Basically, what the title says. Do you use any app, that is proprietary, but either has no OSS alternatives or they’re all not good enough? If there is an alternative, what keeps you from switching?
My banking app ಠ_ಠ
Bitwarden. Most people think that their application is open source, but more and more of their code has shifted from the GPL/AGPL licensed code to code in their SDK, which is under a proprietary license. This led to their new Android app being disqualified from being hosted in F-Droid repos.
Keyguard was supposed to be an open source Bitwarden client, but the dev chose to use a custom proprietary license, so that is source available as well.
Just yesterday I deployed it locally, and was about to migrate from my keepasDX (+syncthing)…
Don’t get me wrong: BW is still a pretty good service, and the proprietary code is still readable by anyone, but the fact that they’re moving a bunch of their previously open source licensed code to something that’s source available is definitely unfortunate.
KeePass, on the other hand, has tons of actually open source clients, which definitely gives them an edge for people that don’t mind syncing their own DB.
That’s actually a good point too: Vaultwarden is fully open source. The official Bitwarden server also has proprietary components.
Yea but I didn’t realize the vaultwarden project didn’t also release client software.
I had looked into running my own vaultwarden, but without open source clients it’s maybe a bit moot. Although I guess the web interface can be considered a client, OS or browser integration is a convenient feature.
They are remaking all apps as native apps so maybe this problem gets addressed too.
Their new, native android app is also using more and more of their proprietary SDK. It’s not something they’re trying to fix.
KeePassDxX on F-Droid it also has export function, bit awkward you could call it, but it’s a functioning password storage tool that’s using local storage with your export and import options like to a file or cloud I think as well never used that but think it’s there? It may lack some of the features of say Bitwarden though because I have never used Bitwarden.
Pedantic, but Google Messages’ RCS. And it’s all Google’s fault because they are holding the API hostage, probably because they want to create familiarity with the app so that people don’t switch once they finally open up.
Not pedantic at all. Google lied about RCS being an open standard.
The pedantic point would be saying that RCS, the protocol, is technically open, but the specific implementation that Google is pushing and being adopted is proprietary 🤓
So yeah. Totally fair point and fuck Google for their RCS bait-and-switch.
For anyone wondering:
RCS
Rich Communication Services. It is a protocol designed to enhance traditional SMS. RCS allows users to send messages that can include high-resolution images, videos, audio messages, and group chats, as well as features like read receipts, typing indicators, and location sharing.
Not just that, but they are actively hostile and hypocritical about it. Every 1-3 months they prevent RCS from working on rooted phones or phones running alternate ROMs. The fact that they spent so much time complaining that Apple wouldn’t comply with the “open” standard while limiting users’ options on their own platform is very frustrating.
I’m glad Google is exposing how crappy RCS is.
It’s been fifteen years, and all they have is a “protocol” that’s still completely dependant on a phone number.
What good is that? Why would I want that?
There are numerous systems that don’t rely on a phone number, e.g. XMPP did everything RCS is trying to do, in 2010 (I ran it on my phone then, with a desktop client that kept in sync).
Teleguard works on every platform, no phone number required, as does MATRIX, Simplex, Wire, Threema, etc, etc.
Not to mention the issues people have with it. It’s unreliable.
RCS is not another chat app.
It’s the NEW SMS. That is why it is so important, and that is why it works ONLY IF YOU HAVE A PHONE. Because that’s literally the point.
Having your mom, grandpa, and everyone automatically use encrypted, modern comnunication just because they have a phone is extremely important.
Realise that in places where SMS has been historically free, SMS is the standard.
XMPP, Matrix or whatever will obviously still have its place for more “incognito” conversations. But having a phone number should also give you access to a better alternative than SMS.
as I understand a phone number “gives you access to” RCS as much as it does to Signal. at that point it’s just about what was pre-installed
Google Pay/Wallet
Right now tap and pay is completely and hopelessly corporate
The issue is that the digital tap-to-pay cards are actually reissued cards with their own unique numbers. They also require significant security measures to protect from cloning attacks.
So banks need a party that they can safely issue a digital card to, knowing that the card data will be stored safely.
Even a FOSS app that covers all the user’s needs is going to have a lot of trouble actually getting a card loaded into it under current standards.
I hate to say it, but crypto wallets are likely the closest thing we’re ever going to get to a FOSS tap-to-pay system. Banks are inherently corporate and capitalist, so it’s not really in their nature to make things open source.
Perhaps if there were an industry standard for issuing digital cards, instead of banks partnering with centralized wallet apps, we could procure our own digital cards to load onto our phones and watches, or integrate into other devices. But that’s a whole other battle that nobody is fighting right now.
A FOSS app for digital payments, must have a company front to sign deals with country retail store chains. Although customer kyc can be avoided, the payments from the front company to retail chains would be thru a corporate structure.
… maybe convenience is the wrong path
The advantages of PoW crypto, over digital (and PoS), it’s possible to force between seller and buyer:
- communication with end-to-end encryption
- privacy oriented marketplaces
With the goal of fostering our own private communities. Over time, might spawn a sub-culture, identity, and ultimately people hood.
Google Play Services
MicroG works really well
A free-as-in-freedom re-implementation of Google’s proprietary Android user space apps and libraries.
MicroG works well if you let it leak some data to Google.
I would like a free-as-in-free-from-Google Google Play Services reimplementation that lets me use any app that depends on it without hitting any Google server.
OP asked about Open Source not about privacy.
MicroG minimises connections to google servers, here you can read what addresses it still connects to and why: https://github.com/microg/GmsCore/wiki/Google-Network-Connections
