Win / TheDonald
Communities Topics
Sign In
Hot
All Posts
Settings
Win uses cookies, which are essential for the site to function. We don't want your data, nor do we share it with anyone. I accept.
DEFAULT COMMUNITIES All General AskWin Funny Technology Animals Sports Gaming DIY Health Positive Privacy
TheDonald America First!
hot new rising top

Sign In or Create an Account

Reason: A way to get a straight answer with Fiddler, time, and systems

Hey guys, I'm new. I'm also a developer. I can't give you a straight answer... but I can give you this:

(don't worry, paragraph after next is meant for laymens)

TLS and SSL have been receiving updates a LOT. I may be confused with enforcing. Basically, phones have been forced to use the latest standards, when they weren't a year or two back. Google's API update for 2019 made me rewrite A LOT of Java from someone else's project. I had to rip out just enough React (RxJava) to make it work, but not too much to rewrite the whole app. For you programmers, that means I rewrote the GSON to my own JSON parser and used Volley otherwise.

For you non-techies, that means a lot of stuff under-the-hood has been swapped in the past 2 years because standards are now being enforced (no more TLS 1.0). It's too easy to break, and known exploits for older SSL allow a middle-man attack too easily.

Also, Apple and Google have a thing where you can enforce updates. ALSO, Apple put in a new SSO (single sign on, eg, use someone else to sign in) which Android probably also did/copied. (I hate to say Apple was first since Android is more free and allows more).

Look into Librem, PinePhone, Ubuntu Touch, Necunos, and possibly other privacy-focused linux devices. Blackphone still updated?

Edit: If you learn Fiddler, Wireshark, and/or Charles... you can hook up your phone and see what it's transmitting. BUT... I don't recommend this if you can't at least navigate your router settings or have CCNA or Network+ equivalent knowledge. I don't have the certs myself... but I know networks.

112 days ago
1 score
Reason: Original

Hey guys, I'm new. I'm also a developer. I can't give you a straight answer... but I can give you this:

(don't worry, paragraph after next is meant for laymens)

TLS and SSL have been receiving updates a LOT. I may be confused with enforcing. Basically, phones have been forced to use the latest standards, when they weren't a year or two back. Google's API update for 2019 made me rewrite A LOT of Java from someone else's project. I had to rip out just enough React (RxJava) to make it work, but not too much to rewrite the whole app. For you programmers, that means I rewrote the GSON to my own JSON parser and used Volley otherwise.

For you non-techies, that means a lot of stuff under-the-hood has been swapped in the past 2 years because standards are now being enforced (no more TLS 1.0). It's too easy to break, and known exploits for older SSL allow a middle-man attack too easily.

Also, Apple and Google have a thing where you can enforce updates. ALSO, Apple put in a new SSO (single sign on, eg, use someone else to sign in) which Android probably also did/copied. (I hate to say Apple was first since Android is more free and allows more).

Look into Librem, PinePhone, Ubuntu Touch, Necunos, and possibly other privacy-focused linux devices. Blackphone still updated?

112 days ago
1 score