it's working pretty well on hiding root from my banking app and Google pay.

[–] [email protected] 5 points 7 months ago (2 children)

banking app already don’t let you root or otherwise flash your device

It's unfortunately only developed for the Pixel series of phones, but I've been using my banking apps on GrapheneOS with no issues.

[–] [email protected] 3 points 7 months ago

Yep. If it doesn’t have a headphone jack, I don’t want the phone so no to Pixels.

[–] [email protected] 2 points 7 months ago (1 children)

Is that with a locked bootloader and sandbox google play?

[–] [email protected] 5 points 7 months ago (5 children)

(banking app already don’t let you root or otherwise flash your device so I have given up hope in trying with them)

Idk why this myth keeps getting peddled. You can use any banking app on any custom ROM, rooted or unrooted (though I see no point in rooting these days). And even if an banking app blocked you from using their app...the mobile website exists if you really need mobile access to your bank.

[–] [email protected] 15 points 7 months ago (1 children)

mobile website exists if you really need mobile access to your bank.

This isn't actually always true.

[–] [email protected] 2 points 7 months ago

Yeah my girlfriend's online-only business account can only be used via their proprietary app.

Been a royal pain in the arse for her.

[–] [email protected] 5 points 7 months ago (1 children)

That's not true. Specially with older banks, they don't let you run their shitty apps on rooted phones. And some younger banks don't even let you do certain tasks on the website, they are mobile first.

[–] [email protected] 1 points 7 months ago

No rooted phones for our App. No travel to specific locals and countries either. we hvae black lists of Regions of the world where you simply cannot login to your accounts due to overwhelming security concerns and lack of extrajudicial remediation should there be fraud.

[–] [email protected] 4 points 7 months ago

I haven't rooted in a long time. What would make the hassle of going to my bank's website worthwhile these days?

[–] [email protected] 4 points 7 months ago

This isn’t a “myth” they detect both root & custom ROMs so even if you wanted to use an unrooted custom ROM you can’t. Rooting your phone just to skirt around them should be the opposite of what they want as there is some security implications to rooting your phone. And the current solutions are all temporary workarounds til the banking apps find a new way to partner with Google to prevent modifications of any kind.

In my country, at least one bank has shutdown & discontinued their website which is often just the first domino before others start doing it too. My bank is slow to adopt tech, but their site was created to detect IE and Netscape Navigator. I would assume they would kill that website before upgrading it to actually work on the modern web where a fixed CRT isn’t the only screen size.

[–] [email protected] 1 points 7 months ago

European banks require strong security. Even a web-based login requires 2FA using the bank's mobile app - so if that app won't run, well, no banking for you today!

[–] [email protected] 3 points 7 months ago* (last edited 7 months ago) (3 children)

Majority of people just dont care about being spied upon unless it directly affects them somehow, at which point its too late for that person. But others having data on you wont likely directly affect you at the moment so not enough people get burned by it for general attitude to change. Smart people understand that all this can very easily change and prepare by not allowing all of their information be available for questionable people to use. Others make fun of them for this and call them crazy until one day they suddenly aren't so crazy any more.

[–] [email protected] 4 points 7 months ago

They actually do care tho about the tracking—if they weren’t privacy wouldn’t be included in marketing like it is now. They are just more willing to accept it as a fact of life rather than dealing with it (or don’t know that they can do something or how to start).

We should make this easier for folks ’cause every email I send from a non-data-collection host usually ends up on a Google or Microsoft server, etc. Every silly Discord chatroom you join, or Facebook page you like has the same ramifications.

[–] [email protected] 2 points 7 months ago* (last edited 7 months ago)

I think we need to do some really difficult investigations that essentially can show concrete proof of how this affects people:

"See you were looking up vacations and insurance right? Well you signed up to your car's connected service, you have an Alexa in your house, and a smart TV and a fridge all talking to each other....and they all worked together to put together a profile of how much you make and how old you are and everything else...

...so your neighbor looked up the same insurance and vacations and is paying about $200 less for the exact same of each, because they use AdBlock and don't allow spy devices in their house."

And then finish with the real kicker:

"I know you didn't ask to participate, but we just scraped all this information about you off the Internet and didn't even need to ask you. We had to ask your neighbor to participate though."

[–] [email protected] 1 points 7 months ago

Majority of people just dont care about being spied upon unless it directly affects them somehow,

Remind them that strangers know their porn fetishes, and see if that changes their minds.

[–] [email protected] 1 points 7 months ago

Then there's always Linux Mint for those looking to transition away from M$ or even all the other innumerable flavours of Linux.