For car navigation I use HERE WeGo (traffic info), never looked back. On foot/bike openstreetmap is the best.

Which android app do you use for OpenStreet map?

HERE WeGo (https://play.google.com/store/apps/details?id=com.here.app.m...) is a good alternative to Google Maps. Does not need Google Services installed and you can download the maps to your device, even to an external sd card.

Second this. I used it on my iPhone.

it sure needs LOTS of permission, gonna go try it anyway :D

A lot less then Google Maps actually ;-) Just compare permissions view details under https://play.google.com/store/apps/details?id=com.google.and... and https://play.google.com/store/apps/details?id=com.here.app.m....

Permission Google Maps has in addition to HERE WeGo:

[Device & app history] retrieve running apps

[Identity] add or remove accounts

[Contacts] modify your contacts

[Phone] directly call phone numbers [Phone] write call log

[Microphone] record audio

[Other] download files without notification

[Other] view configured accounts*

[Other] send sticky broadcast

[Other] disable your screen lock

[Other] measure app storage space

[Other] control Near Field Communication

[Other] read sync settings

[Other] run at startup

[Other] use accounts on the device

[Other] toggle sync on and off

[Other] read Google service configuration

Permission HERE WeGo has in addition to Google Maps:

[Identity] read your own contact card

[SMS] send SMS messages

[Other] pair with Bluetooth devices

[Other] access Bluetooth settings

[Other] change network connectivity

[Other] uninstall shortcuts

Or you can just install Yalp Store from F-Droid (https://f-droid.org/repository/browse/?fdid=com.github.yerio...) and download the apps from the Google Play Store directly to your device. You can also easily update your apps with Yalp Store.

Another possibility is to use the Java software Raccoon on your Desktop, available here: http://raccoon.onyxbits.de/

Yalp uses a Google account, which isn't good.

I use https://apkpure.com

No idea what Yalp is doing with your email here: https://github.com/yeriomin/YalpStore/blob/23503d639034d68b8...

I find Android code really hard to read - there's so many levels of indirection here I can't find where it's actually calling whatever.google.com to grab the APK

This particular code looks fairly straightforward (could definitely be clearer). It's building a url and including the email as a path segment. What the remote service (http://tokendispenser-yeriomin.rhcloud.com/) is doing with that email is harder to determine.

That part is open source too: https://github.com/yeriomin/token-dispenser

That said, if you're sketched out by it, don't use it on a Google account with any data on it. Just make a new empty account for apk downloading.

"Stores email-password pairs, gives out Google Play Store tokens"

I couldn't tell if it was encrypting the password but even if it was... yuck!

Basically the author created web interface to similar APK downloader. At least Docker is completely unrelated.

http://www.ipfire.org/ is Linux based.

I was going to say ipfire, which is particularly interesting to me because of grsec built in, which is awesome.

That being said, if you haven't already, it's time to start learning NFTables and skip right to the chase.

Personally, I tend to not like abstracting firewalls away via guis or other methods like firewalld. It's more work sure, but I understand whats going on and have better control.

How about https://ring.cx/, based on peer-to-peer discovery and connection?

I am using "Here WeGo" https://here.com/ (originally developed by Nokia), quite a good alternative to Google Maps. It does not need any Google services installed. Downloaded it directly from the Google Play store with Raccoon.

Hmm, that Raccoon thing seems ok but using something like that would be a bit of a sideways move for me. I'd rather move toward 100% libre software and not rely on proprietary software I'll need to hack around to maintain privacy.

Then I would suggest Neo900 https://neo900.org/ . Good presentation about the concept: https://neo900.org/stuff/cccamp15/ccc2015talk/talk.pdf

You can use Raccon http://www.onyxbits.de/raccoon : "Download apps directly from Google Play. Raccoon is the only APK Downloader that also supports paid and large apps."

I find this project interesting: https://neo900.org/ Everything will be open-source, apart from the modem. But they do disconnect the modem from any direct input like audio. Have a look at this presentation: https://neo900.org/stuff/cccamp15/ccc2015talk/talk.pdf

You can use a firewall like AFWall+ to deny every app internet by default.

Are there any good alternatives to Transmission on OS X?

RTorrent https://pmukhanov.wordpress.com/2014/01/19/installing-rtorre...

Text console based, so it can run headless and/or in the background in a screen/tmux session.

I've been using rtorrent for years and I wouldn't ever suggest anything else. It's just so damn simple and reliable. I love the concept of watch directories too. Upload a torrent file to a specific directory, and the data will be downloaded to a specific directory. You can have multiple watch directories for different types of data.

Note that rtorrent is no longer supported by homebrew[1]. You'll have to build it yourself with gcc since it can't be compiled with clang.

[1]: https://github.com/Homebrew/homebrew-core/pull/369

Transmisson can also run headless.

qbittorrent?

http://www.qbittorrent.org/download.php

No HTTPS?

(Given that the original post was about compromised downloads this is a bit ironic)

> ... a bit ironic

Not really, since HTTPS wasn't even a factor in this case.

Deluge is pretty good, that's what I tend to go for.

I like Deluge, but I really wish its default API (protocol) wasn't so difficult to use. It's bencoded Python objects as far as I can tell. If you've never heard of bencoding, that's because it's only used by Deluge.

The .torrent file format itself uses bencoded fields.

Ah crap. I meant rencoded. https://github.com/aresch/rencode

This may be overkill for some people, but if you have a VPN and use docker somewhere at home you can check out this container: https://github.com/haugene/docker-transmission-openvpn

I run it on a really old low-power PC and it's been very nice...I can even access it remotely wherever I am.

I like aria2 from https://aria2.github.io. I use it on the command line, but there is a web interface at https://github.com/ziahamza/webui-aria2.

qbittorent is my choice on Windows, and it has an OS X version.

Seed box, even if its for totally legit linux isos.

Deluge is nice.

Only if you want an interface filled with ads.

Not only the apps's interface, but in my experience it also installs adware as browser extensions.

Pay for it then? Netflix scratches my entertainment itch now, but prior to it launching in Australia I almost went ahead and paid for uTorrent. It's a good, lightweight client. Software that works well deserves to be financially supported.

> Pay for it then?

Why? qBittorrent does a better job and it's open source in case you need to modify it.

The parent comment was suggesting paying for uTorrent to remove the ads, not paying for Netflix. (Although paying for subscriptions to overseas services might also be an option.)

qBittorrent is just as good and free, why pay for something that's maybe a few MB smaller? Do you really not have gigabytes of RAM on your machine? If you don't, I suggest spending that money on RAM.