I also have a graphing calculator that can generate these.
This is a unique solution that I will add to my toolbelt for the future! Which calculator is it?
However, I fear that the catās already out of the bag.
Data gets stale! Itās never too late to start, and itās always better to prevent future disaster than to dwell on old ones. I used to use Instagram + as my main chat platform, and now I have no worries because whatās done is done and I learned better.
However, my sixth form cafeteria only accepts two forms of payment: biometric (handled internally) and debit card.
Dystopiaā¦ Have you asked if you can explicitly use cash? If youāre up for it, push for the use of it in your school. I know plenty of students that use cash religiously for lunch.
Some shows I enjoy (i.e. Helluva Boss)
Hazbin Hotel is one of my favorites
My local timezone just happens to be the same as UTC
That is truly a lucky thing, as it reduces a lot of fingerprinting.
Iām still salty about Apple removing the headphone jack and then every other phone company following suit.
Me too, but fret not, as there are adapters and (most likely, I havenāt checked) non-disposable USB-C earphones.
I will never use Amazon Echo or Google Home.
I will never use Alexa. Or really anything that turns my home automated.
āAlexa, open the door.ā
āIām sorry, your voice is not recognized and your plan has been cancelled. Please contact support and we will respond within 3-5 business days.ā
Obviously that will never happen, but itās not so unrealā¦
Start using multiple browsers
I used to stick to only one, but found out that itās easier to be as private as I can and āmove down the assembly lineā until something works.
Use cash more often
I withdrew almost all my funds from my bank and only used my card if I ran out of cash on a run.
Anonymise social media
No helping you there. I found out that even the smallest details I put out collectively could be used to uniquely identify me, after making only two posts.
Try to get family to ditch Meta
If you can, great. Otherwise, just try not to get posted on their socials.
Look into BIOS and UEFI hardening
Really just use an open source BIOS and slap a password on it (with Heads if you want) and youāre all set. Careful not to brick your PC.
Buy a privacy screen protector and faraday equipment
One note about privacy screen protectors: If your brightness (specifically white point) is too high, people can see it. You can enable āreduce white pointā on iOS, and set it to 100%, and that works well even on max brightness. Smudges can also let people see. Turn your phone horizontal (if youāre testing in public) and tilt it slightly to see how much people can see in your current environment.
Good luck! You have a pretty good setup! I hope you make the improvements you want, and learn along the way!
Do you host your SearXNG instance? It should not be very hard to do on the cloud.
No, thatās fingerprintable (i.e. Google can see which API key you use to correlate traffic)
Which DNS resolver?
Currently NextDNS, may switch to Mullvad DNS soon
Didnāt hear about SecureBlue before this, good distro in theory. Thanks.
Itās certainly different from others, I would read up on what Atomic distros are
Ever thought of getting a 10-year old Thinkpad yet to get rid of that pesky BIOS? \s
I know that was sarcastic, but when I have the money I will be purchasing a QubesOS certified laptop.
Do you have DoT and DNSSEC set up for your āprivateā DNS? Also, is this something like Quad9?
I donāt know how. And no.
With the combination of flight mode and a Faraday bag along with not having a SIM, Iām assuming that people donāt reach you using traditional means (calling). How do you stay in contact with others?
Through Wi-Fi (messaging apps). NBTV has a video on how to āsurviveā without cellular
Define ālocking downā of public accounts.
Turning as much as I can private, using fake emails, disabling telemetry, etc.
I have been thinking of AI for a bit, and you can get a P40 with 24GB VRAM for about $100-$150 on Ebay. Put that in an old computer and fight with licensing for a bit (Craft Computing has a good video on getting VFIO working on Nvidia cards by tricking the software) and youāll have a great setup for AI.
Thank you! My GPU runs AI fine, Iām more interested in certain apps that provide open source models.
Iād stop with the subscriptions and start sailing the high seas, personally, but I understand if the sentiment does not sit well with people here. Piracy simply gives you more control and privacy. Look at LocalMonero to try and get monero without leaving a trace (directly converting fiat to XMR and exchanging for gift cards online after churning).
I plan to move away from Spotify (my only subscription) when I get GrapheneOS
You must be using an old TV, but if you really need to purchase a new TV at some point (and itās very likely to be āsmartā), you can simply disconnect the WiFi antenna from the back of the device. If youāre really good at embedded systems, you could find the flash chip that holds the BIOS/OS of the TV and remove it (and edit the boot sequence) or flash it with something else. This is true for everyone who has a smart TV
Something I will deal with when laws force me to upgrade ;)
Holy shit this guy programs games to play them what a chad.
š
Please switch to Codeberg, Gitlab is annoying.
Why?
How do you coordinate local time with other people if your clocks are set to UTC?
Math. Add or subtract the offset. Or ask what time it is. My (non-smart) watch is set to the correct time, however.
Iām not worried about my ISP since it only operates in my city, so itās unlikely theyāre selling my data
Websites can see what your ISP (or IP address) is, and geolocate you based on that. Also, even small ISPs sell data, and being small is all the more reason to do some sketchy things to grow the business.
Iād like a replacement, but itās hard getting people to switch
I hear that. The easiest thing you can do is try to convince people closest to you to move to something at least a little more privacy respecting. Signal (Molly is a hardened version) has been easiest for me to convince people with.
YouTube and Twitch with ad blocking on desktop
Try Invidious or Piped! Itās not for everyone, but itās worth trying! Also, you should think about adding SponsorBlock to your setup, in case you didnāt know about it.
AI - hard no
Fair.
Gmail (gasp!)
š± B-But!!1 /s
I want an Alexa alternative for playing music
Would love to hear the alternatives people have! Keep me posted :)
One type of attack, for example, would identify users by minute differences in the clock times on their computers.
This is unreliable, I would like to see how exactly it was done.
It references some exploits that have been patched
One of the points mentioned is simply āHe was the only one using Tor on the network at the timeā, which still didnāt deanonymize him from Torās perspective.
Anybody can operate Tor nodes and collect your data and IP address
Anyone can operate a node, nobody can collect your decrypted data, because of E2EE. Guards can see your IP address, which is why you can use a VPN behind Tor.
I stopped skimming after that. Anyone who wants to continue can, but Iād say the article is mostly stale.
Since this is a fresh install of Secureblue, I have the default rules in place. I will eventually take a day to crack down and find out what rules I want.
Evidently Tails 6.0 released over a week ago, and my version never prompted me for an upgrade (maybe because itās a major upgrade, I donāt know.) In any case, I wanted to first of all spread the word about Tails, and second of all mention this: My one problem with Tails is that it had some outdated software (such as KeePass...
My girlfriend is be very interested in putting Blink (Amazon) cameras up around our property. I am not interested in paying Amazon to keep our security footage....
On a related topic, Insecam is a website that shows live streams from insecure cameras. Itās a great example on why privacy matters in every aspect of your life, even if you donāt think it affects you personally.
Been using signal for years and love it and got the majority of my contacts on to it. My question is how are usernames useful now? You still need to register with a phone number with signal to limit spam and bots afaik and Iām assuming you should protect your username just like you do your phone number anyways because spam,...
Due to financial problems, throughout my privacy journey I have only used free tools to enhance my privacy. I was recently thinking about the question: If I had the money to give back to the services Iāve used, which ones would I donate to? Here is my personal list, which is still a WIP:...
I recommend checking out Wikiless! While the link I provided here leads to one of the more broken instances, there are many more, lots of which are included in LibRedirect. Wikiless is a more private front end for Wikipedia.
In all seriousness, Iām not entirely sure why Wikilessās āmainā instance (the one linked) has so many issues. The other instances Iāve used (again, courtesy of LibRedirect) have been just fine. I donāt blame you for being skeptical, itās what makes sure people stay safe!
Edit: Here is a list of some of the ones found on LibRedirect:
Here is the GitHub page! privacy.sexy is a service that lets you customize and automatically generate a script that will harden the privacy of your computer operating system. i.e. it makes a script that disables telemetry, clears cache, etc. automatically.
Thanks for the info! A lot of the services on my list offer paid services that are used as a source of income, but I want to support those just the same. Mozilla has been an iffy choice to add to my donation list. They are the developers of Firefox, which has been forked to create the most private browsers (Tor, Mullvad, etc.), but on the other hand their business practices (Google as a default search engine, Firefox Pocket, etc.) are not very good. As such, I will move them to the honorable mentions section (since I donāt actively use stock Firefox) until further notice.
While Lemmy is not a dedicated service for privacy protection, it has certain features that respect user privacy more than mainstream social media platforms.
Donating to for-profit companies isnāt inherently bad. While there is more value in donating to non-profit companies, I support all causes equally and want to show my support accordingly.
If Firefox no longer got maintained, it would be very difficult for downstream projects (Librewolf, etc.) to keep up, because they would be doing the work of hardening the browser AND fixing bugs that are upstream (that Mozilla would otherwise fix). This is one of the reasons GrapheneOS is as good as it is, Google does the heavy lifting of developing AOSP, and GrapheneOS hardens it and makes it as private as they can.
Discriminating services based on location would be a flaw. For example, the Tor Project is based in Winchester, New Hampshire (United States of America), which is a location not regarded highly in terms of privacy.
By donating I am wanting to support specific projects within the company that align with my privacy values, and a donation would directly target that. By donating, I can help more than simply buying a product, especially if there is a low profit margin for products. For example, if a company sold a product that cost them $45 to manufacture for $50, buying that product would only give the company $5 in profit, compared to if I had donated all $50. That maximizes the impact of my donation. Furthermore, I may support a certain initiative but not personally have the need to buy their products. For example, I support Nitrokeyās implementation of the Nitrokey, but I already have a Yubikey, and so I wouldnāt have a need to buy a Nitrokey. Not to mention, donations are taxed less heavily on the company than sales are in some places. Donations also help raise awareness for a company, and helps me push my personal beliefs about privacy.
Whonix is a unique operating system focused on privacy, security, and anonymity. Rather than being a standalone operating system, Whonix is unique in that it needs a āhostā operating system to run Whonix as a virtual machine within the operating system. That means that if Whonix got compromised, the rest of your system stays untouched. Whonix isnāt like a standard VM, however, but I donāt know the specifics on how to properly explain that. Anyways, one cool feature of Whonix is that, like Tails, it routes all traffic through Tor.
I once asked a friend if he trusted the lock on his phone (brand new iPhone 15 Pro Max, latest and greatest). He told me he did. I asked him if I could use his phone while it was locked, and he told me āNo, I donāt trust you. You would probably hack it or something.ā That statement says two things:
He only cares about attacks on privacy on a personal level, which is the mental flaw lots of people have.
He doesnāt actually trust the lock on his phone, but refuses to admit it.
By the way, hereās a few fun gimmicks you can pull on iPhone users:
See if you can swipe left to view widgets on the lock screen. I was able to get someoneās address this way. He told me the whole time āThereās nothing you can find there.ā and then afterwards said āAh, crap.ā
If there is a lock screen mini widget (under the time) for a clock or related feature, tap on it and it will open the clock app. You can also get there if you can swipe down to access control center if the ātimerā button is enabled there. You can then make it look like you unlocked their phone, and start reading off their alarm names. This one has freaked out a lot of people.
If they realize how you got there and try disabling control center access on the lock screen (as they should, FaceID is fast enough people!), you can see if you can access Siri and say āView my alarmsā.
Github dislikes email āaliasesā so much that they will shadow ban your otherwise normal activities for months, and once flagged, support will request not only a āvalidā email domain but also that you remove the āaliasā email from the account completely.
No, although invisible ink would be somewhat cool. Have any ideas for a āpassword penā?
TIL. Itās definitely neat. Thank you for that!
No problem! :) You can also thank whoever on [email protected] posted it (I wish there was a search boxā¦)
The exception, Qubes OS, has Fedora 37 (which has gone EOL since last december) in dom0
Yikes, any reason for that?
Is it whatās elaborated upon in this video? If not, would you mind elaborating?
More backstory time! I have never used a cellular carrier, and only watched that video about a month ago (because it didnāt exist prior). The first part of my life was spent electronicless (because kids really shouldnāt have phonesā¦ look at me now mom, Iām talking to strangers on the internet by routing through a global censorship circumvention network!). The next part was spent somewhat disconnected, only had access to a non mainstream social media (it has since been merged with another one made by the same company, and became paid. Capitalism.) through WiFi + never went out much. I then finally had unrestricted access, but still never went out much. Then I started to go out much more, and the places I went to didnāt have WiFi. That, in turn, led me to take up network hacking as a hobby. I never managed to hack the network in question (WPA2-E). Finally, I got my first job around the same time I learned about privacy. That meant I had the money to get a cell plan, but I had the knowledge to know why that was a bad idea.
Itās funny, my mother recently called me because she was stressing about trying to find me a carrier (apparently?) and started saying āYour sister offered to add you to her plan if-ā and I told her āI donāt want a carrier, but thank you!ā and she said āOhā¦ Well that solves that problem.ā and looked very relieved.
Edit: I guess your question is asking ultimately why I donāt want a carrier, and it is due to the points that were also brought up in that video, yes.
Preface: this is written with less care than I do usually. I was writing one of my usual replies, but my phone chose to restart while the text was being written in its browser.
No worries, weāve all been there! Was the restart due to annoying OS features (e.g. Windows used to restart immediately without asking, iOS restarts if your phone is locked and itās night time, etc.)
Would you mind sharing blogs/sites etc that you find exceptionally useful for finding out about these things?
Until the Rexodus (by the way, Iām apparently the only one to call it that. Please, people, itās such a good name!), I had simply kept current with every post on r/privacy. I had occasionally read a few old posts, but it was mostly just keeping an eye on what the community was posting about and reading the discussions to learn as much as possible. I have a few old screenshots, like from this post and this one, but besides that it was just miscellaneous posts.
Edit: I found others calling it the Rexodus! Here is one
the community was more absolutist when privacy was concerned.
Yeah, after the Rexxit (heh) started the whole r/privacy community lost a massive amount of quality in the community. Even before then, they pushed to tell people the clear disconnect between privacy and security (which, while there is, a threat model is a threat model, privacy or not). !privacy has a much nicer community and is very open to the idea of services that are designed for security and not privacy. In my eyes, c/privacy is the more āmatureā version of r/privacy. I used to occasionally check up on r/privacy after the Rexxit, and always left feeling very mad about a lot of the posts and responses.
Thanks for asking! I havenāt switched yet, because I want to run it on a separate SSD that hasnāt arrived in the mail yet. The SSD will not only be an upgrade from my current one, but it will make my Linux journey a lot less painful down the road.
Iāve been working hard on the privacy spreadsheet, which has been in development for over 150 hours now. Its been updated, and now includes more messaging apps and more data, with a better format. Iām still working on the sidebar issue, if anyone knows how to fix it, hereās the GitHub repo:...
There is a typo: Three Oās in āOutlookā. Also, please add a row for services that include padded encrypted messages. Love this project!
Edit before I get shot down: I am aware the repo says āIf you see errors or would like something added, please submit an issue here.ā, but Github is not private and therefor I will not create an account. Apologies for the inconvenience.
Fun fact: This is my favorite comment in all of Lemmy, and Iāve been monitoring Lemmy for months. This is my favorite simply for the one question of āWhy do people have such a weird attachment to Chrome?ā
My Privacy Setup
I just read in interesting and informative post from @Charger8232, and decided to write one of my own....
Improve Your Privacy Setup
Hello, Lemmy!...
Tails 6.0 Released ( tails.net )
Evidently Tails 6.0 released over a week ago, and my version never prompted me for an upgrade (maybe because itās a major upgrade, I donāt know.) In any case, I wanted to first of all spread the word about Tails, and second of all mention this: My one problem with Tails is that it had some outdated software (such as KeePass...
Self hosted security cameras?
My girlfriend is be very interested in putting Blink (Amazon) cameras up around our property. I am not interested in paying Amazon to keep our security footage....
Whats the purpose for usernames on signal?
Been using signal for years and love it and got the majority of my contacts on to it. My question is how are usernames useful now? You still need to register with a phone number with signal to limit spam and bots afaik and Iām assuming you should protect your username just like you do your phone number anyways because spam,...
Which privacy services would you donate to?
Due to financial problems, throughout my privacy journey I have only used free tools to enhance my privacy. I was recently thinking about the question: If I had the money to give back to the services Iāve used, which ones would I donate to? Here is my personal list, which is still a WIP:...
EFF Statement on Nevada's Attack on End-to-End Encryption ( www.eff.org )
u mad, state? ( lemmy.world )
Meta will start collecting āanonymizedā data about Quest headset usage ( arstechnica.com )
Github vs. Email Aliases
Github dislikes email āaliasesā so much that they will shadow ban your otherwise normal activities for months, and once flagged, support will request not only a āvalidā email domain but also that you remove the āaliasā email from the account completely.
Searching for a Linux distro
cross-posted from: lemmy.ml/post/12400033 (Thank you lemmy.ml/u/Kory !)...
Update: I made a spreadsheet that ranks messaging apps for privacy ( privacyspreadsheet.com )
Iāve been working hard on the privacy spreadsheet, which has been in development for over 150 hours now. Its been updated, and now includes more messaging apps and more data, with a better format. Iām still working on the sidebar issue, if anyone knows how to fix it, hereās the GitHub repo:...
Manifest v3 is Worse than I Thought ( tube.kockatoo.org )
A great video about the Manifest v3 and how Google is trying to make you view ads.