this post was submitted on 11 Oct 2024
338 points (98.3% liked)

Privacy

32165 readers
931 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

TL;DR: I accidentally deleted the old repository with 107 stars, and have moved the project to GitLab because GitHub requires a paid account to recover deleted repositories. I take full responsibility for this, it was an extremely stupid mistake on my part. I deeply apologize for the inconvenience. I understand if this damages the trust in the project.

I appreciate all the support you all have given towards the project, it truly means a lot to me! For those of you who bookmarked the repo, please update it to the new GitLab page which will now be actively maintained.

If you don't know what Open Source Everything is, see my original post. It's my own curated list of open source software.

Update: GitHub was able to restore the repository! Special thanks to Seve from GitHub Support for bending the rules a bit. GitLab will still be the primary place where the repository is hosted.

top 45 comments
sorted by: hot top controversial new old
[–] [email protected] 59 points 1 month ago (1 children)

Hey, your upfront, honest, no-excuses post goes a long way, in my opinion.

Shit happens. We've all screwed things up - letting everyone know immediately what's going on means we won't guess when our shortcut doesn't work, etc.

Also thanks for the effort you put into this. It's really helpful.

[–] [email protected] 12 points 1 month ago

Thank you! I tried my best to get things back on track ASAP, but GitHub's support ticket system was in an outage at the time. I'm just happy to get it resolved.

[–] [email protected] 38 points 1 month ago* (last edited 1 month ago) (1 children)

Why did you choose gitlab and not codeberg/forgejo for open source everything?

[–] [email protected] 34 points 1 month ago* (last edited 1 month ago) (2 children)

I may mirror it to Codeberg in the future. The honest answer is that I was in a panic and needed somewhere to quickly get the project back up in case GitHub never resolved itself. GitLab was a good choice since it's open source and has a lot of other big open source projects on there.

[–] gi1242 14 points 1 month ago

please mirror to codeberg. (or move completely to codeberg). they are more in line with your mission.

[–] [email protected] 11 points 1 month ago

since it’s open source

Open core with an open community edition. 100% better than fully proprietary & Microsoft.

[–] barsquid 30 points 1 month ago (1 children)

I'd like to urge you not to use GitLab for your source code due to the ridiculous numbers of severe CVEs. I don't think they have any idea how to write secure code and I don't think they care to learn.

Here is the most recent one I know of. The article mentions it's the fourth in a year. Here is the most egregious one IMO, how are they so bad at coding they would accept unverified inputs to send emails to?

[–] [email protected] 7 points 1 month ago

I will consider making changes once I get around to mirroring to other platforms. Thank you for the information, and providing links.

[–] [email protected] 14 points 1 month ago (1 children)

Nice list! Btw draw.io is not optimized for mind maping. For mind maping I use Freeplane and realy like it.

[–] [email protected] 2 points 1 month ago (1 children)

Good to know! What would you like me to call the section for draw.io, since it is still great software?

[–] [email protected] 4 points 1 month ago (1 children)

Not sure, maybe "diagramming". Btw there is a good alternative to draw.io for self-hosting called Excalidraw. Very easy to set up with docker.

[–] zzx 2 points 1 month ago

Diagramming would be a good fit imo

[–] [email protected] 12 points 1 month ago* (last edited 1 month ago) (1 children)

Any reason why Firefox is not under Browser section?

I would personally also add original KeePass, Notepad++ and ShareX (Maybe also Greenshot). These are Windows only, but great pieces of software.

[–] [email protected] 2 points 1 month ago

Firefox is less private than some forks (Librewolf, etc.) and less secure than Chromium-based browsers due to a lack of Per-Site Process Isolation. Mullvad Browser and the Tor Browser are the only two Firefox-based browsers I can recommend due to their high privacy standards.

I'm still on the fence about adding KeePass, since I don't see anything it provides over KeePassXC. Notepad++ I will definitely look into, as well as ShareX and Greenshot. Thanks so much for the suggestions!

[–] [email protected] 9 points 1 month ago* (last edited 1 month ago) (2 children)

I'd at least add Librewolf, Mull, portmaster, RethinkDNS, protonVPN and Bitmask\riseupvpn to the list. They're must have imo.

[–] [email protected] 3 points 1 month ago (1 children)

Portmaster is hellva an app. Really needs a router and phone versions IMHO

[–] [email protected] 1 points 1 month ago

Yeah I like it. I don't use the paid version for now so rethinkdns gives me all the features I use at PC (and more that portmaster lacks)

[–] [email protected] -2 points 1 month ago (2 children)

Gecko based browsers are less secure to Chromium based browsers due to a lack of Per-Site Process Isolation. Mullvad Browser and the Tor Browser are exceptions due to their high privacy standards. Brave was recently added, since the list previously had no Chromium-based browsers.

ProtonVPN will not be added due to their slow action taken towards fixing multicast packet leaks. Once they fix this, I will consider adding them back.

I will eventually add a section for firewalls and public recursive name servers, but there are complications finding those at the moment. Thank you for the suggestions!

[–] [email protected] 1 points 1 month ago

Yeah first point is true for mobile, not for desktop tho. You can add Mulch tho, it's chromium based. Thanks for 2nd point, didn't know about it.

[–] hangonasecond 1 points 1 month ago

I thought Firefox desktop did have site isolation, and I think it might be in mobile too or at least the nightly builds.

[–] [email protected] 9 points 1 month ago (1 children)
[–] [email protected] 18 points 1 month ago* (last edited 1 month ago)

GitHub may be able to restore it, we'll see if support is willing to bend the rules a bit...

Edit: They were able to. The project is still moved to GitLab permanently, though.

[–] dont 9 points 1 month ago

Finally, I can give it a star, being only on gitlab and not on github

[–] [email protected] 8 points 1 month ago (1 children)
[–] [email protected] 1 points 1 month ago

What's wrong with gitlab?

[–] [email protected] 7 points 1 month ago (1 children)

He tried to break free from the corpo world and they grabbed onto him.

[–] [email protected] 1 points 1 month ago

These parasites surely know how to make life uncomfortable at most inopportune moments...

[–] [email protected] 6 points 1 month ago (1 children)

I thought audacity was purchased by some Venture Capital bros and was being enshittified.

Or am I remembering something else? Didn't they put some sort of tracker or something in their code, causing a fork?

[–] [email protected] 12 points 1 month ago* (last edited 1 month ago) (1 children)

The fork you are thinking of is Tenacity. They explain in their history why it was made. Yes, Audacity was bought by Muse Group. There were talks of adding trackers, but nothing ever actually got added. They changed the privacy policy at one point, but reverted it after backlash. The reason I am keeping Audacity there is because I believe it is better to have quick security/feature updates from upstream (Audacity) so long as the upstream project does not have any current code issues that warrant a fork (Tenacity). If Audacity ever does add any telemetry, etc. I will absolutely change it to Tenacity.

[–] [email protected] 3 points 1 month ago

Weren’t the trackers opt-in? This doesn’t seem like a bad thing if you don’t mind giving up those user metrics for them to build something better. It is the opt-out stuff with no transparency over the kind of data collected to be worried about.

[–] [email protected] 3 points 1 month ago (1 children)

Agreed. You fucked up and now hopefully you learned from it. The reason any of us have (typical local) backups is because we lost data, whether a little or a lot. This is no different.

[–] [email protected] 2 points 1 month ago (1 children)

I did keep local backups of the project, which is how I was able to get it up and running on GitLab quickly.

[–] [email protected] 1 points 1 month ago (1 children)

I meant general computer backups, I just had trouble phrasing it correctly. As in, you and I probably didn't backup our computers properly until we lost something. That's how most of us get into backups. Similar here.

[–] [email protected] 2 points 1 month ago

Ah. I was always good about backups, but I never tested them. I used Timeshift for backups, and when I needed to recover a backup whoops! No user data. I fixed it to backup user data, and whoops! Still no user data.

Another time I used a proper backup client, but when I went to restore it it overwrote itself and so it failed and I lost the backup. Always test your backups.

[–] [email protected] 2 points 1 month ago (1 children)

Can we donate for you to get a paid account? Or is it just simply not something you want to do?

[–] [email protected] 4 points 1 month ago (1 children)

I do not accept donations, although I appreciate it! I would rather not support Microsoft/GitHub if they are going to make you pay to use features that costs them nothing.

[–] [email protected] 2 points 1 month ago* (last edited 1 month ago) (1 children)

https://sfconservancy.org/GiveUpGitHub/

Also, it's Microsoft. A more evil company has never existed.

[–] Gumus 1 points 1 month ago

I bet I could come up with some contenders... I won't though, because I hate that M$ controls the major open-source repository.

[–] finitebanjo 2 points 1 month ago

Awesome, I know some people who will hate this.

[–] yamanii 2 points 1 month ago (2 children)

I remember some panic after Audacity was sold, so it's good again?

[–] [email protected] 2 points 1 month ago

No, use Tenacity instead.

[–] [email protected] 1 points 1 month ago

I'm going to mostly copy paste a similar reply I made in this thread: A fork of Audacity was made called Tenacity. They explain in their history why it was made. Yes, Audacity was bought by Muse Group. There were talks of adding trackers, but nothing ever actually got added. They changed the privacy policy at one point, but reverted it after backlash. The reason I am keeping Audacity there is because I believe it is better to have quick security/feature updates from upstream (Audacity) so long as the upstream project does not have any current code issues that warrant a fork (Tenacity). If Audacity ever does add any telemetry, etc. I will absolutely change it to Tenacity.

I will be creating an FAQ section that answers this question in more depth.

[–] [email protected] 2 points 1 month ago

Good luck...

[–] andylicious1337 2 points 1 month ago (1 children)

it is still a great list so thanks for getting it back up 👍

but i have a few questions: is there a reason (or privacy concern) why Linux Mint isn't one of the recommended distros? and am I wrong or isn't bitward a good privacy friendly password-manager?

[–] [email protected] 2 points 1 month ago

The recommended distro section will get overhauled, as it doesn't quite meet my standards. I personally don't like Linux Mint because Cinnamon is less than what I would like it to be, but it is getting a makeover.

Bitwarden was heavily considered as a password manager, and it is a great option, but they make you pay to use certain features (hardware security keys, etc.) that KeePassXC and others offer for free. Hence, KeePassXC is a better option and Bitwarden didn't make the cut.

Good questions! Thanks for taking a look!