Guide Marcus guide to staying anonymous on the web.

Crocop

Bathwater Drinker
Feb 17, 2023
195
2,687
1,259
0fya082315al84db03fa9bf467e3.png
Responding to the aka paranoid (in his own words). Only by the Amount of misinformation posted by him.

Password Manager:
Please, before posting something, at least read its content.

1Password: No, 1Password was not hacked. // Source:
Please, Log in or Register to see links and images
/
Please, Log in or Register to see links and images

As recommended by the
Please, Log in or Register to see links and images
that centralizes leaked password databases. Source:
Please, Log in or Register to see links and images

There has never been a proven data leak. (until now)

LastPass: Who recommended LastPass?

Bitwarden: No, Bitwarden was not hacked.
Source: Just like your 1Password link,
Please, Log in or Register to see links and images
that you didn't read says that Bitwarden has not been hacked. Just read before spreading fake news.
Even the author of your link recommends Bitwarden.

Proton Pass: This was one of the 3 recommendations, perhaps you confused it with LastPass.

Please, Log in or Register to see links and images


VPN's:
See my post, I posted this link, but it was incomplete. I don't know why.
Please, Log in or Register to see links and images


Now that the link is complete, you can learn to interpret semantics instead of limiting yourself to synthetics.

Browsers:
Maybe I don't need to explain why an HTTP without S website seems insecure.
Did you write all this to recommend the 4 browsers I recommended?

Please, Log in or Register to see links and images


DNS:
Again, please read the notes to avoid making further mistakes.

Quad9: ...does not collect or record IP addresses or other data they deem personally identifiable.
Please, Log in or Register to see links and images

Cloudflare: ...does not log personal data, and the bulk of the limited non-personally identifiable query data is stored only for 25 hours.
Please, Log in or Register to see links and images


Please, Log in or Register to see links and images


================================================================
================================================================
Obs.:

Just as OP posting recommends
Please, Log in or Register to see links and images
, these other sites also recommend. So, don't be arrogant to dictate that you have the true truth. You have your way of thinking, and that's fine, it doesn't make others go wrong.

My post was not to teach a class or create a discussion, but a summary of some field expert recommendations. That's why I posted several sources to anyone interested, able to read. Do this next time, read.

The intention is to follow the thinking of Nassim Taleb, we are all exposed, but we can create small barriers to reduce the chances of something wrong to happen. Good luck.
 

rvlnnb

Bathwater Drinker
Nov 27, 2022
145
10,242
1,362
0fya082315al84db03fa9bf467e3.png
Note that you could self host Bitwarden.

You need to also log in to your account to redo the encryption in Settings > Security > Keys. Choose Argon2id algorithm. (minimum configuration of 19 MiB of memory, an iteration count of 2, and 1 degree of parallelism, more is better).
 

hooddog

Casual
Mar 30, 2022
2
23
328
0fya082315al84db03fa9bf467e3.png
How bad of a idea would it be to use one browser extension with the tor browser ? like allow right click so you can download.

I know its not recommended but would it be better than a VPN for anonymity?

Or is a good VPN all you need to keep OF from tracking you, assuming your already using other good privacy practices.
 

hanumania

Bathwater Drinker
Mar 14, 2022
84
2,811
1,242
0fya082315al84db03fa9bf467e3.png
Please, Log in or Register to view quotes

A couple comments on that post.

Windows is not a good operating system to use if you value anonymity or privacy for too many reasons to list here. They mention TAILS, which is pretty hardcore... The only contention I have about TAILS is that various agencies are paying attention to the people using it. Generally people using tails are doing sketchy things, or so they assume... There are many linux distros which work just as well for being anonymous online, and you can actually use them to play games, or use the internet for everyday things, or office work... Not so much attention being paid to who uses them.

The VPN advice is good but most VPNs are garbage: they are either not providing an actual VPN tunnel or they track/sell your activity, because it's worth money, and nobody is watching. There are a few VPNs that I recommend based on endorsements and transparency and their founding mission statements.

Encryption can be broken... It really depends what you are trying to hide-- once a malicious actor has possession of your actual hardware, and they really want to see what's on it, they will. I'm mostly concerned with basic opsec on the internet.

Metadata is dangerous stuff but most of the metadata that you have to worry about is from things you produce yourself, i.e. you own videos and pictures. mat2 is a pretty nifty piece of software tho. I usually use either gthumb or ffmpeg when I need this service.
Also, some metadata is actually useful for various applications-- it tells your player/viewer how to load the file, which is faster and less CPU-intenseive than forcinga it to figure it out all the specs itself.
There's no need to compress or introduce damage to media if all you want is to remove its metadata... that just hurts me :P

A lot of novel marking technologies are coming down the pipe, and it's going to be harder to hide from them. Of particular creepiness to me is steganographic encryption or watermarking.
 

hanumania

Bathwater Drinker
Mar 14, 2022
84
2,811
1,242
0fya082315al84db03fa9bf467e3.png
vpns:
Airvpn.org -- italian hacktivist-run, very well-maintained clients, among many other good things. They support open source, Tor, and are very involved in their forums. They are the only vpn I know of that are this genuinely dedicated to privacy and net neutrality as a movement. Non-profit--that means a lot.

Mullvad -- this has been recommended to me by many people I trust. routersecurity.org gave them a pass, which btw is a fantastic site for learning about routers/security. They have a good founding mission and an open source client.

ProtonVPN - run by the same Swiss data scientists and privacy advocates that started Protonmail. I have used their free VPN (good thing to have in a pinch). They have earned my trust in other areas.
As for linux distros, it depends on how comfortable you are learning or operating in Linux. The short answer is that any linux distro provides better privacy and anonymity than Windows. Before I made the leap to Linux completely, I dual-booted Windows and Linux. This is really easy to do now, not much tech brain involved.

There are linux distros that are tailored specifically for anonymity and security.
Please, Log in or Register to see links and images

Poke around distrowatch for a bit... Not knowing your background I'd just recommend an Ubuntu-like distro for general use, also check out the top 5 or so distros listed there. I hope that helps!
 

rvlnnb

Bathwater Drinker
Nov 27, 2022
145
10,242
1,362
0fya082315al84db03fa9bf467e3.png
I use mullvald, in Wireguard mode.You can configure up to 5 devices at the same time.