this post was submitted on 01 Apr 2024
127 points (98.5% liked)

Privacy

32173 readers
696 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I am trying to re-adjust how much effort I want to put into privacy concerns. Too much stuff I'm using isn't working properly or using a lot of my mental resources that I need elsewhere.

For (a bad) example: I recently performed a half-switch from my self-hosted Nextcloud instance to ProtonDrive, in the hope that it would spare me the stress to maintain my private Nextcloud. Unfortunately, it doesn't, as basic functionality like cross-device-sync is not possible (there isn't even a client app for Linux, as of yet).

This brings me to the question: have you found any services/apps/stuff that significantly eases your life while still being privacy friendly? I know, this is a broad question, but I think this is for the best as this thread then maybe even has use for other users.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 52 points 8 months ago (3 children)

I’ve found Syncthing a better way to handle file sync than NextCloud. Much more set and forget and not a single point of failure. It also syncs a notes directory in flat .md format, so anything can edit them, in a simple directory hierarchy.

[–] [email protected] 19 points 8 months ago (3 children)

SyncThing is great for encrypted, serverless, bidirectional sync, preferably with small folders... But unfortunately really eats up a lot of battery.

I'm still waiting for some company to figure out E2EE syncing with the quality of Google Drive (mobile and desktop integration built in). Proton is close, but they fumble reliable integration.

[–] [email protected] 12 points 8 months ago* (last edited 8 months ago) (2 children)

I've used it for years, across multiple devices, syncing 100gb. My average daily sync is probably 20gb.

It's been surprisingly good on battery - currently using 0.9% average. It's never been a significant battery hog for me.

I currently have 28 sync jobs (folders) on my phone, ranging from a few MB to 20gb, from a few files to 1200 files. Most only sync over wifi, but my DCIM folder (one of the larger ones) is over any connection.

Apps like Foldersync are much heavier on battery for me. Resilio is terrible for me (and it's also a memory hog because I have some large folders).

Maybe you have a stuck file that's causing it to hang. May be worth pausing all but one job, see if that affects battery. Then work though them.

Also, check out Syncthing-Fork, it has finer controls over individual sync jobs. For example, I let photos sync over any connection and on battery, but my media (music/video) only on wifi and while charging.

load more comments (2 replies)
[–] [email protected] 3 points 8 months ago

I'll have to defer to your experience; I've set it up on a PC, a NAS and a phone. The phone was connected to an ethernet-equipped dock at the time of setup so the sync was quick and painless.

I don't see a hit on battery life on a Fairphone 4 running /e/OS after initial sync has completed.

load more comments (1 replies)
[–] [email protected] 6 points 8 months ago (1 children)

Syncthing is brilliant, although for me it has had a heck of a learning curve to keep straight. Might just be me though.

[–] [email protected] 4 points 8 months ago

It does have a bit of a learning curve, you have to think about what you're trying to do.

[–] Molecular0079 3 points 8 months ago (2 children)

My biggest issue with Syncthing is that it becomes unusable for large amounts of data due to the lack of selective sync (ignore lists are cumbersome as hell) and lack of virtual file system support. I have about 8TB of data on my NAS that I want to access remotely and it is not feasible to have duplicate copies of that much data on all of my devices.

[–] [email protected] 4 points 8 months ago (1 children)

You could simply sync select subdirectories.

load more comments (1 replies)
load more comments (1 replies)
[–] [email protected] 31 points 8 months ago (1 children)

NewPipe is a killer app I would say, with nearly Youtube Red level functionality in something that's free and OSS. A bit afield from privacy, but you do get to access youtube stuff without logging in.

[–] [email protected] 12 points 8 months ago (1 children)

From what I understand, NewPipe has been abandoned and someone else forked it to Tubular which includes SponsorBlock.

[–] FutileRecipe 27 points 8 months ago (1 children)

From what I understand, NewPipe has been abandoned...

That's completely incorrect. From NewPipe's Github:

We are planning to rewrite large chunks of the codebase, to bring about a new, modern and stable NewPipe. Please do not open pull requests for new features now, only bugfix PRs will be accepted.

...and someone else forked it to Tubular which includes SponsorBlock.

polymorphicshade "stopped" development on their fork of NewPipe, which included SponsorBlock (because NewPipe did not want to include it) and started working on their rewrite of their own fork and/or NewPipe, which is now Tubular.

[–] [email protected] 7 points 8 months ago* (last edited 8 months ago) (1 children)

Very good to know. After following your Github link, I found my way to the blog post that it looks like you are quoting:

https://newpipe.net/blog/pinned/announcement/State-of-the-Pipe-2023/

load more comments (1 replies)
[–] [email protected] 27 points 8 months ago (1 children)

Bitwarden, Aegis, Syncthing are probably the most impactful

[–] HootinNHollerin 3 points 8 months ago* (last edited 8 months ago)

When I search aegis there’s so many different results, which one are you referring to?

Edit: likely the 2FA that’s just for android

[–] [email protected] 23 points 8 months ago* (last edited 8 months ago) (1 children)

Ntfy - no more google reading notifications
Jellyfin - media served without questionable Plex account
Arch - on so many levels allows me a private computing experience
Posteo - simple but efficient email service
Resilio sync - cloudless syncing

[–] [email protected] 10 points 8 months ago* (last edited 8 months ago) (1 children)

NTFY looks intriguing.

If I'm reading the description properly, it uses an HTTP server as the middleman for the notifications?

Pretty ~~neat~~ nifty idea. (Yea, had to come back and edit because I missed a great opportunity).

[–] [email protected] 5 points 8 months ago (1 children)

It's based on unifiedpush standard https://unifiedpush.org/. So a central notification middleman like google firebase for all your apps (that support it). There's messengers like mercurygram, fluffychat, Molly that support it and you can also send notifications yourself via a simple curl command.

[–] [email protected] 4 points 8 months ago* (last edited 8 months ago)

Wow, I really appreciate how they use animations to show how it works (and I generally despise any animation on a home page).

That's how it should be done.

Also, what they've done is impressive. Smart. I had no idea this existed, though I've seen another open solution to Unified Messaging (just can't recall what). This is really promising.

[–] [email protected] 20 points 8 months ago

The most impactful are probably browser (Firefox), adblocker (uBlock Origin), DNS over https (Mullvad), and password manager (Bitwarden), because these are used every single day.

[–] [email protected] 15 points 8 months ago (1 children)

https://rethinkdns.com/ the android app is also an excellent firewall with logging. I use a custom config on my router. I can't say enough good things about this.

https://simplex.chat/ Android/ iOS/ macOS/ Linux/ Windows getting people to switch is a pita though.

[–] [email protected] 7 points 8 months ago

I look forward to SimpleX development - it's already come a long way.

It's unfortunately heavy on ram for me.

[–] [email protected] 14 points 8 months ago

Bitwarden, PiHole, Proton Pass/VPN/Drive, BlueWallet to name a few

[–] ultranaut 12 points 8 months ago (1 children)

NextDNS - I use it on my router and all mobile devices.

[–] [email protected] 3 points 8 months ago (2 children)

Is NextDNS really a good privacy tool? I use it myself because it's convenient, but I always assumed that they would collect data about me since it's a free service

[–] ultranaut 4 points 8 months ago

I pay for mine, not sure how it differs from the free version but you can turn logging off, or if you have logging on you can specific how long to store logs and what jurisdiction to keep them in (I keep mine for a few months in Switzerland). You of course have to place some trust in NextDNS the company that they are actually doing what they claim to do as far as respecting user privacy but I trust them more than Google and Cloudflare, which is what I was using previously.

[–] [email protected] 3 points 8 months ago

You can turn off logging in settings

[–] [email protected] 11 points 8 months ago (1 children)

Freetube on PC has really changed it up for me. Vencord over Discord is another I've not seen mentioned yet, basically strips out the telemetry and sandboxes the application.

[–] Shir0a 4 points 8 months ago (1 children)

Pair Libre redirect with Freetube and that's been my worry free YouTube experience during all of this anti adblocker business.

load more comments (1 replies)
[–] [email protected] 10 points 8 months ago (7 children)

Mobile Fennec (or pick your poison for any Firefox fork) has made browsing overall much better. Between ad blocking, Enhanced Tracking Protection and a paywall-bypassing extension, browsing is overall less tedious than a comparable Chromelike.

[–] [email protected] 3 points 8 months ago (1 children)

Which paywall-bypassing addon would you recommend?

[–] [email protected] 8 points 8 months ago
load more comments (6 replies)
[–] [email protected] 9 points 8 months ago* (last edited 8 months ago)

Two I use a lot daily are KeePass 2 in various versions, computer as well as tablet. I used KeePass "original" 1 for years, but moved to 2/XC/DX. Occasionally also used for storing notes and not just passwords.

My notetaker, all hands down, though. Joplin, with encryption activated, the file stored for syncing on my privacy oriented community's encrypted NextCloud. I am an avid notetaker, both digital and analogue, and Joplin really fits my needs.

OK, third, honourable mention: Veracrypt

[–] [email protected] 8 points 8 months ago (3 children)

Nextcloud all the way. I especially love the calendar, contacts and notes integrations besides the file sync, and it's extensibility in general. Such a powerful tool.

load more comments (3 replies)
[–] [email protected] 6 points 8 months ago (3 children)

Monero. No more fighting with banks locking me out of my accounts or blocking my transactions.

[–] [email protected] 5 points 8 months ago (1 children)

i wonder why this happens. are you from somewhere where this is common or were your transactions shady? i only got my bank block one transaction for me and that was because i didn't know i had to 'activate' the ability to send money to accounts in the eu

[–] [email protected] 3 points 8 months ago* (last edited 8 months ago)

Likely its because of all the other privacy tools that I use. Banks don't like it when they can't track you. Every time they think I have a new device. They interpret "oh shit we can't track this person between sessions" as "its suspicious! Lock the account!" ...even though I use the correct username & password on the very first try. Smh

Ultimately this is the result of Machine Leaning algorithms, but terrible ones because they never learn that they false positive 100% of the time on my account.

Anyway, this is never an issue with monero. The transactions can't be blocked. It literally works every time. And I hold the keys, so I don't have to worry about loosing my money because my bank gets hacked (or someone calls them with the knowledge of my mother's maiden name and the last 4 street addresses I had, and uses this public information to reset my password and steal my money)

load more comments (2 replies)
[–] [email protected] 6 points 8 months ago (2 children)

NC isnt perfect imo but its like having an open source car or house. Its not emergency ready like no downtime, no bugs, no issues but it will do 95% uptime if configured correctly and its is insanely versatile. I cant imagine any other app being this versatile. You can check my setup if you want.

load more comments (2 replies)
[–] [email protected] 5 points 8 months ago

Pi-hole and Simplewall, everything except my phone is running Ethernet

[–] [email protected] 5 points 8 months ago
  • uBlock Origin saves time and resources
  • This is a classic one, but with Mullvad VPN I can pretend to be in any country. When combined with Tailscale, it becomes really OP. With Tailscale, I have a secure, flat network, which allows me to access all my devices from anywhere. Things like LocalSend, KDE connect or other apps that normally require all devices to be in a LAN also work over Tailscale.
  • A DNS filter doesn't just help with protecting your privacy, you can also use it to block/restrict distracting websites that you spend too much time on. NextDNS for example lets me restrict social media websites to only work on certain times of the day.
  • Private frontends like Invidious and Piped for YouTube, Redlib for Reddit, SafeTwitch for Twitch (RIP Nitter, Libreddit and Teddit)
  • LibRedirect automatically redirects sites like YouTube, Twitch, Reddit and many more to privacy frontends
  • Alternative desktop/mobile clients for YouTube and Twitch. For YouTube, FreeTube on desktop, LibreTube/Tubular on Android, Yattee with this guide on iOS, Xtra for Twitch on Android. These all block ads or any other annoyances.
  • GrapheneOS makes my life easier in many ways, but I specifically want to mention this one. Since GrapheneOS uses per-connection MAC address randomization by default, I can simply reconnect to a wifi network that wants to restrict my usage. This is so useful on trains/airplanes.
  • UnifiedPush/ntfy allows me to send notifications from my server to my phone. For example it notifies me if one of my self-hosted services goes down (through Uptime Kuma), but I can also use this for Signal notifications through the Molly client for Signal (which also improves security and adds a few other cool things).
[–] [email protected] 5 points 8 months ago

e/os on the phone was a game changer but mostly just accepting that digital privacy is not going to work if you cannot take a step back from tech and accept that the transaction is your data in exchange for access to new shiny toys you don't need that will never belong to you no matter what they cost.

[–] [email protected] 4 points 8 months ago

Niether are open source, but the full versions of AdGuard for each platform, Adguard Public DNS and DuckDuckGo.

[–] [email protected] 4 points 8 months ago

Vaultwarden, linkding, Snikket, Miniflux, and some more.

[–] folak 3 points 8 months ago

Revanced Manager

[–] Pher 2 points 8 months ago

KitchenOwl, an Android app to organize recipes, ingredients and shopping lists, it's FOSS and available on f-droid.

load more comments
view more: next ›