While I was still using an Apple iPhone (until 2016), I too felt safe. The way that ...

npub1gle…fu5r

2025-02-09 07:17:22

in reply to nevent1q…t658

While I was still using an Apple iPhone (until 2016), I too felt safe. The way that Apple and won the Apple–FBI encryption dispute (https://en.wikipedia.org/wiki/Apple%E2%80%93FBI_encryption_dispute) made me feel that way. That event and the way it played out built up a great sense of trust.

As bitcoiners say; Don't trust. Verify.

Unless I can see and verify the open-source code, I do not trust any of it, and neither should you.

I can foresee a future where that bitcoiner slogan will be expanded to be, "Don't trust. Verify. Compile. Reproduce", or something along those lines.

Just being able to see the source code that is supposedly running on your device is not enough. You need to be able to prove that it is. The best way to prove this would be to compile the source code yourself and load it to your device by way of a flashing process or something similar.

GrapheneOS' method of performing hardware-based attestation is brilliant; https://grapheneos.org/install/cli#hardware-based-attestation. I do trust GrapheneOS because I could do every step of Don't trust. Verify. Compile. Reproduce. I use GrapheneOS as the primary OS on my mobile phone and I recommend their product to anyone every chance I get.

Author Public Key

npub1glencxg7ch9q8jp08ew3guuyuq5txynyp89t4uqkf8splxmfk63se7fu5r

Seen on

wss://nostr.mom

Show more details

Published at

2025-02-09 07:17:22

Kind type

1 Short Text Note

Event JSON

{ "id": "22ce15f03b3f4422684a4cc41a913a51da81ad7fcb805294b2b121f334eb91fc", "pubkey": "47f33c191ec5ca03c82f3e5d147384e028b3126409cabaf01649e01f9b69b6a3", "created_at": 1739085442, "kind": 1, "tags": [ [ "p", "0789a5e252569434b947c61b12e80ec8d362ac869fe714bb476ea48274c31207", "wss://nos.lol/", "tom" ], [ "p", "0789a5e252569434b947c61b12e80ec8d362ac869fe714bb476ea48274c31207", "wss://relay.damus.io/", "tom" ], [ "e", "a800209999281deff310365e6e6737334799c7d118993dede529b2155215bca0", "wss://@iris.to/", "root" ], [ "e", "35bfbcffc90b35657006ee1876e87a9565884eba19e9e1202850f5c1f61fc8b8", "wss://nostr.oxtr.dev", "mention" ], [ "e", "bd0afd49e392b93c4072d48eb9d27f92b9eadf88edeb6bdfb43ececfbc0736fa", "wss://relay.damus.io/", "reply", "0789a5e252569434b947c61b12e80ec8d362ac869fe714bb476ea48274c31207" ] ], "content": "While I was still using an Apple iPhone (until 2016), I too felt safe. The way that Apple and won the Apple–FBI encryption dispute (https://en.wikipedia.org/wiki/Apple%E2%80%93FBI_encryption_dispute) made me feel that way. That event and the way it played out built up a great sense of trust.\n\nAs bitcoiners say; Don't trust. Verify.\n\nUnless I can see and verify the open-source code, I do not trust any of it, and neither should you.\n\nI can foresee a future where that bitcoiner slogan will be expanded to be, \"Don't trust. Verify. Compile. Reproduce\", or something along those lines.\n\nJust being able to see the source code that is supposedly running on your device is not enough. You need to be able to prove that it is. The best way to prove this would be to compile the source code yourself and load it to your device by way of a flashing process or something similar.\n\nGrapheneOS' method of performing hardware-based attestation is brilliant; https://grapheneos.org/install/cli#hardware-based-attestation. I do trust GrapheneOS because I could do every step of Don't trust. Verify. Compile. Reproduce. I use GrapheneOS as the primary OS on my mobile phone and I recommend their product to anyone every chance I get.", "sig": "241b22982ca1daddb4b4e957974bb5c1804e4b56309d9a7bf244903026918852664bda5f8bd6ceed003e06fda32d6e7bd02d3eed6cc8c7dd26b3d28dfe13da3e" }