Comment by ysnp

Comment by ysnp a day ago

24 replies

View on Hacker News

Could you elaborate a bit on why you've judged it as privacy theatre? I'm skeptical but uninformed, and I believe Mullvad are taking a similar approach.

greentea23 a day ago

Mullvad is nothing like Apple. For apple devices: - need real email and real phone number to even boot the device - cannot disable telemetry - app store apps only, even though many key privacy preserving apps are not available - /etc/hosts are not your own, DNS control in general is extremely weak - VPN apps on idevices have artificial holes - can't change push notification provider - can only use webkit for browsers, which lacks many important privacy preserving capabilities - need to use an app you don't trust but want to sandbox it from your real information? Too bad, no way to do so. - the source code is closed so Apple can claim X but do Y, you have no proof that you are secure or private - without control of your OS you are subject to Apple complying with the government and pushing updates to serve them not you, which they are happy to do to make a buck

Mullvad requires nothing but an envelope with cash in it and a hash code and stores nothing. Apple owns you.

Reply View 7 replies
  • Melatonic 21 hours ago

    Agreed on most points but you can setup a pretty solid device wide DNS provider using configuration profiles. Similar to how iOS can be enrolled in work corporate MDM - but under your control.

    Works great for me with NextDNS.

    Orion browser - while also based on WebKit - is also awesome and has great built in Adblock and supposedly privacy respecting ideals.

    Reply View 1 reply
    • greentea23 19 hours ago

      Apple has records that you are installing that, probably putting you on a list.

      And it works until it's made illegal in your country and removed from the app store. You have no guarantees that anything that works today will work tomorrow with Apple.

      Apple is setting us up to be under a dictator's thumb one conversion at a time.

      Reply View 0 replies
  • MrDarcy a day ago

    This comment confuses privacy with anonymity.

    Reply View 3 replies
    • whilenot-dev 21 hours ago

      Anonymity is an inherent measure to preserve ones individual privacy. What value did you intent to add with your remark?

      Reply View 0 replies
    • asadotzler 18 hours ago

      Anonymity is a critical aspect of privacy. If you cannot prevent your name being associated with your data, you do not have real privacy.

      Reply View 0 replies
    • greentea23 19 hours ago

      Not for all points. And not being anonymous means your identity is not private...

      Reply View 0 replies
  • apparent 19 hours ago

    You do not need an email address to set up an iPhone, and you do not need an email address or phone number to set up an iPad/Mac.

    If you want to use the App Store on these devices, you do need to have an email address.

    Reply View 0 replies
natch a day ago

They transitioned from “nobody can read your data, not even Apple” to “Apple cannot read your data.” Think about what that change means. And even that is not always true.

They also were deceptive about iCloud encryption where they claimed that nobody but you can read your iCloud data. But then it came out after all their fanfare that if you do iCloud backups Apple CAN read your data. But they aren’t in a hurry to retract the lie they promoted.

Also if someone in another country messages you, if that country’s laws require that Apple provide the name, email, phone number, and content of the local users, guess what. Since they messaged you, now not only their name and information, but also your name and private information and message content is shared with that country’s government as well. By Apple. Do they tell you? No. Even if your own country respects privacy. Does Apple have a help article explaining this? No.

Reply View 4 replies
  • threatofrain 21 hours ago

    If you want to turn on full end-to-end encryption you can, if you want to share your pubkey so that people can't fake your identity on iMessage you can, and there's still a higher tier of security than that presumably for journalists and important people.

    It's something a smart niece or nephew could handle in terms of managing risk, but the implications could mean getting locked out of your device which you might've been using as the doorway to everything, and Apple cannot help you.

    Reply View 0 replies
  • dpoloncsak 21 hours ago

    >Also if someone in another country messages you, if that country’s laws require that Apple provide the name

    I don't mean to sound like an Apple fanboy, but is this true just for SMS or iMessage as well? It's my understanding that for SMS, Apple is at the mercy of governments and service providers, while iMessage gives them some wiggle room.

    Ancedotal, but when my messages were subpoenaed, it was only the SMS messages. US citizen fwiw

    Reply View 0 replies
  • richwater 19 hours ago

    You people will never be happy until the only messaging that exists is in a dusty basement and Richard Stallman is sleeping on a dirty futon.

    Reply View 0 replies
drnick1 a day ago

Because Apple makes privacy claims all the time, but all their software is closed source and it is very hard or impossible to verify any of their claims. Even if messages sent between iPhones are E2EE encrypted for example, the client apps and the operating system may be backdoored (and likely are).

https://en.wikipedia.org/wiki/PRISM

Reply View 0 replies
tempodox a day ago

The gov’t can force them to reveal any user’s data and slap them with a gag order so no one will ever know this happened.

Reply View 9 replies