Active combat against surveillance instead of passive defense
Examples of passive defenses against surveillance:
- Privacy Badger
- uBlock Origin
- Using open source Linux rather than Microsoft Windows
- etc.
But why not actively combat surveillance instead of passively defending against it? Examples of active combat:
We must poison the data of those who are violating our privacy. Let us waste their time, increase their data storage costs, and waste their processing power. Let them drown in an ocean of data. Let them search for tiny needles in huge haystacks, with no way to distinguish between needles and hay.
Some ideas:
- Sending fake data to Google Analytics ([How does Google Analytics prevent fake data attacks against an entity's traffic?](https://security.stackexchange.com/quest
Source for your claim? Otherwise it’s fud
I am not making any definite claims. I am just wondering whether or not the reasoning in the question makes sense. If it does not, please tell me why the reasoning is wrong. Thank you.
Disabling hardware acceleration in Firefox for security reasons
I am using Firefox ESR on Linux. Does it make any sense to disable hardware acceleration for security reasons?
Whereas Firefox is open source, many hardware drivers, and most computer hardware are not. Enabling hardware acceleration in Firefox means using these non-open-source components, which could be a security risk. My impression is that bugs in drivers and hardware are able to cause far more damage than ones in userland software. Does this reasoning make sense?
What's to stop the installer on Linux from configuring the service such that the service always runs on boot? e.g. systemctl enable malware.service
.
If you did not enable end-to-end encryption for your WhatsApp backups on Google Drive, the US government could possibly compel Google to hand over your encrypted (but not end-to-end encrypted) backup, and compel Meta to hand over the decryption keys for the backup.
Details about how WhatsApp backup works: The Workings of WhatsApp’s Backups (and Why You Should Enable End-to-End Encrypted Backups).
Thank you for the feedback. I have added additional information to the original post. I hope that the additional information answers all your questions.
Should I always clear the web browser cache?
I am using Mozilla Firefox as my web browser. I have configured it to clear cookies, active logins, form & search history, and offline website data when I close Firefox. Should I also configure it to clear the cache? What are the privacy implications if I don't clear the cache?
EDIT: additional information:
- My goal is to reduce fingerprinting and tracking by websites.
- I use Mozilla Firefox on my personal laptop that almost never leaves my residence. The laptop has full disk encryption. I am the only user of the laptop.
- I don’t erase my web browser history. I want to keep browser history for my future reference.
Time to use Framatalk instead of the main instance. Framatalk is an instance of Jitsi Meet.
Why would I use this ChatGPT thing when I can self-host Llama 2 or Falcon, which is free and open source?
Are there any target-maturity bond ETFs for UK Gilts?
I am looking for a target-maturity bond ETF for UK Gilts but I couldn't find any by using an internet search engine. I would like something similar to iShares iBonds Dec 2033 Term Treasury ETF but for UK Gilts instead of US treasury bonds. Does such an ETF exist? If not, what are the practical alternatives for getting UK government bond exposure that have the following characteristics:
- Easy for foreigners to purchase
- Easy to liquidate
- Has a fixed maturity date
- Has a low minimum investment requirement (e.g. less than 1000 GBP).
WiFi and mobile data are activated all the time.
In our case, there are several problems with activating both WiFi and mobile data all the time:
- At home, if the WiFi is out of range, switched off, or temporarily out of service, Android would start to consume mobile data. This is highly relevant because, at her home, WiFi is unavailable from night time till early morning to enforce self-discipline.
- Outside home, there is no need for WiFi. Why should it be switched on when it will never be used outside home? It would just be a battery drain.
App for automatically switching on/off mobile data and Wi-Fi based on location
My mother uses a prepaid phone plan where mobile data usage is charged by the megabyte. It is currently not cost-effective to switch to a monthly fixed-cost subscription plan.
- When she is at home, she should:
- Switch off mobile data.
- Switch on WiFi (because her home WiFi has a fixed monthly cost).
- When she is outside home, she should:
- Switch on mobile data (so that others can contact her using messaging apps such as Signal and WhatsApp).
- Switch off WiFi (to conserve battery).
The problem: she often forgets to do the above. Sometimes she leaves home without switching on mobile data. Sometimes she accidentally uses lots of mobile data when at home.
Is there an app that can automatically switch on/off mobile data and WiFi based on the phone’s location? Location should be detected based on all the following data: latitude/longitude coordinates (if location is enabled on phone), WiFi networks in range (if WiFi is enabled on phone), and cell tower signals (if ai
Is the Internet Archive's controlled digital lending (CDL) going to be shut down?
I have been reading about Hachette v. Internet Archive, but as a layperson with little knowledge about legal matters, I was not able to completely understand the current situation.
Do the court cases mean that the Internet Archive is about to be forced to shut down its e-book lending system? If so, would such a shut down affect US users only, or would it be worldwide?
Using git it’s probably the most easy and lightweight method to VC plain text ...
Really? I am currently using RCS for my simpler version control needs, and Git for larger and collaborative projects.
App for version control of text files
Are there any open source apps that can version control text files in Android? I don't necessarily need something with lots of features like Git. Even something similar to RCS would be sufficient for me.
Are there any standard source-available licenses?
For open source software, I can easily use a widely-used open source license (e.g. MIT, Apache, GPLv3, MPLv2, etc.). However, source-available licenses are less easy to find.
Are there any source-available licenses that I can readily copy to apply to my software? I am hesitant to copy the source-available licenses listed on Wikipedia because license texts are copyrighted by default and should not be copied without permission from the author of the license text.
Specifically, I am looking for a source-available license that has conditions similar to the GitLab Enterprise Edition (EE) license that I can use for my software.
How to prevent keyboard and mouse fingerprinting in web browsers
If websites are able to track their users' typing behavior and mouse movements, then the websites may be able to use that data to fingerprint, track, and possibly identify their users. Is this a real privacy risk? If so, what are the methods to counter keyboard and mouse fingerprinting by websites? Note that I do not want to disable JavaScript.
Behold the Rise of the Cybermen! Elon Musk is the John Lumic of our world. Humanity will be upgraded! https://piped.video/watch?v=TQs3gVobcfg
WhatsApp Web vs WhatsApp Android privacy
Does user privacy when using WhatsApp Web (https://web.whatsapp.com
) differ substantially from using WhatsApp on Android? WhatsApp on Android has end-to-end encryption and (optional) encrypted backups. If I use WhatsApp Web, will Meta be able to see the contents of my WhatsApp messages?
If you are unable to install a custom ROM on your Samsung smartphone, the next best alternative is probably to use https://github.com/0x192/universal-android-debloater to deactivate as much Google and Samsung spyware as possible.
If and when Signal is packaged for F-Droid, how is the British government going to stop people in the UK from using Signal?
Network cable: CM fire rating vs Euroclass Eca
I'm buying a Cat 6 cable. I have two available choices. One has fire rating "CM", and the other has Euroclass rating "Eca". Which one is more fire resistant? I was not able to find an equivalence table. Is "CM" comparable to "Eca"?
There is Plexus which does this
Thank you. That is exactly the website that I was looking for.
Website for checking if app will work without Google Play Services
Is there some kind of website that has a database of whether or not an app would require Google Play Services to function? I remember using just such a website a few weeks ago, but I don't remember its name. It has a search box where one enters the app name and it will tell you whether or not that app relies on Google Play Services.
No, FlorisBoard does not support Chinese input. Source: https://github.com/florisboard/florisboard/issues/149
Chinese keyboard for Android?
Is there any open source and privacy-respecting Android keyboard for Chinese input? I want to avoid proprietary keyboards such as Gboard and Samsung Keyboard. Unfortunately, the open source Android keyboards that I found only support alphabetic input:
For Chinese input I would like pinyin input for both traditional characters and simplified characters. Handwriting input would be nice to have but it is not essential.
Jami seems to have problems with message delivery. I was not able to send a message between my two Android phones. I have tried several times. Is anyone experiencing the same problem?
EDIT: here is a similar complaint: https://old.reddit.com/r/jami/comments/101cq00/why_is_jami_still_not_working/
Linux phones
Will we be able to use messaging apps such as WhatsApp and Signal on Linux phones?
Can uBlock Origin do everything that NoScript does?
I have installed both uBlock Origin and NoScript in Firefox. Does it make sense to use both at the same time? I was wondering whether or not uBlock Origin is able to do everything that NoScript does. If not, what does NoScript have that uBlock Origin does not?
Looking forward to greater support for "driverless printing" in more Linux distributions, especially via IPP-over-USB. This would allow most consumer-level printers to be used directly from Linux without needing proprietary drivers and/or explicit Linux support from the printer vendor. This solves one of the common pain points when using desktop Linux at home.
Does this require a static IP address? Can it be easily used when all nodes are behind a NAT with dynamic IP addresses?
it’s kinda lacking in features and unideal for the same reason I don’t like safari
I hope they implement support for WebExtensions soon. That would probably give GNOME Web a huge boost in features.
Why is Ecosia on the list?
Quoting from tosdr.org:
- This service can view your browser history
- This service may collect, use, and share location data
- This service allows tracking via third-party cookies for purposes including targeted advertising
- This service tracks which web page referred you to it
- Your personal data is given to third parties
Doesn't look privacy-respecting.
Another alternative: GNOME Web (a.k.a. Epiphany), which is based on the WebKit browser engine.