Privacy Guides

Hello people

From a online security perspective, how viable is the total online passivity tactic against hacking, phishing and whatever else there is of threats and tracking online?

In that concept i mean: to stay as a lurker on the social medias, only posting extremely sparse.

If you get random mails from the bank or other instances you dont follow the links, but rather either phones them, or manually goes to the companys page and loggs in to see if there are any messages on the internal inbox or anything that pops up when logging in.

With the thought in mind, that you cant get attacked, if they dont know you are there, how viable is this tactic?

Crosspost because still getting used to lemmy

I have to create one for personal reasons. I know it’s inherently un-private, but how can I maximize privacy while creating & using it without running into problems?

I've started missing out on events just because I am not in the group chats my friends are having on there. That is where I draw my limit. I need to start using Messenger.

However I still wish to use Messenger with as much privacy as possible. I am looking for any advice that might improve my experience and lessen any privacy impact.

I will be creating a fresh account that will just have a picture of me and my first name.

I am running iodeOS (Google-free Android ROM with built in ad-block) on my phone and I am very happy with it so far. I will be blocking messengers outgoing requests as much as possible while still retaining base functionality, but I'm not sure how much that will help.

How do I best use Messenger on Android from a privacy perspective?

Hi, would you know an efficient and privacy friendly Ubuntu antivirus ?

Hi, I recently switched to Ubuntu but the file manager (Nautilus I think) is not practical at all. I would like to be able to :

1-Edit the column on the left to keep only the "My documents" category

2-To create a shortcut on the desktop to the "My document" folder and also for other files. What would you recommend ?

Thank you

Hi, would you know a privacy friendly clock app ?

Hi, would you know a privacy friendly authenticator ? I already have 2FAS which seems recommended for data privacy.

Hi, would you know an efficient and privacy friendly antivirus app for phone?

Not to long ago I had a website that functioned like the tracker control app. When using the site it would test against a list of trackers and tell me what my 1Blocker app is actively blocking. I cannot for the life of me remember the url or find it. I’m hoping someone here knows what I’m looking for. TIA

Source : https://mastodon.social/@nixCraft/111289344598134522

I turned off telemetry and "privacy preserving analytics" but saw the URL below in my DNS logs. Does anybody know what it is? I found this repo but don't know what it means.

star-randsrv.bsg.brave.com

I have been using NextDNS over the past two years, and am generally happy with their service. However, I've never compared their quality against the other recommended ones (like Control D, Quad 9, Mullvad, etc) particularly in terms of ping. I'm based in Australia. Any fellow Aussies using any of these services and care to share their experience, and potentially a recommended service?

My NextDNS renewal date is coming up and I'd like to know whether to stay or try other services.

"We can disclose only now that we had a server in Toronto seized in 2015, initially without our knowledge. Maybe a court order was served to the datacenter. For about 10 days we did not understand what happened to the server, which did not respond, while the datacenter did not provide information. After 10 days Italian police (and not any magistrate) contacted us. They informed us that Toronto police and FBI (*) asked for our help because they could not find any log in the server. Unfortunately their help request came after the server had been already seized. They did not even make a copy, they took it physically, therefore the server went offline, probably alerting the alleged criminals. It was obvious that forensic analysis could not find any log, simply because there were none. Our VPN servers did not even store the client certificates, go figure (now they also run in RAM disks, but in 2015 they did not). The whole matter was led by informing us without any document from any court or magistrate, but only through official and informal police communications, and only to ask for help after forensic analysis obviously failed completely.

We were not asked to keep confidentiality on the matter, but just to stay on the safe side and support the investigation on what it appeared as a serious crime (a whole database with personal information of a commercial service was cracked, stolen and published in public when the web site owners did not pay a "ransom"; while our server was apparently not used for the crack, it was used to upload elsewhere the database) we decided not to disclose the whole matter for at least 7 years. It's one of those cases confirming that our servers do not store log, data or metadata of clients' traffic.

(*) We may speculate that FBI was involved in a Canadian matter because the stolen database contained US citizens' personal data"

I’m concidering to install shizuku with app ops (same dev) to be able to remove system app permissions without rooting. Is this app safe to use or should i search for other options?

Likely under the command of law enforcement and without informing any clients.

I know that there is a WIP for a future article about router platforms, but from the little I've read on the Github issue page and a few videos I've watched I decided to make this plan right here:

Put my ISP router in AP only mode, connect it to a Protectli Vault as my firewall, get a managed switch that supports vland (still haven't found a good one, if anyone can recommend one I'd appreciate it) and have a Turris Omnia as my wireless access point.

Is this a good secure network setup? (also once again, recs for a switch would be appreciated)