I imagine most of you might know at least the basics of keeping your privacy and preventing tracking, since you’re on here instead of Reddit.

But I thought it would be sure to expand on it a bit just in case after the US elections. These are easier to use solutions for people who don’t know or can’t for whatever reason run their own home server, email, etc.

  1. don’t use Google products (at least, unaltered ones). Don’t use Chrome, don’t use Search, don’t use Android*. The government will use Google to buy profiles of their enemies and possibly do even worse. Use a Fairphone with /e/is or install /e/ on a Samsung, or get a *Pixel and install GrapheneOS. /e/ does at least have an easy to use installer for certain phones (https://doc.e.foundation/easy-installer).

For email, Proton is easy to sign up for and outside of the USA. For messaging, I recommend going with something that won’t use a phone number, like encrypted XMPP (removed Matrix from recommendation due to possible encryption issues). For keeping social networks I recommend taking a look at this as well (https://circles-project.github.io/). You can also keep apps updated easily using something like Obtanium. For browser, I’d avoid Firefox too if possible and maybe go with something a bit more hardened, like Librewolf or Mullvad. Also use a VPN. Proton has one, and so does AdGuard for phones, both being easy to install and use.

I’d avoid Apple phones because they can still be tracked easily, but it’s still better than an unaltered Android phone.

  1. don’t use Windows. Use any Linux distro, but not Windows. If you absolutely must use Windows, look into using Rufus to stop the telemetry, and using a non-consumer version of Windows (massgrave.dev/windows_ltsc_links) or look into ReactOS (although in Alpha, apparently still runs many popular Windows applications).

  2. turn off any smart features your TV has, and don’t use Netflix etc. Eventually they’ll target media habits as well if they can. Although I sell a device that uses Plasma Bigscreen to legitimately run things that use DRM in Europe, I’m making a package that’ll run on an Odroid C4 that instead includes programs like Lidarr, Radarr, etc and release the package publicly so people can install it easily themselves.

  3. block trackers on the router level. Easiest way of doing this for someone not too technology inclined is to just get a Gl.inet router and activate/install the AdGuard Home plugin on it.

These are just some basic quick tips. Stay safe. You still have some months to prepare at least.

  • Of the Air (cele/celes)@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    9
    ·
    edit-2
    9 days ago

    We would not recommend Matrix, there are both many fascists on it and they didn’t fix a security vulnerability with their encryption for years that they knew about. Also if you must use Matrix don’t use fluffychat as it doesn’t have the encryption fix yet.

    Signal is a better choice for privacy as everything is encrypted by default and it has both the audits and legal testing to prove its safety and code. Something which no other messenger we have seen can honestly say.

    • Lumisal@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      7 days ago

      I removed Matrix and Fluffy Chat from the recommendations, due to the encryption issues until I can look into it.

      Just for clarification tho, Matrix and XMPP are not social media networks - it runs local on your phone, and if deleted from the phone, your account is deleted too. So how many fascists are using Matrix doesn’t matter if you’re not hanging out with fascists. You have to invite and know the people you’ll be messaging, and if you want a large group, someone has to self host the Matrix instance on your own.

      I don’t recommend Signal because it requires a phone number, and not all Voips (especially privacy voips) work with it . They’re also based in the USA and contain proprietary blobs. I think they’ve only had the protocol audited as well.

      If you really want something like Signal (that’s also not on the Play Store btw but F-droid instead) then Molly is a fork I’d recommend:

      https://molly.im/

      • Of the Air (cele/celes)@lemmy.blahaj.zone
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        7 days ago

        because it requires a phone number

        Yes, fair criticism.

        They’re based in the USA

        Sure, but the way the protocol and servers work there is no metadata etc unlike Matrix and XMPP, so nothing to hand over.

        contain proprietary blobs

        This is probably true of the version from the play store, desktop and maybe iOS version. However the apk from Signal’s site on android might not, I am unsure.

        Molly is the fork I’d recommend instead

        Sadly Molly is only available on Android, so that leaves out iOS and Desktop users.

        • Lumisal@lemmy.worldOP
          link
          fedilink
          English
          arrow-up
          3
          ·
          7 days ago

          On desktop, you can use Waydroid on Linux to run it.

          But yeah, iOS would be out of luck. Then again, Apple doesn’t really spy on you like Google does, at least. Best option is still something like GrapheneOS or /e/ of course.

      • Of the Air (cele/celes)@lemmy.blahaj.zone
        link
        fedilink
        English
        arrow-up
        2
        ·
        7 days ago

        it runs local on your phone, and if deleted from the phone, your account is deleted too.

        This is categorically false. The accounts exist on servers for both Matrix and XMPP and hold the messages for them, so no in fact no accounts etc get deleted if you delete the app. You actually have to delete the accounts from the app first.

        • Lumisal@lemmy.worldOP
          link
          fedilink
          English
          arrow-up
          3
          ·
          7 days ago

          My mistake, you’re technically right. Thanks for the correction.

          I haven’t used Matrix or XMPP in awhile, but when I did I had apparently set up some sort of localized server-relay thing, which was more experimental and defeats the purpose of the post (not easy to use, and was buggy sometimes).

          Fluffy Chat I still gotta investigate more now, but I remember I used Unified Push rather than Firebase Cloud.

          Either way, Molly might be the easiest solution.

  • Squished Fly (she/they)@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    7
    ·
    9 days ago

    Some more alternatives to common tracker filled stuff:

    • Google play store -> F-Droid (specific open scpurce apps)
    • Google play store -> Aurora store (gets apps from google)
    • YouTube/Soundcloud -> Newpipe (integrated adblock)
    • google maps -> OpenStreetsMap (website) or OsmAnd (android)
    • amazon -> your local store, pay in cash

    More browsers:

    • Waterfox (cut down version of Firefox) (Linux, Windows, android)
    • duckduckgo (android)

    Search engines:

    • Startpage
    • duckduckgo
    • brave

    Cheaper alternatives to Proton (if you pay): VPN:

    Mail:

    • tuta
    • mailinator (for creating temporary spam mails) (free)
    • Lumisal@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      3
      ·
      7 days ago

      Don’t recommend Waterfox as it’s less secure than either Mullvad or Librewolf. It also still has npapi support which is definitely not a secure thing to do.

  • CubitOom@infosec.pub
    link
    fedilink
    English
    arrow-up
    5
    ·
    edit-2
    9 days ago

    I would also recommend reading The Age of Surveillance Capitalism by Shoshana Zuboff which was recently featured on Philosophy Tube

    Edit: its important to realize that any government or entity might purchase the data this apparatus can collect.

  • Melody Fwygon@lemmy.one
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    7 days ago

    I actually disagree that media habits will be collected or targeted. It’s easy to defeat at least the overt tracking at least on Netflix using uMatrix or uBlock Origin; and I’ve done it myself.

    Primarily; I just refuse to be intimidated by the extremists. It’s fine to take reasonable steps to protect yourself; but don’t completely force yourself into any kind of isolation because you feel it protects you; that’s exactly what THEY want.

    You should be reasonably safe, and fine, using a major streaming service; as the fee to use them can easily be paid by privacy respecting means. (AKA scratch-cards purchased with either cash or crypto currency)

    If you are worried about privacy; it’s totally OK to take steps to protect that; but you should be aware that it’s possible to get so wound up in protecting your privacy that you can do more harm for yourself than good. Privacy fatigue is a real issue; and that can be a problem as well. Use your best judgement.

    • Lumisal@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      7 days ago

      Primarily; I just refuse to be intimidated by the extremists. It’s fine to take reasonable steps to protect yourself; but don’t completely force yourself into any kind of isolation because you feel it protects you; that’s exactly what THEY want.

      I mean, in non technical terms, I basically stated to cosplay as a pirate if you catch my drift. No need to not shun media in the meantime.

      I actually disagree that media habits will be collected or targeted. It’s easy to defeat at least the overt tracking at least on Netflix using uMatrix or uBlock Origin; and I’ve done it myself.

      Media habits are already collected, and targeted. They just aren’t used by fascists yet.

      https://arstechnica.com/gadgets/2024/10/streaming-industry-has-unprecedented-surveillance-manipulation-capabilities/

      You also can’t use uBlock on a smart tv.

      You should be reasonably safe, and fine, using a major streaming service; as the fee to use them can easily be paid by privacy respecting means. (AKA scratch-cards purchased with either cash or crypto currency)

      Netflix streams aren’t privacy encrypted. Doesn’t matter how to pay, it can still be very easily linked to you via your internet provider. And Netflix would still have a profile built around that account.

      • Melody Fwygon@lemmy.one
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        1
        ·
        edit-2
        5 days ago

        I mean, in non technical terms, I basically stated to cosplay as a pirate if you catch my drift. No need to not shun media in the meantime.

        I don’t shun media; I practice moderation instead. I find it is better to be aware of my surroundings in all things so I can keep myself safe if needs be.

        Media habits are already collected, and targeted. They just aren’t used by fascists yet.

        I’m aware of this; but I’m also a pretty savvy Networking / IT person. It’s easy to foil a large portion of their tracking apparatus with DNS level blocking; and even easier to use a rPi or pfSense box to do so.

        I clearly don’t share or agree with your fears that the fascists will use them anytime soon. It’s too likely that doing so will galvanize resistance against them swiftly.

        You also can’t use uBlock on a smart tv.

        I don’t own a “Smart” TV. No TV-like device ever gets networked around here either; and it’s going to be returned as “Defective” if it does refuse to work without a network connection. I watch via a PC with a well configured instance of uBlock Origin in Firefox. (+ several other privacy add-ons to prevent other shenanigans and ensure isolation).

        Netflix streams aren’t privacy encrypted. Doesn’t matter how to pay, it can still be very easily linked to you via your internet provider. And Netflix would still have a profile built around that account.

        They don’t need to be. TLS is used; so any man-in-the-middle is likely not capable of knowing what you’re watching. Only Netflix knows what you’re watching. If you’re concerned about their terms of service; or how they purport to use your data as outlined in their terms of service; then by all means make your post about that.

        Your IP address is known by every website you visit; it is not a magic document number for you or your household. Your ISP isn’t going to provide your data to the government without a valid subpoena; and those typically aren’t issued easily. Any active change in law passed that is affecting trans people, you’d actually hear about.

        You seem to have a few misconceptions or fears. Those fears are not invalid; but I am trying to suggest ways you can protect your privacy; while avoiding doing things like throwing all streaming media away and letting fears or misconceptions drive someone to absolute privacy fatigue and depression.

        Is Piracy better? Undeniably so! If you have the technical know-how and wherewithal to pirate your media; it’s a solid way to find content usually.

        However, not all people choose piracy for their own reasons. That might mean one instead maintains a few low-cost streaming subscriptions on hand. It is possible to still enjoy these services; and pay for them in ways that keep one’s privacy reasonably intact.