Yesterday we discussed the following topics:
- The Element app and creating a user on matrix.org with the intention of creating our own private discussion room.
- Two factor authentication - the most private way.
- Browsers: Firefox, Librewolf, Brave, and the uBlock Origin extension for protecting privacy.
- Some info about de-googling phones.
See below for descriptions and further info and links.
All the apps for Android phones that I recommend can be installed via the F-Droid store and the best way to access that store on your android phone is to install the app from here. You will need to temporarily change the permissions for the web browser app on your device to allow it to install apps from unkown sources (it prompts you to do this). Once installed I recommend you remove the permissions change for the browser app and give the f-droid app permission to install unknown software. For apps to appear in this store, they must be open source software, which does not guarantee they are totally privacy friendly, but it would be the exception there that is not. The store does attempt to recognise features you my not like and tells you in the listing for each app.
Element
The mobile network was running very slowly at the hall on Saturday morning, especially for those on the Telstra network. So some of us did not get the app downloaded in time and we moved on. Those of you that missed the cut, please install the Element X app from the f-droid app store or the Apple app store. I suggested that you use the Element X app, but have since found that some phones have a problem with notifications using this app. If it complains about notifications you might be better served going back to the standard Element app until we find a work around.
You can connect to me @webenhanced:matrix.org.
Two Factor Authentication
We discussed how using an authenticator app is much better than a text message because the app does not connect to the website in question other than to get some preliminary info via taking a photo of a QR code. The app can then be used on the phone without internet connection. Many websites will start off wanting you to use a text message method which immediately gives them your phone number. Resist this if at all possible. Most sites will recommend using either the Google or Microsoft authenticator apps. These are also not recommended as we do not know what info they might send to the respective big tech platform.
For Android users, I have found the best app is FreeOTP+ which is available in the f-droid app store. An alternative for iPhone is FreeOTP (no + on the end). It, reportedly, has an issue where it loses codes during the backup and restore process so may not be great when migrating from one phone to the next. If I, or any of you, find another open source app we can trust as an alternative, we'll let you know.
If you are migrating from the Google auth app, there does not seem to be any easy way of getting your codes from that app across to FreeOTP other than signing in to each of the websites you have saved in the Google auth app, removing 2FA, then re-enabling 2FA and scan the QR code with FreeOTP. This will immediately invalidate the code in the Google auth app.
Browsers
We discussed the two recomended web browser apps that have versions for iOS, Android, Linux, MacOS, and Windows. These are Firefox and Brave. In the case of Firefox, it is strongly recommended that you go to the add-ons section and install uBlock Origin which is considered best of breed ad blocker and general privacy protection method.
If you are only interested in Laptop or Computer, or if you just want a second web browser on these devices, then LibreWolf is a branch of Firefox with uBlock Origin pre-installed.
De-googled Phones
We briefly discussed what happens during the de-googling process and what sort of phones can be privatized.
If you buy a phone to have it de-googled, please DO NOT connect it to the Internet via wifi or mobile data. We do not want a SIM card in the device prior to wiping the phone.
For those of you looking to purchase a new phone to have it de-googled, below is a list of good stable Google Pixel choices currently available (turn phone sideways):-
| Model | Display | Storage | CPU | RAM | Camera | Battery | Updates Until |
|---|---|---|---|---|---|---|---|
| Pixel 6 | 6.4" FHD 411ppi | 128/256GB | G1 | 8GB | 50/12/8MP | 4614mAh | October 2026 |
| Pixel 6 Pro | 6.7" QHD 512ppi | 128/256GB | G1 | 12GB | 50/12/11MP | 5003mAh | October 2026 |
| Pixel 6a | 6.1" FHD 429ppi | 128GB | G1 | 6GB | 12/12/8MP | 4410mAh | July 2027 |
| Pixel 7 | 6.3" FHD 416ppi | 128/256GB | G2 | 8GB | 50/12/11MP | 4355mAh | October 2027 |
| Pixel 7 Pro | 6.7" QHD 512ppi | 128/256/512GB | G2 | 12GB | 50/12/11MP | 5000mAh | October 2027 |
| Pixel 7a | 6.1" FHD 429ppi | 128GB | G2 | 8GB | 64/13/13MP | 4385mAh | May 2028 |
| Pixel 8 | 6.2" FHD 428ppi | 128/256GB | G3 | 8GB | 50/12/10MP | 4575mAH | October 2030 |
| Pixel 8 Pro | 6.7" QHD 489ppi | 128/256/512GB/1TB | G3 | 12GB | 50/48/10MP | 5050mAH | October 2030 |
| Pixel 8a | 6.1" FHD 430ppi | 128/256GB | G3 | 8GB | 64/13/13MP | 4492mAH | August 2031 |
Notes:
FHD = Full High Definition
QHD = Quad High Definition
Camera info is rear/rear/front cameras
G1/G2/G3 = Google Tensor & Titan M2 security coprocessor