Passwords can be leaked, mostly by bad security on server side.

Passkeys use secure keys, it checks public keys on both sides and send private key to authenticate, without both keys can’t login or if the server is compromised.

It’s like GPG or SSH works.

Dnscrypt site explains some of the different DNS protocol types
https://dnscrypt.info/faq

PS: There isn’t Do53, that’s just plain (unencrypted) DNS

Telegram have this in a long time, and I never got any spam messages.

Try to read the article instead.

Most don’t support HD streaming due to lack of certification, the UI is mobile not AndroidTV, and many can include malware

https://www.tomsguide.com/news/thousands-of-android-tv-boxes-infected-with-dangerous-malware-linked-to-fraud

I have a box (X96 Max+), with a custom ROM, comes with only the essencial, but AndroidTV itself is not FOSS, the launcher and other services are proprietary, without it is just AOSP.

You can check the supported devices on the site
https://slimboxtv.ru/

https://github.com/pluja/awesome-privacy#youtube

Unlike other messaging apps, they have access to encryption keys, when you change devices you only need to fill the phone number and all of your messages are available.

On other apps like Signal or matrix, you need to backup or export your keys to other devices, otherwise you can access previous messages.

It’s like you own an apartment and the doorman have keys to all apartments, if you lose the key the doorman can give you a copy, but also have access to your apartment when it pleases.

That means if they want to see your messages they do it anytime, not only when someone report it.

If a government want access to the messages they can access.

WhatsApp Moderators Can Read Your Messages - https://gizmodo.com/whatsapp-moderators-can-read-your-messages-1847629241

Same, used NextDNS and Pi-Hole then move to AdGuard Home til today.
Built-in (DoH, DoT,…) servers are useful and simple to setup with client identification.

In trying it doing that on someone hybrid, not surface but a Lenovo, PopOS! seems to works mostly out-of-box.

It’s because the website is trying to guess your country by the IP you’re using instead of browser useragent. Don’t know anything to change that, only change the language on the page if possible

Is not that simple, messages still can be intercepted and if not E2EE it can be read.

You can host the bridge, but the host are somewhere remotely

You can use Telegram or Signal with Matrix (kinda), but it loses E2EE encryption, so it loses the propose of privacy.

Good for linking communities, bad for privacy.

Such thing for Signal/Telegram didn’t see it, but it will have the same issue with E2EE

No, but check if the browser isn’t using other DoH provider. If so just disable it.

You have a comparison with other protocols here
https://dnscrypt.info/faq