Symfony Profiler

{
    "@context": [
        "https:\/\/join-lemmy.org\/context.json",
        "https:\/\/www.w3.org\/ns\/activitystreams"
    ],
    "actor": "https:\/\/lemmy.one\/c\/privacyguides",
    "to": [
        "https:\/\/www.w3.org\/ns\/activitystreams#Public"
    ],
    "object": {
        "id": "https:\/\/sh.itjust.works\/activities\/create\/7ce73c95-9563-4f47-ae55-505b9939bc33",
        "actor": "https:\/\/sh.itjust.works\/u\/potatopotato",
        "@context": [
            "https:\/\/join-lemmy.org\/context.json",
            "https:\/\/www.w3.org\/ns\/activitystreams"
        ],
        "to": [
            "https:\/\/www.w3.org\/ns\/activitystreams#Public"
        ],
        "object": {
            "type": "Note",
            "id": "https:\/\/sh.itjust.works\/comment\/17635290",
            "attributedTo": "https:\/\/sh.itjust.works\/u\/potatopotato",
            "to": [
                "https:\/\/www.w3.org\/ns\/activitystreams#Public"
            ],
            "cc": [
                "https:\/\/lemmy.one\/c\/privacyguides",
                "https:\/\/lemmy.world\/u\/Shootingstarrz17"
            ],
            "content": "<p>It comes down to looking at the chain they can use to link a post to you.  You should be able to express yourself fully without fear of retribution.<\/p>\n<p>First and most importantly, get a password manager and use unique passwords for everything, this covers the overwhelmingly likely scenarios.  All your online accounts should either be ~14+ character \u201cdl+ruHgGv6-c0$1hh7\u201d style passwords or 4+ random word \u201ccorrect horse battery staple\u201d style passwords. The password manager should generate them for you.<\/p>\n<p>Make sure your phone has a password and consider using it instead of biometrics (face\/, fingerprint unlock).  Passwords can\u2019t typically be compelled but they can force you to unlock things with your face\/fingerprints.  Enable whole disk encryption on any computers that have access to your password manager or accounts.  Turn these systems off when you\u2019re away or asleep. Enable automatic reboot on your phone if supported so it will reboot itself if not unlocked after a set amount of time, preferably 12-24 hours max.  This sounds dumb but makes it 10x harder to break into if you\u2019re taken into custody due to how phone encryption works.<\/p>\n<p>If you like social media, create accounts that aren\u2019t in your name and have no common links (different email addresses, passwords, user names, etc).  Do so over a VPN or Tor, ideally with an exit node outside the country and use email aliases through proton or similar so they\u2019re all different.  Never access them from a non-VPNed connection, your IP is logged every time you connect and kept for who-knows how long on the servers.  Rotate these accounts so that your opinions and posts aren\u2019t all connected to one identity.  If you accidently post something that identifies you (you will make mistakes and should plan for it), that limits the damage to only the posts associated with that account rather than all your activity on that site.  <strong>Disable history on everything!  Google search, Google maps, Google location history, YouTube, your browser, EVERYTHING.<\/strong> Most of the stuff you see in court is just \u201cwell their Google history said they searched for XYZ so clearly they\u2019re a terrorist\u201d.<\/p>\n<p>If you\u2019re really enterprising, setup an old computer that\u2019s only for social media and has the VPN enabled full time. Bonus points for using Tails Linux as the operating system but if you keep to the above it\u2019s just an added layer of safety.<\/p>\n<p>Right now the stuff we\u2019re seeing is mostly low hanging fruit, they seem to be targeting people by literally browsing Canary Mission.  They\u2019re not employing particularly sophisticated methodology yet.  That may change though so the above guards against that, at least somewhat.  Your mission isn\u2019t to be able to resist the full attention of the NSA, it\u2019s to be much more difficult than average so they turn their limited resources elsewhere because they have a quota to meet that week.<\/p>\n",
            "inReplyTo": "https:\/\/lemmy.world\/post\/27517303",
            "mediaType": "text\/html",
            "source": {
                "content": "It comes down to looking at the chain they can use to link a post to you.  You should be able to express yourself fully without fear of retribution.\n\nFirst and most importantly, get a password manager and use unique passwords for everything, this covers the overwhelmingly likely scenarios.  All your online accounts should either be ~14+ character \"dl+ruHgGv6-c0$1hh7\" style passwords or 4+ random word \"correct horse battery staple\" style passwords. The password manager should generate them for you.\n\nMake sure your phone has a password and consider using it instead of biometrics (face\/, fingerprint unlock).  Passwords can't typically be compelled but they can force you to unlock things with your face\/fingerprints.  Enable whole disk encryption on any computers that have access to your password manager or accounts.  Turn these systems off when you're away or asleep. Enable automatic reboot on your phone if supported so it will reboot itself if not unlocked after a set amount of time, preferably 12-24 hours max.  This sounds dumb but makes it 10x harder to break into if you're taken into custody due to how phone encryption works.\n\nIf you like social media, create accounts that aren't in your name and have no common links (different email addresses, passwords, user names, etc).  Do so over a VPN or Tor, ideally with an exit node outside the country and use email aliases through proton or similar so they're all different.  Never access them from a non-VPNed connection, your IP is logged every time you connect and kept for who-knows how long on the servers.  Rotate these accounts so that your opinions and posts aren't all connected to one identity.  If you accidently post something that identifies you (you will make mistakes and should plan for it), that limits the damage to only the posts associated with that account rather than all your activity on that site.  **Disable history on everything!  Google search, Google maps, Google location history, YouTube, your browser, EVERYTHING.** Most of the stuff you see in court is just \"well their Google history said they searched for XYZ so clearly they're a terrorist\".\n\nIf you're really enterprising, setup an old computer that's only for social media and has the VPN enabled full time. Bonus points for using Tails Linux as the operating system but if you keep to the above it's just an added layer of safety.\n\nRight now the stuff we're seeing is mostly low hanging fruit, they seem to be targeting people by literally browsing Canary Mission.  They're not employing particularly sophisticated methodology yet.  That may change though so the above guards against that, at least somewhat.  Your mission isn't to be able to resist the full attention of the NSA, it's to be much more difficult than average so they turn their limited resources elsewhere because they have a quota to meet that week.",
                "mediaType": "text\/markdown"
            },
            "published": "2025-03-29T01:42:55.044122Z",
            "tag": [
                {
                    "href": "https:\/\/lemmy.world\/u\/Shootingstarrz17",
                    "name": "@Shootingstarrz17@lemmy.world",
                    "type": "Mention"
                }
            ],
            "distinguished": false,
            "language": {
                "identifier": "en",
                "name": "English"
            },
            "audience": "https:\/\/lemmy.one\/c\/privacyguides",
            "attachment": []
        },
        "cc": [
            "https:\/\/lemmy.one\/c\/privacyguides",
            "https:\/\/lemmy.world\/u\/Shootingstarrz17"
        ],
        "tag": [
            {
                "href": "https:\/\/lemmy.world\/u\/Shootingstarrz17",
                "name": "@Shootingstarrz17@lemmy.world",
                "type": "Mention"
            }
        ],
        "type": "Create",
        "audience": "https:\/\/lemmy.one\/c\/privacyguides"
    },
    "cc": [
        "https:\/\/lemmy.one\/c\/privacyguides\/followers"
    ],
    "type": "Announce",
    "id": "https:\/\/lemmy.one\/activities\/announce\/create\/406fe381-fd06-45a4-a97f-f4e84863fdf6"
}

{"@context":["https://join-lemmy.org/context.json","https://www.w3.org/ns/activitystreams"],"actor":"https://lemmy.one/c/privacyguides","to":["https://www.w3.org/ns/activitystreams#Public"],"object":{"id":"https://sh.itjust.works/activities/create/7ce73c95-9563-4f47-ae55-505b9939bc33","actor":"https://sh.itjust.works/u/potatopotato","@context":["https://join-lemmy.org/context.json","https://www.w3.org/ns/activitystreams"],"to":["https://www.w3.org/ns/activitystreams#Public"],"object":{"type":"Note","id":"https://sh.itjust.works/comment/17635290","attributedTo":"https://sh.itjust.works/u/potatopotato","to":["https://www.w3.org/ns/activitystreams#Public"],"cc":["https://lemmy.one/c/privacyguides","https://lemmy.world/u/Shootingstarrz17"],"content":"<p>It comes down to looking at the chain they can use to link a post to you.  You should be able to express yourself fully without fear of retribution.</p>\n<p>First and most importantly, get a password manager and use unique passwords for everything, this covers the overwhelmingly likely scenarios.  All your online accounts should either be ~14+ character “dl+ruHgGv6-c0$1hh7” style passwords or 4+ random word “correct horse battery staple” style passwords. The password manager should generate them for you.</p>\n<p>Make sure your phone has a password and consider using it instead of biometrics (face/, fingerprint unlock).  Passwords can’t typically be compelled but they can force you to unlock things with your face/fingerprints.  Enable whole disk encryption on any computers that have access to your password manager or accounts.  Turn these systems off when you’re away or asleep. Enable automatic reboot on your phone if supported so it will reboot itself if not unlocked after a set amount of time, preferably 12-24 hours max.  This sounds dumb but makes it 10x harder to break into if you’re taken into custody due to how phone encryption works.</p>\n<p>If you like social media, create accounts that aren’t in your name and have no common links (different email addresses, passwords, user names, etc).  Do so over a VPN or Tor, ideally with an exit node outside the country and use email aliases through proton or similar so they’re all different.  Never access them from a non-VPNed connection, your IP is logged every time you connect and kept for who-knows how long on the servers.  Rotate these accounts so that your opinions and posts aren’t all connected to one identity.  If you accidently post something that identifies you (you will make mistakes and should plan for it), that limits the damage to only the posts associated with that account rather than all your activity on that site.  <strong>Disable history on everything!  Google search, Google maps, Google location history, YouTube, your browser, EVERYTHING.</strong> Most of the stuff you see in court is just “well their Google history said they searched for XYZ so clearly they’re a terrorist”.</p>\n<p>If you’re really enterprising, setup an old computer that’s only for social media and has the VPN enabled full time. Bonus points for using Tails Linux as the operating system but if you keep to the above it’s just an added layer of safety.</p>\n<p>Right now the stuff we’re seeing is mostly low hanging fruit, they seem to be targeting people by literally browsing Canary Mission.  They’re not employing particularly sophisticated methodology yet.  That may change though so the above guards against that, at least somewhat.  Your mission isn’t to be able to resist the full attention of the NSA, it’s to be much more difficult than average so they turn their limited resources elsewhere because they have a quota to meet that week.</p>\n","inReplyTo":"https://lemmy.world/post/27517303","mediaType":"text/html","source":{"content":"It comes down to looking at the chain they can use to link a post to you.  You should be able to express yourself fully without fear of retribution.\n\nFirst and most importantly, get a password manager and use unique passwords for everything, this covers the overwhelmingly likely scenarios.  All your online accounts should either be ~14+ character \"dl+ruHgGv6-c0$1hh7\" style passwords or 4+ random word \"correct horse battery staple\" style passwords. The password manager should generate them for you.\n\nMake sure your phone has a password and consider using it instead of biometrics (face/, fingerprint unlock).  Passwords can't typically be compelled but they can force you to unlock things with your face/fingerprints.  Enable whole disk encryption on any computers that have access to your password manager or accounts.  Turn these systems off when you're away or asleep. Enable automatic reboot on your phone if supported so it will reboot itself if not unlocked after a set amount of time, preferably 12-24 hours max.  This sounds dumb but makes it 10x harder to break into if you're taken into custody due to how phone encryption works.\n\nIf you like social media, create accounts that aren't in your name and have no common links (different email addresses, passwords, user names, etc).  Do so over a VPN or Tor, ideally with an exit node outside the country and use email aliases through proton or similar so they're all different.  Never access them from a non-VPNed connection, your IP is logged every time you connect and kept for who-knows how long on the servers.  Rotate these accounts so that your opinions and posts aren't all connected to one identity.  If you accidently post something that identifies you (you will make mistakes and should plan for it), that limits the damage to only the posts associated with that account rather than all your activity on that site.  **Disable history on everything!  Google search, Google maps, Google location history, YouTube, your browser, EVERYTHING.** Most of the stuff you see in court is just \"well their Google history said they searched for XYZ so clearly they're a terrorist\".\n\nIf you're really enterprising, setup an old computer that's only for social media and has the VPN enabled full time. Bonus points for using Tails Linux as the operating system but if you keep to the above it's just an added layer of safety.\n\nRight now the stuff we're seeing is mostly low hanging fruit, they seem to be targeting people by literally browsing Canary Mission.  They're not employing particularly sophisticated methodology yet.  That may change though so the above guards against that, at least somewhat.  Your mission isn't to be able to resist the full attention of the NSA, it's to be much more difficult than average so they turn their limited resources elsewhere because they have a quota to meet that week.","mediaType":"text/markdown"},"published":"2025-03-29T01:42:55.044122Z","tag":[{"href":"https://lemmy.world/u/Shootingstarrz17","name":"@Shootingstarrz17@lemmy.world","type":"Mention"}],"distinguished":false,"language":{"identifier":"en","name":"English"},"audience":"https://lemmy.one/c/privacyguides","attachment":[]},"cc":["https://lemmy.one/c/privacyguides","https://lemmy.world/u/Shootingstarrz17"],"tag":[{"href":"https://lemmy.world/u/Shootingstarrz17","name":"@Shootingstarrz17@lemmy.world","type":"Mention"}],"type":"Create","audience":"https://lemmy.one/c/privacyguides"},"cc":["https://lemmy.one/c/privacyguides/followers"],"type":"Announce","id":"https://lemmy.one/activities/announce/create/406fe381-fd06-45a4-a97f-f4e84863fdf6"}