Hello, Lemmy!
It may be difficult to spend time actively improving some of the services you use to have a more privacy conscious presence, and so this thread is dedicated to help people learn and grow in their privacy journeys! Start by stating which services you currently use, and which ones you may be looking for/want to improve. This thread is entirely optional to participate in, because a lot of people understandably feel uncomfortable listing which services they use. Writing those out can be a lot of work, but the payoff is huge!
Be respectful! Some people are early on in their privacy journey, or have a lax threat model. Just because it doesn’t align with yours, or uses some anti-privacy software, doesn’t mean you can downvote them! Help them improve by giving suggestions on alternatives.
Don’t promote proprietary software! Proprietary software, no matter how good it may seem, is against the community rules, and generally frowned upon. If you aren’t sure, you can always ask! This is a place to learn. Don’t downvote people just because they don’t know!
Don’t focus solely on me! Since this happened in another one of my posts, I want to mention that this thread is not designed to pick apart only my setup. The point is to contribute your own and help others. That doesn’t mean you can’t still give suggestions for mine, but don’t prioritize mine over another.
Be polite! This falls under “Be respectful”, but be kind to everyone! Say please, thank you, and sorry. Lemmy is really good about this, but there will always be someone.
Web browsing
I use Tor for using online accounts (such as Lemmy, etc.)
I use Mullvad Browser for general browsing
I use Librewolf for functionality that Mullvad Browser doesn’t have (security keys, etc.)
I use Firefox + uBlock Origin for streaming videos that break on Librewolf and Mullvad Browser.
I always use a SearXNG instance for web searches. I always use ProtonVPN (free tier). I use a private DNS resolver.
Desktop
I use Secureblue (yes, I’m that guy from a post a couple weeks ago)
I sit behind a firewall.
I only use FOSS Flatpaks with Flatseal.
My BIOS is password locked but proprietary (due to compatibility issues).
I occasionally use Tails because I think it’s fun.
I use full disk encryption, multiple disks, and a second layer of encryption for specific important files (NSA style)
Mobile
I currently use hardened iOS until I can scrape together some money for a Pixel to use GrapheneOS
Again, I constantly use ProtonVPN (free tier)
I use a private DNS when ProtonVPN is turned off
I use AdGuard, but I browse the internet with the DuckDuckGo app (I can’t sideload)
I use a very strong passcode
Airplane mode is constantly enabled, I don’t have a SIM
I use a Faraday bag to store my device when I’m in public
I use a privacy screen protector
Messenger
Online accounts
Passwords are stored in Bitwarden for mobile accounts, and KeePassXC for desktop accounts.
Yubikey is placed on any account I can, otherwise 2FAS is used
I keep public accounts (Lemmy, etc.) as locked down as I can.
Video streaming
I use the native YouTube app on iOS, simply because any of the others I’ve tried either don’t actually work or require a Mac to install. I don’t have a Mac, obviously.
I use FreeTube on desktop, but as I was writing this I was informed that FreeTube has a few issues I may want to look into (Electron).
AI
I would love to know if there are any Flatpaks that run local LLMs well, but I currently use GPT4All (since that’s what I used a year ago).
On mobile, I use an app made by a friend that gives access to GPT-4 and Gemini. Because it’s running off of his own money, I’m not going to share the project until he has a stable source of income.
Social Media
I use ProtonMail
I have addy.io as an alias service
Shopping/Finance
I currently either proxy my online purchases through someone else (have them buy it for me and I pay them back), or use a gift card
For physical purchases I use cash
I only use my bank account for subscriptions (Spotify, etc.)
I am working on using Monero and privacy.com
Music streaming
I use Spotify on my phone
I use Spotube or locally downloaded files on my computer
I have multiple AM/FM receivers with some yard long antennas and direct metal connectors
TV shows
I stream from ethical services for some movies
I go to a theater or buy a DVD for other movies. I am the proud owner of a USB DVD player.
I also have an antenna hooked up to my TV
There are certain IPTV services I have used in the past
I do not use a smart TV.
Gaming
Programming
I code in Python using PyCharm. I’m looking for alternatives.
I will use GitLab when I decide to publish some of my work.
Productivity
Misc
I don’t use any location services
All my clocks are set to UTC
I don’t have a smart watch
I don’t have a smart car
I use Bluetooth earbuds
I cover my webcams with paper and tape. Reason: It’s worth taking a couple seconds to peel tape off when you use the webcam than to risk a massive breach.
Thanks for reading!
Note here: I found out the other day that a Google Streetview car passed by my house, and my blinds being shut were the only thing keeping my room away from prying eyes. Is there an easy way to blur/censor my house without giving up my soul?
Lots of people kindly contributed their personal setups in the comments, and some even made their own posts! I’m really glad I could spark inspiration and start a way for people to learn and grow in their privacy journeys. To think, just this morning, I was stressing on if people would even enjoy the post at all! Thank you all again, and please go forward to inspire others. I am not the person who made this happen, all of you are!
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
much thanks to @gary_host_laptop for the logo design :)
Websites can see what your ISP (or IP address) is, and geolocate you based on that. Also, even small ISPs sell data, and being small is all the more reason to do some sketchy things to grow the business.
I hear that. The easiest thing you can do is try to convince people closest to you to move to something at least a little more privacy respecting. Signal (Molly is a hardened version) has been easiest for me to convince people with.
Try Invidious or Piped! It’s not for everyone, but it’s worth trying! Also, you should think about adding SponsorBlock to your setup, in case you didn’t know about it.
Fair.
😱 B-But!!1 /s
Would love to hear the alternatives people have! Keep me posted :)
removed by mod
Thanks for sharing! Most IP addresses are specific enough to locate cities by themselves, just a note.
removed by mod
Alright, so:
When you visit a website without using a VPN/Proxy/Tor, the website can see your public IP address. That public IP address is unique (with exceptions I’ll get to in a moment) to your home router. NAT means that each device connected to your router (Wi-Fi) has a local IP address, hidden to the website, but your routers IP is still unique to the website. That means that, even if you switch devices, if you visit a website using your home network the website knows that it is your Wi-Fi and not somebody else’s. That means that you can get tracked across websites just by correlating public IP addresses. Ads can see this IP address too. The public IP address by itself is enough to narrow down your location to the exact city, in most cases. So, when you visit a website, the website knows
If your ISP uses dynamic IP addresses, that means your public IP address changes every month or so, so that #2 only has a history of about a month. CGNAT (Carrier-Grade NAT) means that multiple routers share the same public IP address, which removes #2 altogether. This still lets websites know the city you live in, but it reduces mass internet surveilling.
I may have gotten a few minute details a bit off, but that’s a basic shake down of how it works. TL;DR: Your IP can uniquely identify each of your devices if you don’t have NAT, your router if you do have NAT but not CGNAT, and the city you live in. Find an ISP that uses IPv6, dynamic IP addresses, and CGNAT, and use a elite proxy, free VPN, and Tor with a private DNS for maximum privacy.
removed by mod
I need to read up on NAT and CGNAT, I’ll reply again tomorrow. Cheers!