• How to make older #Android devices work with #Letsencrypt ROOT certificate - Server support blog

    The most impacting technical event of the Internet was the expiration of the Letsencrypt DST Root certificate which brought a lot of grief to technical support people and owners of declared obsolete devices. Here is the lists of compatible and incompatible devices provided by Letsencrypt.
    There is a way to make some of incompatible devices work, by manually installing ISRG Root X1 Letsencrypt certificate.

    Ref https://letsencrypt.org/2023/07/10/cross-sign-expiration

    If you use Android 7.0 or earlier, you may need to take action to ensure you can still access websites secured by Let’s Encrypt certificates. We recommend installing and using Firefox Mobile, which uses its own trust store instead of the Android OS trust store, and therefore trusts ISRG Root X1.

    Et hop, mon vieux bouzin de récup accède de nouveau aux sites dont le SSL est porté par LE :)

  • Faudrait vraiment que des devs d’App mobile et surtout les direct·rices·eurs des sites qui les produisent, se mettent en tête qu’ il n’y a pas que l’Apple Store et le Google Play dans la vie .
    Pour les Android-like, il faudrait systématiquement diffuser le .apk directement sur leur site (avec le hash accompagnant), ou mettre leur fichier sur des store comme F-Droid (à condition d’etre un logiciel libre ou open source, ce qui n’est pas impossible).

    Et pour finir, c’est un peu finito les App mobile. #Firefox OS avait tenté sans être suivi en 2013, mais maintenant, c’est reparti, on parle de Progressive Web App . C’est juste un site web hautement « progressive », c’est une bonne façon de faire des App (surtout si c’est pour avoir 3 boutons et 2 champs de saisie. Pas besoin de sortir #Xamarin pour si peu.)

    Je pense en particulier à tous ces sites d’état ou « officiels », genre La Poste et leur clic. Parce tu ne pourras bientôt plus aller chez le toubib sans un smartphone connecté à Google. Et si vous ne voyez pas vers quoi ca tent... ba je sais pas, lisez.

    #android #PWA #FirefoxOS #fdroid

  • Les meilleures applications libres et éthiques pour Android en 2024 - Alternatives numériques

    Cet article est une production collective. Suite à mon appel à propositions sur Mastodon, 45 internautes ont généreusement partagé leurs meilleures applications libres et éthiques. Merci à elles et eux.

    Initialement, je pensais lister dans cet article les meilleures applications pour les smartphones en général, sous iOS (environ 15% de part de marché) et Android (environ 85% de part de marché)1. Sauf qu’absolument tou⋅te⋅s mes répondant⋅e⋅s m’ont proposé des applications Android. Sans doute le résultat d’un léger biais méthodologique, puisque l’appel à propositions a été envoyé sur Mastodon. Mea culpa pour ça. Mais en réalité, l’OS mobile d’Apple est tellement fermé qu’y proposer des applications libres (et souvent gratuites) est devenu largement impossible. Les libristes et alternuméristes se sont donc logiquement détourné des iPhones, ces prisons dorées de poche.

    Dont acte. Cet article sera donc finalement un top des applications libres et éthiques… pour Android !

  • The just-released #Firefox 120 for #Android opens up to add-ons.

    The just-released #Firefox 120 for #Android opens up to add-ons. There are already 50 of them available and the number should grow quickly as more add-ons get verified.
    I’ve installed #Ghostery to get rid of cookie pop-ups. What a relief.
    If you are not using Firefox on Android, I highly recommend giving it a try. It’s been my daily driver for years and it’s gotten really good and no other relevant mobile #browser has such a wide variety of add-ons available AFAIK.

  • Privacy is Priceless, but Signal is Expensive

    Signal est un service centralisé et ne peut alors pas satisfaire toutes les exigences d’une communication parfaitement privée. Pourtant Signal permet une communication assez protégée sous condition d’utiliser un portable qui n’espionne pas ses utilisateurs. Malheureusement il n’ y a que peu de smartphones dans cette catégorie. GrapheneOS est une bonne solution - en connaissez vous d’autres ? Des systèmes Android sécurisés qui ne transmettent pas de données à Google et d’autres vampires de données ?

    Meredith Whittaker and Joshua Lund on 16 Nov 2023

    Signal is the world’s most widely used truly private messaging app, and our cryptographic technologies provide extra layers of privacy beyond the Signal app itself. Since launching in 2013, the Signal Protocol—our end-to-end encryption technology—has become the de facto standard for private communication, protecting the contents of billions of conversations in WhatsApp, Google Messages, and many others. Signal also continues to invest in research and development in the pursuit of extending communications privacy. This commitment underlies our recent work to add a layer of quantum resistance to the Signal Protocol, and our previous work on metadata protection technologies that help keep personal details like your contact list, group membership, profile name, and other intimate information secure. This singular focus on preserving the ability to communicate privately is one reason that we work in the open, documenting our thinking and making our code open source and open to scrutiny—so you don’t have to take our word for it.

    Signal is also a nonprofit, unlike almost every other consumer tech company.

    This provides an essential structural safeguard ensuring that we stay true to our privacy-focused mission. To put it bluntly, as a nonprofit we don’t have investors or profit-minded board members knocking during hard times, urging us to “sacrifice a little privacy” in the name of hitting growth and monetary targets. This is important in an industry where “free” consumer tech is almost always underwritten by monetizing surveillance and invading privacy. Such practices are often accompanied by “growth hacking” and engagement maximization techniques that leverage dark patterns to keep people glued to feeds and notifications. While Signal is also free to use, we reject this kind of manipulation, focusing instead on creating a straightforward interpersonal communications app. We also reject business models that incentivize such practices.

    Instead of monetizing surveillance, we’re supported by donations, including a generous initial loan from Brian Acton. Our goal is to move as close as possible to becoming fully supported by small donors, relying on a large number of modest contributions from people who care about Signal. We believe this is the safest form of funding in terms of sustainability: ensuring that we remain accountable to the people who use Signal, avoiding any single point of funding failure, and rejecting the widespread practice of monetizing surveillance.

    But our nonprofit structure doesn’t mean it costs less for Signal to produce a globally distributed communications app. Signal is a nonprofit, but we’re playing in a lane dominated by multi-billion-dollar corporations that have defined the norms and established the tech ecosystem, and whose business models directly contravene our privacy mission. So in order to provide a genuinely useful alternative, Signal spends tens of millions of dollars every year. We estimate that by 2025, Signal will require approximately $50 million dollars a year to operate—and this is very lean compared to other popular messaging apps that don’t respect your privacy.

    Here we review some of these costs and where this money goes, in the name of providing more transparency into Signal. But we hope to do more than that. Where money goes and how it’s made is a bit of a taboo in tech, something that most tech companies avoid talking about. The actual costs of consumer tech are generally hidden behind stories of innovation and the word “free,” and the connection between the product marketing of a highly profitable tech industry and the ingress and egress of profit and revenue is usually unclear. We believe a material map of these dynamics can help clarify just what is required to fulfill the dream of privacy-preserving alternative technology, and contribute to establishing a solid foundation from which we can grow alternatives that contest tech surveillance and the incentives behind it.

    This is not a comprehensive overview—this post isn’t meant to provide a full accounting or to review every line item in detail. Instead, we focus on illustrative examples, looking at infrastructure and labor in particular. We’ll also explore average costs that in practice vary dynamically in relation to factors that are often outside of our control.

    Infrastructurally Different

    We’ll start with an overview of some of Signal’s biggest infrastructural costs—what we pay for the utilities and services that let Signal reach you. These include the temporary storage of end-to-end encrypted data for message delivery; the global server network that processes billions of requests every day; the registration fees that cover the delivery of verification codes during the sign-up process to help verify phone numbers and prevent spam accounts; the bandwidth that is required to efficiently route end-to-end encrypted messages and calls around the world; and some of the additional services that keep everything running smoothly. We’ll dive into each of these in more detail, but here’s a quick breakdown:

    Storage: $1.3 million dollars per year.
    Servers: $2.9 million dollars per year.
    Registration Fees: $6 million dollars per year.
    Total Bandwidth: $2.8 million dollars per year.
    Additional Services:

    $700,000 dollars per year.

    Current Infrastructure Costs (as of November 2023): Approximately $14 million dollars per year.
    The Cost of Storing Nothing and Serving Everyone

    Data is profitable, and we’re a nonprofit focused on collecting as little data as possible.

    Most tech companies collect and create as much data as they can. They build large data warehouses, and then later invent new terms like “data lake” when their unquenchable thirst for more of your private information can no longer fit within the confines of a single warehouse. Their default move is to store everything for as long as they can in an easily accessible and unencrypted format, suffering data breach, after data breach, after data breach, hoping to monetize this data by indirectly (or directly) selling it to advertisers or using it to train AI models. Again, data is profitable.

    In contrast, Signal’s default move is to end-to-end encrypt everything that we possibly can and to store as little as possible—all while making sure your messages are delivered promptly and your calls are clear and free of delays. We do this by taking advantage of globally distributed hosting infrastructure and by paying for significant amounts of bandwidth from some of the top providers in the world.

    Just like everything else in Signal, messages and files are always end-to-end encrypted. When you send a message, the Signal service temporarily queues that message for delivery. As soon as your message is delivered, that small bundle of encrypted data (i.e. your message) can be dropped from the queue. The storage of end-to-end encrypted files is temporary too, and any undelivered end-to-end encrypted data is automatically purged after a period of inactivity. Even though everything is only temporary, this storage still costs Signal around $1.3 million dollars per year.

    This is a lot of money, although it’s less than it would cost if we stored everything forever. But unlike the tech companies that collect and store everything, we don’t have (and do not want to have) any surveillance data to sell or use to recoup these costs. We can’t read or access any end-to-end encrypted messages because the keys that are required to decrypt them are in your hands, not ours. And it’s not just about your messages. Signal also uses our metadata encryption technology to protect intimate information about who is communicating with whom—we don’t know who is sending you messages, and we don’t have access to your address book or profile information. We believe that the inability to monetize encrypted data is one of the reasons that strong end-to-end encryption technology has not been widely deployed across the commercial tech industry.

    In order to provide a globally accessible, reliable, and high-performance communications service for the many millions of people around the world who depend on Signal, it’s necessary for Signal’s servers to be globally distributed. Having a geographically distributed network of servers is particularly important for end-to-end encrypted voice and video calls, because latency can result in audio delays or degraded video connections that quickly make the app unusable for real-time communication.

    Because everything in Signal is end-to-end encrypted, we can rent server infrastructure from a variety of providers like Amazon AWS, Google Compute Engine, Microsoft Azure, and others while ensuring that your messages and calls remain private and secure. We can’t access them, and neither can the companies that provide any of the infrastructure we rent. As a small nonprofit organization, we cannot afford to purchase all of the physical computers that are necessary to support everyone who relies on Signal while also placing them in independent data centers around the world. Only a select few of the very largest companies globally are still capable of doing this, which is a hallmark of a troublingly concentrated industry.

    Signal’s addition of novel privacy-preserving features also affects our server costs. To pick one example, we developed a new approach to private contact discovery in 2017 that uses a trusted execution environment. This made us the first large-scale messaging app to let people automatically find their friends and contacts without revealing their address book to us, keeping these connections private. Because other mainstream apps don’t have this layer of privacy protection in place, they can often access details about your network and relationships without restrictions, and many of them store this highly sensitive information for later use.

    When we first deployed this system in 2017, only a few servers were necessary. But as the number of people using Signal increased, the number of servers required to support private contact discovery also rose. At its peak, nearly 600 servers were dedicated to private contact discovery alone, at a total cost of more than $2 million dollars per year.

    This significant cost would have continued to rise. However, thanks to algorithmic research advances and hardware updates, we’ve been able to reduce the total number of private contact discovery servers to around 10 total—despite the fact that the service is handling more traffic than ever. A significant amount of money and engineering resources have been dedicated to ensuring that your address book remains completely inaccessible to us, and Signal will continue to push the envelope and introduce new techniques to enhance your privacy even when the initial costs are high.
    Registration Fees

    Signal incurs expenses when people download Signal and sign up for an account, or when they re-register on a new device. We use third-party services to send a registration code via SMS or voice call in order to verify that the person in possession of a given phone number actually intended to sign up for a Signal account. This is a critical step in helping to prevent spam accounts from signing up for the service and rendering it completely unusable—a non-trivial problem for any popular messaging app.

    Signal’s registration service routes registration codes over multiple telephony providers to optimize delivery across the globe, and the fees we pay to third-party vendors for every verification code we send can be very high. This is in part, we believe, because legacy telecom operators have realized that SMS messages are now used primarily for app registration and two-factor authentication in many places, as people switch to calling and texting services that rely on network data. In response to increased verification traffic from apps like Signal, and decreased SMS revenue from their own customers, these service providers have significantly raised their SMS rates in many locations, assuming (correctly) that tech companies will have to pay anyway.

    The cost of these registration services for verifying phone numbers when people first install Signal, or when they re-register on a new device, currently averages around $6 million dollars per year.

    These costs vary dramatically from month to month, and the rates that we pay are sometimes inflated due to “toll fraud”—a practice where some network operators split revenue with fraudulent actors to drive increased volumes of SMS and calling traffic on their network. The telephony providers that apps like Signal rely on to send verification codes during the registration process still charge their own customers for this make-believe traffic, which can increase registration costs in ways that are often unpredictable. Of course, Signal does everything we can to reduce or eliminate the impact of toll fraud. We work closely with our voice and SMS verification providers to detect and shut down fraudulent registrations as quickly as possible. But it’s still a game of cat and mouse, with unavoidable expenses along the way.
    The Going Rate for Transfer Rates

    You are probably familiar with the concept of paying for bandwidth in the form of buying a data plan from your cellular provider or signing up with an Internet Service Provider (ISP) for your home. But it may surprise you to learn that every website, app, and service also pays for the bandwidth they use whenever you connect to them.

    Some pay more than others. Most of the major tech companies (like Amazon, Google, and Microsoft) own and operate their own data centers. After spending billions of dollars to build massive hosting facilities, they install their own fiber optic cables and custom networking equipment. This also means they get to earn a lot of money by charging others for the privilege of using that equipment.

    Smaller organizations like Signal can’t afford to build matching infrastructure from scratch, so we (along with almost every startup and tech company) pay rent to the big players in order to access the bandwidth we need.

    Millions of people use Signal every day, and it takes a lot of bandwidth to provide a fast and reliable service. Signal spends around $2.8 million dollars per year on bandwidth to support sending messages and files (such as photos, videos, voice notes, documents, etc.) and to enable voice and video calls.

    Voice and video calls require significantly more bandwidth than text messages, and Signal’s end-to-end encrypted calling functionality is one of the most expensive services that we provide. Signal also goes far beyond other messaging apps when it comes to protecting your privacy during voice and video calls, and we do this in ways that substantially increase how much bandwidth we use in order to provide a high-quality calling experience.

    To take one example, Signal always routes end-to-end encrypted calls from people who aren’t in your contacts through a relay server that obscures IP address information.

    Almost none of our competitors do this, and Signal’s default behavior is much more expensive than the alternative. Automatically relaying 1-on-1 voice and video calls from unknown contacts (instead of always using a peer-to-peer connection whenever possible) provides an extra layer of privacy, but results in considerably higher bandwidth costs for Signal’s calling-related relay servers. At current traffic levels, the amount of outbound bandwidth that is required to support Signal voice and video calls is around 20 petabytes per year (that’s 20 million gigabytes) which costs around $1.7 million dollars per year in bandwidth fees just for calling, and that figure doesn’t include the development costs associated with hiring experienced engineers to maintain our calling software, or the cost of the necessary server infrastructure to support those calls.
    The Human Touch

    Signal isn’t just a collection of privacy-preserving services that route end-to-end encrypted messages and calls around the world. It’s also a set of cross-platform apps and modular development components (commonly called libraries) that make this type of private communication possible in the first place. Because the norm is surveillance, we’re often required to create or modify our own libraries from scratch, swapping in privacy instead of using more common frameworks that assume surveillant defaults. Swimming against the tide of an ecosystem whose incentives and infrastructure promote surveillance and privacy invasions is, of course, more time-intensive and more expensive, and requires dedicated and experienced people.

    First, we have three distinct client teams, one for each platform (Android, Desktop, and iOS). These teams are constantly working: adjusting to operating system updates, building new features, and making sure the app works on a wide variety of devices and hardware configurations. We also have dedicated engineering teams that handle the development and maintenance of the Signal Server and all of its infrastructure, our calling libraries like RingRTC, and core libraries like libsignal. These also need constant development and monitoring.

    Product and design teams help shape the future of the app and determine how it will look and function, while our localization team coordinates translation efforts across more than sixty languages. We even have a full-time, in-house support group that interfaces with people who use Signal and provides detailed technical feedback and real-time troubleshooting information to every other team. This is an essential function, particularly at Signal, because we don’t collect analytics or telemetry data about how people are using Signal.

    This is a lot of work, and we do it with a small and mighty team. In total, around 50 full-time employees currently work on Signal, a number that is shockingly small by industry standards. For example, LINE Corporation, the developers of the LINE messaging app popular in Japan, has around 3,100 employees,
    while the division of Kakao Corp that develops KakaoTalk, a messaging app popular in Korea, has around 4,000 employees. Employee counts at bigger corporations like Apple, Meta, and Google’s parent company (Alphabet) are much, much higher.

    To sustain our ongoing development efforts, about half of Signal’s overall operating budget goes towards recruiting, compensating, and retaining the people who build and care for Signal. When benefits, HR services, taxes, recruiting, and salaries are included, this translates to around $19 million dollars per year.

    We are proud to pay people well. Our goal is to compensate our staff at as close to industry wages as possible within the boundaries of a nonprofit organization. We know that we can’t provide equity, expensive playpen offices, or other benefits common to large tech companies. We also know that we need to recruit and retain a highly experienced and specialized workforce in an extremely competitive industry if we’re going to offer a service that provides a meaningful alternative to apps with far more people and resources. And we don’t believe that precarity should be the cost of doing good. Compared to most tech companies, Signal’s numbers are a drop in the bucket.

    Growth in Signal translates into increased infrastructure costs, and having more infrastructure requires more labor. As of November 2023, Signal’s server network is regularly responding to around 100,000 requests per second, and we routinely break our previous records. A funny thing happens when a globally accessible service starts handling billions of requests every day. Suddenly one-in-a-million possibilities are no longer unique or rare, and unlikely situations become more and more common as Signal grows. It’s not unusual for our engineers to do things like write custom code to reproduce an esoteric and complicated IPv6 connectivity issue that’s affecting people running an arcane operating system configuration in specific regions, but only when connected via a certain set of internet service providers.

    Troubleshooting such infrastructure issues can be very expensive, because isolating a problem and developing a fix can take a lot of time and expertise.

    Identifying and fixing arcane problems is not the only thing that takes time and skill. In the context of building for privacy, adding a common feature or service in a way that avoids surveillance frequently requires significant work and creativity. To take one example, profile pictures and profile names are always end-to-end encrypted in Signal. This means that Signal does not have access to your profile name or chosen profile photo. This approach is unique in the industry. In fact, it has been more than six years since we first announced this additional layer of protection, and as far as we know none of our competitors have yet adopted it. Other messengers can easily see your profile photo, profile name, and other sensitive information that Signal cannot access. Our choice here reflects our staunch commitment to privacy, but it also means that it took Signal more effort to implement support for profile photos. Instead of a weekend project for a single engineer, our teams were required to develop new approaches and concepts within the codebase (like profile keys), which they worked to roll out across multiple platforms after an extended testing period.

    The same dynamic played out again when Signal introduced support for animated GIF searches on Android and iOS. Instead of quickly and easily integrating the standard GIF search SDK that most other apps were using, engineers spent considerable time and creativity developing another unique privacy-preserving technique that hides GIF search terms from Signal’s servers, while also hiding who is searching for those terms from the GIF search engine itself. We later expanded those techniques to further obfuscate GIF search information by obscuring the amount of traffic that passes through the proxied connection.

    When Meta acquired GIPHY, and many other apps were scrambling to contend with the privacy implications of the deal, Signal employees slept soundly knowing that we had already built this feature correctly several years earlier.

    Even more recently, Signal has started taking steps to protect today’s conversations from future threats by adding post-quantum resistance to the Signal Protocol. The financial costs associated with these research and development initiatives are substantial. They’re also essential for building privacy-preserving technology in a dynamic industry where surveillance is the norm.

    By offering a competitive compensation package, Signal helps make it easy for people to choose to develop privacy-preserving technology that benefits the world instead of going to work for the surveillance-advertising-industrial complex. We’re proud of our healthcare plans, family-friendly policies like extended parental leave, flexible schedules, and the many other benefits that help make Signal a great place to work.

    These things cost money, but a world where Signal can attract talented people to work on privacy-preserving technology is a world that looks a lot more attractive.
    Future Tense

    We hope that this cursory tour of some of Signal’s operations and costs helps provide a greater understanding of Signal’s unique place in the tech ecosystem, and of the tech ecosystem itself.

    Our goal of developing an open source private messenger that is supported and sustained by small donations is both highly ambitious and, we believe, existentially important. The cost of most consumer technology is underwritten by surveillance, which has allowed people to assume that “free” is the default, and a handful of industry players have accrued eye-watering amounts of personal data and the unprecedented power to use that data in ways that are shaping our lives and institutions globally.

    To put it another way, the social costs of normalized privacy invasion are staggeringly high, and maintaining and caring for alternative technology has never been more important.

    Signal is working to show that a different approach is possible—an approach that puts privacy at the center, and where organizations are accountable to the people who use and rely on their services, not to investors, or to the endless pursuit of growth and profit.

    Thank you for your support. It’s an honor and privilege to work on Signal every day, and we—very literally—couldn’t do it without you. Please consider donating to Signal via our website or learn how to give using the app.

    #communication #sécurité #messenger #Android #vie_privée #internet

  • #GSconnect Adds Support for GNOME 45

    A new version of GSConnect, the GNOME Shell extension that integrates with KDE Connect, is now available — and it supports GNOME 45. GSConnect bridges the gap between GNOME Shell and an #Android device with the KDE Connect Android app installed to streamline file transfers between Android and Linux (and vice versa), mirror notifications, send and receive SMS, provide volume and media controls, and more. There aren’t any new features or capabilities in GSConnect v56 but there are a stack of worthwhile improvements and finesse to the extension’s pre-existing (and pretty extensive) feature set: You can see the official release […] This post, GSConnect Adds Support for GNOME 45 is from OMG! Ubuntu. Do not reproduce elsewhere without (...)

    #News #GNOME_Extensions

  • About Guardian Project - Guardian Project

    While smartphones have been heralded as the coming of the next generation of communication and collaboration, they are a step backwards when it comes to personal security, anonymity and privacy.

    Guardian Project creates easy to use secure apps, open-source software libraries, and customized solutions that can be used around the world by any person looking to protect their communications and personal data from unjust intrusion, interception and monitoring.

    Whether you are an average person looking to affirm your rights or an activist, journalist or humanitarian organization looking to safeguard your work in this age of perilous global communication, we can help address the threats you face.

  • Lawsuit claims Google struck a $360 million deal to prevent Activision Blizzard | Pocket Gamer.biz | PGbiz

    The lawsuit claims Google has struck at least 24 deals to prevent competition

    A lawsuit has claimed that Google has struck at least 24 deals with app developers to prevent competition to the Play Store, including a $360 million deal with Activision Blizzard and a $30 million deal with Riot Games, reports Reuters.

    #jeu_vidéo #jeux_vidéo #google #concurrence #google_play #activision_blizzard #riot_games #epic_games #boutique #mobile #android

  • Lettre ouverte pour le droit d’installer n’importe quel logiciel sur n’importe quel appareil - FSFE

    Lettre ouverte
    Le droit universel d’installer n’importe quel logiciel sur n’importe quel appareil
    Nous, signataires de cette lettre ouverte :
    – reconnaissons que l’accès libre aux matériels et aux logiciels détermine pendant combien de temps ou à quelle fréquence un appareil peut être utilisé ou réutilisé ;
    – déclarons qu’une longévité et une réusabilité augmentées de nos appareils sont nécessaires pour une société numérique plus durable.

    C’est pourquoi nous demandons aux législateurs d’Europe de saisir l’opportunité historique en offrant une utilisation plus durable des produits et appareils électroniques avec un droit d’installer et d’exécuter tout logiciel sur tout appareil.
    À cette fin, nous demandons :
    – Que les utilisateurs aient le droit de choisir librement les systèmes d’exploitation et les logiciels tournant sur leurs appareils
    – Que les utilisateurs aient le droit de choisir librement les fournisseurs de services auxquels connecter leurs appareils
    – Que les appareils soient interopérables et compatibles avec les standards ouverts
    – Que le code source des pilotes, des outils et des interfaces soit publié sous licence libre

    Voir aussi :
    – la campagne « Upcycling Android » : https://fsfe.org/activities/upcyclingandroid/index.fr.html et la notion d’obsolescence logicielle : https://fsfe.org/activities/upcyclingandroid/index.fr.html#id-vaincre-lobsolescence-des-logiciels-avec-les-logiciels-libres
    – la notion de « Sustainability of Free Software » : https://fsfe.org/freesoftware/sustainability/sustainability.fr.html

    #open-source #réparabilité #android #recyclage #obsolescence_logicielle #Upcycling_Android

  • Xbox Cloud Gaming hourly usage increased by 1800% in the past year | Windows Central

    The future of Microsoft’s gaming business will remain anchored in its Xbox console, but its growth will increasingly look beyond the box itself towards devices potential gamers already own — namely phones, tablets, and PCs. 

    Microsoft has already begun to support the Steam PC storefront in a big way, but it’s also banking heavily on Xbox Cloud Gaming, which streams games from a remote server location to Android devices, iOS devices via the web at Xbox.com/play, and even new Samsung TVs with its 2022 gaming hub update.

    #jeu_vidéo #jeux_vidéo #business #audience #succès #microsoft #xbox_cloud #xbox_cloud_gaming #cloud_gaming #pc #steam #mobile #android #ios #samsung_tv #jeu_vidéo_fortnite #gaas #kevin_lachapelle #catherine_gluckstein #abonnement #xbox_game_pass_ultimate #google_play #activision_blizzard #jeu_vidéo_diablo_iv #jeu_vidéo_call_of_duty #azure #microsoft_azure

  • An update on Google Play billing in the EEA

    Developers who choose to use an alternative billing system will need to meet appropriate user protection requirements, and service fees and conditions will continue to apply in order to support our investments in Android and Play. When a consumer uses an alternative billing system, the service fee the developer pays will be reduced by 3%. Since 99% of developers currently qualify for a service fee of 15% or less, those developers would pay a service fee of 12% or lower based on transactions through alternative billing for EEA users acquired through the Play platform.

    Tim Sweeney sur Twitter :

    Congratulations to Google, fast-following Apple to introduce fake open billing in Europe - “allowing” competing payment services but eliminating their ability to compete by demanding 27% of revenue.

    Tim Sweeney sur Twitter :

    A store that sells an app should not have any involvement in commerce that is conducted after the app is purchased. It’s like Ford forcing car buyers to buy gas at Ford gas station and inflating prices 30%. It’s none of their business.

    Tim Sweeney sur Twitter :


    When Mastercard and Visa process a credit card transaction, they charg 2.5% for the service they perform.

    In this case, however, Google is NOT PERFORMING THE SERVICE they charge their 12% fee on.

    Google annonce autoriser l’usage d’un système de paiement tiers sur les apps mobiles distribuées via Google Play sur… les deux territoires où cela est désormais légalement obligatoire.

    Le patron d’Epic Games, qui se bat contre le duopole de Google et d’Apple au sujet des marges des deux principales boutiques mobiles, critique la part du paiement revenant quand même à Google.

    #jeu_vidéo #jeux_vidéo #business #google #google_play #tim_sweeney #epic_games #digital_markets_act #european_economic_area #android #

  • Unity is merging with a company who made a malware installer | PC Gamer

    IronSource is also well-known for another reason. It developed InstallCore, a wrapper for bundling software installations. If you’ve searched for a popular program and seen a link to a third-party site with a URL that ended in something like “downloadb.net” or “hdownload.net” it may well have been InstallCore. If you made the mistake of downloading it, you’d be offered the kind of extras with generic names like RegClean Pro and DriverSupport an unsophisticated user might click OK on, which is how you end up with a PC full of toolbars and junk that’s as slow as your parents’ is. InstallCore was obnoxious enough Windows Defender will stop it running(opens in new tab), and Malwarebytes(opens in new tab) too.

    As documented by Microsoft’s chief economist for web experience, strategy, and policy Ben Edelman(opens in new tab), InstallCore was also behind a fake installer for a Windows version of Snapchat, a program that’s only ever been available on mobile. It would instead install Android emulator BlueStacks, as well as the usual injection of adware.


    The Wall Street Journal(opens in new tab) reports Unity has agreed to pay $4.4 billion for IronSource.

    Développer des malwares, ça paye.

    #jeu_vidéo #jeux_vidéo #business #rachat #unity #ironsource #installcore #installation #malware #bluestacks #snapchat #android #adware #réputation #eréputation #spoiled_cat #windows_defender #malwarebytes #andreia_gaita #maddy_thorson #jeu_vidéo_celeste #supersonic #tapjoy #publicité #unity_ads #weta_digital

  • Netflix subscribers will be able to play Into the Breach on iOS and Android

    Netflix has snagged Subset Games’ Into the Breach as an exclusive offering for iOS and Android. Starting on July 19, 2022 Netflix subscribers will be able to play the turn-based tactical mechs vs. kaiju game for free with no in-app advertisements or purchases.


    Netflix landing mobile exclusivity for Into the Breach is a big win for the streaming service’s video game plans. FTL: Faster Than Light was a huge hit on iOS, and still ranks high in the “strategy” and “simulation” download categories 10 years after its initial launch.

    La stratégie de Netflix en matière de jeux vidéo mobiles semble s’intensifier. Outre une cinquantaine de jeux à paraître au catalogue, la firme de vidéos par abonnement s’achète ici une exclusivité mobile d’un jeu à succès. Cela semble aller dans le sens d’une diversification alors que le service perd des abonnés depuis la fin des premières vagues de la pandémie de covid-19.

    #jeu_vidéo #jeux_vidéo #netflix #subset_games #ios #android #mobile #jeu_vidéo_ftl_faster_than_light #jeu_vidéo_ftl #jeu_vidéo_faster_than_light #jeu_vidéo #into_the_breach #justin_ma #jeu_vidéo_matthew_davis #exclusivité #jeu_vidéo_shadow_and_bone_destinies #jeu_vidéo_too_hot_to_handle #jeu_vidéo_queen_s_gambit_chess #ustwo #snowman #devolver_digital #jeu_vidéo_downwell #ojiro_fumoto #svod #svàd #diversification

  • Netflix Geeked sur Twitter :

    The Games are just beginning. By the end of this year there will be 50+ games on Netflix. Here’s a taste of what’s on the way. #GeekedWeek

    (140) Poinpy | Official Game Trailer | Netflix - YouTube

    Bounce up, dodge adorable baddies and feed the blue beast that’s hot on your heels. A vertical climber from the creator of the award-winning Downwell.

    Le service de streaming annonce ses ambitions dans les jeux vidéo (mobiles), dont le récent et très mignon Poinpy.

    NETFLIX Poinpy

    #jeu_vidéo #jeux_vidéo #business #édition #netflix #svod #svàd #jeu_vidéo_poinpy #mobile #android

  • V-Bucks Purchased on PlayStation Join Fortnite Shared Wallet

    Starting with the upcoming v20.40 update, V-Bucks purchased on PlayStation may be used across platforms that support Fortnite Shared Wallet (PlayStation, Xbox, PC, Android, and cloud gaming services).

    On dirait que les ambitions d’Epic Games concernant les moyens de paiement va très au-delà des frictions avec Apple (iOS) ou Google (Android).

    #jeu_vidéo #jeux_vidéo #business #finance #epic_games #sony_playstation #playstation #v-bucks #console_playstation #ordinateur_pc #console_xbox #mobile_android #android #cloud_gaming #console_nintendo_switch

  • Microsoft says more than 10 million people have streamed games on Xbox Cloud Gaming - The Verge

    It’s a rare meaningful stat about cloud gaming

    More than 10 million people have streamed games over Xbox Cloud Gaming, Microsoft CEO Satya Nadella said Tuesday during the company’s third-quarter earnings call. Cloud gaming is a feature that’s only available as part of the $14.99 per month Xbox Game Pass Ultimate tier, so the figure shared Tuesday indicates that a lot of people are checking it out. It’s also a concrete stat in a field where there have been few — Google doesn’t break out numbers for Stadia, and any numbers shared by Nvidia for GeForce Now include people who have used a no-strings-attached free trial.

    […] It’s also worth noting that you can technically sign up for a month of Xbox Game Pass Ultimate for just a dollar and then cancel, and it’s unclear how many people who did that and streamed a game might also be counted in Microsoft’s figure shared Tuesday.

    #jeu_vidéo #jeux_vidéo #streaming #microsoft #business #finance #satya_nadella #amy_hood #xbox #xbox_game_pass_ultimate #xbox_cloud_gaming #android #ios #pc #console_xbox #console_xbox_series_x #console_steam_deck #jeu_vidéo_psychonauts_2 #cloud_gaming #chiffres

  • Android Developers Blog: Google for Games Developer Summit returns March 15

    The Google for Games Developer Summit returns virtually on March 15, 2022 at 9AM Pacific. From mobile to cloud, learn about our new solutions for game developers that make it easier to build high-quality games and reach audiences around the world.

    #jeu_vidéo #jeux_vidéo #business #google #google_games_developer_summit #annonce #date #salon #conférence #sommet #android #google_play

  • CLI install guide | Install | GrapheneOS

    J’ai enfin identifié et testé une solution qui libère les utilisateurs d’Android OS de l’espionnage par Google. #GrapheneOS est un dérivé du système d’exploitation auquel son développeur a ôté tous les éléments qui nous espionnent. Il a également modifié l’OS afin de le sécuriser contre les attaques au niveau de la gestion de la mémoire. Avec cet OS je peux enfin choisir librement mes serveurs DNS et désactiver la caméra, le microphone et le gyroscope. Le site de GrapheneOS explique tout dans le détail.

    Il y a deux conditions sine qua non pour le choix d’un système sécurisé : Il ne doit pas être compliqué et ne doit pas coûter trop cher. GrapheneOS s’installe sur des téléphones à partir de € 300,00.

    L’installation de GrapheneOS n’est pas compliquée. Il suffit et il est hautement recommandé de suivre exactement les indications du guide d’installation officiel. La procédure m’a pris deux heures alors que je me suis permis quelques erreurs qui m’ont obligé à recommencer des étapes.

    Le système est solide dès son installation.

    Après une heure additionnelle pour installer Signal puis par le service F-Droid Tor, K-9 Mail, SimpleCalendar et DavX je dispose de tout dont j’ai besoin en matière de communication pour vivre et travailler.

    Côté sécurité je me sens beaucoup mieux car j’ai considérablement réduit ma surface vulnérable. Je m’expose encore aux tiers par les interfaces suivants :
    – Mon fournisseur de télécommunication et FAI sait avec qui je téléphone (apart les appels par Signal) et connaît le relais près duquel je me trouve. Je peux me rendre invisible en désactivant la carte SIM.
    – Je m’expose à l’interception des communications avec mes serveurs mail, webdav et webcal, mais le contenu des transmissions est chiffré. Pour moi c’est un degré de sécurité suffisant.
    – Lors ce que je visite un site web je m’espose aux risques habituels. Le brouteur web de GrapheneOS Vanadium me protège mieux qu’un Firefox avec ses plugins, mais le brouteur du Tor project est à préférer.
    – Je dois toujours faire confiance aux auteurs et distributeurs des logiciels que j’utilise. Il est donc essentiel de n’installer qu’un nombre restreint d’applications afin d’être en mesure de vérifier leur fiabilité et suivre le développement des équipes à l’oeuvre.

    Comme toujours on n’échappe pas aux inconvéniants d’un niveau de sécurité amélioré.

    – Il y a ni Google maps ni les services divers que le géant du web utilise comme appât. Je m’en passe aisément en n’allumant mon autre smartphone avec les apps achetés dans le play store qu’en cas de besoin absolu et immédiat.
    – GrapheneOS ne s’installe que sur des téléphone Pixel 3 - 6. C’est également un avantage car le développeur de GrapheneOS publie des mises à jour de l’OS immédiatement après leur publication pour Android.
    – Il est n’est jamais complètement exclu qu’un spécialiste installe sur notre téléphone des logicients parasitaires pour nous espionner. Pour rendre se type d’attaque anodine on peut toujours acheter un téléphone Pixel auprès de l’entreprise Nitrokey. Ils enlèvent des téléphones la caméra, le microphone et le gyroscope afin dobtenir un niveau de sécurité maximal.

    Ces appareils modifiés sont trop chers pour mes besoins, alors je me contente de téléphones dans leur état original.
    Voici quelques liens pour faciliter l’installlation de GrapheneOS


    Liste de compatibilité et images d’OS

    OEM unlock - Google Pixel Community

    How to unlock the bootloader on Google Pixel 3 and 3 XL

    Simple Calendar


    #Android #sécurité #internet #FLOSS #open-source

  • Freecats est une nouvelle application Android, la première application destinée aux associations de protection animale qui nourrissent des chats libres sur le terrain. Freecats permet de suivre l’historique des nourrissages et de gérer les différents points de distribution. Elle inclut aussi une liste de contacts, une checklist du nécessaire à ne pas oublier avant de partir, et une liste des noms commençant par la lettre de l’année en cours. https://play.google.com/store/apps/details?id=com.kdjwebdesign.freecats #android #java #osm #protectionanimale #chats

  • Google considered buying ‘some or all’ of Epic during Fortnite clash, court documents say - The Verge

    Google has gone so far as to share its monopoly profits with business partners to secure their agreement to fence out competition, has developed a series of internal projects to address the “contagion” it perceived from efforts by Epic and others to offer consumers and developers competitive alternatives, and has even contemplated buying some or all of Epic to squelch this threat.

    Google aurait envisagé de racheter Epic Games afin de limiter un éventuel effet de contagion suite au procès d’Epic à l’encontre de Google concernant la commission sur les ventes via Google Play. Google dément cette interprétation, doutant du sérieux du procès où il se défend.

    #jeu_vidéo #jeux_vidéo #business #epic_games #google #apple #google_play #android #rachat #justice #procès #tim_sweeney #amazon #amazon_app_store