Would love a similarly curated list of golang books.

As I understand it, the OTP factor only protects the login. While this is still good practice, it wouldn't help in the event the vaults are stolen.

Yes, 2FA/MFA only serves as access control, to limit who can retrieve a copy of your encrypted vault from the server (to then decrypt locally).

Like in the Lastpass scenario, if someone gets a hold of your vault from a server side backup (or compromise), then your access control is bypassed, and won't make your vault harder to decrypt.

Using MFA is definitely good practice though, as in normal circumstances an attacker will be trying to get to your vault without server side access.

You just have to give up E2EE if you use telegram and want chats sync'd across your devices.

It's too bad telegram doesn't support e2ee (in a meaningful, useful way) because their client is actually quite nice.

Exactly this. Ads in places like news apps disappear, a big plus for pihole.

I haven't really had any issues per se, at height about a year ago I had just over a dozen contacts on signal. The biggest UX deal breaker was no profile pictures. You can set one, but almost no one will ever see it since almost everyone uses Gmail or another cloudy email provider that will sync or store ancient Google+ (or equivalent) avatars to your contacts. Signal chooses to display a contact photo from your device over what a user sets. This is insanely counterintuitive approach and no other app works that way, meaning no one expects it to work that way. My family and all but two contacts moved back to WhatsApp. I'm glad to read they're focusing on UX now, but I can't bring up switching again with these people. Maybe when or if phone numbers are abandoned, then I won't have to link/associate contacts to my address book and see those old avatars.

Multiple companies I've worked at have been in the position of their competitors suffering security breaches. In all instances there were communications sent to all staff not to speak externally pointing to the inident for publicity/promotion of our service. While you can't turn a blind eye, it's just not a good look. Besides, tomorrow it could always be you/your company.

Telegram has some positives, but the lack of e2e without secret chats is inexcusable--notnto mention secret chats' notifications are crippled (no option to see sender or message content.) If only Signal had working profile avatars instead of seeing some ancient Google+/Facebook/social media photo that sync'd to their contact list eons ago they didn't even know was there... Small UX things can make all the difference, haha.

No such luck on Android, you need to use tasker or similar. Really a nuisance but not a deal breaker. It would be dreamy to set up the client to not use specific SSIDs.

I want to point out that the intents on the official Wireguard Android app are not exposed, so I, not being rooted, can't use Tasker to automate it.

However, there are other Android apps that implement Wireguard that do expose their intents. I use Viscerion with Tasker quite happily.

And where is it headed?

Age 4. Buena Vista, Colombia.