Show thread history
Anthony Accioly
3w ago
@Ava ॐ, instead of imposing this as an app policy, can't you disable it on your own device? https://accioly.social/@anthony/113962861478965769 . I've restricted Circle to Search access on Amethyst and this is working well for me with a Samsung device: https://accioly.social/@anthony/113962861478965769
See translation
2
2
0
0
0
Replies
Ava ॐ
@Ava ॐ
3w ago
GrapheneOS is popular because it’s privacy-ready out of the box—sane defaults mean users don’t have to harden everything themselves.
Yes, the process you linked to is a stop-gap solution, and thank you for sharing, but having a default toggle in Amethyst to block screenshots, Circle to Search, and similar features (like Apple’s) would prevent accidental data leaks.
You would be surprised how many people still screenshot their keys/seed phrases etc. because they don’t realize Google/Apple scan photos, much less build-in AI screen scanning technology. Not everyone is technically literate, or know much about good OPSEC.
When dealing with sensitive information, basic privacy features should be a default, not a bonus feature that needs the user to enable it—that is the kind of thinking that doxxed so many users messages on Telegram (they didn't know they had to manually enable E2EE and that it wasn't
Yes, the process you linked to is a stop-gap solution, and thank you for sharing, but having a default toggle in Amethyst to block screenshots, Circle to Search, and similar features (like Apple’s) would prevent accidental data leaks.
You would be surprised how many people still screenshot their keys/seed phrases etc. because they don’t realize Google/Apple scan photos, much less build-in AI screen scanning technology. Not everyone is technically literate, or know much about good OPSEC.
When dealing with sensitive information, basic privacy features should be a default, not a bonus feature that needs the user to enable it—that is the kind of thinking that doxxed so many users messages on Telegram (they didn't know they had to manually enable E2EE and that it wasn't
... See more
See translation
0
0
0
0
0
Anthony Accioly
@Anthony Accioly
3w ago
Got it. I fully understand where you’re coming from and support your point of view with my own habits (as per my post above).
On the other hand… the same normies you’re talking about would very likely bother Vitor and other Amethyst mantainers about why they can't take screenshots of their social media app by default... Seriously, I've been there, it's hard enough to get family members to use a password manager; it took me ages to get them onto Signal, etc. I know this sounds awful to anyone into tech and privacy, but the default response from most people is: they don’t care because "they have nothing to hide". The average user picks convenience every time.
My take on this is: maybe always enable FLAG_SECURE for windows dealing with nsecs, payment-related stuff, etc. The toggle is also a great idea, it can be displayed on
On the other hand… the same normies you’re talking about would very likely bother Vitor and other Amethyst mantainers about why they can't take screenshots of their social media app by default... Seriously, I've been there, it's hard enough to get family members to use a password manager; it took me ages to get them onto Signal, etc. I know this sounds awful to anyone into tech and privacy, but the default response from most people is: they don’t care because "they have nothing to hide". The average user picks convenience every time.
My take on this is: maybe always enable FLAG_SECURE for windows dealing with nsecs, payment-related stuff, etc. The toggle is also a great idea, it can be displayed on
... See more
See translation
0
0
0
0
0
Ava ॐ
@Ava ॐ
3w ago
Thank you for contributing to the discussion. I appreciate your perspective, and I am inclined to agree with you.
The social media component lends itself to screenshots. At the very least, disabling screen access to the most sensitive areas (nsec, payment-related features, DMs, etc.) by default would be a viable solution.
This could be paired with a toggle or slider in settings, where users could set one of three options:
- least private (allows access to all screens)
- default privacy (denies access to screens with sensitive data)
- maximum privacy (denies access to all screens)
...allowing users to screenshot freely while maintaining privacy for sensitive data, keeping everyone happy.
Either way, it’s clear that we need something. The average end user is not going to dig into Google/Apple settings an harden AI access to apps individually.
The social media component lends itself to screenshots. At the very least, disabling screen access to the most sensitive areas (nsec, payment-related features, DMs, etc.) by default would be a viable solution.
This could be paired with a toggle or slider in settings, where users could set one of three options:
- least private (allows access to all screens)
- default privacy (denies access to screens with sensitive data)
- maximum privacy (denies access to all screens)
...allowing users to screenshot freely while maintaining privacy for sensitive data, keeping everyone happy.
Either way, it’s clear that we need something. The average end user is not going to dig into Google/Apple settings an harden AI access to apps individually.
... See more
See translation
0
0
0
0
0
Aida
@Aida
3w ago
You are right, I was thinking that FLAG_SECURE can't be changed by user input and it is something "compiled" into the app, but that is not true. So yes, Amber should have this option 100% and it would be nice to have in Amethyst as well.
See translation
0
0
0
0
0
Anthony Accioly
@Anthony Accioly
3w ago
I've sent a Fediverse link because I recently lost the images at my Blossom server.
(🪦)
(🪦)
See translation
0
0
0
0
0