4805
Libreware Software Library 📡 t.me/Libreware ★ Send us your suggestions and menaces here: https://t.me/joinchat/nMOOE4YJPDFhZjZk
NAPS2 - Scan #documents to PDF and more – https://www.naps2.com/
NAPS2 is free and open source scanning software for Windows, Mac and Linux.
Easily scan with devices from Canon, Brother, HP, Epson, Fujitsu, and more. Then save to #PDF, #TIFF, #JPEG, or #PNG with a single click.
#Scan #Floss
Olivia
Online and local #music player for #Linux Desktop
https://github.com/keshavbhatt/olivia
Stable and Nightly Build on any snapd enabled Linux Distribution can be installed using:
snap install olivia
https://snapcraft.io/olivia
Arch Linux User's Repository
https://aur.archlinux.org/packages/olivia
Features
Olivia helps you discover new music and videos like no other service do.
Smart Music recommendation, can get you songs related to any song.
Allows organise music and videos at one place.
Olivia can save track while you are streaming it, this saves your bandwidth.
Olivia never stops playing song for you with its smart playlist feature it automatically starts playing related songs for you once your playlist ends.
Watch or Download Video for any song in different audio video formats and quality.
Allows search YouTube and add result to library, sort results and all other #YouTube features like browse channels.
Plays audio only of YouTube streams (saves data bandwidth).
Support themes , Dynamic theme based on album art.
Intelligent Music Search suggestions engine integrated.
Player Mini mode a minimal player widget with always on capability and allows set transparency and make it act like a desktop widget.
Switch to Smart mode and sit back, olivia will play songs for you automatically.
Internet radio, allows play more than 25k online radio stations, list them sort them according to most played , most voted, language wise, country wise and by tags .
Olivia lets you browse new music according to your location.
Olivia lets you discover music based on their genres, moods and more.
Its easy to discover new music - singles, albums etc easily at one place.
Top music chart, allows list top 100 songs country wise.
Top albums chart, allows list top 100 albums county wise.
Beautiful Client side Decoration.
Lyrics of playing songs and separate lyrics search.
Powerful audio equalizers and audio filters.
MPRIS protocol support.
Audio export with meta tags and album art.
More features like cloud synchronisation of your Liked Music is coming soon, so you will be able to get your music back no matter where you are.
#yt #spotify
Flatseal
Graphical utility for #Linux to review and modify permissions from your #Flatpak applications.
Simply launch Flatseal, select an application and modify its permissions. Restart the application after making the changes. If anything goes wrong just press the reset button.
Get it
https://flathub.org/apps/details/com.github.tchx84.Flatseal
For more details please visit the documentation page
https://github.com/tchx84/Flatseal/blob/master/DOCUMENTATION.md
https://github.com/tchx84/flatseal
Rayhunter
A New Open-Source Tool from EFF to Detect Cellular Spying
https://www.eff.org/deeplinks/2025/03/meet-rayhunter-new-open-source-tool-eff-detect-cellular-spying
https://github.com/EFForg/rayhunter
#stingray
A post from the developer of #WireGuard on the severe #security flaws and lack of trustworthiness of #FDroid:
https://bsky.app/profile/grapheneos.org/post/3lgq7wqwzpk26
The Bluesky link has GrapheneOS posts explaining
https://gitlab.com/fdroid/fdroiddata/-/issues/3110#note_1613430404
Stuff here but not to the point like the Bluesky link
https://discuss.grapheneos.org/d/18731-f-droid-vulnerability-allows-bypassing-certificate-pinning/
🚨 Your Android is watching you!
Google has silently installed Android System SafetyCore on your phone without permission, and uninstalling it won’t stop it because it reinstalls automatically.
The only way to stop it is to disable it, preventing Google Play from reinstalling or updating it without your consent.🔍 Why Does This Matter?
It may be scanning all your media files.
Uninstalling is useless.
No transparency from Google.
🔒 How to disable it?ㅤㅤㅤㅤㅤㅤ⭐ Non-Root
🌌 Windows Command Prompt:adb shell pm disable-user --user 0 com.google.android.safetycore
🔟 Windows PowerShell:.\adb shell pm disable-user --user 0 com.google.android.safetycore
🐧 Mac/Linux Terminal:./adb shell pm disable-user --user 0 com.google.android.safetycore
ㅤㅤㅤㅤㅤㅤㅤㅤ🎭 Root
su -c pm disable com.google.android.safetycoreSmartTube
Advanced player for set-top boxes and tvs running Android OS
Features
No Ads
Designed for TV screens
Up to 8K video resolution
Login into your account
Cast from the phone
Support tv box remote controller
Support external software keyboard
Support devices without Google Services
Open source
https://smarttubeapp.github.io
https://github.com/yuliskov/SmartTube
https://github.com/yuliskov/SmartTube/releases
WARNING NOT FULLY OPEN SOURCE
There are at least 5 proprietary libraries in the app.
https://github.com/yuliskov/SmartTube/issues/471
* Crashlytics (/com/crashlytics): Tracking
* Firebase Data Transport (/com/google/android/datatransport): NonFreeNet
* Google Mobile Services (/com/google/android/gms): NonFreeDep
* Firebase (/com/google/firebase): NonFreeNet,NonFreeDep
* Firebase Analytics (/com/google/firebase/analytics): Tracking
IzzySoft:
The 5 offenders are not permitted at F-Droid (and before you ask: I wouldn't take it into my repo either unless at least Crashlytics and Firebase Analytics are removed; 5 non-free libraries is a bit much for free/libre software).
#video #yt #androidtv
kitty
The fast, feature-rich, GPU based #terminal emulator
Uses GPU and SIMD vector CPU instructions for best in class
Uses threaded rendering for absolutely minimal latency
Performance tradeoffs can be tuned
Capable Scriptable Composable Cross-platform Innovative
To get started see Quickstart.
https://sw.kovidgoyal.net/kitty/
#Systemd Adding The Ability to Boot Directly Into A Disk Image Downloaded Via HTTP
https://www.phoronix.com/news/systemd-disk-image-boot-HTTP
#Linux #backdoor
Warning for #Android gapps traitors:
Uninstall the application: Android System SafetyCore, which has been automatically installed on most devices. It is used by Google to scan your data, just like Apple has been doing on iOS, but you have the choice to uninstall it. If you don't have it yet, watch out for it being installed silently over the next few days!
https://play.google.com/store/apps/details?id=com.google.android.safetycore
Be careful on GrapheneOS too if you have Google services installed.
While GrapheneOS will stop it from auto installing, it can nag you about installing it. And it won't tell you what it really is. Nor will most online resources.
Sandboxed Google Play compatibility layer: stop Play Store from attempting to auto-install some system component packages, such as "Android System SafetyCore" (com.google.android.safetycore) and "Android System Key Verifier" (com.google.android.contactkeys)
The phone is asking me to install this app, anyone knows information about if its truly need it or not? Im with the Google Play Services sandbox install
Here are some links about #systemd #alternatives for #Linux in no particular order.
Which are your favorite alternatives and distros?
https://suckless.org/sucks/systemd/
https://unixsheikh.com/articles/the-real-motivation-behind-systemd.html
https://sysdfree.wordpress.com/
https://nosystemd.org/
https://skarnet.org/software/systemd.html
https://the-world-after-systemd.ungleich.ch/
https://ewontfix.com/14/
https://forums.debian.net/viewtopic.php?t=120652
https://www.devuan.org/os/announce/
https://www.devuan.org/os/init-freedom
https://thehackernews.com/2019/01/linux-systemd-exploit.html
https://judecnelson.blogspot.com/2014/09/systemd-biggest-fallacies.html
https://chiefio.wordpress.com/2016/05/18/systemd-it-keeps-getting-worse/
https://systemd-free.artixlinux.org/why.php
Some more added here too: https://start.me/p/Kg8keE/priv-sec
#systemd #Linux
#systemd is a highly complex #Linux #backdoor
https://skarnet.org/software/s6-rc/why.html
IronFox Privacy and security-oriented Firefox-based web browser for Android. https://ironfoxoss.org/ releases new update.
Updated to Firefox 135.0
Updated to Phoenix 2025.02.01.1 - (See changes from the last release of IronFox)
uBlock Origin is now installed by default!
Added a toggle that allow users to spoof their locale to en-US (located under Settings -> Language) for additional fingerprinting protection (using patches from Tor Browser). Users fluent in English are highly recommended to enable this setting.
JavaScript & XFA are now disabled in Firefox's PDF Viewer (PDF.js)
Enabled support for Firefox's tab strip feature on compatible devices - #27
Other minor tweaks & fixes.
https://gitlab.com/ironfox-oss/IronFox/-/releases
DisableGoogleAnalytics
https://gitlab.com/adrian.m.miller/disablegoogleanalytics
Attempts To Disable Common Google Analytics And Ads Receivers In All Affected Packages
What it does/How it works:
On 1st run after rebooting after install the module is assuming you want it to disable the listed analytics and ad receivers, so it will:
Wait till boot is completed
Then sleep for 2 minutes
Then test that cpu usage is under 30% before running
It will then disable the analytics and ad receivers as listed below, and log its progress to /sdcard/fixgoogleanalytics.log
Common Analytics And Ad Recievers:
com.google.android.gms.analytics.AnalyticsJobService com.google.android.gms.analytics.CampaignTrackingService com.google.android.gms.measurement.AppMeasurementService com.google.android.gms.measurement.AppMeasurementJobService com.google.android.gms.analytics.AnalyticsReceiver com.google.android.gms.analytics.CampaignTrackingReceiver com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver com.google.android.gms.measurement.AppMeasurementReceiver com.google.android.gms.measurement.AppMeasurementContentProvider com.crashlytics.android.CrashlyticsInitProvider com.google.android.gms.ads.AdActivity com.google.firebase.iid.FirebaseInstanceIdService
Once complete the service.sh script will delete itself
Once that happens any further interaction is purely via the included dga script as a binary in /system/(x)bin
dga takes 2 arguments, disable or enable, though i doubt too many will be looking to enable analytics and ad receivers, unless the disabling has unwanted effects on their system, which is high time to include the usual disclaimer that you run this at your own risk and not even dga enable is garaunteed to undo the changes
Module Installation:
Download from Releases
Install the module via #Magisk app/Fox Magisk Module Manager/MRepo
Reboot
Usage:
After first run optmization has completed, any further interaction is purely via the included dga script as a binary
in /system/(x)bin:
dga takes 2 arguments, disable or enable, though i doubt too many will be looking to enable
analytics and ad receivers, unless the disabling has unwanted effects on their system, which
is high time to include the usual disclaimer that you run this at your own risk and not even
dga enable is garaunteed to undo the changes
Uninstall Note: Uninstalling the module will not reverse the changes, if your intention is to uninstall the module and re-enable the
analytics and ad receivers, please run dga enable first
Run DeepSeek R1 #AI locally on #Linux with our guide.
https://itsfoss.com/install-deepseek-r1-locally-linux/
the 1.5b model is not that useful, check the other variants here: https://ollama.com/library/deepseek-r1/tags
Up to 14b is recommended for most home computers: https://ollama.com/library/deepseek-r1
@itsfoss_official
Changelog : v4.7.0 (66)
• New app compatibility ratings powered by Plexus
• Improvements to blacklist manager
• Ability to change auto-update restrictions
• Minor bug fixes and improvements
• Translation updates; additional strings localized
Obtainium
Get #Android App Updates Directly From the Source.
Tired of waiting for updates in the Play Store? Obtainium lets you install and update Android apps directly from their source (like GitHub release pages) and notifies you about new releases. Cut out the middleman and stay up-to-date!
Key Features:
* Direct Updates: Install and update apps directly from release pages.
* Notifications: Get notified when new versions of your apps are available.
* Open Source: Built by the community, for the community.
Learn More:
* Video Tutorial: Obtainium 101
* README: GitHub
* Wiki: obtainium.imranr.dev
Recommended Tools:
* AppVerifier: GitHub - Verify app authenticity.
Community Resources:
* Crowdsourced App Configs: apps.obtainium.imranr.dev
Why Use Obtainium?
See the original motivation: Side Of Burritos - You should use this instead of F-Droid | How to use app RSS feed
Project Links:
* Website: obtainium.imranr.dev
* Source Code: GitHub
#apk
Stop #Cloudflare
“The Great Cloudwall” is Cloudflare Inc., the U.S. company. It is providing CDN(content delivery network) services, DDoS mitigation, Internet security, and distributed DNS(domain name server) services. Cloudflare is the world's largest MITM proxy (reverse proxy). Cloudflare owns more than 80% of CDN market share and the number of cloudflare users are growing each day. They have expanded their network to more than 100 countries. Cloudflare serves more web traffic than Twitter, Amazon, Apple, Instagram, Bing & Wikipedia combined. Cloudflare is offering free plan and many people are using it instead of configuring their servers properly. They traded privacy over convenience. Cloudflare sits between you and origin web server, acting like a border patrol agent. You are not able to conn
https://0xacab.org/dCF/deCloudflare/-/blob/master/readme/en.md
@NoGoolag #browser #alternatives with mitigations, patches etc.
Alpha version release March 6, 2025
FireFox browser options
- Tor Browser (all)
- Mullvad Browser (Desktop)
- IronFox (Android) Read the Known Issues section on the gitlab.
- LibreWolf (mentally ill devs)
Make your own #Firefox with mitigations etc...
- Phoenix / wiki
- Arkenfox user.js / wiki / gui / user-tool / mobile
- Narsil / Narsil Mobile
- Betterfox / Betterfox Mobile
- pyllyukko
- Compare some of the user.js files
Chromium based browser Options
- Ungoogled Chromium (all)
- Cromite (Android, Linux, Windows)
Browser extensions
- uBlacklist
- uBlock Origin or uMatrix (never both)
- LibRedirect (setup your instances for each service in the settings)
Links to block lists...
- Yokoffing
- Celenity/Phoenix
- FilterLists
Set your default search engine to a search proxy
- 4get instances
- Searx instances
Why your favorite browser is not recommended
- Celenity Firefox browser comparisons
- How to choose a browser for everyday use?
- is your browser spyware?
- Choose your browser carefully
- Browsers and the connections they make compared
- Fake Privacy and security
Additional reading...
- Wiki about extensions
- Multiple Extension Conflicts
- uMatrix for beginners
- Firefox user.js install guide
- Arch Linux Firefox Privacy wiki
- Bromite (for knowledge purposes)
Testing your browser
- Fingerprint.com
- How to test browsers for spyware
- Privacytests browser comparison
- Mullvad check
- Bromite fingerprint testing
- IP Leak
- List of test sites A
- List of test sites B
* Thunderbird users should consider taking a look at Dove - Phoenix's sister project.
https://support.google.com/product-documentation/answer/16001929
https://security.googleblog.com/2024/10/5-new-protections-on-google-messages.html
Android System SafetyCore (com.google.android.safetycore) provides common infrastructure that apps can use to protect users from unwanted content. The classification of content runs exclusively on your device and the results aren’t shared with Google.
As a system service, SafetyCore is only active when an application integrates with SafetyCore and specifically requests content to be classified. SafetyCore performs the classification on the device itself and doesn’t send identifiable data or any of the classified content or results to Google servers
For now there is no app that uses it. In future any app can use it to avoid setting up his system not on device.
Sensitive Content Warnings is an optional feature that blurs images that may contain nudity before viewing, and then prompts with a “speed bump” that contains help-finding resources and options, including to view the content.
Also only if you have play store it get installed automatically so is only for people that already trust google and have no problem using it. So far only know use will be an option to keep NSFW images distorted instead of automatically being displayed in messages app, if if the user don't want it can disable the option or change message app.
There is similar feat on TG too, some images are blurred before being manually shown.
GOS team stated they analized it and found out it does nothing more than what is described, for now (local scan, no data sent...).
Also on their sandboxes play services the auto-installation is blocked so is up to the user to choose what to do with it.
Another solution:
Uninstall the app and then install this placeholder app
https://github.com/daboynb/Safetycore-placeholder
ReVanced
https://revanced.app
Download
https://github.com/ReVanced/revanced-manager/releases
ReVanced Documentation
https://github.com/ReVanced/revanced-documentation
Patches
https://revanced.app/patches
https://github.com/revanced
/channel/app_revanced
#revanced #vanced #video #yt #android
Payload-Dumper-Android
A Powerful #OTA Extractor App for #Android
You can extract images (boot, vendor_boot...) from a OTA.zip without a PC, directly on Android, without root access.
https://github.com/rajmani7584/Payload-Dumper-Android
Download
https://github.com/rajmani7584/Payload-Dumper-Android/releases/
Krita
Free and open source digital painting application. It is for artists who want to create professional work from start to end. Krita is used by comic book artists, illustrators, concept artists, matte and texture painters and in the digital VFX industry.
https://krita.org
https://invent.kde.org/graphics/krita
Download
https://cdn.kde.org/ci-builds/graphics/krita/
#image #editor #paint
The functionality provided by Google's new Android System SafetyCore app available through the Play Store is covered here:
https://security.googleblog.com/2024/10/5-new-protections-on-google-messages.html
Neither this app or the Google Messages app using it are part of GrapheneOS and neither will be, but GrapheneOS users can choose to install and use both. Google Messages still works without the new app.
The app doesn't provide client-side scanning used to report things to Google or anyone else. It provides on-device machine learning models usable by applications to classify content as being spam, scams, malware, etc. This allows apps to check content locally without sharing it with a service and mark it with warnings for users.
It's unfortunate that it's not open source and released as part of the Android Open Source Project and the models also aren't open let alone open source. It won't be available to GrapheneOS users unless they go out of the way to install it.
We'd have no problem with having local neural network features for users, but they'd have to be open source. We wouldn't want anything saving state by default. It'd have to be open source to be included as a feature in GrapheneOS though, and none of it has been so it's not included.
Google Messages uses this new app to classify messages as spam, malware, nudity, etc. Nudity detection is an optional feature which blurs media detected as having nudity and makes accessing it require going through a dialog.
Apps have been able to ship local AI models to do classification forever. Most apps do it remotely by sharing content with their servers. Many apps have already have client or server side detection of spam, malware, scams, nudity, etc.
Classifying things like this is not the same as trying to detect illegal content and reporting it to a service. That would greatly violate people's privacy in multiple ways and false positives would still exist. It's not what this is and it's not usable for it.
GrapheneOS has all the standard hardware acceleration support for neural networks but we don't have anything using it. All of the features they've used it for in the Pixel OS are in closed source Google apps. A lot is Pixel exclusive. The features work if people install the apps.
https://xcancel.com/GrapheneOS/status/1888280836426084502
USB #WiFi Adapter Information for #Linux
https://github.com/morrownr/USB-WiFi
Lennart Poettering intends to replace "sudo" with #systemd's run0. Here's a quick PoC to demonstrate root permission hijacking by exploiting the fact "systemd-run" (the basis of uid0/run0, the sudo replacer) creates a user owned pty for communication with the new "root" process.
This isn't the only bug of course, it's not possible on Linux to read the environment of a root owned process but as systemd creates a service in the system slice, you can query D-BUS and learn sensitive information passed to the process env, such as API keys or other secrets.
https://fixupx.com/hackerfantastic/status/1785495587514638559
Nitter mirror: https://xcancel.com/hackerfantastic/status/1785495587514638559
Net Switch: Isolate Apps from Internet Access
Net Switch is a Magisk module to isolate apps from accessing the internet on your Android device. This tool gives you complete control over which apps can send or receive data, improving security, privacy, and saving bandwidth.
Fully standalone, Operates fully on iptables.
More info :https://github.com/Rem01Gaming/net-switch
#magisk #firewall #privacy #afwallalterernative
Tiling Shell
Advanced Window Management for #Linux #gnome desktops
https://extensions.gnome.org/extension/7065/tiling-shell
A GNOME extension for advanced window management. It's highly configurable and offers different ways of tiling and managing your windows. The focus is on delivering the best user experience, highest stability, and full customization.
It also works with multiple monitors (even if they use different scaling), comes with a number of tiling layouts built-in but there is a layout editor to allow you to create and save customs layouts.
Tiling Shell also features the Snap Assistant, borrowed from Windows 11: just move a window to the top with your mouse and the Snap Assistant slides in and you can place the window where you want and how you want.
* Automatic tiling
* Fully customizable keyboard shortcuts to tile, move windows, change focus and more
* You can also move the window to the edge of the screen to tile it
* Right click on the window title to place the window where you want and how you want it
* Coming soon this week, Windows Suggestions: after tiling a window you get suggestions for other windows to fill the remaining tiles
...
There are other features https://github.com/domferr/tilingshell
Tiling Shell supports GNOME Shell 40 to 47 on X11 and Wayland.
Cherry Studio
Cherry Studio is a desktop client for Windows, Mac and Linux, which supports many LLM providers, including large cloud services and local models.
Among its main functions is the ability to work with more than 300 pre -designed #AI assistants, the creation of custom assistants, as well as support for various formats of documents, including text, images and office files.
The application offers tools for global search, top management and translating, which significantly improves interaction with the user thanks to the cross -platform and many settings options.
https://github.com/cherryhq/cherry-studio
You’ll see that the command, when ran a minute or more apart, will produce new values now.me@virtbox-testing:~$ cat /etc/machine-id && cat /var/lib/dbus/machine-id b722903d87994e24b6378289262c3021 b722903d87994e24b6378289262c3021 me@virtbox-testing:~$ cat /etc/machine-id && cat /var/lib/dbus/machine-id 4352c41ad7fb4a05a54b0942c5c27cb0 4352c41ad7fb4a05a54b0942c5c27cb0
In closing
Uniquely identifying ID’s are rarely a good thing when you take privacy into consideration, and although these items have their purpose in limited use cases it doesn’t appear that generating a new unique ID every minute has any downsides.
What do you think? Is this a pointless privacy practice or a needed, but often overlooked part in maintaining privacy in the modern age? Let us know in the comments below.
Additional Thoughts
After publishing this article, we received some feedback that I’d like to touch base on here.
Testing the high privacy, pro-anonymity Tails-OS shows that you receive a new machine-id after every reboot. Props to Tails-OS!
Testing the privacy and anonymity promoting Whonix-OS shows that they do not issue a new machine-ID after every reboot.
A commenter on a [RAMBLE] post mentions that MXLinux does not use systemd, and thus does not use a machine-id.
Here is a list of Linux operating systems that do not use systemd. (And will not have a machine-id)
Yes, there are other uniquely identifying aspects on all systems. From device serial numbers to MAC addresses. The purpose of this post was to discuss a lesser discussed unique identifer: machine-id.