How do you know this? Do you have a link to a source that says it?

From a friend that works at a big bank. I don’t want to dox then so I can’t really say which one.

I don’t disagree with this. Maybe I should get a phone that runs it.

In fact, I would argue that the safest distribution channel is F Droid and not Play Store.

I agree with this too! I don’t think I’ve seen any other app stores (on any platform) focus on reproducible builds.

giving access to your account only via SINGLE password and only asking for SMS OTP when transaction is done

This was a problem with US and Australian banks too. It’s still an issue in Australia, but some of the major banks in the USA have moved to sending 2FA requests to their mobile app, and either allowing OAuth or app-specific passwords to allow other services to get data from your bank account.

I mean, both things can be true? I know banks are pushing on Google to improve Android security, to avoid malicious apps with root access from messing with banking apps.

The fact is that a rooted phone can definitely be less secure if the user doesn’t 100% know what they’re doing, in the same way that always logging in as root on a Linux system can be.

This is the case with a lot of apps that follow SemVer, even though it’s not an official part of the spec. It’s not specific to Rust.

The other common thing I see is that if it’s been at 0.x for a long time, the minor version number eventually gets “promoted” to a major version number once the app is stable. For example, React went from 0.14.x to 15.0.0.

The “automatically includes a hashtag with new posts” link goes to the wrong PR.

Ah, okay. Thanks for the details.

Isn’t there already some interop between Mastodon and Lemmy? I’ve seen Mastodon users comment on my Lemmy posts. Maybe Mastodon posts that aren’t replies don’t appear in Lemmy.

For what it’s worth, I use Facebook to keep up with my friends. I don’t use any of the discovery features like Reels. I have friends and family in Australia where Facebook is more popular than in the USA.

Right. I usually use https://lemmyverse.net to search for communities.

Companies like Facebook and Google don’t sell user data. This is a common misconception that people keep repeating. Logically it doesn’t make sense: The data is what makes the company valuable, so they’re not going to give that away! If they did, Facebook would just buy Google’s data (and vice versa) and neither would have a competitive advantage any more.

Instead, they let advertisers target people based on data. For example, an advertiser can specify that their ad should be visible to people aged 20-25 that like computers and live in Los Angeles. You can access Facebook and Google’s ad management products and run your own ads, and see exactly the same system and data that advertisers see.

kbin probably federates with over 1000 other instances by this point. Would you really review ownership of each one of them?

Honestly I think a lot of it is that the Fediverse (especially Mastodon) wants to remain a small community relatively isolated from regular social networks, and a very big instance would ruin that. It’s very similar to Usenet when AOL customers got access to it (https://en.wikipedia.org/wiki/Eternal_September).

Some people are worried about Meta having their data, but anything you post publicly in the Fediverse is, by definition, public. A whole heap of servers have your data, and even today some of the federated servers could be operated by large companies. How would you know? My Lemmy server is federating with over a thousand others… I don’t know who runs all of those or what they’re doing with the data…

I haven’t looked into the protocols in detail yet, but maybe it’s possible they’re using eventual consistency. Upvote counts don’t have to be 100% accurate across all instances all the time, as long as they’re eventually accurate at some point.

I’m not sure why people are making this such a big deal? I don’t quite understand why some server admins are planning to instantly defederate it. Maybe someone here could help me understand. Anything you post publicly is, by definition, public. There’s concerns about moderation, but Meta has paid moderators and experience in catching spam.

I agree with John Gruber’s take on this:
https://daringfireball.net/linked/2023/06/19/not-that-kind-of-open
https://daringfireball.net/linked/2023/06/21/fosstodon

Shouldn’t it keep some EXIF data though, like the image copyright?

Nice!

Your link to Authenticator Pro is broken, by the way.

By “switching entirely to HTTP”, do you mean Server-Sent Events, or do you mean polling? I havent tried 0.18.0 yet, but in general polling can end up using far more resources unless you’re doing something clever like passing the last update timestamp to the server and only querying the DB for new content since that timestamp (and timestamps are indexed in the DB).

Definitely a built in obsolescence built into the industry that needs to be fixed.

This is why I’m a fan of the right to repair and wish more jurisdictions would enact laws around it. If the EU ends up having stricter regulations than the rest of the world, it’s possible manufacturers will just end up having totally different models in EU vs elsewhere.

Honestly, this is like “the old days” where there were lots of small forums across the web. The big difference now is that you can be a member on one of them and subscribe to others hosted elsewhere.