I want to have different alt accounts for YouTube (google), and other sites. What's the best way to do this?

Ironically, a large number of privacy minded individuals are using Google Pixels flashed with custom roms (Calyx, Graphene, Lineage, etc)

If not designed specifically for privacy, these Android forks are at the very least not stock Android, and stripped of many anti-privacy features.

This can be accomplished due to the Pixel's (mostly) unique attribute - a bootloader that can be unlocked and relocked.

I don't know why Google have allowed their bootloaders this freedom, but I can't imagine that a company with a reputation for killing anything they touch would allow it to continue for much longer.

If/when the day comes that the Pixel is fully locked down, what options are there for privacy enthusiasts to continue using a smartphone, an inherently unprivate device?

Does anyone know of development going into looking at how to unlock bootloaders on any device, opening the door for custom rom flashing to continue?

Are the pinephones, fairphones, etc going to have to ramp up production?

Anything going on in the iphone department allowing for detachment from the Apple ecosystem?

What happens next, really?

Text of tweet:

"Google will never sell any personal information to third parties; and you get to decide how your information is used." This is one of Google's two “unequivocal” policies.

How does this hold up when Google IS selling all my personal information in Google Domains to Squarespace?

r/privacy

Not sure if it was just released today, but I got the email update about it just now. I'm pretty excited about this because I mostly just want VPN for web browsing, and the linux app kinda sucks.

• DuckDuckGo
• Mojeek
• SearXNG
• Startpage (blocks TOR)
• Swisscows (blocks TOR)
• MetaGer
• Brave

P2P:

• YaCy
• SightNet (is under development)

As a freelancer I need to sell slots of my time in schedules. I use simple calendain from F-droid synchronized with Davx5 in nextcloud.

Unforunately Calendly and similar solutions can only be synced with either google calendar, iCloud, or Microsoft Outlook.

I would be happy to move from my self host to a proton calendar solution or something similar but... Damn no way I will share all my life within those big tech nightmare.

Does anyone have a way to sell online slots of my time in a privacy respecting platform?

TIA

I have found this app pretty well-made and useful. Please give it a try ✌.

Construtive criticism is welcome as usual !

Security assessment was done by Trail of Bits in November 2022.

SimpleX Chat features:

• end-to-end encrypted messages, with editing, replies and deletion of messages.

• sending end-to-end encrypted images and files.

• single-use and long-term user addresses.

• secret chat groups - only group members know it exists and who is the member.

• end-to-end encrypted audio and video calls.

• private instant notifications.

• portable chat profile - you can transfer your chat contacts and history to another device (terminal or mobile).

SimpleX Chat advantages:

Full privacy of your identity, profile, contacts and metadata: unlike any other existing messaging platform, SimpleX uses no phone numbers or any other identifiers assigned to the users - not even random numbers. This protects the privacy of who you are communicating with, hiding it from SimpleX platform servers and from any observers.

Complete protection against spam and abuse: as you have no identifier on SimpleX platform, you cannot be contacted unless you share a one-time invitation link or an optional temporary user address.

Full ownership, control and security of your data: SimpleX stores all user data on client devices, the messages are only held temporarily on SimpleX relay servers until they are received.

Decentralized network: you can use SimpleX with your own servers and still communicate with people using the servers that are pre-configured in the apps or any other SimpleX servers.

You can connect to anybody you know via link or scan QR code (in the video call or in person) and start sending messages instantly - no emails, phone numbers or passwords needed.

Your profile and contacts are only stored in the app on your device - our servers do not have access to this information.

All messages are end-to-end encrypted using open-source double-ratchet protocol; the messages are routed via our servers using open-source SimpleX Messaging Protocol.

We as a community must stop recommending Signal. For far too long we have blindly followed this app without a second thought. It has created a cult of followers, when there are much better apps out there for us to use.

https://archive.is/Lhe24 archive for the essay

This essay was posted to r/Privacy and subsequently removed and censored for literally No Reason. This is honestly really scary: https://old.reddit.com/r/privacy/comments/wj5svi/signal_messenger_revealed_to_have_cia_ties_funded/ https://archive.ph/FZr1d

I am seriously hoping we can have a discussion about this on lemmy. @TheAnonymouseJoker , I know you from r/PrivateLife, and thought you'd be the one to go to about this. Thanks for being open in the past and not bowing to the inner circle of reddit cringelords.

I also am preparing an essay of my own about a complicit honeypot-ish web going on between Signal, Skiff, r/Privacy, r/PrivacyGuides, etc. They have a crazy little cabal that is very creepy. Any materials are welcome. Every time i turn over a stone i find two more. More to come.

Currently using: Aeris, BitWarden, VeraCrypt, GPG etc. What are your standard and can't live without privacy/security apps?

From the video's description:

I was quietly working in my hotel room on my computer. I heard someone knock at the door. I looked through the peephole and did not recognize the man and woman that were standing outside. I did not respond to the knock, and returned to work on my computer. I then heard a strange metallic sound against the door. When I looked over, I saw a metal tool being inserted under the door. I called down to the hotel lobby and told them someone was trying to get into my hotel room. I returned to the door and prevented the tool from moving over to the door handle and opening it from the inside. Hotel staff arrived and told a couple they were at the wrong door. The couple claimed that they accidentally had the wrong room. My hotel room was at the end of the hallway, allowing the couple time to hide the tool. The couple quickly walked away and hotel staff knocked on my door. I opened it and showed him the video. They then quickly ran after the couple, but they were unable to catch up with them.

Today, most messaging apps have true end-to-end-encryption (Telegram's must be activated per contact for Secret Chat), but what really differs now is how many can tie your communications back to you through metadata. Obviously those which require a phone number or an e-mail address, do have your activity tied to you potentially.

WhatsApp, Signal, Telegram and similar do require this for registration. Partly it is for authentication, finding friends, and also for resetting access if access is lost. What data you can see after a reset, gives an indication of what the provider has access to. For Signal, you won't be able to read any of your older messages. Signal indicates in this linked article, though, that they only keep the very minimum of information (tested by a legal subpoena). Telegram has more access as that is how all your chats get restored, but they have been banned in various countries because they don't hand over the information. WhatsApp, of course, we all know about their passing of detailed metadata upstream to Facebook (it's in their terms and conditions). I've done a post before about the risks and the monetary rewards around harvesting metadata. Just by registering on WhatsApp, you have also shared all your friends' phone numbers to Facebook, along with how often and how long you contact them, where you are when you contact them, etc.

We've also seen lots of secure messengers emerging that require no phone number and also no e-mail address, eg. Briar, XMPP, Jami, Threema, SimpleX, Nostr, and many more. Many mainstream users don't adopt them because the common problem is, you can't find your own friends easily (who do you chat with then?).

So this is one of the reasons why Signal has been pretty popular as a secure messenger. It requires a phone number, but retains virtually no information about you to sell or leak, and you can very easily find all your friends using it. So no, it is not THE most secure messenger, but it is certainly the most secure of those requiring a phone number or e-mail address for registration.

But the main takeaway is, unlike with an SMS app where only one app may be the active SMS app, your phone can have 10 or more instant messengers installed, so there is no reason not to also have Signal installed. It helps your friends, who are more privacy conscious, to stay in contact with you via Signal. Whether a message notification pops up via WhatsApp or Telegram, It's still going to pop up, unless you have a friend that insists on contacting you through two apps at the same time. Most modern messenger apps use push notifications, so they are not constantly polling, which uses data and battery all the time.

Go ahead, try more than one messenger, and you may be amazed that there are often better and more interesting features to try. Many of your friends will thank you.

#technology #privacy #messengers #chat #Signal

Its very funny to me that I only learned about Invidious recently because youtube is trying to take it down. I will never open youtube ever again. Ive been using addblock/tracking blockers for a decade at this point but now I don't even have to look at their shitty website with its ever degrading interface.

You can't stop the signal. Fuck you Google.

But whistleblower says 2013 surveillance ‘child’s play’ compared to technology today

Edward Snowden has warned that surveillance technology is so much more advanced and intrusive today it makes that used by US and British intelligence agencies he revealed in 2013 look like child’s play.

In an interview on the 10th anniversary of his revelations about the scale of surveillance – some of it illegal – by the US National Security Agency and its British counterpart, GCHQ, he said he had no regrets about what he had done and cited positive changes.

But he is depressed about inroads into privacy both in the physical and digital world. “Technology has grown to be enormously influential,” Snowden said. “If we think about what we saw in 2013 and the capabilities of governments today, 2013 seems like child’s play.”

He expressed concern not only about dangers posed by governments and Big Tech but commercially available video surveillance cameras, facial recognition, artificial intelligence and intrusive spyware such as Pegasus used against dissidents and journalists.

Looking back to 2013, he said: “We trusted the government not to screw us. But they did. We trusted the tech companies not to take advantage of us. But they did. That is going to happen again, because that is the nature of power.”

Snowden has been in exile in Russia since 2013 after fleeing Hong Kong, where he handed over tens of thousands of top-secret documents to journalists.

His detractors denounce him for being in Russia, though it appears to be the only realistic option available to him other than jail in the US. Criticism has intensified since the invasion of Ukraine and his acquisition of Russian citizenship last year, two years after he applied.

But despite his personal predicament, Snowden does not dwell on the past. “I have no regrets,” he said.

Snowden has reduced his public profile over the last two years, giving fewer speeches, and retreating from press interviews and social media. This is partly because of family commitments: he and his wife have two young sons.

But he has remained in contact over the last decade with the three journalists who met him in Hong Kong, including this reporter. Friday marks exactly 10 years since Snowden revealed himself as the source of the leaks.

Snowden views the widespread use of end-to-end encryption as one of the positive legacies of the leaks. The Big Tech companies had been embarrassed by revelations that they had been handing personal data over to the NSA.

That embarrassment turned to anger when further leaks revealed that, in spite of that cooperation, the NSA had been helping themselves to data from the Big Tech companies through backdoor vulnerabilities. In response, in spite of opposition from the agencies, companies rushed in end-to-end encryption years earlier than planned.

End-to-end encryption “was a pipe dream in 2013 when the story broke”, Snowden said. “An enormous fraction of global internet traffic traveled electronically naked. Now, it is a rare sight.”

But Snowden is worried by technological advances that eat into privacy. “The idea that after the revelations in 2013 there would be rainbows and unicorns the next day is not realistic. It is an ongoing process. And we will have to be working at it for the rest of our lives and our children’s lives and beyond.”

The intelligence agencies in the US and the UK acknowledge there was benefit from the debate on privacy that Snowden provoked but still argue this is outweighed by the damage they claim was done to their capabilities, including MI6 having to close down human-intelligence operations. Their other complaint is that the narrative in 2013 portrayed the NSA and GCHQ as the sole malign actors, ignoring what Russia and China were doing on the internet.

Snowden disputes such claims. He said no one at the time thought Russia and China were angels. As for damage, he said the agencies have never cited any evidence.

“Disruption? Sure, that is plausible,” he said. “But it is hard to claim ‘damage’ if, despite 10 years of hysterics, the sky never fell in.”

I hope you appreciated this article. Before you move on, I was hoping you would consider taking the step of supporting the Guardian’s journalism.

From Elon Musk to Rupert Murdoch, a small number of billionaire owners have a powerful hold on so much of the information that reaches the public about what’s happening in the world. The Guardian is different. We have no billionaire owner or shareholders to consider. Our journalism is produced to serve the public interest – not profit motives.

And we avoid the trap that befalls much US media – the tendency, born of a desire to please all sides, to engage in false equivalence in the name of neutrality. While fairness guides everything we do, we know there is a right and a wrong position in the fight against racism and for reproductive justice. When we report on issues like the climate crisis, we’re not afraid to name who is responsible. And as a global news organization, we’re able to provide a fresh, outsider perspective on US politics – one so often missing from the insular American media bubble.

Betsy Reed

In France, the Senate just approved a controversial provision to a justice bill that would allow law enforcement to secretly activate cameras and microphones on a suspect’s devices.

This type of surveillance would be activated without notifying the owner of the device. The same provision would also allow agencies easier access to geolocation data to track suspected criminals.

Even though officials say they would only use the new update to the so-called “Keeper of the Seals” justice bill to capture sound and images of suspects of certain crimes such as delinquency, organized crime, and terrorism, the critics say this would still be disproportionate.

And it’s not only politicians – widespread concern has engulfed civil rights advocates and organizations, too. For instance, the Observatory of Digital Freedoms has denounced such a “security overkill” – it says any subject would risk being turned into a potential snitch.

La Quadrature du Net, another French advocacy group promoting digital rights and freedoms, has also expressed concern about the threat to privacy. According to the organization, investigators could, in theory, be allowed to remotely activate all connected devices, such as televisions or baby monitors.

“If this text were definitively adopted, it would dangerously increase the possibilities of police intrusion by transforming all our IT tools into potential spies,” the group warned in a press release.

Lawyers are also unhappy. The Paris Bar, representing almost 30 000 lawyers, said in a statement that it “deplored” the fact that the initiators of the provision – the government – didn’t consult them.

“This new possibility of remotely activating any electronic device constitutes a particularly serious breach of respect for privacy which cannot be justified by the protection of the public order,” said the Paris Bar.

“In addition, the project does not prohibit listening to conversations between the lawyer and her client in the lawyer’s office – even if it is prohibited. This is an inadmissible breach of professional secrecy and the rights of defense.”

Critics are urging French parliamentarians to dismiss the controversial provisions. And it’s not too late – the update to the bill must still be approved in the National Assembly, the more powerful lower house of the Parliament.

Eric Dupond-Moretti, the justice minister, argues that all the necessary safeguards are in place – for example, every surveillance operation would have to be approved by a judge.

Since 2015, when terrorist attacks rocked France, the country has increased its surveillance powers, and the “Keeper of the Seal” bill has been likened to the infamous US Patriot Act.

Activating cameras and microphones on a suspect’s device might not be allowed for now. But the French law allows the government to monitor phone calls and emails of terrorism suspects without obtaining a warrant. Paris is now planning to go one step further.

Also a good conversation here: https://news.ycombinator.com/item?id=36227166

EDIT: Changed the link to an archive.org version.

r/privacy