Security and privacy
← return to full list
Reminder that if you're extremely tinfoil-hatty and you need the most secure, encrypted, decentralized services possible every time for everything you do, you are better off just destroying all of your tech devices because you cannot be 100% safe 100% of the time, especially not with technology. You need to accept that you'll never be completely anonymous.
always use a vpn when torrenting or using public Wi-Fi.
- I'd recommend having one on all the time, but at the very least use it while in those two situations.
- do NOT use "free vpns" or browser extension VPNs. NONE of them are secure, and are always complete shit anyway.
Avoid services based in the UK-USA or SSEUR.
- 5 eyes - USA, Canada, UK, Australia, and New Zealand
- 9 eyes - countries listed above, plus Denmark, France, Netherlands, and Norway
- 14 eyes - countries listed above, plus Germany, Belgium, Italy, Sweden, and Spain
avoid countries that have encryption key disclosure laws. this means that in the event of a criminal investigation, a service must hand over encryption keys in order for law enforcement to retrieve data.
Avoid big congolomerates as much as possible. This includes their products, services, and subsidiaries.
- The biggest offenders (and who I avoid as much as I can) are Alphabet/Google, Facebook, Microsoft, and Amazon.
- While all of these companies have alternatives (that are sometimes significantly better), completely avoiding these corporations is virtually impossible. Do the best you can.
- Protecting yourself from your ISP
- Surveillance Self-Defense
- Windows 10 privacy guide
- Linux hardening guide
- PRISM BREAK - opting out of global surveillance programs
- Am I Unique? - see how identifiable you are online
- Have I Been Pwned? - check if your data has been caught in data leaks
- Privacy.com - create burner cards so you don't give websites your direct card/banking information.
- anon.to - anonymous link shortener
If you're really paranoid, you shouldn't use a password manager. If that isn't an issue, here's these:
- KeePassXC - password manager that keeps your passwords local on your machine.
- Bitwarden - cloud/self-hosted password manager.
- Dashlane - Free or paid ($7/mo) open-source cloud-based password manager. Also includes notetaking, payment info, its own VPN, etc.
- 1Password - Paid ($3/mo for one person) open-source cloud-based password manager. Also includes notetaking, payment info, etc.
- Passbolt - self-hosted password manager
- Buttercup - self-hosted password manager
Avoid LastPass. It has experienced numerous security breaches.