May I ask what fake location do you intent to provide? And have you considered that it might invalidate your claims? Like, you say your car had an accident but your location says you’re in Antarctica, and they use that to weasel out of coverage.

Why do you assume they haven’t warned Mozilla in advance?

Also, Mozilla was fully aware that what they were doing is in breach of GDPR. I find it extremely hard to believe that the makers of Firefox are not fully familiarized with it by now.

Last but not least Mozilla is doing this for financial gain. It’s selling pur data to advertisers. Why should we excuse it? It’s a very hostile act.

If Mozilla has hit rock bottom and has been reduced to selling our data to survive then that’s that. We’ll find another way and another FOSS browser. Accepting it is not an option.

So what, are we giving Mozilla a free pass to do anything now? Is the new bar “not quite as shitty as Google”?

You should be able to export both contacts and texts if the backup app is given contacts permission and to be set as the text app temporarily.

Not sure about the text multimedia. If it’s in the system text database it can be exported, if the Messages app has it in its private data then tough luck.

Well you can probably still back it up to Google.

In that case I call bullshit. What I described can work (relaying banking apps on the victim’s phone to authenticate to ATM), with cards it should not. If you read the comments on the site you’ll see people are just as confused as to how this can work.

There’s no credit card involved in this scenario.

1. The attacker uses phone A and touches the ATM NFC reader. This creates a NFC event on phone A that requests a token.
2. Phone A sensds the request data to the malware running on victim’s Phone V.
3. The malware on phone V creates a fake NFC event that makes it look like the phone V was touched against the ATM. <-- this is the huge security issue IMO
4. The app on phone V that’s currently associated with NFC contactless payments responds to the fake NFC event by issuing a token.
5. The malware on Phone V sends the token to phone A.
6. Phone A uses the token to “prove” to the ATM that the real customer is in front of it.
7. The ATM asks for the PIN and the attacker supplies the correct PIN (which they’ve previously obtained via social engineering).
8. Attacker can now withdraw cash from the ATM from the victim’s account.

When it happens it’s a security flaw and it needs to get patched. It’s not normal everyday thing.

This isn’t about subscribing to NFC events, the malware is creating fake NFC events without the NFC sensor being involved in a physical interaction with a tag or reader.

That’s what I mean, it shouldn’t be possible to relay anything. It should only trigger when there’s a reader physically in proximity to the phone.

Please keep in mind this is happening on the victim’s phone which is not rooted, the malware is a regular non-system app.

If it were happening on a rooted phone I could understand being able to subvert the NFC chain because at some point it has to pass from hardware to software and if you’re privileged enough you can cut in there. But the malware app is not privileged.

For those confused about how this could work with chip cards, the malware has two components, one installed on the victims phone and one on the attacker’s. The attacker initiates the contactless authentication at an ATM or contactless payment and their phone communicates in real time with the victim’s, which is tricked by the malware into reacting to that event and producing the one time token which is then relayed to the attacker and used.

They also previously social-engineered the card PIN from the victim, in case the contactless event requires it (definitely in case of ATM login).

The fact you can trick the NFC system on the phone into reacting to “phantom” payment events and intercept the resulting token sounds like a pretty big problem. The former should be entirely hardware controlled, and the latter should not allow the token to go anywhere else except to the hardware.

Also Android has strategic importance to Google. Their philosophy is to spread out and control their own platforms.

Normally Google, since they offer a search engine, ad platform and online services, could have stuck to just renting servers and cloud.

But they didn’t, they also created their own massive online storage platform, their own cloud platform, their own browser and browser engine, their own mobile platform, their own PC-based platform, their own wearable platform and so on.

They will never give up Android, unless perhaps they will have something else already prepared to replace it. But it would be an insane undertaking to move everything over, but to mention having to drag consumers and manufacturers and app creators kicking and screaming every step of the way.

Why do you need a new launcher? You’re good to go for several years until (if) Android implements some completely new feature. Right now Nova has pretty much everything.

Obtainium is usually for getting apps directly from their development page, like straight from GitHub. It’s best reserved for apps that don’t bother with F-Droid, or to get them faster.

If you need a replacement for the F-Droid app there are alternatives like Foxy Droid, Neo Store, F-Droid Classic etc.

Magisk is a complete platform that focuses on hiding “unauthorized” modifications from the rest of the system. You can add any mods as a virtual overlay, it supports plugins etc. Root is only one of its benefits.

I’m really surprised they made two seasons.

The fact they couldn’t even make it as good as Red vs Blue is amazing. And that’s not a high bar.

Yeah that’s about what I had figured too, 400-600 kWh/mo per house during summer. Double that is more likely to be estimated capacity rather than actual use.

Um, why does the average Chinese home consume 1 MWh/mo? Or do they mean the battery capacity would account for one home consuming up to 1 MWh?

Last I read about it it required connecting for 6-7 hours continuously on 32bit systems, and it’s unknown how long it would take on 64bit.

I can’t give specifics because it will depend on the version you play and also it’s been a while and I don’t remember all mods by heart. So it’s just gonna be suggestions; in no particular order:

• First of all you’ll need the fundamental bug fixes. There’s (still) lots of bugs in vanilla Skyrim.
• You will need the new improved menus, most mods rely on them.
• Personally I can’t play without improving the aspect of PC and NPCs, so improvements to bodies, faces and hair are a must for me. If you get down the rabbit hole there’s things like mustaches, beards, tattoos, eyes etc.
• Armor and weapons is a close second for good looking stuff.
• You will want a mod that improves polygons as well as something that enhances vegetation, skyboxes, water and weather.
• There are mods that fill the cities and villages with a lot more… stuff. Things like decorative vegetation, benches etc. You will not be able to play without it once you’ve tried it.
• The skill trees and the professions all need specific mods that apply balances and fixes. You can also go one step further and apply mods that actually make them interesting.
• If you can find one for your version of Skyrim, I strongly recommend a mod that improves dragon AI and makes the fights actually challenging. It always seemed ridiculous to me how easy they are by default.
• Better horses is a good idea, lots of convenience there.
• Smithing improvements. Nuff said.
• Personally I can’t stand the default fighting in all aspects of it. I must have didn’t roll and some extra brains for the enemies. Some mods the spruce up the dungeons aren’t bad either.
• You can get lots of extra quests and NPCs with Interesting NPCs.
• I typically avoid shaders and ENBs in favor of simpler mods that let you adjust the game colors (contrast, saturation etc.) They have very low impact on performance and give you that color jolt that’s 90% of why people use ENBs anyway.

On an even more personal note, I like to play like a classic RPG. I get mods that allow multiple companions and interesting NPCs and when I met somebody interesting I take them into my party. There are also mods that let you order them better, you can adjust their flags to set what armor and weapons they prefer, how they level up, and whether they have “plot armor” so they can die for reals. I usually end the game with a party of 4-6 people and it’s a blast. But you may want to adjust the difficulty accordingly as you go out you will start rolling everything.

Another very interesting approach I’ve tried a couple of times is mods that remove all identification clues (no town names, no directions, maximum map fog of war) and start you in some random point of the map. Add some difficulty mods so you have to be really careful who you meet, perhaps some survival mods, and it’s a real blast. You can also use rogue rules and restart when you die (and not save scum).

SIMs are standalone embedded computers (they run Java!) that handle the cellular connections one their own and communicate with the phone over a standard pin-out and protocol.

This way the phones are somewhat insulated from advances in cellular technology and it’s one of the reasons mobile phones have been able to evolve so smoothly from feature phones to smart phones.

I wonder if it works with a joystick…

That was the whole point. They’re making sure you don’t scroll past that first page.

At some point they’ll probably just show a full page unskippable ad after you press search. 😄

And if you want to know exactly what will stop being possible with V3:

https://github.com/uBlockOrigin/uBOL-home/wiki/Frequently-asked-questions-(FAQ)#filtering-capabilities-which-cant-be-ported-to-mv3

I’m just explaining why Google can’t put YouTube behind a paywall. It’s fine as long as it’s an open platform. If it becomes a paid product it raises the bar.

Lol. Yeah it’s all fresh or properly sourced material.

Go search for any music video. You should be finding exactly one (1) official entry. In some cases there are legit live recordings + montage that should also be only one of.

Instead there are dozens or hundreds, and most of them are not transformative enough to qualify for fair use. Google knows which ones are there illegaly because they are clearly able to identify and demonetize them.

But why not straight out delete them, or tell the uploader to delete them or else? Because they want to have lots of content regardless if it’s legit, and they want to show ads, just as long as it goes to the right people.

They can put ads on questionable content that’s free to watch as long as they’re ready to remove it if and when asked, but they can’t sell a product based on questionable content. It comes too close to what piracy websites are doing.

YouTube was built on illegal content and still has a buttload of illegal content and Google knows it but won’t do anything about it. Let’s not call the kettle black.

If they really want to be serious about it fine, turn it into paid-only access. It will neatly solve the whole ad debacle and they won’t have to play cat and mouse with VPNs and blocking and all these shenanigans.

Ask yourself why they don’t do that. It’s because 90% of the content on there is illegal and when they host it for free they have an excuse. But if they turn the whole thing private and ask for money to access it they become liable for all of it.

It’s fucked because there are people buying that shit, in numbers that turn a profit over the cost of developing it. And it’s a very low cost because the skin support is something they put in when they make the game, and then get an intern to shit out a gaudy skin.

If you don’t like it you’re obviously not the target demographic anymore. It’s mobile gaming tactics creeping their way on PC.

What do you do for 1k hours in Starfield?

Skyrim came with a built-in mod editor?

Are you perhaps thinking of the manager they added on Xbox?

Thanks, I needed that laugh.

https://www.youtube.com/watch?v=59qgzzSD1tk

Don’t blink.

But I mean that was the whole point of opening the Doom code wasn’t it? So it would evolve and expand beyond the state of the art at the time.

Which brings up the question, where is the alternative software that’s dedicated to people keeping in touch, to events, and communities?

It used to be called group ware, now it would be a good time to resurrect.

If you have root than Titanium is still the best around for things like app backup and restore, and if you have Titanium you might as well freeze apps with it because it’s very easy.

But what Titanium calls freeze is actually a native function of Android (“disabling” an app), it just takes more steps. Normally it’s available in the app’s system info screen but preinstalled apps will bitch about it and may ask you to uninstall updates before allowing you to disable them. Some preinstalled apps won’t let you disable them at all and you have to resort to terminal commands. It’s just easier to use Titanium.

I think there’s other apps around that specialize in disabling stuff and may or may not require root. I don’t know, I’ve always used Titanium and never looked back.

You can use Titanium on anything if you can get root in a normal fashion (standard superuser) and if it has a decent BusyBox installed.

But you might also be able to freeze (disable) an app from terminal, the command IIRC is pm disable-user + parameters.

Having two launchers is a good point but it doesn’t have to be the stock launcher. You can install any random launcher for backup as long as it can show the app list.

And if they have root it would be safer to just freeze it with Titanium to prevent the bug.

No extra module, it just hides itself.

AFAIK the problem is not LSPosed itself because LSPosed doesn’t show an app in the app list so it can’t be detected by normal means. (To run the LSPosed GUI you have to either use the action button on the persistent notification or dial ##LSPOSED## in your phone app; or the GUI can create a launcher shortcut for you.)

The problem is that the LSPosed modules are normal apps that can be detected. So if they see something like GravityBox or XPrivacy installed it’s pretty easy to figure out that you must be using Xposed/LSPosed.

I use TB Checker and it seems to be aware of most of the LSPosed modules I have installed (the above and also AFWall, Secure Settings, UpdateLocker), even of a Sony-specific module (Physical Button Master Control). It doesn’t detect a couple of modules (Undo and BubbleUPnP Audio Cast) but I think the others are enough to conclude I have rooted the device. 😃

So to sum up you don’t need to hide root anymore because Magisk takes care of that, and you don’t need to hide LSPosed either. You can use the Hide module to hide LSPosed modules. But I would avoid doing it until all else fails for a specific app.

Obligatory note, if you add an app to the Magisk deny list it won’t detect anything that has to do with Magisk but you won’t be able to apply LSPosed to it so it will see the LSPosed modules.