We live in a paradoxical era. Never before have we had so many tools that promise privacy and anonymity, yet digital surveillance has reached dystopian levels. The problem isn't the lack of technology, but its commercialization and the loss of fundamental principles that guided the birth of the cypherpunk movement.

When I see "mixnet" projects that require tokens, wallets, staking, and blockchain-based reward mechanisms, I can't help but think about how far we've strayed from the original vision. Privacy should not be a business. Anonymity should not require investments or financial speculation. Resistance to censorship should not depend on economic incentive mechanisms.

The Betrayal of Original Principles
The Cypherpunk Manifesto of 1993 was clear: "Privacy is necessary for an open society in the electronic age." It didn't talk about tokenomics or business models. It talked about cryptography, pseudonymity, and decentralized systems as tools of emancipation.

Blockchain Is Not The Solution
Blockchain has been presented as the panacea for all problems of centralization and control. But in reality, it has introduced new problems: permanent traceability, power concentration, barriers to entry, and the financialization of everything. True decentralization doesn't need economic incentives. The best privacy projects in history were developed by volunteers driven by ideals. Tor, BitTorrent, GNU/Linux, PGP: none needed a blockchain to function.

Free Software as an Act of Resistance
Free software is not just a development methodology, it's a political act. When we release code under GPL licenses, we're asserting that knowledge belongs to humanity, not corporations. Every time we choose "free" proprietary software, we're selling our freedom for convenience.

The Beauty of Inefficiency
Commercial software aims for efficiency and scalability. Cypherpunk free software aims for robustness, resistance, and verifiability. It's normal for a truly decentralized system to be slower. It's normal for strong cryptography to require more resources. Inefficiency is the price of freedom. Those who are unwilling to pay it deserve neither.

Conclusion: The Hacker as Political Figure
The cypherpunk hacker is a political figure: someone who uses technology to redistribute power, to protect the vulnerable, to preserve spaces of freedom in an increasingly controlled world. In an era where privacy has become a luxury product, we choose to build tools that are completely free, totally open source, deeply decentralized, and intrinsically resistant. Not because it's economically convenient, but because it's morally necessary.

In an era where data breaches and surveillance revelations dominate headlines, many users are questioning the security of mainstream digital services.

Published on Virebent.art Blog • Privacy & Security

The digital landscape has become a battlefield where corporate giants harvest our most intimate data while governments expand surveillance capabilities under the guise of security. Every email you send, every document you store, every video call you make through mainstream platforms feeds an ecosystem designed to monitor, analyze, and profit from your digital life.

This article examines why open-source, self-hosted solutions provide superior privacy protection compared to proprietary alternatives, and how taking control of your digital infrastructure represents not just a technical choice, but a declaration of independence from surveillance capitalism.

"The price of digital freedom is eternal vigilance—and the willingness to learn."

The Corporate Surveillance Web: How Control Lobbies Dominate the Internet
Today's internet is dominated by a handful of technology corporations whose business models fundamentally depend on surveillance. Google, Microsoft, Meta, Amazon, and Apple have created digital ecosystems where convenience comes at the cost of privacy, and where users become products to be analyzed, categorized, and monetized.

The Illusion of "Free" Services
When you use Gmail, Google Drive, Microsoft 365, or iCloud, you're not the customer—you're the commodity. These platforms offer "free" services funded through extensive data collection that creates detailed profiles of your behavior, relationships, interests, and private communications. This data powers advertising networks and feeds artificial intelligence systems that can predict and influence your decisions.

Regulatory Capture and Network Control
The dominance of these platforms isn't accidental. Through strategic lobbying, regulatory capture, and the creation of artificial barriers to entry, these corporations have established what amounts to digital feudalism. They control the infrastructure, set the rules, and extract value from every interaction while users remain powerless subjects in their kingdoms.

The result is an internet where privacy has become a luxury product, available only to those with the technical knowledge and resources to opt out of mainstream surveillance systems.

Why Self-Hosting Your Digital Life Matters More Than Ever
Self-hosting represents a fundamental shift from being a digital tenant to becoming a digital homeowner. When you control your own email server, calendar, file storage, and communication platforms, you regain sovereignty over your digital existence.

True Data Ownership
Self-hosted solutions ensure that your data resides on hardware you control, under encryption keys you manage, governed by policies you define. No third party can mine your communications for insights, sell your behavior patterns to advertisers, or surrender your data to government agencies without your knowledge.

Freedom from Platform Dependencies
Corporate platforms can change terms of service, increase prices, or eliminate services entirely—often with little notice. Self-hosted solutions eliminate this vendor lock-in, ensuring that your digital tools serve your needs rather than shareholders' profit margins.

Enhanced Security Through Transparency
Open-source, self-hosted platforms benefit from community scrutiny that identifies vulnerabilities faster than proprietary alternatives. When security issues arise, fixes can be implemented immediately rather than waiting for corporate approval processes.

The Learning Imperative: Becoming Your Own System Administrator
Choosing self-hosted solutions requires embracing a fundamental truth: digital independence demands continuous learning. In a world where tech giants have created user-friendly interfaces to mask complex surveillance machinery, regaining control requires understanding the systems that serve you.

Leveraging Search Engines for Self-Education
The irony is not lost that search engines—often controlled by the same surveillance apparatus we seek to escape—remain essential tools for learning system administration. However, approaching search strategically can accelerate your journey to self-sufficiency:

Documentation-First Learning: Official documentation for open-source projects like Nextcloud, Postfix, or Jitsi provides authoritative guidance without commercial bias.
Community Forums and Wikis: Platforms like Stack Overflow, Reddit's self-hosting communities, and project-specific forums offer real-world solutions to common challenges.
Video Tutorials and Courses: Visual learners can benefit from platforms offering systematic courses on Linux administration, Docker containerization, and network security.
Practice Environments: Virtual machines and cloud instances provide safe spaces to experiment, break things, and learn from failures without affecting production systems.
Building Core Competencies
Successful self-hosting requires developing several key skills that, while initially challenging, become second nature with practice:

Linux System Administration: Understanding file systems, user management, process monitoring, and service configuration
Network Security: Implementing firewalls, managing SSH access, configuring VPNs, and monitoring for intrusions
Backup and Recovery: Developing reliable backup strategies and testing restoration procedures regularly
Containerization: Using Docker and container orchestration to simplify deployment and management
Domain and DNS Management: Understanding how internet naming works and securing your digital identity
Open Source: The Foundation of Trustworthy Technology
Open-source software provides the transparency necessary for true security verification. Unlike proprietary systems where you must trust corporate claims about privacy protection, open-source projects allow independent security audits and community verification.

Auditability and Verification
When source code is publicly available, security researchers can identify vulnerabilities, verify encryption implementations, and ensure that software performs exactly as advertised. This transparency creates a security advantage that proprietary solutions cannot match.

Community-Driven Development
Open-source projects benefit from diverse global communities that contribute improvements, identify bugs, and adapt software to emerging threats. This distributed development model often produces more robust, secure, and innovative solutions than corporate alternatives.

Sustainability and Longevity
Open-source projects cannot be arbitrarily discontinued by corporate decisions or acquisition strategies. Even if core developers move on, communities can maintain and continue developing essential software, ensuring long-term availability of critical tools.

Practical Steps Toward Digital Independence
Transitioning to self-hosted, open-source solutions doesn't require abandoning all existing tools overnight. A gradual migration strategy allows you to learn and adapt while maintaining productivity.

Essential Services to Self-Host
Email and Calendar: Postfix/Dovecot or Mailcow for email, with CalDAV/CardDAV for calendar and contacts synchronization
File Storage and Synchronization: Nextcloud provides cloud storage, document collaboration, and app ecosystem
Communication: Jitsi for video conferencing, secure messaging platforms for text communication
Document Collaboration: CryptPad for zero-knowledge document editing and project management
Password Management: Bitwarden or Vaultwarden for secure credential storage
VPN and Remote Access: WireGuard or OpenVPN for secure remote connectivity
Infrastructure Considerations
Self-hosting doesn't necessarily require maintaining physical servers. Cloud virtual private servers, managed hosting providers, or even home hardware can provide suitable platforms depending on your technical comfort level, security requirements, and budget constraints.

The key is starting with basic services and gradually expanding your self-hosted infrastructure as your knowledge and confidence grow.

Reclaiming Digital Sovereignty in an Age of Surveillance
The choice between convenience and privacy is a false dichotomy perpetuated by surveillance capitalists who profit from your digital dependence. Self-hosted, open-source solutions can provide superior functionality while respecting your fundamental right to privacy.

The journey toward digital independence requires dedication, continuous learning, and occasional frustration as you master new technical skills. However, the rewards extend far beyond personal privacy—you join a global community working to build a more equitable, transparent, and user-controlled internet.

"Every self-hosted service, every open-source contribution, every person who learns to control their own digital tools strikes a blow against digital feudalism and moves us closer to the internet's original promise of decentralized, user-empowered communication."

The technical knowledge required for self-hosting is not insurmountable—it simply requires the same dedication that previous generations applied to maintaining automobiles, home appliances, or financial records. In our digital age, system administration has become a fundamental life skill for anyone serious about protecting their privacy and maintaining control over their digital life.

The internet was built by individuals who refused to accept limitations imposed by existing systems. Today, that same spirit of innovation and independence drives the self-hosting community forward, creating tools that serve users rather than surveillance economies.

_________
In an era where digital security is paramount, disturbing connections are emerging between intelligence agencies and seemingly secure cryptographic standards. This article examines the intricate relationship between the National Security Agency (NSA), potential backdoors in National Institute of Standards and Technology (NIST) standards, and the controversial Dual EC DRBG random number generator.

virebent.art/blog/the-vulnerab…

The robots.txt Revolution
When you visit most websites today, an invisible battle for your data is already underway. Search engines deploy armies of crawlers, automated bots that scan, index, and catalog every piece of content they can access. At Virebent.art, we've taken a different approach: we actively block major search engine crawlers.

Our robots.txt file contains a deliberate message:

User-agent: Googlebot
Disallow: /

User-agent: Bingbot
Disallow: /
This isn't a technical oversight—it's a philosophical statement.

Beyond SEO: Rethinking Digital Visibility
The Search Engine Surveillance Complex
Major search engines don't just index content; they build comprehensive profiles of websites, their visitors, and behavioral patterns. By allowing these crawlers, websites inadvertently feed vast surveillance apparatus that commodifies human knowledge and attention.

The Privacy-First Alternative
Our blocked robots.txt represents a different vision: direct discovery over algorithmic mediation. Instead of depending on search engines to surface our services, we believe in:

Direct referrals from trusted sources
Community recommendations within privacy circles
Organic growth through word-of-mouth
The Broader Implications
Breaking the Search Monopoly
Search engines have become gatekeepers of information discovery. By requiring algorithmic approval for visibility, they've created a system where commercial interests influence organic discovery and censorship can happen through algorithmic adjustments. Our approach challenges this dependency.

Building Alternative Networks
The most important privacy tools often spread through direct human networks. This organic discovery model actually provides better security through obscurity and strengthens community connections, as users become active participants in service discovery rather than passive consumers of algorithmic recommendations.

Conclusion: Redefining Digital Presence
Our robots.txt file represents more than a technical configuration—it's a manifesto for an alternative approach to digital presence. By prioritizing privacy over visibility, community over metrics, and values over traffic, we're building a different kind of internet service.

In an era where surveillance capitalism treats human attention as a commodity, choosing to remain invisible to search engines is an act of resistance. It's a statement that meaningful digital services don't require algorithmic approval to provide value.

In an era of bloated websites, invasive tracking, and resource-intensive web applications, Virebent.art has made a deliberate choice to return to the foundations of the web: static HTML and CSS. This isn't a limitation or a compromise—it's a principled stance that aligns with our mission of digital freedom and privacy. Let us explain why this matters for you, our users, and for the future of the internet we're fighting to preserve.

Speed and Efficiency: Respecting Your Resources
Our static approach means that pages load almost instantly. Unlike modern JavaScript-heavy sites, our entire site weighs just a fraction. The difference is profound:

Faster loading times: Pages appear in milliseconds rather than seconds.
Reduced data consumption: Critical for those with limited data plans.
Lower power consumption: Your device doesn't need to execute complex scripts.
Accessible in low-bandwidth environments: The site remains functional even on 2G connections.
Privacy By Design, Not As An Afterthought
Modern websites typically run dozens of scripts that track your behavior. Our static approach inherently blocks this surveillance ecosystem:

No client-side analytics: We don't run JavaScript to monitor your interactions.
No cookies: Our static pages don't need to store anything on your device.
No fingerprinting: Without scripts, we can't identify your browser's unique characteristics.
No third-party requests: Your browser connects only to our server.
Resilience In Digital Conflict
The open, free internet is under sustained attack. In this context, our static approach isn't merely technical—it's tactical. Static sites:

Require minimal server resources, making them harder to take down.
Can be mirrored easily if our servers face interference.
Function across diverse environments, from modern browsers to text terminals.
Reduce attack surface by design.
A Statement of Values
Ultimately, our choice of static HTML and CSS is a statement of values:

We value substance over spectacle
We value accessibility over exclusivity
We value efficiency over excess
We value privacy over surveillance
We value resilience over fragility
Joining the Resistance
The web was originally designed to share information. Somewhere along the way, it became a vehicle for tracking and manipulating users. By returning to the foundations—HTML and CSS—we're reclaiming a small corner of the internet as it was meant to be.

Maybe we've already lost the larger war for digital freedom. But even in defeat, there is dignity in resistance, in demonstrating that alternatives exist. The tools of resistance are available to anyone willing to use them.

The modern web is a surveillance platform dressed as a publishing medium.
Gemini strips it back to text, TLS, and nothing else — and that constraint
is the privacy guarantee.

What the Web Became

Loading a typical news website in 2026 executes hundreds of JavaScript files,
makes requests to dozens of third-party domains, sets tracking cookies from
advertising networks, fingerprints your browser through canvas API calls, loads
fonts from Google's CDN, and fires analytics beacons on every scroll event.
The article you came to read is 500 words. The infrastructure deployed to deliver
it — and to profile you while doing so — weighs several megabytes and involves
servers on four continents.

This is not an accident. It is the business model. The web was not designed to be
a surveillance platform. It became one because HTTP and HTML were flexible enough
to accommodate every monetisation mechanism advertising networks could invent, and because browser vendors had no incentive to refuse them.

The modern web is not bloated because engineers made bad technical decisions.
It is bloated because surveillance pays, and HTTP enables surveillance.

What Gemini Is

Gemini is a network protocol designed in 2019 by Solderpunk as a deliberate
alternative — not a replacement — for HTTP. It sits between Gopher (1991, minimal
but no TLS, no Unicode) and HTTP in terms of capability. The design goals were
explicit from the first specification draft: be simple enough that a single person
can write a complete client in a weekend, be TLS-mandatory from the start, and be
incapable of tracking users.

The protocol operates on port 1965. A client opens a TLS connection, sends a single
line containing the URL, and receives a response: a two-digit status code, a MIME
type, and content. That is the entire protocol. There are no headers for cookies.
There is no mechanism for JavaScript execution. There is no way to make requests to
third-party domains from within a page, because the protocol does not support
subresources.

A Gemini page cannot track you. Not because the server is honest, but because the
protocol physically cannot accommodate the mechanisms tracking requires.

Gemtext: Intentional Constraint

Content on Gemini is typically served as <code>text/gemini</code> — gemtext.
The format has exactly six line types: plain text, headings (three levels), list
items, blockquotes, preformatted blocks, and links. Links can only appear on their
own line. You cannot embed a link inside a sentence. You cannot apply CSS.

This sounds limiting. It is. That is the point.

When a format cannot contain tracking pixels, it does not contain them.
When a format cannot embed third-party scripts, it cannot deliver malvertising.
When a format cannot load remote resources, it cannot fingerprint your browser.
The constraint is not a bug. It is the mechanism by which the privacy guarantee
is delivered.

TLS Without the Certificate Authority Problem</h2>

Gemini requires TLS for every connection. Unlike HTTPS, it does not mandate the
Web PKI certificate authority system. Gemini clients typically use a TOFU
(Trust On First Use) model: the first time you visit a capsule, the client records
its certificate fingerprint. Subsequent visits verify against that fingerprint.
If the certificate changes unexpectedly, the client warns you.

This eliminates the dependency on a hierarchy of certificate authorities — a system
that has been compromised repeatedly and structurally enables governments to perform *man-in-the-middle* attacks by coercing CAs in their jurisdiction.

Gemini's TOFU model enables self-signed certificates without browser warnings.
Running a capsule costs nothing and requires no interaction with any certificate
authority infrastructure.

Gemini Over Tor and Mixnets

Because Gemini is protocol-simple and bandwidth-light, it is exceptionally
well-suited to transport over anonymity networks. The protocol has no keep-alive
requirements, no streaming, no long-lived connections — each request is independent,
which maps cleanly onto Tor circuit behaviour and Nym packet routing.

A Gemini capsule on a Tor hidden service combines two layers of protection: the
protocol cannot leak metadata, and the transport hides the connection itself.

Our Gemini Presence

We operate Gemini capsules at the following addresses. Access requires a Gemini
client gmi.skyjake.fi/lagrange/ (desktop) and Ariane (Android) are the most complete implementations.

Main capsule
*gemini://virebent.art*

gemini://contact.virebent.art

Hidden archives — Tor onion gemini://n5ry24fweklbn562o7fnyefanygtwxlgi7aevn26huuxqlsftxy5ljqd.onion/

The onion address requires Tor Browser or Lagrange configured with a SOCKS5 proxy on 127.0.0.1:9050.

The hidden archives onion address serves content that we consider too sensitive or
too important to trust to the clearnet. Onion services have no registrar, no hosting
provider, no DNS authority that can receive a takedown notice. The content exists as
long as the server runs, and the server's location is unknown to anyone but us.

Who Gemini Is For

Gemini is not a replacement for the web. It cannot serve a web application,
process payments, or host a video stream. It is for text. It is for people who want
to publish and read without the infrastructure of surveillance capitalism as an
intermediary.

It is for journalists who need a publication channel that cannot easily be monetised
into compliance. It is for archivists who want a format that will be readable in
thirty years without a specific browser version. It is for anyone who finds that most
of what they want from the internet is text, and most of what the internet delivers
along with that text is noise.

Simplicity, in network protocol design, is a security property. Gemini is simple
on purpose.

Full specification and client list at
geminiprotocol.net

"In tenebris observantium, lux sine origine propagatur. Nulla distantia veritatem vincit."

Ho lanciato un blog trilingue (FR/IT/EN) indipendente, self-hosted su infrastruttura propria in Europa. Si chiama Nonlocality ed è uno spazio per voci che faticano a farsi sentire — whistleblower, reporter da zone di conflitto, attivisti digitali e chiunque abbia una storia che merita di essere raccontata.
Cosa lo rende diverso:
Il sito non traccia nessuno. Niente Google Analytics, niente log IP, niente cookie, niente servizi di terze parti, niente CDN, niente font esterni. Il codice è minimale: testo, stile, nient'altro. L'anonimato non è una funzione — è l'architettura.
Blocchiamo l'indicizzazione da parte di Google e dei motori che sfruttano i dati degli utenti. Se ci trovate, è tramite passaparola o RSS — ed è esattamente così che il web dovrebbe funzionare.
L'approccio tecnico:
Ghost CMS con mentalità Gemini protocol. Puro Markdown, niente framework, niente popup, niente banner cookie. Il sito pesa meno di una singola immagine hero della maggior parte dei blog moderni. Si carica istantaneamente su 3G, via Tor, su un telefono di dieci anni fa. Il testo è l'interfaccia — se il contenuto è buono, niente si mette in mezzo.
Ogni articolo pubblicato è verificato con OpenTimestamps — prova crittografica ancorata alla blockchain Bitcoin che il contenuto non è stato alterato dopo la pubblicazione.
Sarà disponibile anche su Gemini protocol e tramite Tor hidden service per chi ne ha bisogno.
Se avete qualcosa da raccontare — un'inchiesta, una testimonianza, un'analisi — e condividete i valori di rispetto della privacy e libertà di espressione, questo blog è anche vostro. Scrivete nella lingua che vi è più naturale.
=> archives.virebent.art
#Privacy #Whistleblowing #LibertàDiStampa #AttivismoDigitale #SelfHosted #InfoSec #GeminiProtocol #SmallWeb #DeGoogle #MediaIndipendenti #FOSS #Fediverse