matrix-doc
NewPipe
matrix-doc | NewPipe | |
---|---|---|
2 | 2,059 | |
5 | 28,707 | |
- | 1.5% | |
0.0 | 9.8 | |
16 days ago | 2 days ago | |
HTML | Java | |
Apache License 2.0 | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
matrix-doc
-
When I invite a new user remotely, I do not verify those people. Is that bad?
There is a "read the QR code visible on the other user's device" method for verifying (technical stuff).
-
E2EE vulnerability in multiple Matrix clients
This is a great example of why key-sharing exists today... and why it shouldn't. In theory, you should be able to pick up and old client and decrypt new messages and history on it absolutely fine. However, in practice, Matrix's E2EE publishes 100 one-time keys (OTKs) on your server to let other devices establish secure 1:1 channels with you if you're offline - and if you go offline and that pool of OTKs exhausts, then new sessions won't get set up and you won't receive keys for new messages... giving the misbehaviour you're seeing.
Now, you're right that key-sharing is a useful way to fudge around that failure mode.
But an even better way to fix it would be to find a way to stop the OTK pool exhausting - and that's precisely what MSC2732 is: https://github.com/uhoreg/matrix-doc/blob/fallback_keys/prop.... This provides a last-ditch key which can be used to set up 1:1 sessions even if you run out of OTKs, which is marginally inferior to using a different OTK every time, but in practice really isn't a disaster (see the MSC for details).
However, fallback keys are relatively new and aren't implemented on all clients yet (matrix-js-sdk has them, but matrix-ios-sdk is implementing this coincidentally this week)... and so until they land, we still need keyshare requests to paper over this limitation.
But in future, hopefully it will be almost unheard-of to need a keyshare request, and we can change them to be an entirely manual or out-of-hand mechanism of some kind, and avoid classes of bugs like the vuln in question here in future.
NewPipe
-
Mobile Ad Blocker Will No Longer Stop YouTube's Ads
Just use NewPipe. It's just a better Youtube client even if it had ads.
https://newpipe.net/
- Shutting down the letsblock.it project and its official instance
-
2.7M Brits still use a 3G only handset, as the 3G switch off looms closer
I have a 3G device still able to watch YT and a very old Kindle Fire that has NewPipe [1] installed for watching YT in bed (whilst my phone is on charge).
I don't see why not either - if the device was capable of H264 when it was released, why not now?
[1] https://newpipe.net/
- Ask HN: Would you pay for a clickbait-less YouTube?
- Irish State announce plan to build a porn preference register for most of the EU
- NewPipe v0.26.0 Released
- So much pain, I cannot sleep! Advice?
-
Loop option missing on new phone
There is nothing you can do yourself as an app user, see https://github.com/TeamNewPipe/NewPipe/issues/9764. The current situation will be improved by https://github.com/TeamNewPipe/NewPipe/pull/10580.
-
Grandfathered YouTube Premium will see January price increase
NewPipe
-
How do I bypass the anti-ad block system on YouTube?
NewPipe on Android is also unaffected.
What are some alternatives?
conduit
LibreTube - An alternative frontend for YouTube, for Android.
sydent - Sydent: Reference Matrix Identity Server
NewPipe-legacy - NewPipe with support for older devices
Synapse - Synapse: Matrix homeserver written in Python/Twisted.
PowerTube - PowerTube - Youtube-dl client for Android
nitter - Alternative Twitter front-end
Vanced - Vanced Issues/Docs repo
SmartTube - SmartTube - an advanced player for set-top boxes and tvs running Android OS
SmartYouTubeTV - Watch YouTube videos on your TV and set-top-box with comfort
revanced-patcher - 💉 ReVanced Patcher used to patch Android applications
Simple-YouTube-Age-Restriction-Bypass - A simple browser extension to bypass YouTube's age verification, disable content warnings and watch age restricted videos without having to sign in!