I am trying to re-adjust how much effort I want to put into privacy concerns. Too much stuff I’m using isn’t working properly or using a lot of my mental resources that I need elsewhere.
For (a bad) example: I recently performed a half-switch from my self-hosted Nextcloud instance to ProtonDrive, in the hope that it would spare me the stress to maintain my private Nextcloud. Unfortunately, it doesn’t, as basic functionality like cross-device-sync is not possible (there isn’t even a client app for Linux, as of yet).
This brings me to the question: have you found any services/apps/stuff that significantly eases your life while still being privacy friendly? I know, this is a broad question, but I think this is for the best as this thread then maybe even has use for other users.
Apple
It seems to get derided a lot here, but none of your data is harvested and tied to you or sold. It’s aggregated and anonymised if it’s sent off device, and I stopped using Proton drive when you could finally encrypt iCloud storage. I even use their email as default now since it’s not reading my messages and selling my info like outlook started doing.
I was considering to switch to apple for this reason, but I’ve read that in terms of privacy, there’s no significant difference between a Pixel Android with Stock OS and an iPhone. This made me hesitant. I really just want things to go smooth and hasslefree without being spied on and coerced… Do you, by chance, have any reading material on the privacy of apple services I could read up on?
Apple really doesn’t advertise. The data never leaves apple. Everyone else sells your information.
“Apple… is the most privacy-conscious firm out there. Apple only stores the information that is necessary to maintain users’ accounts. This is because their website is not… reliant on advertising revenue. “
Source: https://9to5mac.com/2022/08/25/apple-collect-less-data-than-other-companies/
KitchenOwl, an Android app to organize recipes, ingredients and shopping lists, it’s FOSS and available on f-droid.
Freetube on PC has really changed it up for me. Vencord over Discord is another I’ve not seen mentioned yet, basically strips out the telemetry and sandboxes the application.
Pair Libre redirect with Freetube and that’s been my worry free YouTube experience during all of this anti adblocker business.
Oh yeah totally forgot to mention that! An absolute must if you have freetube indeed 🙌
Revanced Manager
If I am being completely honest, there are very few. Convenience is consistently the #1 trade-off when I make privacy-based decisions about which applications and services to use.
An exception I can think of are ad and tracker blockers like uBlock Origin, iodé, etc - I cannot imagine life without them Any time I borrow the phone or computer of someone who doesn’t have an equivalent of these installed I am just blown away by how many ads they are confronted with while performing even the simplest tasks. And not just harmless ones, but ads that directly waste their time. I genuinely don’t understand how people can live like that unless they just don’t know there is an alternative.
I guess another one I can think of is the Aurora Store. The UI is so much cleaner than the Google Play Store’s, important settings and features aren’t hidden and it has some additional features like Exodus Report that I think are genuinely useful. It’s so superior as an application that I actually prefer using it even on devices where the Play Store is installed and working.
Niether are open source, but the full versions of AdGuard for each platform, Adguard Public DNS and DuckDuckGo.
Pi-hole and Simplewall, everything except my phone is running Ethernet
NextDNS - I use it on my router and all mobile devices.
Is NextDNS really a good privacy tool? I use it myself because it’s convenient, but I always assumed that they would collect data about me since it’s a free service
I pay for mine, not sure how it differs from the free version but you can turn logging off, or if you have logging on you can specific how long to store logs and what jurisdiction to keep them in (I keep mine for a few months in Switzerland). You of course have to place some trust in NextDNS the company that they are actually doing what they claim to do as far as respecting user privacy but I trust them more than Google and Cloudflare, which is what I was using previously.
You can turn off logging in settings
Ntfy - no more google reading notifications
Jellyfin - media served without questionable Plex account
Arch - on so many levels allows me a private computing experience
Posteo - simple but efficient email service
Resilio sync - cloudless syncingNTFY looks intriguing.
If I’m reading the description properly, it uses an HTTP server as the middleman for the notifications?
Pretty neat idea.
It’s based on unifiedpush standard https://unifiedpush.org/. So a central notification middleman like google firebase for all your apps (that support it). There’s messengers like mercurygram, fluffychat, Molly that support it and you can also send notifications yourself via a simple curl command.
Wow, I really appreciate how they use animations to show how it works (and I generally despise any animation on a home page).
That’s how it should be done.
Also, what they’ve done is impressive. Smart. I had no idea this existed, though I’ve seen another open solution to Unified Messaging (just can’t recall what). This is really promising.
https://rethinkdns.com/ the android app is also an excellent firewall with logging. I use a custom config on my router. I can’t say enough good things about this.
https://simplex.chat/ Android/ iOS/ macOS/ Linux/ Windows getting people to switch is a pita though.
I look forward to SimpleX development - it’s already come a long way.
It’s unfortunately heavy on ram for me.
Two I use a lot daily are KeePass 2 in various versions, computer as well as tablet. I used KeePass “original” 1 for years, but moved to 2/XC/DX. Occasionally also used for storing notes and not just passwords.
My notetaker, all hands down, though. Joplin, with encryption activated, the file stored for syncing on my privacy oriented community’s encrypted NextCloud. I am an avid notetaker, both digital and analogue, and Joplin really fits my needs.
OK, third, honourable mention: Veracrypt
NewPipe is a killer app I would say, with nearly Youtube Red level functionality in something that’s free and OSS. A bit afield from privacy, but you do get to access youtube stuff without logging in.
From what I understand, NewPipe has been abandoned and someone else forked it to Tubular which includes SponsorBlock.
Newpipe is definitely not abandoned. :) But always nice to learn of an alternative
From what I understand, NewPipe has been abandoned…
That’s completely incorrect. From NewPipe’s Github:
We are planning to rewrite large chunks of the codebase, to bring about a new, modern and stable NewPipe. Please do not open pull requests for new features now, only bugfix PRs will be accepted.
…and someone else forked it to Tubular which includes SponsorBlock.
polymorphicshade “stopped” development on their fork of NewPipe, which included SponsorBlock (because NewPipe did not want to include it) and started working on their rewrite of their own fork and/or NewPipe, which is now Tubular.
Very good to know. After following your Github link, I found my way to the blog post that it looks like you are quoting:
https://newpipe.net/blog/pinned/announcement/State-of-the-Pipe-2023/
I’ve found Syncthing a better way to handle file sync than NextCloud. Much more set and forget and not a single point of failure. It also syncs a notes directory in flat .md format, so anything can edit them, in a simple directory hierarchy.
Syncthing is brilliant, although for me it has had a heck of a learning curve to keep straight. Might just be me though.
It does have a bit of a learning curve, you have to think about what you’re trying to do.
SyncThing is great for encrypted, serverless, bidirectional sync, preferably with small folders… But unfortunately really eats up a lot of battery.
I’m still waiting for some company to figure out E2EE syncing with the quality of Google Drive (mobile and desktop integration built in). Proton is close, but they fumble reliable integration.
I’ll have to defer to your experience; I’ve set it up on a PC, a NAS and a phone. The phone was connected to an ethernet-equipped dock at the time of setup so the sync was quick and painless.
I don’t see a hit on battery life on a Fairphone 4 running /e/OS after initial sync has completed.
I’ve used it for years, across multiple devices, syncing 100gb. My average daily sync is probably 20gb.
It’s been surprisingly good on battery - currently using 0.9% average. It’s never been a significant battery hog for me.
Apps like Foldersync are much heavier on battery for me. Resilio is terrible for me (and it’s also a memory hog because I have some large folders).
Maybe you have a stuck file that’s causing it to hang.
Also, check out Syncthing-Fork, it has finer controls over individual sync jobs. For example, I let photos sync over any connection and on battery, but my media (music/video) only on wifi and while charging.
Between all these replies, I have to say I’m a little jealous. And I might have to look into making a SyncThing dedicated “server” on my home network using YunoHost, a thing that (IIRC) wouldn’t require exposing to the Internet because SyncThing will also happily run across volunteer-run relays.
By any chance, have you had any success with a unidirectional sync between your phone and your computer, where it’s possible to delete old photos on your phone to save space without worrying about them being deleted on the computer side? (This issue really only crops up for me when I’m already far away from a computer, BTW.)
My biggest issue with Syncthing is that it becomes unusable for large amounts of data due to the lack of selective sync (ignore lists are cumbersome as hell) and lack of virtual file system support. I have about 8TB of data on my NAS that I want to access remotely and it is not feasible to have duplicate copies of that much data on all of my devices.
You could simply sync select subdirectories.
Mobile Fennec (or pick your poison for any Firefox fork) has made browsing overall much better. Between ad blocking, Enhanced Tracking Protection and a paywall-bypassing extension, browsing is overall less tedious than a comparable Chromelike.
Which paywall-bypassing addon would you recommend?
Bypass Paywalls Clean is the one I use.
Mobile Fennec (or pick your poison for any Firefox fork)…
I can’t get behind Android Firefox/Gecko-based due to their lack of security:
Avoid Gecko-based browsers like Firefox as they’re currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn’t have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android. This is despite the fact that Chromium semantic sandbox layer on Android is implemented via the OS isolatedProcess feature, which is a very easy to use boolean property for app service processes to provide strong isolation with only the ability to communicate with the app running them via the standard service API. Even in the desktop version, Firefox’s sandbox is still substantially weaker (especially on Linux) and lacks full support for isolating sites from each other rather than only containing content as a whole. The sandbox has been gradually improving on the desktop but it isn’t happening for their Android browser yet.
I’ve used Firefox mobile for a while now and I’ve had zero issues. The attack surface may be “much more,” but that doesn’t mean that it’s completely open to hackers.
Plus let’s be real: Gecko-based browsers are, what, 1% of the browser market? Guess which browser is the most targeted by malicious actors? Not the one having 1% of the market, that’s for sure.
Gecko-based browsers are, what, 1% of the browser market?
Last I checked, Firefox was close to 3%, but you right, still not a large number.
Guess which browser is the most targeted by malicious actors? Not the one having 1% of the market, that’s for sure.
It doesn’t have to attract the most attackers, especially if it is notoriously weak. You shouldn’t choose software that is easier to exploit simply because it’s more obscure. Do you also choose weaker encryption algorithms because no one uses them? I sure hope not.
And your comment would probably ring a little more true, except we just had the xz debacle, and guess how much Linux has of a market share? Probably close to Firefox’s, both in the single digits.
Personally, I’m okay with shouldering the security risk considering the internet-wide toxicity of Chrome and forks.
Lynx would be more secure than either.
Removed by mod
As a paranoid I’ve started writing my own note taking app, and I’m very happy knowing what it doesn’t do.
