Privacy

38498 readers

453 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

294

Apple Gave Governments Data on Thousands of Push Notifications (www.404media.co)

submitted 2 days ago by sabreW4K3@lazysoci.al to c/privacy@lemmy.ml

56 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] sunzu2@thebrainbin.org 6 points 2 days ago (2 children)

Didn't we already go through this Google?

It is amazing how these companies design these services in a way that enables them to view the contents. They act as if they own the device you paid for. And most people will just accept this.

[–] TaviRider@reddthat.com 11 points 2 days ago (1 children)

Part of that is the responsibility of the app developer, since they define the payload that appears in the APNs push message. It’s possible for them to design it such that the push message really just says “time to ping your app server because something changed”. That minimizes the amount of data exposed to Apple, and therefore to law enforcement.

For instance the MDM protocol uses APNS. It tells the device that it’s time to reach out to the MDM server for new commands. The body of the message does not contain the commands.

That still necessarily reveals some metadata, like the fact that a message was sent to a device at a particular time. Often metadata is all that law enforcement wants for fishing expeditions. I think we should be pushing back on law enforcement’s use of broad requests (warrants?) for server data. We can and should minimize the data that servers have, but there’s limits. If servers can hold nothing, then we no longer have a functional Internet. Law enforcement shouldn’t feel entitled to all server data.

[–] sunzu2@thebrainbin.org 4 points 2 days ago

Thank you for expanding my understanding on this topic. Very insightful.

[–] glowing_hans@sopuli.xyz 1 points 2 days ago (1 children)

android vs linux: round 2 electric bugaloo

android: comes preinstalled with google play services
linux: comes preinstalled with whatever package manager your distro uses

[–] sunzu2@thebrainbin.org 2 points 2 days ago

GPS is root access to your device no check or controls.

Package manager at least requires password input to make modifications.

Strong handle, btw