GadgeteerZA

joined 2 years ago
[–] [email protected] 1 points 1 month ago

Could be yes - although I seem to think with my transfer from one Samsung to another it brought the files and settings over. Can't remember for sure now as was over a year ago, but I did not recall any major issue.

[–] [email protected] 1 points 8 months ago

Apart from just privacy, 3rd party routers offer way more features and customisation especially if they can also run 3rd party router software.

[–] [email protected] 8 points 10 months ago

I'd be interested to hear too as I've been using Canva for a while now as it's pretty slick and quick for what I do. I really wish Gimp would get a bit slicker with its UI. When I struggle to find a tool I want to use something else.

[–] [email protected] 1 points 1 year ago

Marketing is where the money is, but it is a question worth asking on their project, as the folks that are actively using it are there to give a contextual answer.

[–] [email protected] 2 points 1 year ago (1 children)

Depends on the country as most of these resources are US I'm not sure. It's a good question though to ask on that Github project as those guys have been involved with this a long time.

 

This list, also known as BADBOOL, was started on September 29, 2017 and was most recently updated in October 2023 to add PimEyes and to remove TruePeopleSearch and Cyber Background Checks, since those sites will automatically remove your data if you successfully opt out of Intelius and BeenVerified.

Some of these opt-outs take a long time to go through. Sometimes, information is pulled from other sources, and you’ll need to opt out multiple times for the same site. Data brokers come and go (and are bought out by others), and they also often change their opt-out pages.

In many US states, real estate data and voter registration information is public (or easy to obtain). And, of course, location data can be found by physical means (e.g. following you home) and through other people who know it (i.e., social engineering). That said, removing your home address from data broker sites can significantly lower your attack surface and make it harder for people to find it.

This is mostly US focussed, but does give some idea of all the data brokers tracking users' data and behaviour, and that it is not easy to just opt out. The list is being managed as an open source project that it has community participation as well. So, it may also be possible to suggest adding resources for other countries too.

Unfortunately, if you're on the Internet, you do leave many traces. Very few normal users actually boot clean from a Tails Linux on a USB stick in read-only mode, and use Tor Browser without any saved logins etc. Most users also carry a mobile phone with apps installed (no more needs to be said about that).

Your best defence is though to do some basics like using a privacy based browser with fingerprint protection, script bocking, unique secure passwords per site, sandboxing (or not using) Facebook and Instagram type sites, etc.

Just yesterday, I received a phishing mail that had spoofed my own private domain e-mail address (to imply they had hacked my e-mail). I realised that, although I had activated DMARC and SPF on my e-mail service, I had made one copy-and-paste mistake in the DNS records, and no error was shown. I'd not properly checked that the DMARC indicator was showing as verified green on my service. Doing it, and actually checking it, are two separate actions one needs to do. It's the little things that trip you up.

So why are data brokers a threat to you? Well because they also collect a lot of related information which is often used to verify your identity to a call centre to have your password reset (one example).

See https://github.com/yaelwrites/Big-Ass-Data-Broker-Opt-Out-List

#technology #optout #databrokers #privacy

[–] [email protected] 5 points 1 year ago

Default Signal is better although Telegram has Secret Chat. I love thar Telegram let's you use a username to connect to others without exposing your mobile number to contacts.

But I have way more friends who actually use Telegram than Signal. No idea why although for many the massive community groups are used by a lot communities for staying in touch, as well as safety/security groups in communities.

[–] [email protected] 5 points 1 year ago (1 children)

I'm been in this process for the last two months (because there are so many sites to change my e-mail address). I went with Gmail originally so I did not have to change my address everytime I changed ISPs.

So my first step was to use my own domain name so that as long as i keep renewing that annually (it's a small cost) then I keep my e-mail address (even if I change actual e-mail providers).

Next was to find an e-mail service I could point my domain to. I also needed one where I could download my e-mail to my desktop computer for archiving and reference, eg. I'm using BetterBird, but ThunderBird is another option.

So finding a mail provider is interesting as most that let you use your own domain name (custom domain name) are not free. One option was paying a small fee to by actual domain provider and use their service. I went though for ProtonMail in the end as I was already paying for their VPN service, so the difference to upgrade to the "everything" account was not that much more and scored me 500GB of online storage too (I pay separately for Bitwarden password management, otherwise that would be another plus). This allowed me to use my custom domain name (unlimited addresses), download mail through their bridge, etc.

So the real challenge really was finding a suitable mail service. I can switch easily in the future as I just point my domain name to the new mail provider, and never have to update my mail address at any sites again, and all mail is always available on my desktop computer.

[–] [email protected] 0 points 1 year ago (2 children)

Well I use Element for Matrix as well... but why not 10? You only really manage them once when set-up. After that, you just respond to whoever messages you, or you compose a message of whichever one. They no longer chew battery or data in the background. I have 11 installed and there is really no "extra" effort.

 

Today, most messaging apps have true end-to-end-encryption (Telegram's must be activated per contact for Secret Chat), but what really differs now is how many can tie your communications back to you through metadata. Obviously those which require a phone number or an e-mail address, do have your activity tied to you potentially.

WhatsApp, Signal, Telegram and similar do require this for registration. Partly it is for authentication, finding friends, and also for resetting access if access is lost. What data you can see after a reset, gives an indication of what the provider has access to. For Signal, you won't be able to read any of your older messages. Signal indicates in this linked article, though, that they only keep the very minimum of information (tested by a legal subpoena). Telegram has more access as that is how all your chats get restored, but they have been banned in various countries because they don't hand over the information. WhatsApp, of course, we all know about their passing of detailed metadata upstream to Facebook (it's in their terms and conditions). I've done a post before about the risks and the monetary rewards around harvesting metadata. Just by registering on WhatsApp, you have also shared all your friends' phone numbers to Facebook, along with how often and how long you contact them, where you are when you contact them, etc.

We've also seen lots of secure messengers emerging that require no phone number and also no e-mail address, eg. Briar, XMPP, Jami, Threema, SimpleX, Nostr, and many more. Many mainstream users don't adopt them because the common problem is, you can't find your own friends easily (who do you chat with then?).

So this is one of the reasons why Signal has been pretty popular as a secure messenger. It requires a phone number, but retains virtually no information about you to sell or leak, and you can very easily find all your friends using it. So no, it is not THE most secure messenger, but it is certainly the most secure of those requiring a phone number or e-mail address for registration.

But the main takeaway is, unlike with an SMS app where only one app may be the active SMS app, your phone can have 10 or more instant messengers installed, so there is no reason not to also have Signal installed. It helps your friends, who are more privacy conscious, to stay in contact with you via Signal. Whether a message notification pops up via WhatsApp or Telegram, It's still going to pop up, unless you have a friend that insists on contacting you through two apps at the same time. Most modern messenger apps use push notifications, so they are not constantly polling, which uses data and battery all the time.

Go ahead, try more than one messenger, and you may be amazed that there are often better and more interesting features to try. Many of your friends will thank you.

#technology #privacy #messengers #chat #Signal