Announcement

Collapse
No announcement yet.

Any Techies/Privacy Gurus?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    #16
    Originally posted by HulkSmash22 View Post

    Any chance you do paid consultations?!
    Haha naw I'm a man of the people, this community does alot of good, so helping the occasional member is payment enough.

    As regards being on your own with updates, it depends. Unlocking the bootloader like that xda member provides allows you the ability to flash a custom rom (think of the rom as the os, in almost all cases it will be a form of Android, but tailored toward different things; lineage is focused on privacy for example.) It also allows you to obtain root, which means you can access and modify any and all system files, allowing you to uninstall system apps, overclock, etc. You can keep the factory installed os and with root tweak it to your needs. As regards updates, if you install a rom like lineage the process will be as outlined earlier in the thread. If you instead keep the stock, you will still receive ota updates from Samsung that install as per usual, but may have to reacquire root after each update. That process is usually very similar to the lineage update, where you will reboot to recovery and flash a file. For someone new to all this, a well maintained rom like lineage would likely be a little more straightforward, think topping off your oil as opposed to changing it yourself.

    Also, as far as your phone just no longer working if you don't update, it will be many years before not updating has an effect on your user experience. Most updates provide security patches, close newly discovered exploits and vulnerabilities, and occasionally improve performance or capabilities. Prior to installing lineage my old phones, the galaxy s4 on android 5, became unable to use certain security intensive apps, like my banking app. But that was because the app developer stopped supporting devices that were on such an outdated version of Android, and it was over 5 years from when the phones were first released.

    As regards pcs, an assortment. I run a heavily modded windows 10 for 3d design and gaming, xubuntu for general browsing, docs, and what little programming I'm teaching myself, also have a chromebook running gallium os (pretty much xubuntu) and a pocket windows 10 laptop, again heavily modded, that I take on the go as needed. At any given point in time there are 3 or 4 various raspberry pi's running various stuff, retropie for retro gaming, octoprint for 3d print server, pihole, gun oven controller web server, My cloud storage is based off of my android tv box, which hosts a variety of smb and network shares that link everything on my network together, which I can access remotely through a ddns gateway or by connecting to the VPN server on my local network. It accomplishes pretty much what a nextcloud server does, but without being tied to one specific app to obtain access. (Most would prefer the ease of use of one app, I primarily use a file browser that serves alot of other functions in addition to being readily configurable for my setup, so an additional app is unnecessary imo). For backups a weekly scheduled Syncthing backs up various folders to various drives, and once every few months I manually sync a master backup drive with a duplicate at my property upstate.

    And I never worked a day in tech or took a single computer class. The secret is for every big chunk of hours I spend on gun forums and beating off, I set aside a little time to improve myself by absorbing some knowledge off the internet.

    Comment


      #17
      Originally posted by mattyj513 View Post

      Haha naw I'm a man of the people, this community does alot of good, so helping the occasional member is payment enough.

      As regards being on your own with updates, it depends. Unlocking the bootloader like that xda member provides allows you the ability to flash a custom rom (think of the rom as the os, in almost all cases it will be a form of Android, but tailored toward different things; lineage is focused on privacy for example.) It also allows you to obtain root, which means you can access and modify any and all system files, allowing you to uninstall system apps, overclock, etc. You can keep the factory installed os and with root tweak it to your needs. As regards updates, if you install a rom like lineage the process will be as outlined earlier in the thread. If you instead keep the stock, you will still receive ota updates from Samsung that install as per usual, but may have to reacquire root after each update. That process is usually very similar to the lineage update, where you will reboot to recovery and flash a file. For someone new to all this, a well maintained rom like lineage would likely be a little more straightforward, think topping off your oil as opposed to changing it yourself.

      Also, as far as your phone just no longer working if you don't update, it will be many years before not updating has an effect on your user experience. Most updates provide security patches, close newly discovered exploits and vulnerabilities, and occasionally improve performance or capabilities. Prior to installing lineage my old phones, the galaxy s4 on android 5, became unable to use certain security intensive apps, like my banking app. But that was because the app developer stopped supporting devices that were on such an outdated version of Android, and it was over 5 years from when the phones were first released.

      As regards pcs, an assortment. I run a heavily modded windows 10 for 3d design and gaming, xubuntu for general browsing, docs, and what little programming I'm teaching myself, also have a chromebook running gallium os (pretty much xubuntu) and a pocket windows 10 laptop, again heavily modded, that I take on the go as needed. At any given point in time there are 3 or 4 various raspberry pi's running various stuff, retropie for retro gaming, octoprint for 3d print server, pihole, gun oven controller web server, My cloud storage is based off of my android tv box, which hosts a variety of smb and network shares that link everything on my network together, which I can access remotely through a ddns gateway or by connecting to the VPN server on my local network. It accomplishes pretty much what a nextcloud server does, but without being tied to one specific app to obtain access. (Most would prefer the ease of use of one app, I primarily use a file browser that serves alot of other functions in addition to being readily configurable for my setup, so an additional app is unnecessary imo). For backups a weekly scheduled Syncthing backs up various folders to various drives, and once every few months I manually sync a master backup drive with a duplicate at my property upstate.

      And I never worked a day in tech or took a single computer class. The secret is for every big chunk of hours I spend on gun forums and beating off, I set aside a little time to improve myself by absorbing some knowledge off the internet.
      Last line had me rolling on the floor! But it’s so true. A little bit each day or every few days, instead of endless nonsense, and you learn a lot. This rabbit hole only roped me in about a week ago. A few more questions if you don’t mind. I hear a lot about raspberry pi and pihole. What are these? Also, what do you use, if anything, for syncing across devices, contacts and calendar. Files you already addressed. Is there a way to have test messages forwarded and synced so you can reply on a computer? I use this a lot at work which is why I ask. Lastly, can I accomplish what I want in terms of phone privacy while also retaining my use (at least for now) of Apple on my computers? I understand certain things need to be boxed in. For example, rob braxman did a video on search engines and at the end, spent like 5 minutes in browser “segregation” (I forget what the actual word he used was”. And so now, I have a 4 browser set up running on my laptop, as opposed to the 1 I had just a week ago.

      Comment


        #18
        Raspberry pi's are single board computers, with the largest model being smaller than a pack of cigarettes. They can be setup to do all sorts of stuff, I did I little write up not too long ago how I used one as a web server temperature controller for my gun finish curing oven https://www.longislandgunclub.com/fo...n-oven-upgrade . A pihole is a raspberry pi setup to operate as a network wide ad and tracker blocker. It handles requests from all internet activity on your network and blocks anything that comes from a blacklist, similar to how adblock or hosts files work. My first thought was it would slow everything down, but if anything it actually minimally improves network speeds, as the raspberry pi only handles the requests, not all of the actual traffic. https://pi-hole.net/ if you want to check it out more.

        For syncing calendar, proton calendar automatically syncs across devices. Contacts I don't really sync, I keep them local on my phone and also have a backup on my master backup drives. For text messages I use signal messenger and it's desktop companion app. The desktop app only receives messages from other signal users, which for me is adequate as most people I care to text with also use signal. Regarding keeping apple as your computer, you need to view each device you use as an entrance into your home that you need to secure against unwanted guests. If you secured your phone and configured well for privacy but then on your Mac you are logged into the chrome browser with Facebook left open and allowing analytics on everything, your phone will be fine, it's out of the equation essentially, but your Mac may be giving up the very data on yourself that you worked so hard to protect. So follow the same steps on your computer that you'd do for a phone, use privacy friendly open source applications, opt out of data collection and analytics everywhere you can, limit permissions and access to contacts, location and so on. On my PC I also keep this running 24/7, it was made by a mod on the akfiles, every few seconds it does a search of two random words in a tab on your browser. www.novarata.net/poop-yer-pants.php# . Adds in a whole shit ton of fluff to my browsing activity, a technique referred to as poisoning the well. Using different browsers is a method of diluting your identity, so if you use one browser only for work related activity, another for only gun forums, and a third for only smut, you have created 3 identities as opposed to a more comprehensive picture of yourself. Work browser isn't going to show you ads for porn, gun browser isn't going to show you ads for office supplies.

        I came across a good analogy for explaining the need for privacy, especially to people who say but I have nothing to hide. Essentially pretend every app, site, and internet connected device is a person with a notepad. You don't know where he is from, you don't know who he shows his notepad to. You are in your living room, and notice there are ten of these guys in your bushes looking in and writing down every website you go to, every tv show you watch. You ask them wtf, they ignore you. Eventually you build a fence around your property they cant get over, but every day when you leave for work they are on the corner, and they follow you to the office. You go shopping, they are there too, and they follow you around and write down everything you buy, how long you spent in every aisle. They are in your kids classrooms, they are in the bathroom with your wife, always taking notes. If you could see the amount of data collection being done on you and your family like that, anyone would be up in arms and doing everything possible to protect against it. But because it's invisible most people are unaware, and when they find out they can't be bothered with the legwork to help themselves.

        Comment


        • rlitman
          rlitman commented
          Editing a comment
          I use Pi-Hole at home. FYI, it doesn't need a Raspberry Pi to run. I run mine on my Ubuntu gateway that's on a SFF PC which also runs my Nextcloud and z-push instance. That allows me to simulate an Exchange server so I can get mobile push capability with my personal mail domain and calendar.

          Pi-Hole has two big issues though. First, it only works when you use it. On a mobile device, once you're off the Wi-Fi, it's not being used, unless you setup a VPN that routes traffic back to it (I run both OpenVPN and WireGuard services on my personal servers).

          Second, many browsers are making end runs around DNS by using DoH.

        #19
        mattyj513 - You said you had 3 or more browsers. Which ones are less prone to 'sharing' info? Or do you just have different identities on a single browser?
        Thanks for the info. My head is spinning. I'm with Hulk on this - better to start now, than to scramble after the horses left the barn.

        Comment


        • HulkSmash22
          HulkSmash22 commented
          Editing a comment
          The horse HAS left the barn. About 13 years ago. But so far, he's only the next town over. With some work and time, we can corral him back. Maybe not into the barn. But onto the property. Or maybe onto the block. However, if we don't start the work now, pretty soon, he will have left the state. Then we're fucked.

        #20
        Originally posted by GettingFedUp View Post
        mattyj513 - You said you had 3 or more browsers. Which ones are less prone to 'sharing' info? Or do you just have different identities on a single browser?
        Thanks for the info. My head is spinning. I'm with Hulk on this - better to start now, than to scramble after the horses left the barn.
        I was just giving an example of how the principle works. I typically run brave browser on most of my devices, it is chromium based, built in adblocking and good privacy options. I also keep the tor browser handy but rarely use it. Others have had good results with Firefox and other chromium based privacy focused forks.

        There are two fundamental parts to this whole equation, privacy and anonymity. Privacy done properly results in people (your isp, companies or services that you log into, nsa, etc) knowing who you are, but not what you are doing. Think sending an email containing an encrypted message. Anonymity done properly results in your identity being obscured, but what you are doing is not necessarily hidden. Think using a vpn to download a torrent file, others in the pool can see that high school musical 3 is being downloaded, but the ip address shown leads to a commercial building in romanian instead of your house. When properly layered, big tech such as Google, Facebook, and Amazon have a difficult to impossible time compiling information on a person. Government agencies won't be able to track your locations and communications.

        Now what do I have to hide? For example, over the years I have amassed gigabytes of data on guns, ranging from blueprints to 3d files, manuals, to data on my personal collection. Just a few short years ago our government shut down defense distributed, a source of information such as this. Call it a 1st amendment issue, whatever you want, I'm not interested in a politician deciding what information is fit for me to obtain and possess. For the younger crowd, we have already reached a point where social media accounts are regularly reviewed when applying for various types of employment. Vaccination status, political affiliation, gun ownership, in an age of doxxing, cancel culture, banks and lenders refusing services to "undesirables", I'm not interested in letting people, groups, companies, or government administrations (that I am generally in direct opposition to) have any more information about or control over me than is within my ability to withhold.

        Comment


          #21
          Originally posted by mattyj513 View Post
          Raspberry pi's are single board computers, with the largest model being smaller than a pack of cigarettes. They can be setup to do all sorts of stuff, I did I little write up not too long ago how I used one as a web server temperature controller for my gun finish curing oven https://www.longislandgunclub.com/fo...n-oven-upgrade . A pihole is a raspberry pi setup to operate as a network wide ad and tracker blocker. It handles requests from all internet activity on your network and blocks anything that comes from a blacklist, similar to how adblock or hosts files work. My first thought was it would slow everything down, but if anything it actually minimally improves network speeds, as the raspberry pi only handles the requests, not all of the actual traffic. https://pi-hole.net/ if you want to check it out more.

          For syncing calendar, proton calendar automatically syncs across devices. Contacts I don't really sync, I keep them local on my phone and also have a backup on my master backup drives. For text messages I use signal messenger and it's desktop companion app. The desktop app only receives messages from other signal users, which for me is adequate as most people I care to text with also use signal. Regarding keeping apple as your computer, you need to view each device you use as an entrance into your home that you need to secure against unwanted guests. If you secured your phone and configured well for privacy but then on your Mac you are logged into the chrome browser with Facebook left open and allowing analytics on everything, your phone will be fine, it's out of the equation essentially, but your Mac may be giving up the very data on yourself that you worked so hard to protect. So follow the same steps on your computer that you'd do for a phone, use privacy friendly open source applications, opt out of data collection and analytics everywhere you can, limit permissions and access to contacts, location and so on. On my PC I also keep this running 24/7, it was made by a mod on the akfiles, every few seconds it does a search of two random words in a tab on your browser. www.novarata.net/poop-yer-pants.php# . Adds in a whole shit ton of fluff to my browsing activity, a technique referred to as poisoning the well. Using different browsers is a method of diluting your identity, so if you use one browser only for work related activity, another for only gun forums, and a third for only smut, you have created 3 identities as opposed to a more comprehensive picture of yourself. Work browser isn't going to show you ads for porn, gun browser isn't going to show you ads for office supplies.

          I came across a good analogy for explaining the need for privacy, especially to people who say but I have nothing to hide. Essentially pretend every app, site, and internet connected device is a person with a notepad. You don't know where he is from, you don't know who he shows his notepad to. You are in your living room, and notice there are ten of these guys in your bushes looking in and writing down every website you go to, every tv show you watch. You ask them wtf, they ignore you. Eventually you build a fence around your property they cant get over, but every day when you leave for work they are on the corner, and they follow you to the office. You go shopping, they are there too, and they follow you around and write down everything you buy, how long you spent in every aisle. They are in your kids classrooms, they are in the bathroom with your wife, always taking notes. If you could see the amount of data collection being done on you and your family like that, anyone would be up in arms and doing everything possible to protect against it. But because it's invisible most people are unaware, and when they find out they can't be bothered with the legwork to help themselves.
          OK, so i apologize in advance. I see where this is going. You're taking me FURTHER down a parallel rabbit hole to the one I already went down myself. This is going to be steps taken over the course of, hopefully, under a year. But I'm going to do a little each day, instead of beating off :-) So that being said, the more info you give me, the more questions I will have. Feel free at any point to PM me about a consultation because this is going to likely be time intensive for a few months and though you're a man of the people, we all have bills to pay.

          So I just got Proton Mail the other day. Is that related to proton calendar?
          I'll have to check out pihole maybe later or tomorrow.
          With regard to what FFG said about Winston Privacy, is a replacement for that enough? Do you also want a vpn? What about a firewall? Are these things complementary to each other or duplicitous?
          I have a few issues with completely leaving the apple ecosystem. I've sort of rationalized things this way, but please correct me if I'm wrong. My phone goes everywhere with me. So it's a GPS log. It also tracks/monitors my conversations both by voice and by text. There's a LOT more in a phone than there is (to some extent) in a computer. If I secure my home network and the apple computers as much as possible (blockers, multi-browser protocol, etc) then I should be good to go and able to stay in the ecosystem minus the phone part. Am I understanding this correctly or am I wrong?
          Does that well poisoning app have a mac version or mac equivalent?

          Your last paragraph was GENIUS. Not that I needed it because I'm already on the privacy bandwagon. But it's good for explanatory purposes to those who arent. Ultimately it comes down to time, energy and desire. Most people, including me, don't have the time or energy for the (at least initial) training and inconvenience. However, I do have the desire. Where are most people are just lazy.

          Comment


            #22
            Originally posted by GettingFedUp View Post
            mattyj513 - You said you had 3 or more browsers. Which ones are less prone to 'sharing' info? Or do you just have different identities on a single browser?
            Thanks for the info. My head is spinning. I'm with Hulk on this - better to start now, than to scramble after the horses left the barn.
            I'm using Brave, Firefox (both with tracker blockers from BitDefender and certain settings enabled in the browsers themselves to try to limit as much as I can) but I'm also using Chrome. Curious as to Matty's take on this. But I previously wouldn't touch Chrome with a 10 foot pole. Braxman says to use Chrome ONLY for using google services you have to use and use them when logged in. This essentially gives them whatever information you want them to have, on purpose. So my job uses (unfortunately) enterprise gmail. So now, I only look at my work email in Chrome. And since I have (by default) a google profile through that email, if I'm going on YouTube to subscribe to things, I use that login, in Chrome. My regular browser, I won't go to YouTube at all. And I have a third browser where I will go to youtube but not log in. I also have a fourth browser solely for Facebook. Facebook is a work thing since I'm in Real Estate. I'd rather just delete the whole thing honestly.

            Comment


              #23
              Originally posted by mattyj513 View Post

              Now what do I have to hide? For example, over the years I have amassed gigabytes of data on guns, ranging from blueprints to 3d files, manuals, to data on my personal collection. Just a few short years ago our government shut down defense distributed, a source of information such as this. Call it a 1st amendment issue, whatever you want, I'm not interested in a politician deciding what information is fit for me to obtain and possess. For the younger crowd, we have already reached a point where social media accounts are regularly reviewed when applying for various types of employment. Vaccination status, political affiliation, gun ownership, in an age of doxxing, cancel culture, banks and lenders refusing services to "undesirables", I'm not interested in letting people, groups, companies, or government administrations (that I am generally in direct opposition to) have any more information about or control over me than is within my ability to withhold.
              Amen to this. Just to add, the difference between people like us (let's call us normal, conservative, libertarian, whatever you want) is that we deal with people and institutions directly at odds with our beliefs every day. We just don't care. We go about our lives and figure to each their own. However those who are on the opposite end (let's call them nuts, liberals, democrats, whatever you want) they believe that if you don't agree with their beliefs, you should have no right to do anything at all in the world, except die. Unfortunately, they're in control of everything. Mostly. And so there in lies yet another reason we need this to function. And that need is growing greater by the day.

              Comment


                #24
                Originally posted by HulkSmash22 View Post

                I'm using Brave, Firefox (both with tracker blockers from BitDefender and certain settings enabled in the browsers themselves to try to limit as much as I can) but I'm also using Chrome. Curious as to Matty's take on this. But I previously wouldn't touch Chrome with a 10 foot pole. Braxman says to use Chrome ONLY for using google services you have to use and use them when logged in. This essentially gives them whatever information you want them to have, on purpose. So my job uses (unfortunately) enterprise gmail. So now, I only look at my work email in Chrome. And since I have (by default) a google profile through that email, if I'm going on YouTube to subscribe to things, I use that login, in Chrome. My regular browser, I won't go to YouTube at all. And I have a third browser where I will go to youtube but not log in. I also have a fourth browser solely for Facebook. Facebook is a work thing since I'm in Real Estate. I'd rather just delete the whole thing honestly.
                That all sounds good, with the exception that I wouldn't log into chrome itself unless you have a specific reason to. And if your only use for chrome is reading gmail, look into a 3rd party application, like thunderbird for example. It can consolidate all your different email accounts into one application and negate the need for chrome entirely. I only really use youtube on my phone, and do so by using the app new pipe, which doesn't require login, still allows subscribing, and also allows downloading content as video or audio. Not sure about a specific site or service for that on pc but I am sure it exists. No advise on Facebook other than to tell you to delete it entirely, but work is work, gotta put food on the table.

                Comment


                • HulkSmash22
                  HulkSmash22 commented
                  Editing a comment
                  My Facebook use is minimal. I don’t post except on my business page. But I sandbox it into its own browser. New pipe is coming when I get my degoogled phone. I’m waiting for e foundation to get new stock which they claim is end of November. But in the meantime I ordered one from rob braxman.

                #25
                Originally posted by HulkSmash22 View Post

                Amen to this. Just to add, the difference between people like us (let's call us normal, conservative, libertarian, whatever you want) is that we deal with people and institutions directly at odds with our beliefs every day. We just don't care. We go about our lives and figure to each their own. However those who are on the opposite end (let's call them nuts, liberals, democrats, whatever you want) they believe that if you don't agree with their beliefs, you should have no right to do anything at all in the world, except die. Unfortunately, they're in control of everything. Mostly. And so there in lies yet another reason we need this to function. And that need is growing greater by the day.
                That's actual an upside to the Orwellian state we are currently in, privacy, anonymity, data collection and tracking are becoming bigger concerns to more people every day. With that comes more ideas, options, and resources at our disposal. Similar to the left causing more people to buy guns, big tech invasiveness and gov overreach is causing many to put their foot down.

                Comment


                  #26
                  Originally posted by mattyj513 View Post

                  That's actual an upside to the Orwellian state we are currently in, privacy, anonymity, data collection and tracking are becoming bigger concerns to more people every day. With that comes more ideas, options, and resources at our disposal. Similar to the left causing more people to buy guns, big tech invasiveness and gov overreach is causing many to put their foot down.
                  But I still can’t find a replacement for Winston privacy box. I looked for an hour today. I found SIMILAR things. But nothing that does what I want. Suggestions?

                  Comment


                    #27
                    Originally posted by HulkSmash22 View Post

                    But I still can’t find a replacement for Winston privacy box. I looked for an hour today. I found SIMILAR things. But nothing that does what I want. Suggestions?
                    This is the first I'm seeing that, but it actually looks very similar to what a pihole does. A few glaring things I'm see on the Winston is that it does not appear to be open source and there is a subscription fee. As a pihole user the only selling point I see is that it's a ready to go product, but if you can connect an Ethernet cable and write an image file to a micro sd card you are qualified to setup a pihole. I did recently come across a pi setup running software called a keexybox, does ad and tracker blocking plus parental control features to restrict devices on the network from accessing whatever you specify.

                    Also as rlitman pointed out above there are other methods to running a pihole. I don't have firsthand experience but their site gives some methods. The critiques he gives are valid as well.

                    Comment


                      #28
                      Originally posted by HulkSmash22 View Post

                      But I still can’t find a replacement for Winston privacy box. I looked for an hour today. I found SIMILAR things. But nothing that does what I want. Suggestions?
                      I found several but am still researching them. Helm Personal Server, Beam, BetterSpot VPN, and a couple of others that I have on an open tab at home which I can't recall now, but will try to add later when I get home.
                      "The devil doesn't come dressed in a red cape and pointy horns. He comes as everything you've ever wished for.”
                      Tucker Max

                      Infirmitate Invitat Violentiam
                      Finicky Fat Guy

                      Comment


                        #29
                        A friend referred me to Brax.me to get a de-Googled Android phone. Is it a reputable place to buy a phone? have you used them?
                        "The devil doesn't come dressed in a red cape and pointy horns. He comes as everything you've ever wished for.”
                        Tucker Max

                        Infirmitate Invitat Violentiam
                        Finicky Fat Guy

                        Comment


                          #30
                          Originally posted by mattyj513 View Post

                          This is the first I'm seeing that, but it actually looks very similar to what a pihole does. A few glaring things I'm see on the Winston is that it does not appear to be open source and there is a subscription fee. As a pihole user the only selling point I see is that it's a ready to go product, but if you can connect an Ethernet cable and write an image file to a micro sd card you are qualified to setup a pihole. I did recently come across a pi setup running software called a keexybox, does ad and tracker blocking plus parental control features to restrict devices on the network from accessing whatever you specify.

                          Also as rlitman pointed out above there are other methods to running a pihole. I don't have firsthand experience but their site gives some methods. The critiques he gives are valid as well.
                          Looks like the Brax Router does what I want. It’s a pic that I’m 99% sure runs pi hole and it’s a VPN router. I should have mine set up in the next few days and I’ll report back

                          Comment

                          Working...
                          X