Apparently Apple can end-to-end encrypt your iCloud, but it’s opt in because they still want to profit off your data >_<

To enable this, go to Settings -> iCloud -> Advanced Data Protection

You need to have all the devices under your apple account to be fully updated, and you’ll need to remember a 28-key passphrase for recovery

I hate how big tech treats privacy as an afterthought. This should have been the default. But oh well. Spread the world people.

  • onlinepersona@programming.dev
    link
    fedilink
    English
    arrow-up
    5
    arrow-down
    3
    ·
    7 months ago

    Keeping your data from Malus is harder than expected

    Proprietary end-to-end encryption is a joke. Where is that key stored? Who has access to the key? What guarantees do you have that Malus doesn’t copy your key to their cloud?

    Remember when worldwide all macs were slow because one of their servers had an issue?

    Using a proprietary system for security and or privacy is for the feels only.

    Anti Commercial AI thingy

    CC BY-NC-SA 4.0

    • Syn_Attck
      link
      fedilink
      arrow-up
      2
      ·
      7 months ago

      What guarantees do you have that Malus doesn’t copy your key to their cloud?

      I remember when I used a Samsung Galaxy as by daily driver a couple years back. I enabled full disk encryption and thought okay great, now that’s done. I noticed a very small, brief popup on my screen that lasted a few seconds, and it was a notice that my key had been sent to Samsung servers. Apparently you have to disable that option that’s hurried deep in the settings somewhere no one would think to look, and change your password again. If I hadn’t caught that brief notification at the bottom of the screen (not the normal location for notifications), I’d never have known.

      The encryption password is also a max of 15 characters.

      • onlinepersona@programming.dev
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        1
        ·
        7 months ago

        Yep, you can’t trust it. Same as WhatsApp backups on Google Cloud. The key is uploaded to Google too. That’s why people can restore the backup on their new phone without manually backing up the private key somewhere. Of course that means Google has access to all their WhatsApp history.

        Anti Commercial AI thingy

        CC BY-NC-SA 4.0

        Inserted with a keystroke running this script on linux with X11

        #!/usr/bin/env nix-shell
        #!nix-shell -i bash --packages xautomation xclip
        
        sleep 0.2
        (echo '::: spoiler Anti Commercial AI thingy
        [CC BY-NC-SA 4.0](https://creativecommons.org/licenses/by-nc-sa/4.0/)
        
        Inserted with a keystroke running this script on linux with X11
        ```bash'
        cat "$0"
        echo '```
        :::') | xclip -selection clipboard
        xte "keydown Control_L" "key V" "keyup Control_L"