Josh

👏 can't wait!

re @anthropic.com:

I've identified industrial-scale copyright violations on my content by Anthropic, OpenAI, Google, X, and more.

These companies created thousands of crawlers incorporating the text of all my blog posts, open source code, and books into their paid AI models to profit exorbitantly.

Our email server (mail.grapheneos.org) has been migrated to our bare metal server sponsored by Xenyth in Toronto. We're now using clean IP space announced via BGP with our AS to improve email deliverability by not having IP/AS neighbours sending spam.

bgp.tools/dns/mail.gra...

Someone mentioned /e/OS and GrapheneOS in the same sentence and I ask a reasonable question and...well...

Truth hurts...

Nothing like praising AI surveillance at a press conference for an unsolved case of a missing person disappearing under millions of dollars of AI surveillance.

Image of a document from a financial institution showing what data sharing can be limited.

There's nothing like the illusion of choice when it comes to financial institutions and privacy. Of course, it's never opt-in, it's always opt-out (for the ones you can limit).

#privacy #finance #dataprivacy

The inter-financial/promotional capitalistic circle jerk by vendors promoting substandard privacy and security products in this space appalls me. It's the worst kind of human centipedal behaviour as they voluntarily swallow and regurgitate claims for each other to build SEO etc

Image showing Amazon price history of RAM going from approx $150 to over $600 in the last 3 months.

First they came for the GPUs. Now they come for the RAM. And in the end, the only one who loses is the consumer.

You don't need a GPU, but everything needs RAM.

Source: camelcamelcamel.com/product/B0DN...

#hardware #ram #gpu #pc

Why GrapheneOS is Almost Impossible to Crack (Forensic Teams Have Tried) YouTube video by David Bombal

Recently finished listening to this interview. Fantastic job @metroplex.bot ! Whether you've used GrapheneOS for years or are thinking about trying it, it's a must-watch/listen.

#GrapheneOS #android #privacy #security

www.youtube.com/watch?v=eUEt...

New in GrapheneOS

Could not agree more. 👏👏

Notification on GrapheneOS telling user that an update was successfully installed and that they need to reboot their device to run the latest OS release.

What's the best way to make your phone more secure in one tap? When you see this notification, tap 'Reboot'.

#GrapheneOS #android #privacy #security

Guide to Graphene OS | Secure Mobile Setup (Live Q&A) YouTube video by All Things Secured

Tonight at 6PM CDT (11PM UTC) I'll be doing a live stream on the "All Things Secured" YouTube channel. The topic will be GrapheneOS/secure mobile setup. Here's the link to the stream - www.youtube.com/watch?v=XkKx.... Hope to see you there!

#GrapheneOS #privacy #security #mobile

Doesn't get much better than that!

Gotta love when this "full 2025-10-01 security patch level" is not a typo!

Depending on your Provider, regular exports might be a good idea (just in case). If you use Proton - proton.me/support/prot...

I have no idea about the details of this situation, but it's good practice regardless to not depend on a single company for everything. A company also can't allow their services to be used for obvious illegal activity 🤷.

Screenshot of a tweet by Andy Yen (Founder and CEO of Proton) describing how some accounts were disabled because of a report by a CERT.

If your account holds your contacts, calendar, passwords, files, and email, you're SOL if it gets disabled.

Diversify and keep offline backups. If it’s someone else’s computer, it’s not yours.

#proton #privacy #security #email

18 Popular Code Packages Hacked, Rigged to Steal Crypto At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved i...

Most people think they need to prepare for a sophisticated software attack, but your biggest risk is your habits. Exploiting people is often the easiest way in.

Anyone can fall for phishing, it’s happened to me.

#privacy #security #phishing #npm

krebsonsecurity.com/2025/09/18-p...

Thanks for the kind words, and I'm glad to hear that!

Hopefully you enjoy the next season, it's a pretty big switch up from the previous two. 🤓

👏👏👏

That's fair, and is very tempting. Especially considering it's the backbone of everything. Regardless, IaC has been a game changer. I wish I didn't ignore it for so long.

The main goal is high-availablity. I've been doing the same as you for the last year with a single-instance, and it's been perfectly fine. But it now seems like the weakest point in my setup.

I'm working on my setup, and I'm leaning towards two nodes with streaming replication + keepalived, a floating IP and pgBackRest. There are a lot of options out there with etcd, Patroni, PgBouncer, Load Balancer, but it just seems like a lot of moving parts + 3rd party software.

That's why I initially went with Swarm. I didn't want to overcomplicate my setup, but in reality, Swarm did. Glad to hear that's been your experience as well.

Question about your PostgreSQL setup in your recent blog post. Do you do any clustering?

3 things I learned migrating from Docker Swarm to K3s:
- Complex setup, but easier management
- Infrastructure as Code. Use Ansible.
- Better config and secrets management.

Bonus
- The larger the community, the easier troubleshooting is.

#kubernetes #k3s #ansible #linux #docker

The recent "how it works" blog post was 🔥

Still too early to tell from what I've read. Once the developers get their hands on it, they'll know better.

I am! If you ever have the opportunity to go, I highly recommend it. And with some of the terrifying things I learned, there absolutely will be some fresh content!

Defcon printout next to phone showing GrapheneOS logo

The only device I would trust using @defcon.bsky.social

#grapheneos #privacy #security #defcon #defcon33