This is original content. AI was not used anywhere except for the bottom right image, simply because I could not find one similar enough to what I needed. This took around 6 hours to make.
Transcription (for the visually impaired)
(I tried my best)
The background is an iceberg with 6 levels, denoting 6 different levels of privacy.
The tip of the iceberg is titled “The Brainwashed” with a quote beside it that says “I have nothing to hide”. The logos depicted in this section are:
- Apple
- TikTok
- PayPal
- Google Chrome
- CashApp
- Samsung
- Steam
- Microsoft Windows
- Ring (Security Camera)
- YouTube
- Amazon
- Discord
- Gmail
- ChatGPT
The surface section of the iceberg is titled “As seen on TV” with a quote beside it that says “This video is sponsored by…”. The logos depicted in this section are:
An underwater section of the iceberg is titled “The Beginner” with a quote beside it that says “I don’t like hackers and spying”. The logos depicted in this section are:
- Telegram
- Authy
- Brave Browser
- Privacy.com (Virtual Cards)
- DuckDuckGo
- iMessage
- Proton Mail
- AdBlock (Browser Extension)
A lower section of the iceberg is titled “The Privacy Enthusiast” with a quote beside it that says “I have nothing I want to show”. The logos depicted in this section are:
An even lower section of the iceberg is titled “The Privacy Activist” with a quote beside it that says “Privacy is a human right”. The logos depicted in this section are:
- Monero
- GrapheneOS
- Vanadium (Web Browser)
- KeePassDX
- SimpleX Chat
- Accrescent
- SearXNG
- Aegis Authenticator
- OpenWrt
- Mullvad VPN
- An illustration of physical cash
The lowest portion of the iceberg is titled “The Ghost”. There is a quote beside it that has been intentionally redacted. The images depicted in this section are:
- A cancel sign over a mobile phone, symbolizing “no electronics”
- An illustration of a log cabin, symbolizing “living in a log cabin in the woods”
- A picture of gold bars, symbolizing “paying only in gold”
- A picture of a death certificate, symbolizing “faking your own death”
- An AI generated picture of a person wearing a black hoodie, a baseball cap, a face mask, and reflective sunglasses, symbolizing “hiding ones identity in public”
End of transcription.
Because of Lemmy: proton, GrapheneOS, pi hole, open wrt, nextcloud
Any Chromium-based browser in anything but the top-most panel is a non-starter with their abandonment of Manifest v2. Manifest v3 seriously cripples any Chromium-based browser’s ability to be secure, as extensions like uBlock Origin are no longer compatible by design.
Google has it’s ad business to protect, after all.
Not all Chromium-based browsers are bad. Browsers such as Vanadium or Trivalent are very secure, and discourage the use of extensions altogether due to privacy and security risks. These browsers come with ad blocking preinstalled.
I am pretty sure that Vanadium does not have an adblocker in it.
Not outright stated. Closest I could tell on a skim of their site is third party blocked by default
Vanadium is purely for GrapheneOS, and Trivalent is purely for Linux. Both of which also appear (looking at this on mobile) to require compiling by the user.
Soooo… an appropriate pair of tools for, what, 0.5% of all computer users in aggregate?
Really appropriate suggestions, there. /s
Show me something Windows based that can be as secure as LibreWolf along with the appropriate extensions for blocking ads, fingerprinting, CDNs, and other spyware-like content.
Because Chromium in any variation, it ain’t.
Both of which also appear (looking at this on mobile) to require compiling by the user.
Vanadium comes preinstalled on GrapheneOS, and Trivalent comes preinstalled on Trivalent. Compatible Linux distros can add the Trivalent repo to install it without building.
Show me something Windows based that can be as secure as LibreWolf along with the appropriate extensions for blocking ads, fingerprinting, CDNs, and other spyware-like content.
LibreWolf is far from secure, as it is based on Firefox and so comes with the same security issues. If you meant to say privacy and not security, the reason nobody makes high threat model browsers for Windows is because Windows itself is not private and it would be a losing battle.
I don’t like hackers and spying
brave
lol. lmao, even.
TIL I’m a privacy activist–who can help me get to the ghost mode?
(Do I even want to get there or is that limited to journalists who have entire states trying to unalive them?)Do I even want to get there
Only you can answer that.
or is that limited to journalists who have entire states trying to unalive them?
Pretty much, but if you want to give up all technology, work for yourself, and fake your death, then more power to you!
Seems like faking your death would cause more privacy problems than it solves. Why not just “stay alive” with a completely innocuous identity? Then adopt some new identity which cannot be traced back to the original?
If you’re alive, you are asked for documents such as property records, taxes, etc. and if you refuse then bad things happen. If you fake your death, no more questions are asked and you can take on fake identities. In essence, faking your death takes your identity out of “the system”
limited to journalists who have entire states trying to unalive them. Don’t live your life in fear
There is this steadily growing activist group that you could join up with.
You should stage your death, like they tried to do on prison break and then move to Mexico or Columbia. Send me a DM for more information /J
Easier than you think it is. Hard to keep at it. All you need to do is stop using a phone or computers. Death cert is only needed when you’ve been compromised and people are out to get you. Gold isnt really usable unless you stumble onto a secret underground society where all trade is done in gold. Realistically, you’d sooner be trading goods (or services) for other goods (or services).
This level technically shuns technology and that brings its own challenges. Its like saying you cant have privacy with technology. I dont necessarily agree with this statement so I’d say don’t go to this level.
I am precisely in the middle of this chart.
In regards to addy, are my messages private in relation to the service or does it only serve to keep my anonymity to other threat actors?
Sadly, using small niche VPNs that might be more trusted makes you stand out more. It’s pretty unusual to have a Mullvad user on your server
They don’t rotate IPs as well so a lot of them are blacklisted… and don’t offer port forwarding anymore
I wish they could change IPs reguarly and add port forwarding back :-( - I would happily pay for their service again
Because 5€ for their current service is overpriced
Sadly, using small niche VPNs that might be more trusted makes you stand out more.
This probably doesn’t matter does it? Because being spotted as a mulvad, airvpn, etc user doesn’t make you more of a target for anything.
It just means that if they try to trace your connection back to you, they won’t find anything out, because you have a trusted zero-logging vpn.
Only think I could see is it could potentially be easier to track usage through the ip and assume it’s one person, but idk you could do that with anything if you look at the request timings, etc. It’s still just guesses.
Am i missing something?
It’s pretty unusual to have a Mullvad user on your server
Probably not on the usual sites people visit (youtube, etc, the big sites 99% of ppl go to exclusively), but I can see your point for any smaller site.
Because 5€ for their current service is overpriced
Airvpn provide a discount for each extra month you sign up for in bulk which is nice. It’s a great service in my opinion.
Sadly, using small niche VPNs that might be more trusted makes you stand out more.
This probably doesn’t matter does it? Because being spotted as a mulvad, airvpn, etc user doesn’t make you more of a target for anything.
I’m just taking a stab at this since I’m not entirely certain, but I would think that this would weaken you against fingerprinting since it depends on having many different semi-unique characteristics as you browse?
This ^
If you have 2 accounts on a website for example, you can be easily exposed if using a niche VPN. If on a more popular VPN, it’s not as likely as some other users probably use those as well
Realistically, on bigger websites it doesn’t matter as much - it would really depend on your config. You’re bound to be fingerprinted at some point anyways. It’s just too hard and too annoying to blend in.
At this point I believe we should just aim at randomizing our fingerprint every few seconds by sending BS rather than aiming to all have the same one
I don’t get how that’s relevant to what I said. That’s still something else
Your last sentence?
Check out IVPN, I find the service very similar but they also offer reverse split tunneling (choosing what programs go through the VPN).
Mullvad has that now. It usually works.
I can’t find the announcement and this issue is still open, can you share your source? https://github.com/mullvad/mullvadvpn-app/issues/2808
That’s not port forwarding though 🤔 but still a nice thing to have I guess
What do you use instead of Mullvad now?
https://airvpn.org/ is a great option that is still privacy friendly and allows port forwarding. Still niche if you care about that, so may not be for you.
Interesting option as well, but some problems :
- Not audited iirc
- Port forwarding leads to identification of the individual account, and facts about this aren’t really explained. They admitted than in case they receive a legal order against someone who has port forwarding, they must give the identity because they can get it.
- Sure, changing ports frequently is a way around this but meh, I’d like to know what they will provide if that happens
I’ll add that their servers are a bit slow (I have a gigabit connection) and they don’t have a server in my country
Going to get hate for it (justified), but NordVPN
Reasons: low price, and someone I know already had an account.
Could switch but most VPNs don’t have what I’m looking for (port forwarding), as well as IPs that often change and a solid userbase to mask traffic in smaller websites
Tested mullvad a few years ago and had some small connection problems, but the main issue was that it wasn’t usable in many websites due to their IPs being really abused (+ blocked from streaming services).
I don’t get why the second layer of Op iceberg is solutions having strong marketing budget. As far as I know (correct me if I’m wrong) Nord VPN has been audited by 3rd parties which confirmed its no-log policy. Also feel more anonymous when using a mainstream VPN because many users share the same IP. On the contrary if you use a VPN where only 2 users are on the same IP, seems easier to track you. Maybe I’m wrong but the hate for NordVPN does not seems justified.
The hate is mainly because they run current anti consumer techniques, such as:
- infinite fake sales (illegal is most countries)
- misleading fear mongering (VPNs don’t bring much security at all, and aren’t the only tool you need to achieve anonymity at all. Most people don’t need a VPN.) but this has some positive impacts: normies use VPNs so they become more accepted
- ultra aggressive misleading marketing: occasionally, false claims are made through sponsorships
They are also in a country where they can legally not provide any info to anyone (also in case of legal problem I believe), but it is a double edged sword, as it also means they can lie and sell our info and will never get sued over it
Such things makes it hard to trust, but the reality is they’re most likely fine to use because they already make a ton of money. They probably won’t risk to lose a business over this.
Mullvad is one of the most popular VPNs with loads of other users wtf
Compared to other options like mainstream VPNs and proton, they don’t have much servers, so, users
I’m not confident thats a valid assumption
Thank you so, so much for the transcription, appreciated!
Tried the Privacy Activist and Enthusiast section. Was not really fun and you loose connection to most of your friends and family. Now I have a balanced setup with something out of each layer. Perfect balanced, as things should be
Everyone’s personal comfort level.
Give tech classes to elderly. Explaining to them the iphone photo face recognition saw several of their eyes bug out of their head. Some loved it.
Totally agree about the self ostracization. While I agree with the sentiment you’ll cripple yourself socially.
Finding your personal comfort zone is the tech journey
Heeeey it’s me. Totally socially crippled.
I don’t even know how to maintain relationships, don’t have an interest in trying. There’s something wrong with me.
My only friend on this planet is my uncle.
I get it. Am this way to an extent. Mom for me.
Recently attempted to be social at work. Out of the 5, 1 is worth spending additional time with.
If you are comfortable with yourself and who you are, it may take a bit to meet people you actually enjoy.
If you feel like something is wrong with you therapy would not hurt. Reccomend it for everyone to get them the self care tools they need/want.
In my experience I was attempting to be social out of obligation and why it always felt like pulling teeth to do anything is because I didn’t really like the people I was with.
Wish you luck bb 🙏
I’ve done the whole therapy thing, I just do not have it in me to have friends.
I haven’t had a desire to make a friend since I was a kid.
I do get lonely. I’ll have a thought that I’d like to share and I know I drive my wife crazy.
I wouldn’t even care if I could find a way to make some money. Right now I’m a stay at home dad. That’s what my wife wanted me to do. I was making money on the stock market, not taking big risks, just making above minimum wage. Then the election happened and now that’s over.
Thank you for caring.
Being social is pretty similar to exercising. When you first try to do it after a while, it’s usually painful and not enjoyable. It isn’t until practicing and keeping at it that it will get easier and you can actually feel the benefits. Finding someone that you can actually share your hobbies with can go a long way, especially if they are able to give some sort of input as well that is beneficial to what you’re working on.
I live deep in the Appalachian mountains and I haven’t met a single person interested in the things that I am since I was a kid.
I’m so bad and hate socializing so much that I recently got the Mortal Kombat II deluxe arcade cabinet, the same dude kept joining my match every single time I played so I just stopped going online haha.
He contacted me and we talked once, and that was that.
I really like him too, I just can’t handle it. Even that tiny little bit of it.
I don’t know why I’m like that. I’m not bad at talking to people. I’ve been told I’m damn good at it. I’ve been told I’m charismatic and all that. There’s just something broken in me.
Probably comes from the abuse I suffered as a kid if I’m being honest. It was rough, and it trained me I guess.
But then again, my whole family is like me. I don’t even know 90% of them, but I can tell you that 90% of them do not have Facebook. The ones that do, they don’t ever post, they don’t ever like, nothing. It’s like it’s just who we are or something.
I have brothers who grew up in different households. Two of them never experienced any abuse as children, they were spoiled. They are just like me. They talk to no one.
So maybe it’s the environment you live on? If I lived in the Appalachian mountains I’d just relax alone to keep the peace, sounds comfy enough for me. People in the Nordics are like that too.
Vibe
I have taken my own approach; there are things from each layer that I use. Some begrudgingly but others gladly.
The problem I faced when starting this journey is it does cut out a lot of people. And it becomes isolsting. So I did reel back a bit.
It’s easy, just don’t have any friends or family! /sad panda
Totally agree with this, two steps forward one step back basically
It’s equally frustrating to talk to people who’re completely entrenched in the Enthusiast / Activist section. The utter disconnect when it comes to what’s viable for most people is annoying to deal with sometimes. Statements like “Everyone who is able to read can easily learn to use Arch Linux” or “Everyone can flash their phone” do give me headaches. Was there, did both, wouldn’t recommend to my less nerdy family.
I can totally understand where you are coming from.
I eochold the view that if you can read, you too can install GrapheneOS, or try Linux; but that doesn’t make it right for everyone. It’s a self imposed journey. I can’t expect everyone to make the same choices I do.
That is where I will educate people as to why I chose what I chose; however I will not try to force someone down the same road.
So totally understood.
Giving it a try is most of the time the first step. I tried GrapheneOS , used it until my device no longer received updates. Then Google Pixels got disappointing and iOS 14/15 got out with big privacy changes, so I switched the first time to Apple. I know, ironic , but it works for me. I remove most permissions from apps, use my own DNS block list enforced by MDM and if possible, self host my apps and services or use paid / open source ones. I am here on Lemmy instead of Reddit or Instagram…. I also tried Jollas SailfishOS v3 , it was ok, but this was back at the time very limited for social interactions, now with v5 it would have been better. Also good to know, at my place , Apple Pay is one of the most secure and private pay systems…. I hate that, this feels wrong.
i also hate the idea of giving up apple pay when testing graphene. i really hope to find a somewhat ok alternative, but from what i’ve heard it seems to be the best there is atm :(
My bank app just has its own NFC payment system, independent from Google, and that works fine.
I used to run LineageOS with a lot of my own tweaks to meet my privacy needs; however I reached a point I decided it didn’t fit my needs for security. So, I went back to GrapheneOS. Which, I am 1uite haply with. Ultimately, I dream of a fully operational Linux phone of sorts; but we aren’t there yet.
I ditched reddit, and most centralized social media. I ditched many big tech services in place of self hosting my own. And even that is mostly locked down. Very little exposed to the web. Ad blocking, as well as my own underlying upstream DNS, with a fallback that isn’t Google or Cloudflare. Services being firewalled off. Reverse proxy setup limiting access via IP:Port while also including SSL certs for local only https.
And this list goes on; it’s a constant journey. But the hard part is to still be social. Hahaha
Did you look at SailfishOS (Linux Smartphone) It supports Android App virtualization.
Cant say that I have, but will now!
Yea, being able to and actually doing so are very different. Reading is the barrier to entry for most everything. Time and energy are the missing resources, though. I am a tech enthusiast, and I struggle to find time to do all the things I want.
I get that. We all make choices to decide what we do with our time.
deleted by creator
yeah honestly i really think that you should swap to linux!
Using basic things like Graphene OS and keepass shouldn’t be considered privacy activist
Yeah Tor is just straight up unusable for most sites.
My experience is it does work with most sites. And the minority of sites where it doesn’t work are evil sites that I don’t want to visit anyway
In my experience, most sites are broken not by Tor, but rather by Javascript turned off. But I do it in my normal browser as well, and it breaks just as much, with the exception that there I whitelist a lot.
Maybe email the site admin and let them know
I usually tell them to test their site in Tor Browser on Strict mode to reproduce the issue.
It’s genuinely wild that Firefox and LibreWolf are nowhere on these
Wow this blew up. People still not getting the meme portion of this?
Is it easy to implement Openwrt?
Thanks for providing this. It is obvious you put a lot of time into this. Truly appreciated. I will have to look into these.
How did you find these yourself?
