The Privacy Iceberg
This is original content. AI was not used anywhere except for the bottom right image, simply because I could not find one similar enough to what I needed. This took around 6 hours to make.
Transcription (for the visually impaired)
(I tried my best)
The background is an iceberg with 6 levels, denoting 6 different levels of privacy.
The tip of the iceberg is titled "The Brainwashed" with a quote beside it that says "I have nothing to hide". The logos depicted in this section are:
- Instagram
- Apple
- TikTok
- PayPal
- Google Chrome
- CashApp
- WhatsApp
- Samsung
- Steam
- Microsoft Windows
- Ring (Security Camera)
- YouTube
- Amazon
- Discord
- Gmail
- ChatGPT
The surface section of the iceberg is titled "As seen on TV" with a quote beside it that says "This video is sponsored by...". The logos depicted in this section are:
- NordVPN
- Bitdefender
- Incogni
- Malwarebytes
- Opera GX
- ExpressVPN
An underwater section of the iceberg is titled "The Beginner" with a quote beside it that says "I don't like hackers and spying". The logos depicted in this section are:
- Telegram
- Authy
- Brave Browser
- Privacy.com (Virtual Cards)
- DuckDuckGo
- iMessage
- Proton Mail
- AdBlock (Browser Extension)
A lower section of the iceberg is titled "The Privacy Enthusiast" with a quote beside it that says "I have nothing I want to show". The logos depicted in this section are:
- Signal (Messenger)
- Tuta
- addy.io
- Linux
- Bitwarden
- uBlock Origin
- Tor and Tor Browser
- ProtonVPN
An even lower section of the iceberg is titled "The Privacy Activist" with a quote beside it that says "Privacy is a human right". The logos depicted in this section are:
- Monero
- GrapheneOS
- Vanadium (Web Browser)
- KeePassDX
- SimpleX Chat
- Accrescent
- SearXNG
- Aegis Authenticator
- OpenWrt
- Mullvad VPN
- An illustration of physical cash
The lowest portion of the iceberg is titled "The Ghost". There is a quote beside it that has been intentionally redacted. The images depicted in this section are:
- A cancel sign over a mobile phone, symbolizing "no electronics"
- An illustration of a log cabin, symbolizing "living in a log cabin in the woods"
- A picture of gold bars, symbolizing "paying only in gold"
- A picture of a death certificate, symbolizing "faking your own death"
- An AI generated picture of a person wearing a black hoodie, a baseball cap, a face mask, and reflective sunglasses, symbolizing "hiding ones identity in public"
End of transcription.
Best Password Manager for Business, Enterprise & Personal | Bitwarden
Bitwarden is the most trusted password manager for passwords and passkeys at home or at work, on any browser or device. Start with a free trial.Bitwarden
like this
edel
in reply to The 8232 Project • • •Pretty good!! I agree with 95%.
Loved the "As seen on TV" category!
I agree that Tuta is more secure than ProtonMail.
Some are blended like Tor, that should be in Activist if used in secured computer.
~~Was not aware of the existence of Coincarp (logo by GrapheneOS). Is a crypto price tracker used by Activists? I left crypto a couple of years ago but though Activists just don´t trade much and stick for the long haul and use Monero for purchases.~~
like this
Endymion_Mallorn likes this.
The 8232 Project
in reply to edel • • •The logos next to it are Vanadium, which is a web browser made by GrapheneOS, and Aegis Authenticator, which is a time-based one-time password (TOTP) application.
authentication algorithm
Contributors to Wikimedia projects (Wikimedia Foundation, Inc.)edel
in reply to The 8232 Project • • •brucethemoose
in reply to The 8232 Project • • •I just switched from Android to iOS, and while I have many complaints, I’m pleasantly surprised by how “walled off” the apps mostly are. Unlike Android, they have to comply to function for the general public.
It feels a lot more like tier two, where it isn’t like a spyware implant but your banking app or whatever will still function. And yes I know it’s far from good, just talking degrees here…
St3alth
in reply to brucethemoose • • •utopiah
in reply to brucethemoose • • •giacomo
in reply to The 8232 Project • • •atrielienz
Unknown parent • • •Brutal Kangaroo: CIA-developed Malware for Hacking Air-Gapped Networks Covertly
The Hacker NewsLumpyPancakes
in reply to The 8232 Project • • •Android missing?
Hi from near the top of the iceberg. I have five from the top and two from the next level down, plus two from level four. A balanced diet?
The 8232 Project
in reply to LumpyPancakes • • •I wasn't able to fit everything, but I specifically excluded Android, because it isn't inherently bad. GrapheneOS is based on the Android Open Source Project (AOSP), for example, so I didn't want to give the wrong idea.
GrapheneOS: the private and secure mobile OS
GrapheneOSutopiah
in reply to The 8232 Project • • •St3alth
in reply to LumpyPancakes • • •atrielienz
Unknown parent • • •BigLime
in reply to The 8232 Project • • •absquatulate
in reply to BigLime • • •VeganCheesecake
in reply to absquatulate • • •jagged_circle
in reply to VeganCheesecake • • •VeganCheesecake
in reply to jagged_circle • • •They are a relatively established game storefront, and have been at it for over a decade. Same Corp that's also behind CD Projekt Red.
In the end, any storefront that distributes executables could in theory distribute malware, but I'd honestly be more worried about steam, since their publishing process seems a lot more automated, with less oversight.
jagged_circle
in reply to VeganCheesecake • • •kn0wmad1c
in reply to The 8232 Project • • •neon_nova
in reply to kn0wmad1c • • •I’ve never had that issue with Mullvad unless it was for a streaming app.
Sometimes I get detected and it makes me do a cloud flare “I’m not a robot” page.
YexingTudou
in reply to neon_nova • • •neon_nova
in reply to YexingTudou • • •Oh yeah! Reddit does that? But I just login with a throwaway account.
Sometimes after logging in, it will say there was a problem or just reload the login page.
If that happens just click login again and it will load normally.
YexingTudou
in reply to neon_nova • • •Yeah, it'll give me one of these screens with most mullvad servers. I don't really interact on reddit anymore so I refuse to log in even with a throwaway (on my phone at least). Maybe there's something to it, maybe it's my own silly little battle against rude web design 😅
Treasure
in reply to YexingTudou • • •const_void
in reply to YexingTudou • • •jagged_circle
in reply to YexingTudou • • •dandelion (she/her)
in reply to YexingTudou • • •Twig
in reply to YexingTudou • • •LibRedirect – Get this Extension for 🦊 Firefox (en-US)
addons.mozilla.orgNovaling
in reply to Twig • • •LibRedirect + Libreddit instances is fantastic.
Honestly, Reddit is one of the few services that can be redirected easily now. Invidious, Freetube, NewPipe, etc. is constantly being nuked by Youtube, and while Twitter redirects are still alive, they were dead for a short period, ProxiTok never works, nor does Proxigram instances...
jagged_circle
in reply to neon_nova • • •Zoidsberg
in reply to kn0wmad1c • • •GregorGizeh
in reply to Zoidsberg • • •jagged_circle
in reply to kn0wmad1c • • •Those are mutually exclusive.
Just avoid those shitty websites that don't respect their user's privacy.
edric
in reply to kn0wmad1c • • •neon_nova
in reply to The 8232 Project • • •hash
in reply to neon_nova • • •neon_nova
in reply to hash • • •PaulSmackage [he/him, comrade/them]
in reply to The 8232 Project • • •mmhmm
in reply to The 8232 Project • • •I was at the bike shop a few weeks back and a ghost walked in. He came in wearing a medical mask covered by a bandana, sunglasses, cap. They wore gloves, long sleaved pants and shirt.
First question from staff, 'this a robbery?'
Ghost, 'no, I just need 27 2.5 tubes, miss.'
They get the tubes, he agrees. Staff asks if he has an account. Ghost says, "nope, why would I need one?" Staff says they do it for records, insurance claim assist, and discounts. Ghost goes with a John Doe, pays cash and peaces the fuck out.
Total King, but dude was given up a lot. Half of us were drinking beers enjoying a warm evening in spring. I hope he has had some good rides.
I can say with confidence thay he was a white male. In his 50s. About 5'10". 140 lbs-ish. If anyone wants to get any tips, good luck!
like this
iagomago likes this.
Clinicallydepressedpoochie
in reply to mmhmm • • •mmhmm
in reply to Clinicallydepressedpoochie • • •brbposting
in reply to mmhmm • • •mmhmm
in reply to brbposting • • •recklessengagement
in reply to The 8232 Project • • •like this
iagomago likes this.
comfy
in reply to recklessengagement • • •procapra
in reply to The 8232 Project • • •What is so bad about nordvpn? What makes protonvpn better?
Been a nordvpn user for around 4 years now. If I need to switch I'll do it, this is just the first time I've heard it isn't all that great.
The 8232 Project
in reply to procapra • • •virtual private network provider
Contributors to Wikimedia projects (Wikimedia Foundation, Inc.)procapra
in reply to The 8232 Project • • •Thank you. I remember back in the day hearing they didn't keep logs and figured "well alright sounds good!" and that was the end of it.
I'll give Proton a try when my current plan of Nordvpn ends. Didn't know Proton was open source either, so that's pretty cool! Wish I didn't get downvoted to hell for asking a question, but it is what it is.
utopiah
in reply to The 8232 Project • • •josefo
in reply to The 8232 Project • • •The 8232 Project
in reply to josefo • • •errer
Unknown parent • • •neon_nova
Unknown parent • • •comfy
in reply to The 8232 Project • • •Oh, am I that far gone?
::: spoiler spoiler
I don't see Qubes, Whonix or Tails on there.
:::
ISOmorph
in reply to The 8232 Project • • •chingadera
in reply to ISOmorph • • •OrganicMustard
in reply to chingadera • • •Andromxda 🇺🇦🇵🇸🇹🇼
in reply to chingadera • • •Chromium-based browsers have arguably better security than Firefox. madaidans-insecurities.github.…
Vanadium further improves Chromium's security by disabling the JS JIT Compiler, using a hardened memory allocator (GrapheneOS hardened_malloc) enabling ARMv8.5 MTE, and applying other hardening patches (github.com/GrapheneOS/Vanadium…).
The secureblue project maintains a hardened Chromium build for Linux called Trivalent, which uses most of the patches from Vanadium, among others. You can get it from their repo: repo.secureblue.dev/secureblue…
GitHub - GrapheneOS/hardened_malloc: Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain mor
GitHubThe 8232 Project
in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • • •Andromxda 🇺🇦🇵🇸🇹🇼
in reply to The 8232 Project • • •The 8232 Project
in reply to Andromxda 🇺🇦🇵🇸🇹🇼 • • •An issue arises with that. Linux is fundamentally insecure, as you are likely well aware if you use secureblue. secureblue is designed to be as secure as possible while still being Linux, and so is still bound by the same constraints. Qubes OS is not a distro, so it (should be) more secure, but it is an absolute pain to use. Furthermore, Qubes OS emulates Linux distros, so the question becomes "Why not just emulate the most secure Linux distro?" which is either Whonix or secureblue depending on who you ask. Is that more secure than running secureblue on bare metal? What about GrapheneOS used in desktop mode? And what about emulating Linux inside of GrapheneOS using the Linux terminal? There are plans to use multiple distros inside of the terminal, so what about secureblue inside of GrapheneOS?
The whole situation spirals out of control. I know this iceberg chart isn't ranking security, it's ranking what software people generally use for each experience level, but neither secureblue nor Qubes OS would fit nicely in any category. You can read this post for more of my thoughts about this mess.
Linux Insecurities
Tommy (PrivSec - A practical approach to Privacy and Security)The 8232 Project
2025-03-14 21:41:56
Andromxda 🇺🇦🇵🇸🇹🇼
in reply to The 8232 Project • • •9bananas
in reply to ISOmorph • • •afaik the client does collect a bunch if data, most (all, i think? but not a 100% on that) of which is opt-in.
they do need stuff like IPs for internet related features.
telemetry wise there's the steam hardware survey, which is opt-in, and it asks every single time it attempts to collect your systems hardware and OS information. this could technically be identifying information, but since it's opt-in it's not a privacy violation and it's entirely optional. (plus it's super useful for all involved: users, devs, and steam. it's kind of a win-win and straight up necessary info for devs to know which hardware they should optimize for)
they might be putting it at the top because steam has native support for DRM?
but that's also weird, because DRM isn't a privacy violation. it's a shitty practice, barely does anything, barely works, and keeps breaking or hobbling otherwise perfectly good games, all of which is shitty, but it's little to do with privacy. and the dev has to specifically opt-in and integrate it as a feature...unless they're thinking of 3rd party DRM that can be waaay more intrusive, like Vanguard... THAT'S a privacy and security nightmare just waiting to blow up in people's faces.
otherwise...i haven't really heard anything bad about steam privacy wise?
doesn't mean that there's nothing to be concerned about, but i feel like there'd been some news about it if there was...
lazynooblet
in reply to ISOmorph • • •lb_o
in reply to lazynooblet • • •slaneesh_is_right
in reply to lb_o • • •dogs0n
in reply to lb_o • • •Yeah i hate when I see people using Brave, because they have been brainwashed.
Does anyone remember when they were injecting their own referral links into links for online stores (99% certain they did this pls prove wrong if you know better)? This alone leaves them with 0 trust in my books.
const_void
in reply to dogs0n • • •SirPea
in reply to const_void • • •OP replied in another comment its because "firefox is not secure"
lemmy.dbzer0.com/post/43710170… :
In another reply parents to this one:
So OP is saying it's not private nor safe? I get what some people are saying of Firefox constantly changing Terms of Services but that'd be in regard to privacy not security and OP tries to argue not being safe which his iceberg also implies in terms of privacy not being good too. Yeah, LibreFox's ToS isn't the same as Firefox's ToS and his counterarguments to Firefox and Firefox-based on replies is Chrome-based browsers exclusive to niche OSes (also OP don't even try arguing Brave on comments so probably just trying to rage-bait with every opportunity). I'd love OP to argue using the examples he used in the iceberg. So many discourse incosistencies along with the iceberg.
Also OP FYI while privacy does not mean secure, lack of privacy could mean security risks in some cases.
shneancy
in reply to lb_o • • •MajesticElevator
in reply to lb_o • • •Prathas
in reply to MajesticElevator • • •MajesticElevator
in reply to Prathas • • •That’s not what I wrote
Also, please stop with the Mozilla praise
You seem unaware of the bullshit they do. They’re not clean at all.
Nalivai
in reply to lazynooblet • • •antbricks
in reply to Nalivai • • •lb_o
in reply to ISOmorph • • •Prinz Kasper
in reply to lb_o • • •onion_trial
in reply to ISOmorph • • •It might be there because there is a lot of data associated with the steam account, especially the community part of it, e.g.:
* Recorded playtimes
* Times and dates when you are regularly logged in
* Possession of games which are precisely tagged by genre/interests/etc.
* On which time and date you spent how much money (participation in sales in the steam store)
* Timestamped posts and comments in groups based on various interests etc.
* Curators/devs/publishers you follow
* Your game wishlist
* Connection and interaction with other steam accounts (friends list, chat, trades, gifts)
All this can be used to create a very detailed behaviour profile and accurately deduce the social status of the real person who uses the account. Maybe the data isn't misused and it's just there so the features can actually exist.
Personally, I doubt Valve actually does this as expansive and invasive as other big tech companies. I'm pretty sure they at least aggregate anonymised data to measure how e.g. their sales perform, which game to promote on the store front page etc.
But we can't be sure because it's not public.
shneancy
in reply to onion_trial • • •Ziglin (it/they)
in reply to shneancy • • •shneancy
in reply to Ziglin (it/they) • • •Ziglin (it/they)
in reply to shneancy • • •shneancy
in reply to Ziglin (it/they) • • •DinosaurThussy [they/them]
in reply to The 8232 Project • • •Talk about high effort content holy shit
Also my toxic trait is that I use stuff from every single tier
BoxEbony
in reply to The 8232 Project • • •utopiah
Unknown parent • • •Will it though? It's not like paying with cash or even a credit/debit card takes radically longer than paying with a phone. It's not like reading a book vs mindlessly scrolling Reddit or Lemmy makes productivity drop.
We get used to instantaneous tasks and convenience but in fine it's like speeding up while driving from work to home, it's not really the seconds or even minutes daily that count, it's where you are going.
So... a "dumb" phone will probably for most not make productivity "tank" IMHO.
YexingTudou
Unknown parent • • •utopiah
in reply to The 8232 Project • • •On browsers, as you put Chromium then also put Firefox or deMozillaed Firefox e.g. WaterFox.
I'd put Brave back to the 2nd layer due to relying on Chromium and being heavily marketed while gathering data for its crypto scheme. I'd also put Firefox on the 2nd or 3rd layer.
hansolo
in reply to utopiah • • •utopiah
in reply to hansolo • • •hansolo
in reply to utopiah • • •Lol, no. Here's a list of all the things that panel doesn't account for.
forum.level1techs.com/t/browse…
Also, there's nothing close to even attempting privacy without strong fingerprint protection anyway, which I should have also mentioned. Vanilla FF allows a bright shining canvas fingerprint that Brave and Librewolf disable.
Browser Hardening, Privacy, Anti-Fingerprint and Anti-Telemetry Guide
Level1Techs Forumsutopiah
in reply to hansolo • • •I'm not sure what's that's supposed to show as "there are built in settings for some of this stuff, it’s not complete and many settings are abstracted away from the user. Enter about:config" since it might be hierarchical, i.e. disabling a single telemetry toggle, either via Preferences or
about:configmight disable all the other ones. I haven't looked specifically at that part of the code of Firefox but I'd trust more a Wireshark analysis than this since it doesn't actually show (unless I missed that part, quite possible as it's relatively long) that information does actually go back to Mozilla even while one has disabled all telemetry option.Fingerprinting is fair, in the sense that yes, if you do broadcast your userAgent and other public information you do narrow the potential search space and thus expose you as an individual more, yet has nothing to do with Mozilla.
utopiah
in reply to utopiah • • •hansolo
in reply to utopiah • • •But we're taking about this in the context of this infographic. So we have to distill this down to:
Should FF be with, or above, Brave?
I assume we're also taking about relatively low-barrier changes that most users can implement. So vanilla FF vs vanilla Brave, there's a difference. Can we harden FF? Sure. Will 95%+ of people do that with Librewolf or 3 dozen other forks out there? Why bother when there's nuance to be gained with other forks? So now vanilla FF stops being relevant.
And to be clear, I don't use Brave unless I absolutely have to. I don't love it, but vs. normie Vanilla FF, there's a slight edge.
utopiah
in reply to hansolo • • •hansolo
in reply to utopiah • • •utopiah
in reply to The 8232 Project • • •The 8232 Project
in reply to utopiah • • •utopiah
in reply to The 8232 Project • • •Diurnambule
in reply to The 8232 Project • • •Thanks for making/sharing
utopiah
in reply to The 8232 Project • • •Eager Eagle
in reply to utopiah • • •chingadera
in reply to errer • • •If any service is at the whim of someone's emotions or opinions, it's at the bottom, and it should stay there.
Let the program be the program, and if we can't see how it's written, assume the above is true.
Foss or die
chingadera
Unknown parent • • •chingadera
in reply to neon_nova • • •edel
Unknown parent • • •Technically speaking is highly contested and you have arguments pro and con, one way an another. They use different technologies so it is hard to compare properly, specially since it depends on the users using it properly.
If the technology is good, it does not matter where it is located. Switzerland, specially since a couple of years, does provide more freedom guarantees than Germany but it is not immune at all, actually, the US had used the Alpine country to do operations due to its attractiveness to dissidents and criminals alike. However, for the overwhelming majority of customers, either option is fine for they privacy and security. Only metadata has been obtained in few instances in both companies and nothing else... at least no that was used in a court of law.
For ultimate targets, if they have to rely on email, that they should not, I would choose Tuta though. These are my reasons.
1) It has a lesser footprint, so less likely intelligence agencies tried to infiltrate it.
2) The people behind are there fro the very beginning and show their faces publicly (Many in Proton too like the CEO, but it is no so transparent with the rest)
3) The people of Tuta are more ideological so it is a barrier for intelligent services to penetrate. Tuta has show however being anti the Russian government (rightly or not), so this point is not valid if you are in that side.
4) Tuta has a very organic and progressive growth. Proton had an explosive growth. Of course, it could been good marketing, but still...
5) Proton still today requires Google's Push Notification servers, after years and years demanding a solution. Tuta had that solved since long, long ago.
6) Recently a case came in Canada of a intelligent agent using Tuta since "it was infiltrate by intelligence agencies"... After a few hours going through the case, I read it the opposite, he used it because he actually considered it a better choice to cover his crime. He was not that high in the ranks, but I read that the he resumption o these officers.
7) Nothing regarding security, but as a paying customer for both I was "tricked" far less by Tuta. Proton, for instance, does not refund you, only gives you credits. Even 20min after an accidental 2yr renewal I got stuck with them unwillingly. That practice should never be acceptable for a SaaS.
Now, Proton overall, for most is a bit more reliable and full feature and better put together so it is easier to recommend. Think of Proton as the Apple of emails, quite secure and miles away from Gmail, but security wise and ethically, of the two, my bet would be with Tuta.
utopiah
in reply to Eager Eagle • • •What does that have to do with a phone?
Edit: FWIW you can say no (ideally explaining why, even providing an alternative while doing so, e.g. NextCloud with CollaboraOffice, for email... well you can clarify in a footer that this email thread is not private and suggest creating Tuta or ProtonMail account, even if one time use) to people who use Google Docs and GMail. You can also have a one time use account.
/home/pineapplelover
in reply to The 8232 Project • • •I have a little bit of everything except As Seen on TV and Ghost.
I mostly have 3,4,5 and still use YT and Discord
iterable
in reply to The 8232 Project • • •Jolteon
in reply to iterable • • •jagged_circle
in reply to Jolteon • • •We are already post scarcity
The scarcity of housing and food is artificial scarcity
Jolteon
in reply to jagged_circle • • •theoretical economy in which goods, services and information are universally accessible
Contributors to Wikimedia projects (Wikimedia Foundation, Inc.)jagged_circle
in reply to Jolteon • • •Housing it definitely does. There's more empty houses than homeless people.
We've already arrived at post scarcity. All we need to do is this off the capitalists that keep unused housing empty. The scarcity is artificial
Jolteon
in reply to jagged_circle • • •I was referring to the fact that building and maintaining housing is still a largely manual process, and requires a fairly large amount of human labor. Maintaining power, water, sewage, and other things required for modern housing requires an even larger amount of human work.
Whether there are enough houses to actually fit all the people is unrelated to this.
jagged_circle
in reply to Jolteon • • •My point is we already did all that. Thanks to efforts from our ancestors, we no longer have a scarcity of housing.
What we do have is a bunch of oligarchs who have stolen our housing and are holding it for ransom
Jolteon
in reply to jagged_circle • • •Owl
in reply to iterable • • •jagged_circle
in reply to Owl • • •howler
in reply to The 8232 Project • • •Impressive, an academic grade meme.
You, sir/madam, are an artist and a scholar
vordalack
in reply to The 8232 Project • • •like this
AnxiousDuck likes this.
jellygoose
in reply to vordalack • • •I Cast Fist
in reply to jellygoose • • •antbricks
in reply to jellygoose • • •0x0
in reply to vordalack • • •downhomechunk
in reply to 0x0 • • •lennyuncle
in reply to The 8232 Project • • •pineapple
in reply to lennyuncle • • •CheeseNoodle
in reply to The 8232 Project • • •MajesticElevator
in reply to The 8232 Project • • •Sadly, using small niche VPNs that might be more trusted makes you stand out more. It's pretty unusual to have a Mullvad user on your server
They don't rotate IPs as well so a lot of them are blacklisted... and don't offer port forwarding anymore
I wish they could change IPs reguarly and add port forwarding back 🙁 - I would happily pay for their service again
Because 5€ for their current service is overpriced
RiQuY
in reply to MajesticElevator • • •bbb
in reply to RiQuY • • •RiQuY
in reply to bbb • • •github.com/mullvad/mullvadvpn-…
[Feature Request] Inverse split tunneling · Issue #2808 · mullvad/mullvadvpn-app
GitHubbbb
in reply to RiQuY • • •MajesticElevator
in reply to RiQuY • • •lemmeBe
in reply to MajesticElevator • • •dogs0n
in reply to lemmeBe • • •AirVPN - The air to breathe the real Internet - AirVPN
AirVPNMajesticElevator
in reply to dogs0n • • •Interesting option as well, but some problems :
MajesticElevator
in reply to MajesticElevator • • •MajesticElevator
in reply to lemmeBe • • •Going to get hate for it (justified), but NordVPN
Reasons: low price, and someone I know already had an account.
Could switch but most VPNs don't have what I'm looking for (port forwarding), as well as IPs that often change and a solid userbase to mask traffic in smaller websites
Tested mullvad a few years ago and had some small connection problems, but the main issue was that it wasn't usable in many websites due to their IPs being really abused (+ blocked from streaming services).
Brumefey
in reply to MajesticElevator • • •MajesticElevator
in reply to Brumefey • • •The hate is mainly because they run current anti consumer techniques, such as:
They are also in a country where they can legally not provide any info to anyone (also in case of legal problem I believe), but it is a double edged sword, as it also means they can lie and sell our info and will never get sued over it
Such things makes it hard to trust, but the reality is they’re most likely fine to use because they already make a ton of money. They probably won’t risk to lose a business over this.
dogs0n
in reply to MajesticElevator • • •This probably doesn't matter does it? Because being spotted as a mulvad, airvpn, etc user doesn't make you more of a target for anything.
It just means that if they try to trace your connection back to you, they won't find anything out, because you have a trusted zero-logging vpn.
Only think I could see is it could potentially be easier to track usage through the ip and assume it's one person, but idk you could do that with anything if you look at the request timings, etc. It's still just guesses.
Am i missing something?
Probably not on the usual sites people visit (youtube, etc, the big sites 99% of ppl go to exclusively), but I can see your point for any smaller site.
Airvpn provide a discount for each extra month you sign up for in bulk which is nice. It's a great service in my opinion.
airvpn.org/
AirVPN - The air to breathe the real Internet - AirVPN
AirVPNtrashboat
in reply to dogs0n • • •I’m just taking a stab at this since I’m not entirely certain, but I would think that this would weaken you against fingerprinting since it depends on having many different semi-unique characteristics as you browse?
MajesticElevator
in reply to trashboat • • •This ^
If you have 2 accounts on a website for example, you can be easily exposed if using a niche VPN. If on a more popular VPN, it’s not as likely as some other users probably use those as well
Realistically, on bigger websites it doesn’t matter as much - it would really depend on your config. You’re bound to be fingerprinted at some point anyways. It’s just too hard and too annoying to blend in.
At this point I believe we should just aim at randomizing our fingerprint every few seconds by sending BS rather than aiming to all have the same one
potpotato
in reply to MajesticElevator • • •DAITA: Defense Against AI-guided Traffic Analysis
Mullvad VPNMajesticElevator
in reply to potpotato • • •potpotato
in reply to MajesticElevator • • •MajesticElevator
in reply to potpotato • • •What you sent is to prevent your ISP (or government) from correlating your internet activity to your identity
What I’m talking about is preventing fingerprinting or correlating 2 sessions to the same website (the entity that tracks you is the website itself in this case)
jagged_circle
in reply to MajesticElevator • • •MajesticElevator
in reply to jagged_circle • • •jagged_circle
in reply to MajesticElevator • • •prinzmegahertz
in reply to The 8232 Project • • •slaneesh_is_right
in reply to prinzmegahertz • • •Vinstaal0
in reply to slaneesh_is_right • • •And there is a lot of money involved, even the top TF2 accounts are worth tens of thousands of euro's
arschfidel
in reply to prinzmegahertz • • •I could also imagine DRM, though not directly privacy related, being a thing. Like the issues of freedom and openness are probably also important to many people who value privacy and might therefore prefer GOG or something over Steam.
Edit: I see someone else mentioned this already: lemmy.world/comment/16903223
lb_o
2025-05-07 07:29:46
ZeroHora
in reply to prinzmegahertz • • •prinzmegahertz
in reply to ZeroHora • • •Broken
in reply to prinzmegahertz • • •anarchoilluminati [comrade/them]
in reply to Broken • • •Broken
in reply to anarchoilluminati [comrade/them] • • •If you're on windows you can turn it off with a script, but it might turn back on after major updates.
anarchoilluminati [comrade/them]
in reply to Broken • • •I'm on Linux, actually. I installed Steam with great reluctance because everything else I'm running is privacy-friendly FOSS stuff but one of my best friends wanted to play something and there was no other way. As it always happens, we ended up never playing together and I just did stuff on my own, so I should probably just uninstall it at this point.
Thanks!
TORFdot0
in reply to prinzmegahertz • • •It collects and stores information about your system and also has your identity tied to your purchases.
I don’t think it’s a big privacy concern as far as tracking and spying on you.
But realize any device you install steam on then is tied to your real identity if you purchased games on that account. And can be used with data gained from other parties to determine your online activity if a government were to be able to obtain both.
eee (they/them)
in reply to The 8232 Project • • •LeTak
in reply to The 8232 Project • • •Was not really fun and you loose connection to most of your friends and family. Now I have a balanced setup with something out of each layer.
Perfect balanced, as things should be
like this
Occhioverde likes this.
TwoBeeSan
in reply to LeTak • • •Everyone's personal comfort level.
Give tech classes to elderly. Explaining to them the iphone photo face recognition saw several of their eyes bug out of their head. Some loved it.
Totally agree about the self ostracization. While I agree with the sentiment you'll cripple yourself socially.
Finding your personal comfort zone is the tech journey
theangryseal
in reply to TwoBeeSan • • •Heeeey it’s me. Totally socially crippled.
I don’t even know how to maintain relationships, don’t have an interest in trying. There’s something wrong with me.
My only friend on this planet is my uncle.
Madzielle
in reply to theangryseal • • •TwoBeeSan
in reply to theangryseal • • •I get it. Am this way to an extent. Mom for me.
Recently attempted to be social at work. Out of the 5, 1 is worth spending additional time with.
If you are comfortable with yourself and who you are, it may take a bit to meet people you actually enjoy.
If you feel like something is wrong with you therapy would not hurt. Reccomend it for everyone to get them the self care tools they need/want.
In my experience I was attempting to be social out of obligation and why it always felt like pulling teeth to do anything is because I didn't really like the people I was with.
Wish you luck bb 🙏
theangryseal
in reply to TwoBeeSan • • •I’ve done the whole therapy thing, I just do not have it in me to have friends.
I haven’t had a desire to make a friend since I was a kid.
I do get lonely. I’ll have a thought that I’d like to share and I know I drive my wife crazy.
I wouldn’t even care if I could find a way to make some money. Right now I’m a stay at home dad. That’s what my wife wanted me to do. I was making money on the stock market, not taking big risks, just making above minimum wage. Then the election happened and now that’s over.
Thank you for caring.
brbposting
in reply to theangryseal • • •Bazoogle
in reply to theangryseal • • •theangryseal
in reply to Bazoogle • • •I live deep in the Appalachian mountains and I haven’t met a single person interested in the things that I am since I was a kid.
I’m so bad and hate socializing so much that I recently got the Mortal Kombat II deluxe arcade cabinet, the same dude kept joining my match every single time I played so I just stopped going online haha.
He contacted me and we talked once, and that was that.
I really like him too, I just can’t handle it. Even that tiny little bit of it.
I don’t know why I’m like that. I’m not bad at talking to people. I’ve been told I’m damn good at it. I’ve been told I’m charismatic and all that. There’s just something broken in me.
Probably comes from the abuse I suffered as a kid if I’m being honest. It was rough, and it trained me I guess.
But then again, my whole family is like me. I don’t even know 90% of them, but I can tell you that 90% of them do not have Facebook. The ones that do, they don’t ever post, they don’t ever like, nothing. It’s like it’s just who we are or something.
I have brothers who grew up in different households. Two of them never experienced any abuse as children, they were spoiled. They are just like me. They talk to no one.
SirPea
in reply to theangryseal • • •theangryseal
in reply to SirPea • • •Hellmo_luciferrari
in reply to LeTak • • •I have taken my own approach; there are things from each layer that I use. Some begrudgingly but others gladly.
The problem I faced when starting this journey is it does cut out a lot of people. And it becomes isolsting. So I did reel back a bit.
huppakee
in reply to Hellmo_luciferrari • • •Natanox
in reply to Hellmo_luciferrari • • •Average Familiarity
xkcdHellmo_luciferrari
in reply to Natanox • • •I can totally understand where you are coming from.
I do hold the view that if you can read, you too can install GrapheneOS, or try Linux; but that doesn't make it right for everyone. It's a self imposed journey. I can't expect everyone to make the same choices I do.
That is where I will educate people as to why I chose what I chose; however I will not try to force someone down the same road.
So totally understood.
Bazoogle
in reply to Hellmo_luciferrari • • •Hellmo_luciferrari
in reply to Bazoogle • • •LeTak
in reply to Hellmo_luciferrari • • •I tried GrapheneOS , used it until my device no longer received updates. Then Google Pixels got disappointing and iOS 14/15 got out with big privacy changes, so I switched the first time to Apple. I know, ironic , but it works for me.
I remove most permissions from apps, use my own DNS block list enforced by MDM and if possible, self host my apps and services or use paid / open source ones.
I am here on Lemmy instead of Reddit or Instagram….
I also tried Jollas SailfishOS v3 , it was ok, but this was back at the time very limited for social interactions, now with v5 it would have been better.
Also good to know, at my place , Apple Pay is one of the most secure and private pay systems…. I hate that, this feels wrong.
Hellmo_luciferrari
in reply to LeTak • • •I used to run LineageOS with a lot of my own tweaks to meet my privacy needs; however I reached a point I decided it didn't fit my needs for security. So, I went back to GrapheneOS. Which, I am 1uite haply with. Ultimately, I dream of a fully operational Linux phone of sorts; but we aren't there yet.
I ditched reddit, and most centralized social media. I ditched many big tech services in place of self hosting my own. And even that is mostly locked down. Very little exposed to the web. Ad blocking, as well as my own underlying upstream DNS, with a fallback that isn't Google or Cloudflare. Services being firewalled off. Reverse proxy setup limiting access via IP:Port while also including SSL certs for local only https.
And this list goes on; it's a constant journey. But the hard part is to still be social. Hahaha
LeTak
in reply to Hellmo_luciferrari • • •It supports Android App virtualization.
Hellmo_luciferrari
in reply to LeTak • • •TerHu
in reply to LeTak • • •wolfinthewoods
in reply to Hellmo_luciferrari • • •pineapple
in reply to The 8232 Project • • •I guess I'm in the privacy enthusiast section. Although I do use searxng. And I will admit I do use some things from the top layer, like YouTube and steam. Also i don't like how proton is a section above tuta aside from quantum safe encryption which is meaningless at the current state of technology (I agree that could change soon) aside from that proton mail is just as good as tuta.
I use everything from the privacy enthusiast section on a daily basis except for addy.io and tuta since i use proton for email and email aliasing.
Rift5899
in reply to pineapple • • •Personally, I don't like proto, it doesn't follow the separation of powers principle, what happens if proton suddenly changes their policy? That is why true free and open software tend to be decentralized, for example mastodon vs bluesky, the only way I can really trust you it is if you can't "betray" me, even if you really want
Vinstaal0
in reply to Rift5899 • • •Tuta is located in Germany which has more power to look into your data than the Swiss government, but it's mhe.
Also what separation of power do you mean? Proton is also owned by a non profit and Tuta is just a Gmbh which is owned by two individuals it seems. Changing something regarding the non profit or the structure is pretty hard to do
Tuta is however more open with that you can find their annual report or at least part of it if you want.
Rift5899
in reply to Vinstaal0 • • •Vinstaal0
in reply to Rift5899 • • •Not saying Tuta isn’t the right choice, but it’s worse than a lot of people make you think it is
pineapple
in reply to Rift5899 • • •You might be right I searched it up and found that protonmail doesn't encrypt header lines which isn't great. The f-droid point is also valid. But unfortunately there is no decentralised email providers, even tuta is still centralised. I would be interested if there are any options for decentralised mail.
On another note regardless of whether I'm using proton or tuta it's hardly ever end to end encrypted since everyone I'm sending the mail to uses Gmail.
𝕨𝕒𝕤𝕒𝕓𝕚
in reply to The 8232 Project • • •I have no clue why telegram is often mentioned when it comes to "privacy focused messaging". They don't even have e2e encrypted group chats. Only 1:1 chats may be encrypted as an opt-in. Even WhatsApp is more secure than that, since they use signals encryption.
Also the "we don't give out even a byte of data to anyone" statements made by telegram have been thoroughly debunked as lies. When telegrams bottom line is in danger, they have and will give out your data.
like this
AnxiousDuck likes this.
ReversalHatchery
in reply to 𝕨𝕒𝕤𝕒𝕓𝕚 • • •well that section has a few not so effective services, like authy, and imo brave and adblock, to depict what people believe at that point. and telegram probably gets to be there because it's not the usual big tech companies, and it seems fine, even if unencrypted.
and only on the phone app
The 8232 Project
in reply to ReversalHatchery • • •Yes, this is the exact reason Telegram was put there. I even see Telegram recommended alongside Signal, despite the privacy risks.
Bazoogle
in reply to 𝕨𝕒𝕤𝕒𝕓𝕚 • • •Yea, telegram being advertised as a privacy messenger is a joke. If people want to have group chats like in discord and don't care about privacy, whatever. But to try and flaunt how privacy focused you are while using your own home-brewed encryption is a joke. Not to mention the fact you have to turn it on for every chat you want end to end encrypted.
The whole thing about not giving out data is really only accomplished by spreading user data across several countries. So you would have to get a search warrant from every country to get the data, relying on some countries not wanting to cooperate with other countries. That is not real security. Real security would be encrypting it so you literally couldn't give them the data, even if they had a search warrant. Ya know, like signal.
Government Communication
Signal MessengerSirPea
in reply to Bazoogle • • •Threema – The Secure Messenger For Individuals and Companies
ThreemaUndertaker
in reply to 𝕨𝕒𝕤𝕒𝕓𝕚 • • •ReversalHatchery
in reply to Undertaker • • •or that some part of the encryption, like key handling is flawed. also, considering they have an RCE vulnerability every year, I wouldn't be surprised if the encryption keys could just be stolen remotely.
we also don't know if facebook has implemented some kind of analytics for message content, sent files and media.
JiminaMann
in reply to 𝕨𝕒𝕤𝕒𝕓𝕚 • • •CAVOK
in reply to The 8232 Project • • •I feel that I2P is missing somewhere in here too.
p.lemmy.world/c/i2p@lemmy.worl…
The Invisible Internet Project
p.lemmy.worldOzzelot
in reply to The 8232 Project • • •a Kendrick fan
in reply to Ozzelot • • •Ozzelot
in reply to a Kendrick fan • • •The 8232 Project
in reply to Ozzelot • • •GitHub - GrapheneOS/Vanadium: Privacy and security enhanced releases of Chromium for GrapheneOS. Vanadium provides the WebView and standard user-facing browser on GrapheneOS. It depends on hardening in other GrapheneOS repositories and doesn't include pat
GitHubpigup
in reply to The 8232 Project • • •rippersnapper
in reply to The 8232 Project • • •jagged_circle
in reply to rippersnapper • • •swelter_spark
in reply to jagged_circle • • •moseschrute
in reply to The 8232 Project • • •like this
Rickicki likes this.
huppakee
in reply to moseschrute • • •moseschrute
in reply to huppakee • • •huppakee
in reply to moseschrute • • •TORFdot0
in reply to moseschrute • • •It’s worth noting that I had to retire a few devices that I used with my iCloud before I could enable ADP because they didn’t support it. That may be why it’s opt in, although it’s not a very good reason.
The other reason may be because Apple can’t recover your passcode if you turn on ADP and they don’t want customer support nightmares of users losing access to all their precious photos and memories because they could be bothered to manually back them up or remember their passcode
moseschrute
in reply to TORFdot0 • • •Natanox
in reply to moseschrute • • •Well, following that (not fully wrong) logic everything until enthusiast level is useless since it runs on Windows and often not degoogled Chromium. And (given the meme doesn't contain /e/OS, iode, ShiftOS or Linux Mobile anywhere) anything until activist that happens on mobile phones is equally useless since it runs on Apple/Google Android.
I'm more annoyed about "Linux" as a whole being sorted into "Enthusiast". Using your Steam Deck in Desktop mode, buying a brand new Linux laptop for +600€ or even installing and using Linux Mint really isn't as enthusiastic anymore. 😁
edel
in reply to moseschrute • • •True. Apple would need a category on its own, but if i have to choose would place it on "As seen on TV".
It is fairly private and they quite give a fight about maintaining that status. There are no cases I am aware off they comply to open the system for authorities publicly and if so, they do not claim encryption anymore (as per UK.) Now... the key word is publicly; If I were a zealous top intelligence agency I would not force Apple to break an account for me so to obtain evidence on an individual so I can present it to a judge... for me Apple or Protonmail (or any other popular encrypted service really) would be far more valuable a place where I quietly could obtain intel on tens of thousands of targets and with that find other ways to find evidence if need be. It is a good sacrifice for the sustainability of the scheme.
Of course, this is just a thought and no evidence has been brought up. Apple is a large company and some whistleblower could easily popup if that were the case... yet again, having the right tight team is easy to keep it undercover, specially in a closed sourced software. The fact that the US is eyeing so many encrypted SaaS but Apple, with its omnipresence reach, is almost always left alone is a bit odd.
nossaquesapao
in reply to The 8232 Project • • •like this
Rickicki e sunzu2 like this.
wolfinthewoods
in reply to nossaquesapao • • •potentiallynotfelix
in reply to wolfinthewoods • • •Owl
in reply to The 8232 Project • • •You play games on steam? clearly brainwashed.
also how dare you slander Malwarebytes like that
Martin Bodlák 💙💛
in reply to The 8232 Project • • •rekabis
in reply to The 8232 Project • • •Any Chromium-based browser in anything but the top-most panel is a non-starter with their abandonment of Manifest v2. Manifest v3 seriously cripples any Chromium-based browser’s ability to be secure, as extensions like uBlock Origin are no longer compatible by design.
Google has it’s ad business to protect, after all.
The 8232 Project
in reply to rekabis • • •GitHub - GrapheneOS/Vanadium: Privacy and security enhanced releases of Chromium for GrapheneOS. Vanadium provides the WebView and standard user-facing browser on GrapheneOS. It depends on hardening in other GrapheneOS repositories and doesn't include pat
GitHubasudox
in reply to The 8232 Project • • •standarduser
in reply to asudox • • •The 8232 Project
in reply to asudox • • •I use Vanadium. It does have an ad blocker.
Settings > Site settings > Ads > Blockedrekabis
in reply to The 8232 Project • • •Vanadium is purely for GrapheneOS, and Trivalent is purely for Linux. Both of which also appear (looking at this on mobile) to require compiling by the user.
Soooo… an appropriate pair of tools for, what, 0.5% of all computer users in aggregate?
Really appropriate suggestions, there. /s
Show me something Windows based that can be as secure as LibreWolf along with the appropriate extensions for blocking ads, fingerprinting, CDNs, and other spyware-like content.
Because Chromium in any variation, it ain’t.
The 8232 Project
in reply to rekabis • • •Vanadium comes preinstalled on GrapheneOS, and Trivalent comes preinstalled on Trivalent. Compatible Linux distros can add the Trivalent repo to install it without building.
LibreWolf is far from secure, as it is based on Firefox and so comes with the same security issues. If you meant to say privacy and not security, the reason nobody makes high threat model browsers for Windows is because Windows itself is not private and it would be a losing battle.
Broken
Unknown parent • • •I'm no ghost, not even close. Be careful though, "what's the point?" Is essentially the question everybody asks at every phase of that iceberg diagram.
A possible answer to your question though, is that even if the state doesn't know or care about him today that might change tomorrow.
That's not my threat profile but it's a valid one.
jagged_circle
in reply to The 8232 Project • • •I give workshops on privacy. I always tell them that if they get nothing else out of my presentation, its that they should use a password manager.
Honestly I think keepass should be beginner. That comes first before everything else.
Also I think Tor Browser should come before VPNs. Its free and easier to use than VPNs (for when you want to google something secret and don't want to be tracked. Most beginners are selective like that)
Bazoogle
in reply to jagged_circle • • •jagged_circle
in reply to Bazoogle • • •Bitwarden had some security issues historically. I generally recommend using software for password managers that isn't internet connected.
My keepass trainings involve generating a veracrypt encrypted USB drive (for windows and Mac users) for storing a backups of their keepass file. I also recommend they upload it to whatever cloud storage they use (google drive or iCloud usually)
Bazoogle
in reply to jagged_circle • • •What security issues? If you mean potential security vulnerabilities researcher found that they've patched, I don't understand how that would be different from Keepass and their previous security vulnerabilities. Bitwarden has never had a security issues historically that I know of. Lastpass, on the other hand...
I also really don't get these two. They seem to contradict each other.
I usually recommend bitwarden, where they can use the browser extension and mobile phone app. It gives them autofill features on all their sites. Getting someone to change their passwords and use a password manager is already difficult enough. Giving them the most convenient option is going to make it more like they stick with it.
jagged_circle
Unknown parent • • •Broken
Unknown parent • • •I would probably argue they are the same in terms of security and privacy. Privacy communities tend to disfavor Proton because its all eggs in one basket, and also for political reasons.
Both of those are subjective to your personal threat/privacy profile.
Its true that a single point of failure is more risk than separate services, but that fact doesn't undermine their security on a technical level, and has nothing to do with privacy.
As for the political, yes it's something to watch but nothing wrong has been done. They are set up as a non profit with checks and measures in place to prevent corruption from happening. I'm OK with different points of view and having different points of view on a board is a good thing.
jagged_circle
Unknown parent • • •Its not. They don't even sign their releases or support PGP
Tuta is not a proton replacement
jagged_circle
Unknown parent • • •PraiseTheSoup
in reply to The 8232 Project • • •refutablewife
in reply to PraiseTheSoup • • •If you use an easy password for your password manager, it's trivial to crack with a few word lists and hashcat, just as any other account.
Websites get hacked all the time, and your login details (and PII) ARE available for sale from shady people right now. It's important that, the next time one of the sites you use gets hacked, you don't have to scramble to update all your other logins.
wolfinthewoods
in reply to refutablewife • • •IttihadChe
in reply to PraiseTheSoup • • •~ how is that different than having 50 different accounts all using the same password?
Because the password manager would have to be hacked itself.
If you just use the same password for everything, any of those 50 sites could be hacked.
TORFdot0
in reply to PraiseTheSoup • • •If you don’t use a second factor to unlock your password database then you are correct.
Here is the real secret. If the only authentication you have on an account is password auth then you really have no authentication at all. Passwords are not security
Dessalines
in reply to PraiseTheSoup • • •Prathas
in reply to Dessalines • • •What is that currently, and what would it need to be given the looming threat of quantum computers?
Bazoogle
in reply to PraiseTheSoup • • •LeTak
in reply to PraiseTheSoup • • •I like your thinking.
Here an example why password manager make sense.
If you would use the same password at every website and one of the would be for example Facebook, and they would get breached.
Your password associated with your username and email , is now know to some hacker group. And in case of Facebook, the password is not hashed , it was stored in plain text.
Now they have fun to try different websites with combinations of your name , email and password.
Alternatively a password manager stores for every website a different password, and your only mission is to keep that manager secure with a good , rememberable password.
Also , what I do , is using an email alias service. So I have a different Password and Email for each account. I don’t have to care if something gets breached, I am safe and aware of what information gets stolen.
And for future, we could all use passkeys and FIDO2 to block most phishing attempts.
jagged_circle
in reply to The 8232 Project • • •a Kendrick fan
in reply to jagged_circle • • •ArcaneSlime
in reply to a Kendrick fan • • •wolfinthewoods
in reply to a Kendrick fan • • •swelter_spark
in reply to wolfinthewoods • • •wolfinthewoods
in reply to swelter_spark • • •sploodged
in reply to wolfinthewoods • • •swelter_spark
in reply to wolfinthewoods • • •PastafARRian
in reply to jagged_circle • • •infinitesunrise
in reply to The 8232 Project • • •rumba
in reply to The 8232 Project • • •sexy chart!
Could use some anti-malware/AV for beginners and privacy enthusiast level.
Not everyone in there is running a secured OS.
UnderpantsWeevil
in reply to The 8232 Project • • •LandedGentry
in reply to The 8232 Project • • •sadfsafsafsdfsd
:::
toastmeister
in reply to LandedGentry • • •LandedGentry
in reply to toastmeister • • •sadfsafsafsdfsd
:::
PastafARRian
in reply to LandedGentry • • •LandedGentry
in reply to PastafARRian • • •sadfsafsafsdfsd
:::
PastafARRian
in reply to LandedGentry • • •You can exchange it to another accepted crypto, or convert to fiat depending on what you're trying to do. If you differ the exact amounts you buy and use, and delay the timing of your monero purchase and final purchase, it gives you anonymity. Or more like plausible deniability. Nobody said anonymity was convenient. You also don't need every purchase to be anonymous for it to be useful.
When you do most of those purchases you're not anonymous to begin. But if you want to buy an embarrassing pornographic game on Steam and don't want your payment provider to have "FURRYDICKS STUDIO" in your name, you sure can use Monero.
LandedGentry
in reply to PastafARRian • • •sadfsafsafsdfsd
:::
PastafARRian
in reply to LandedGentry • • •I think this is simply a privacy education issue. Here's how to anonymously buy a steam game, step by step:
If your secure computer is totally anonymous, so is your purchase.
Of my last 1 million purchases, exactly zero were done this way. The currency is not worth zero so obviously it's useful to some. "I don't personally use it" is an unconvincing argument, you simply don't care about private purchases which is totally ok.
If you were a progressive reporter in Saudi Arabia buying a web subscription to New York Times you would probably keep a balance of monero around, so these steps would take no time at all.
For the rest of us with nothing to hide, some of us use Monero like this simply to protect those who do need privacy. The more who use it, the better anonymity it provides.
LandedGentry
in reply to PastafARRian • • •sadfsafsafsdfsd
:::
PastafARRian
in reply to LandedGentry • • •"Again: How many of your last 100 purchases were made directly with monero? Just ballpark, I’m sure you have a sense.". A reasonable interpretation of this is, "you don't use it, so no one should".
Apparently millions of people find it useful. If you don't that's totally ok.
LandedGentry
in reply to PastafARRian • • •sadfsafsafsdfsd
:::
NιƙƙιDιɱҽʂ
in reply to LandedGentry • • •LandedGentry
in reply to NιƙƙιDιɱҽʂ • • •sadfsafsafsdfsd
:::
NιƙƙιDιɱҽʂ
in reply to LandedGentry • • •Lol, appreciate it. Thought it was somewhat apt, though not perfect.
On topic, I do agree with you to an extent. The lack of point-of-sale implementation will always be the greatest pitfall of something like Monero. Of course, many store fronts have no desire to easily facilitate truly anonymous transactions, whether for legal reasons, customer data collection, or otherwise.
The idea of complete anonymity is alluring, but not really achievable in most cases as things currently stand. Having said that, don't let the dream of absolute perfection get in the way of progress, it is still a useful tool regardless and can provide a degree of anonymity in situations where you would otherwise have none.
LandedGentry
in reply to NιƙƙιDιɱҽʂ • • •sadfsafsafsdfsd
:::
PastafARRian
in reply to LandedGentry • • •You won't get a lot of people talking about their usage, lol. Are you in witness protection? I think witness protection is useless too, since I've never heard anyone even admit to being in the program. Do you watch porn? Porn is completely useless, no one has ever even admitted watching it to me, even after I badger them about their fetishes.
Monero is exactly what I think it is. Is its value inflated 100x by pump and dump investors? Sure. Is it useful to millions even without the investments? You bet.
comfy
in reply to LandedGentry • • •My friend uses it to anonymously buy servers. Their country has a history of killing political activists so they take their privacy seriously when it comes to that kind of thing.
I would say Monero was useful to them, at that time. It didn't have to be mainstream to be useful. They weren't investing in it. It allowed them to make an international transaction which is much harder to track than other accepted payment methods.
toastmeister
in reply to LandedGentry • • •Do you think credit cards are ideal? People happily pay a 4% fee to Visa to buy something at the store, yet you think a spot convert is going to be the death knell?
As well as the deflation of their currency, as the currency increases at around 10% a year, as you're praying that a CPI that does hedonic adjustments and substitutions maintains your standard of living; as we go from free range to factory farms, and housing appreciation is excluded entirety.
Maybe it wont be bitcoin, maybe it will be fractional shares, or spot convert gold, but I am definitely waiting for the day when I can hold 0$ in cash. I'm already near 0, but I'd like to replace it entirely.
LandedGentry
in reply to toastmeister • • •sadfsafsafsdfsd
:::
toastmeister
in reply to LandedGentry • • •You want just a fatty wad of cash, and for tellers to sit there counting change or what?
Or maybe a CBDC, so they can inflate it even more, giving out your purchasing power like like its a political football?
LandedGentry
in reply to toastmeister • • •sadfsafsafsdfsd
:::
toastmeister
in reply to LandedGentry • • •Well its still early days, Biden was very against Crypto, so point of sales systems couldnt provide it. Companies like Square are now working on it, so you will be able to use it; or any form of cash you want, or fractional shares and gold etf.
Maybe all currencies will just be forced to compete on inflation one day, and everyone will use the one with the lowest annual growth in new supply.
BeardedGingerWonder
in reply to toastmeister • • •drathvedro
in reply to LandedGentry • • •LandedGentry
in reply to drathvedro • • •sadfsafsafsdfsd
:::
Sarcasmo220
in reply to LandedGentry • • •Wall Street investors took you up on your offer.
LandedGentry
in reply to Sarcasmo220 • • •sadfsafsafsdfsd
:::
u/lukmly013 💾 (lemmy.sdf.org)
in reply to drathvedro • • •Well, perhaps not Monero, and perhaps not a loaf of bread either, but also not far from that. One large e-shop in Slovakia I use (Alza) supports crypto payments via Confirmo (BTC, ETH, USDT, USDC, SOL, POL, LTC, TRX). They sell mostly electronics, but also some food items.
Now, since you've mentioned bread:
But I haven't yet tried crypto.
ABetterTomorrow
in reply to LandedGentry • • •TORFdot0
in reply to The 8232 Project • • •Well which one is it?
sharps9
in reply to The 8232 Project • • •ExpressVPN is an arm of Israeli intelligence and should be on the tip of the iceberg: reuters.com/technology/express…
All users should cancel their accounts immediately.
like this
Sickday likes this.
The 8232 Project
in reply to sharps9 • • •zarkanian
in reply to sharps9 • • •Did AI write this?
dullbananas (Joseph Silva)
in reply to The 8232 Project • • •utopiah
Unknown parent • • •Again I'm not comparing a perfectly setup productivity machine online versus an offline one, I'm comparing an entertainment machine also used for work vs an offline one.
FWIW I did do offline holidays and yes, I was missing a lot, yet arguably it didn't make me less productive. Now I travel with kiwix with StackOverflow and Wikipedia .zim files and each time I believe, maybe naively, that I'm more productive, so indeed iteration helps but my point was more against distractions.
candyman337
in reply to The 8232 Project • • •like this
Robaque e Luca like this.
BoxOfFeet
in reply to candyman337 • • •FriendBesto
in reply to BoxOfFeet • • •candyman337
in reply to BoxOfFeet • • •cardfire
in reply to candyman337 • • •For want of $100 /year Apple developer subscription , the libewolf team can't sign binaries for Silicon M series Macs.
I spent an hour and a half trying to get librewolf to work, and just gave up for Waterfox instead.
On my laptop I run Firefox for some things, Watefox for others, and fall back to Chrome only as absolutely necessary when Gecko can't get me there.
candyman337
in reply to cardfire • • •cardfire
in reply to candyman337 • • •I didn't even know that they claim Chrome extensions will work, I simply use the Firefox extensions in Waterfox.
My browsing style is antiquated, my ADHD will only afford me about eight tabs per browser window and I usually have about four of those going at a time.
I aggressively kill tabs to save my own mental memory more than the machine's memory.
Prathas
in reply to candyman337 • • •Dessalines
in reply to candyman337 • • •like this
Luca likes this.
Bahnd Rollard
in reply to Dessalines • • •Dessalines
in reply to Bahnd Rollard • • •mmhmm
in reply to jagged_circle • • •grendel
in reply to The 8232 Project • • •The 8232 Project
in reply to grendel • • •This isn't a ranking of security. It is ranked based on the experience level at which people generally begin to start using certain software. They build on top of each other.
neuroneiro
in reply to The 8232 Project • • •Was going to say links or it never happened but you provided them! And categorized by level! Excelsior!
Thanks also to the comments giving more information.
So grateful for this platform. For the most part.
ZILtoid1991
in reply to The 8232 Project • • •LeTak
in reply to ZILtoid1991 • • •usernameusername
in reply to LeTak • • •GitHub - uazo/cromite: Cromite a Bromite fork with ad blocking and privacy enhancements; take back your browser!
GitHubLeTak
in reply to usernameusername • • •Only downside is, that it looks hard to recommend for family and friends that are not tech savvy.
root
in reply to The 8232 Project • • •TerHu
in reply to root • • •- YouTube
youtu.bepyre
in reply to The 8232 Project • • •lol. lmao, even.
like this
Scrollone likes this.
The 8232 Project
in reply to pyre • • •potentiallynotfelix
in reply to pyre • • •douglasg14b
in reply to potentiallynotfelix • • •A company founded and funded on the concept of activity tracking? Private?
Also, when they first started they seemed to have an unlimited advertising budget, which is why they blew up. Where did that money come from, and what was the promise to those investors on how Brave will bring back revenue to them?
ABetterTomorrow
in reply to The 8232 Project • • •potentiallynotfelix
in reply to ABetterTomorrow • • •ABetterTomorrow
in reply to potentiallynotfelix • • •potentiallynotfelix
in reply to ABetterTomorrow • • •ABetterTomorrow
in reply to potentiallynotfelix • • •potentiallynotfelix
in reply to ABetterTomorrow • • •ABetterTomorrow
in reply to potentiallynotfelix • • •Alfredolin
in reply to ABetterTomorrow • • •SocialMediaRefugee
in reply to The 8232 Project • • •"Brainwashed"? Oh yah, accusatory attack.
And I "brainwashed" if I use samsung ssds? Can only find it on amazon?
jagged_circle
in reply to mmhmm • • •jagged_circle
Unknown parent • • •Maybe email the site admin and let them know
I usually tell them to test their site in Tor Browser on Strict mode to reproduce the issue.
hummy_bee
in reply to The 8232 Project • • •whoisearth
in reply to hummy_bee • • •hummy_bee
in reply to whoisearth • • •Bahnd Rollard
in reply to hummy_bee • • •Without getting into the technical side of things.
Normal Windows home edition is to what ever firmware your ISP (Internet service provider) puts on your router to make it play nice with their network.
Open WRT is to cracks knuckles fuck it, ill configure it myself (think Arch linux, or any program/platform where the user is given a bundle of sticks and a phone book of a manual and told "try not to hurt yourself")
Its a community updated router firmware/software project that gives the user a bit too much control. This allowes people who know what they are doing to make some very secure, free, and complex networks, but also gives you the tools to piss off your ISP or break something.
hummy_bee
in reply to Bahnd Rollard • • •pigup
in reply to hummy_bee • • •hummy_bee
in reply to pigup • • •jim3692
in reply to hummy_bee • • •Just like you can change your Windows PC to Linux, or install a custom ROM on Android, to have better control over your devices, it is also possible to change the firmware on most routers.
OpenWRT is the most popular option for that. It's a Linux based firmware, that has a package manager allowing you to install additional things on your router.
For example, I have a TP-Link TL-WR902AC v3. Out of the box it is just a USB-powered 5GHz extender. After installing OpenWRT to it, I added:
- WireGuard: to route all the traffic over my VPN
- DNS-over-HTTPS: to encrypt all DNS requests
- USBIP: this is because I sometimes use it to connect a webcam for my cat, and I forward the camera to my server in another room
By adding WG and DoH to the "repeater", I can connect this little guy to any public WiFi, and securely connect my devices to it.
hummy_bee
in reply to jim3692 • • •confusedbytheBasics
in reply to The 8232 Project • • •hummy_bee
in reply to The 8232 Project • • •Bassman1805
in reply to hummy_bee • • •10001110101
in reply to hummy_bee • • •hummy_bee
in reply to 10001110101 • • •Philzlaus
in reply to hummy_bee • • •mmhmm
in reply to jagged_circle • • •nuko147
in reply to The 8232 Project • • •zarkanian
in reply to nuko147 • • •nuko147
in reply to zarkanian • • •admin
in reply to The 8232 Project • • •The only thing stopping me from being 'the Activist Group' is that Mullvad requires payment. Sorry, but I'm running a little tight on budget.
At the same time, I can't use Proton VPN for torrenting.
cardfire
in reply to admin • • •It's like $6.50USD /month, 2x the cost of mainstream vpn's.
It's valuable for me so I'm happy to pay and support them, but I'm mostly only need them while traveling.
utopiah
in reply to The 8232 Project • • •Censorship.no! - Browse Freely
ceno.networkAnna
in reply to The 8232 Project • • •zarkanian
in reply to Anna • • •Slaxis
in reply to zarkanian • • •Redex
in reply to Anna • • •Rift5899
in reply to Anna • • •theblips
in reply to Anna • • •overload
in reply to Anna • • •Dimi Fisher
in reply to The 8232 Project • • •simop_jo
in reply to The 8232 Project • • •theblips
in reply to simop_jo • • •usuarioimanol
in reply to The 8232 Project • • •dustycups
in reply to usuarioimanol • • •usuarioimanol
in reply to dustycups • • •ABetterTomorrow
in reply to The 8232 Project • • •The 8232 Project
in reply to ABetterTomorrow • • •64 people and counting 😛
ABetterTomorrow
in reply to The 8232 Project • • •The 8232 Project
in reply to ABetterTomorrow • • •civilcoder
in reply to The 8232 Project • • •slappypantsgo
in reply to civilcoder • • •dontblink
in reply to The 8232 Project • • •Alfredolin
in reply to atrielienz • • •Corduroy_Pillows_Making_Headlines [she/her]
in reply to The 8232 Project • • •Home | Punching Up Press
Punching Up Presslike this
Robaque likes this.
The 8232 Project
in reply to Corduroy_Pillows_Making_Headlines [she/her] • • •I was actually expecting you to comment.
Absolutely! Giving credit is appreciated, as well.
Home | Punching Up Press
Punching Up Presslike this
Robaque likes this.
Corduroy_Pillows_Making_Headlines [she/her]
in reply to The 8232 Project • • •like this
Robaque likes this.
The 8232 Project
in reply to Corduroy_Pillows_Making_Headlines [she/her] • • •Simply leaving a link to this post is fine. Thank you!
like this
Robaque likes this.
TerHu
Unknown parent • • •Matt
in reply to The 8232 Project • • •Afflictedlife
in reply to The 8232 Project • • •PeteWheeler
in reply to The 8232 Project • • •Thanks for providing this. It is obvious you put a lot of time into this. Truly appreciated. I will have to look into these.
How did you find these yourself?
The 8232 Project
in reply to PeteWheeler • • •I've been learning about privacy for the better part of 6 years. At first, most of my information came from lurking on Reddit and Lemmy, but then I started getting first-hand experience and doing my own research.
theblips
in reply to The 8232 Project • • •The 8232 Project
in reply to theblips • • •theblips
in reply to The 8232 Project • • •mycamgirl
in reply to theblips • • •I suppose it aims to be private. According to their FAQ:
The author answers "what if I don't trust you?" by pointing out that you can host Addy on your own server. It is fully OSS and you don't need to use their cloud service.
mycamgirl
in reply to The 8232 Project • • •I wouldn't put Telegram at that level. I would put it in "The Brainwashed." Its encryption is disabled by default. You need to manually enable it on each chat, and you can't enable it on group chats. The app gives a false sense of privacy. Telegram flaunts its end-to-end encryption, but it never mentions that it is disabled by default, and it refuses to enable the default. The final result is that people are not using the feature.
A cryptographer and professor wrote a good piece about Telegram's encryption, calling it "unusual" and the "non-standard authenticated encryption mode ever invented": Is Telegram really an encrypted messaging app?
Is Telegram really an encrypted messaging app?
A Few Thoughts on Cryptographic Engineeringthatradomguy
in reply to The 8232 Project • • •Zealousideal_Fox_900
in reply to The 8232 Project • • •bitwolf
in reply to The 8232 Project • • •36Pizzas
in reply to bitwolf • • •atrielienz
in reply to Alfredolin • • •HonorableScythe
in reply to The 8232 Project • • •Blokada - the popular mobile adblocker and VPN for Android and iOS
blokada.orgAlfredolin
in reply to atrielienz • • •cy_narrator
in reply to The 8232 Project • • •I use KeepassDX and Aegis, I use Facebook, Viber, Whatsapp and Gmail to communicate, use Linux, also use Lemmy as is apperant from this very comment. I have uBlock Origin installed on Firefox as the main browser, I also have Protonmail as my main email, also I use simpleLogin. My search engine is DuckDuckGo. I also use ProtonVPN and used to use Opera VPN.
I am from all of the above tiers
Venia Silente
Unknown parent • • •To be fair some non-fuckers also tend to recommend linux.
May I suggest Arch btw?
unicornBro
in reply to The 8232 Project • • •N3rd
in reply to The 8232 Project • • •Team Teddy
in reply to The 8232 Project • • •For me its less "I have nothing to hide" and more "I am literally forced to use this because I have no other option"
Samsung because I cannot afford a Google Pixel that still supports GrapheneOS, I didn't get the money I needed
Steam because I can't play my games without them
Amazon cause that's the only online store my parents will buy from 99% of the time
And Discord because all my friends are on there and I cant get them to move, plus there's currently not a very good Discord alternative imo