You can’t protect your data if you use those apps. Pick one.

Who owns LeMonde?

Your complaint is genuine and I assure you that the sentiment is shared amongst many people here. I do not like that sub for its excessively tight policies. You must also consider that Reddit has its eye on that sub since it might spread awareness to other Reddit users and harm Reddit’s bottom line.

Either way, I stick to Lemmy and Kbin. Reddit doesn’t let me create accounts over TOR and I2P anymore, which means I’m not going to be able to participate anyway.

Not if you’re running a FOSS ROM (at least you’d hope that is the case) unless the firmware is compromised (which if true would affect EVERYONE so I’m sure somebody had their eye on such things)

Unfortunately, you’re done here. You’re going to need a new number if you value your privacy. I can never trust any big company; you can try waiving GDPR in their faces all you want but with a spineless EU and too much power in such companies, you have to trust them to delete your data. I’m sure you realise that this is a silly venture.

As long as you can trust Apple, sure

I wish they did. I can’t believe non-profits are suing each other.

Regardless, the fact is unless you’re going through the code, you’re not sure if the tracking and telemetry is really disabled. LibreWolf does that for me, so I use it over plain Firefox

Because they said so in their updated ToS. They might not be as bad as Google but they’re not saints

deleted by creator

Downvoted. You didn’t read the rules of the sub. Yes, you should be allowed to do it, morally speaking. But if you red their notice you’ll realise exactly why you aren’t allowed to do so. Anyway welcome to Lemmy

Firefox is spying on you, so a derivative is the only option. I also user Ungoogled Chromium because it’s really nice and works well after a couple of tweaks

I thought Hetzner was the size of OVH. I guess not

Hetzner?

Dom0 being based on Fedora has been a gripe of mine for a while now. Fedora isn’t that secure without some effort either. Unfortunately, I have no way to confirm which one out of them is “more secure”.

Do you have any sort of automated test framework in mind which one can use to test distros against attacks?

Thanks for the tip, love Capy.

You’re right, Whonix is probably the better idea. I use kick secure now but if I move to Qubes then I’ll use Whonix as a default.

I’ll have to read more about secureblue. I haven’t given the documentation as much time as I should have. I guess you could run an HVM for now.

Why do you rank secureblue over Whonix?

You’re right, secureblue isn’t quite there when talking about security on desktop/server Linux.

Hey, I recognise you now! That was a great post, I had a lot of fun reading it. If I could follow people on Lemmy I’d follow you.

What do you think about Kicksecure (and Kicksecure inside of Qubes)? I know they are criticised for backports but leaving that issue aside, I think they have created a very handy distro. I personally go through CIS benchmarks for most of stuff including Kicksecure but it’s definitely nice to have a prey hardened distro (SecureBlue too but I hear SecureBlue isn’t a big team, not sure how much time they have to address the broad range of desktop Linux security issues).

Honestly, Qubes is the best at this by far. Their method of compartmentalisation takes away the complexity of reasonable security from the end-user making it a mostly seamless experience. I personally think that if you were to put GrapheneOS and Qubes OS side-by-side on uncompromised hardware, I’d take Qubes. I’d run GrapheneOS inside Qubes with a software/hardware TPM passed through if I could.

You can never be private with any device that can connect to the internet out of its own volition. Ubiquity, Alta Labs and Mikrotik should never be trusted unless you’re OK with your data potentially ending up on their servers.

With that said, you can manually upgrade Mikrotik software and selfhost the Mikrotik CHR, Ubiquity controller and Alta Labs controller for a fee (for the latter), which should then in theory invalidate this argument. Even then, I do not trust non-FOSS software for such critical infrastructure so it’s still too much for me, but depending on your risk tolerance this might be a good compromise. I would suggest you to look at Mikrotik seriously - their UI might suck but their hardware and software capabilities are FAR beyond what Ubiquity offers for the same price.

If you want to be private you should get an old computer, buy quad port NIC cards from EBay and run a Linux/BSD router on your own hardware. But that’s not the most friendly way to do it so I don’t blame anyone for looking away

Do they honestly believe that China is not capable of producing their own chips for cheaper if Nvidia stops supply? This is moronic