Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

ChallengeApathy

@ChallengeApathy@infosec.pub

This profile is from a federated server and may be incomplete. Browse more on the original instance.

ChallengeApathy ,

Dead Internet.

ChallengeApathy ,

It's almost as if communism is an atrocious idea, it's not like they always turn into dystopian dictatorships or anything 🤔

ChallengeApathy ,

I've experienced no such issue. I use hardened Firefox for some stuff including Twitter, never encountered this.

ChallengeApathy ,

I switched to Strawberry from a lifetime of Winamp usage purely because I wanted an open source music player, so this is amazing news!

ChallengeApathy ,

I have nothing against remote work but come on, COVID ended three years ago. If you still refuse to return to the office, then you're just being lazy at that point.

ChallengeApathy ,

Sounds like someone is mad that security experts would rather trust a tried-and-true encryption standard over Telegram's encryption which is known to not be anywhere near as secure as the Signal protocol.

Pavel resorting to outright slander to promote Telegram is not something I expected to see.

ChallengeApathy ,

As unfortunate as it is, the only way privacy search engines will survive is by adding AI. Brave recognized this early on and implemented it very well, so I'm glad to see DDG seems to be implementing it well also. Hopefully Startpage catches up because even though I almost exclusively use Brave Search, I do enjoy Startpage as a secondary source.

ChallengeApathy ,

As is Startpage now.

ChallengeApathy ,

Brave Search. At this point, I almost never need a different one. They also have optional AI but they're doing so in a way that preserves privacy.

ChallengeApathy ,

I agree somewhat. I know how to use a search engine, I don't need AI. The main problem is that, sadly, AI is going to be required to stay competitive.

I will say Brave's AI is very useful, though.

ChallengeApathy ,

And DDG is on record for censorship and caving to Microsoft. They also both provide results based off MS and Google results.

Neither are ideal. It's why only use them as a fallback. Brave Search all the way.

ChallengeApathy ,

I very, very strongly disagree.

ChallengeApathy ,

Another day, another Microsoft fail. This is what we get when a sub-par software company decides to focus more on AI than on developing an actually usable product.

Clowns.

ChallengeApathy ,

Because it's a centralized system owned by a sociopath billionaire gathering unchanging, personal details about swaths of the population using ye olde "for the greater good" adage as the justification. You'd have to be a special kind of fool to go along with it.

ChallengeApathy ,

Just don't use biometrics. Bad idea in general. A 6+ digit PIN or password is just fine, especially if you set your phone to factory reset after a certain number of failed unlock attempts.

ChallengeApathy ,

Right... that's what I'm saying. Under the fifth, they can't compel you to unlock your phone if it's protected by a PIN or password and if you set it to factory reset after a bunch of failed attempts, they can try but it's unlikely they'll break the PIN/pass in a few attempts.

ChallengeApathy ,

It's protected under the fifth. Even so, requiring a warrant to get your passcode is far better than not requiring a warrant to demand biometrics. Either way you slice it, passcode > biometrics.

ChallengeApathy ,

There have been instances where judges ruled in favor of them being protected which sets a legal precedent. The SCOTUS probably won't get involved unless a major lawsuit or federal-level case occurs.

Either way, passcodes are superior. Not sure why you're arguing this.

ChallengeApathy ,

Were not in a court of law.

ChallengeApathy ,

It's actually rather stunning to see just how hard they're attacking privacy in these final months of the disastrous dumpster fire that is the Biden administration. This is exactly why I believe centralized cloud and CDN infrastructure is massively dangerous.

Make the web decentralized again.

ChallengeApathy ,

I didn't mention the others. It's simply that this current "administration" has been a disaster in literally every way so it's not surprising they're trying to end our constitutional rights.

ChallengeApathy ,

Almost nothing. I sometimes use it to rephrase a question or answer. I refuse to become dependent on AI or contribute to it more than I already unwittingly have.

ChallengeApathy ,

I don't like big government but I have zero sympathy in this case. TikTok is the greatest cancer on modern society and I will not change my mind on that.

ChallengeApathy ,

I agree but TikTok is worthless in general. The content it serves people is literal brain rot. Also, I don't want it to sell, I just want it to die and never come back.

[Thread, post or comment was deleted by the author]

    •
    ChallengeApathy ,

    Not that long ago, they drastically improved their privacy policy, consent and opt-out capabilities. Is it perfect? No but it has never been better.

    Under the FISA expansion, what exactly should I worry about, how do I manage privacy?

    Hello everyone, with the unfortunate passing of the FISA expansion, I was left with a few questions. I tried to research it, and to me, it seems like they are beefing up surveillance with routers and ISPs (correct me if I'm wrong.) Aside from having businesses stalk you when you use their WiFi (connected with ISPs.)...

    ChallengeApathy ,

    Source on this? It's very unlikely. It would be hard to crack down on VPNs given the fact that businesses need them, especially now with the prevalence of remote work.

    ChallengeApathy ,

    I'd sat just keep doing what you would have done before to protect your privacy. Switch to privacy tools, especially encrypted communications services, and use both trustworthy VPNs and Tor for different use cases. Also, I heard (can't verify) that this effectively lets the government legally co-opt regular people to essentially function as spies under gag orders, so I'd just keep an eye out if you ever need to let some sort of professional into your home.

    ChallengeApathy ,

    Honestly, Bluetooth sucks. I'm incredibly sick and tired of everything trying to use ancient technology for far more than it was ever intended. Besides, it never works the way it should anyways.

    ChallengeApathy ,

    Time for them to move over to Matrix.

    ChallengeApathy ,

    Clock You. The You suite has some great apps, I use almost all of them. Not only are they libre but they have attractive and very useful GUIs.

    ChallengeApathy ,

    Based. This is something I may do down the road since it may be the only way I can get my friends and family on Signal.

    ChallengeApathy ,

    I'm happy to stick with Brave. Far superior to DDG in literally every way.

    ChallengeApathy ,

    They have a search engine...

    ChallengeApathy ,

    Yeah, and? It's one of the best options for privacy. I'm referring to their search engine though.

    ChallengeApathy ,

    Better privacy, better UI not cluttered by excessive and unnecessary options, and a fantastic feature set... but I'm referring to their search engine in this context.

    ChallengeApathy ,

    I'm sorry that not everyone from my instance believes that Firefox is the only option 🙄

    ChallengeApathy ,

    The AI is intrinsically linked to the search engine if I'm not mistaken. Brave has AI built into their search engine and their browser, but it's very well done and pro-privacy.

    ChallengeApathy ,

    Because it objectively IS. It passes privacy tests in so many areas where others fail and I'm not just talking about those privacy test sites, I'm talking tests we can run ourselves. It's fine if you don't like Brave but don't let your emotions get in the way of the fact that it is, by default, the best option for privacy out of the box. Sure, you CAN harden Firefox or use Librewolf but even those don't always succeed in passing those tests like Brave does.

    ChallengeApathy ,

    It IS. It's a fact. You can run the tests yourself.

    ChallengeApathy ,

    I know Futo has an app called Circles which is designed for things like that and staying in contact with family without social media. It's supposedly E2EE and controlled by the person hosting the circle.

    I haven't used it yet for myself so I can't say whether it's good or not, but it sounds like something you might be interested in.

    Congrats on the newborn, by the way!

    ChallengeApathy ,

    It wouldn't surprise me but it's not like Pixelfed competes with IG in the narcissistic-influencers-posting-every-second way. Pixelfed is basically a federated version of what IG was, before influencers started posting their whole lives there.

    ChallengeApathy ,

    I'm not an expert but the way I see it is this: if you're tech-savvy and use common sense, they're not necessary, as a 2FA app with TOTP along with random, strong passwords should be enough. I still use both for most things, only securing more sensitive stuff with a physical key.

    However, having one definitely can't hurt, and if you're passionate about cybersec, it'd be kinda strange if you didn't have one.

    ChallengeApathy ,

    Don't go the fingerprint route if you care about your rights in the US. Biometrics, for some bizarre reason, don't fall under the fourth amendment.

    ChallengeApathy ,

    Not at all, it's one of the best resources for people interested in privacy and digital freedom.

    ChallengeApathy ,

    First off, if you're concerned about ISPs selling your data (couldn't exactly tell if that's a part of your concern), switching to private DNS provider and enabling DNS over HTTPS/TLS can significantly cut down on that, since most of what ISPs sell comes from DNS requests. That being said, they can still tell what sites you visit if you don't use a VPN/Tor, but they're less likely to care unless you're doing something illegal.

    In terms of your obfuscation plan, I'm not sure that'd do much; if anything, it'd make you stand out more. A bunch of random traffic, even tweaked to fit your browsing habits, probably would look suspicious on their end and it wouldn't actually hide or disguise anything.

    So ideally, you're just going to want to figure something out to set up some sort of VPN at some point. Switching DNS providers might be a bit of help in reducing sale of your traffic data, however. My recommendation is Quad9 but any privacy-friendly provider is fine.

    ChallengeApathy ,

    I'm skeptical of any supposed privacy advocate that refuses to recommend Brave. It's no Tor Browser but in my own experience and tests, it consistently wins over just about everything else outside of Tor Browser.

    Anyways, it recently added a forgetful browsing feature. What I do is have that toggled on by default, turning it off on individual sites that I want to keep logged in. Ultimately, this is better for privacy AND security, since it'd limit the damage of a token stealer.

    Another option might be Librewolf if you absolutely can't handle a Chromium-based browser (I also take issue with that approach but that's a different topic for a different day). Firefox but more private than default. Waterfox is also an okay option nowadays, since they're now independent from the hostile takeover that they dealt with for a while.

    Overall, for my own setup, I use Brave for ~70% of my browsing, with the remaining 30% split between hardened Firefox (with BetterFox) at 20%, Librewolf at 8% and Mullvad at 2%. I only use Tor Browser once in a blue moon for sensitive subjects that could financially impact me, like medical sites, insurance research and so forth.

    ChallengeApathy ,

    No, I'm talking about running it through test sites. No other browser outside of the Tor Browser is able to pass fingerprinting tests as consistently as Brave, in my experience.

    ChallengeApathy ,

    I'd argue that randomization is more effective than making everyone look the same. It's less noticeable when the fingerprint is randomized.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • incremental_games
  • meta
  • All magazines
    •