Sounds like what you’re looking for is PGP/GPG. Been around for a while, but does the job well.
Also, I doubt most projects built outside of the UK (or Europe as the EU seems to be moving in a similar direction) will actually comply and backdoor their own software. As long as you have internet they’ll always be actually secure software to download.
Well, yes, GnuPG is certainly an option. I don’t care how it’s implemented though, but I do care about the fact that clients/client apps take encryption into their own hands instead of relying on middleware.
Clients taking it into their own hands reminds me of delta chat. Basically the same thing but the client handles encryption and uses a generic email server as the chat server.
But any good client will handle encryption themselves (heck even “bad” clients will do that). As long as they’re not UK based and don’t neuter the clients for their UK users they’ll still retain proper encryption completely client side (outside of public key infrastructure which is a whole different topic).
From what I understand of PKI and the way the Internet is right now, trust in identity would be very hard to build if clients engage in PKI.
But taking encryption into one’s hands basically brings back control into one’s hands. You do not specifically need an encrypted connection in such a case, just a tamper-proof connection.
I have searx, and i’m feeling like a god of search, better than google, better that bingbinggo, and anything else Although I had a lot of problems with it when I was hosting it on a RPI and docker, now i’m not, and it’s just so much better
Docker by itself is not a good thing, bad with security, not entirely open source, buggy networking, not very reproducible
The problem with docker was timeout for requests, not sure whose falt it was, but the reverse proxy container was unresponsive pretty often
Also, yeah, RPI was not really fast too, it had 8gb ram, boot from ssd Just right now I have i9 with 64gb ram, and this is stupid fast, and actually for most of the apps the performance bump is like 50%
About docker, really, try to look into nixos, it has a really steep learning curve, but it will worth it, and you will be able to do magic
Containers are really awesome, but take a bit more to troubleshoot sometimes. Docker is not the only method to run them either. I prefer podman actually, but K3s is the next logical step for running services in a more powerful setup.
Podman is better, but believe my words, try nixos. It’s like a docker-compose file, but for a system, this is really something groundbreaking
You specify all the system and services passwords, usernames, all the stuff, your wallpapers, directories, keys, everything
And all basic configurations are already unified, so to enable some service you just need to add a line in your main config like services.nginx.enable = true; and it just works with all the bells and whistles (kind off, you can add much more. Even more than in containers)
The services are usually not sandboxes, but you can sandbox them, can even run the same containers
Sorry if you’re really not into it, it just nixos feels like a whole new lvl after podman
edit: even like that, I manage all my machines as a fleet with nixos, all from one configuration So I can basically press a button and change all the usernames on all machines and everything will continue working
Instead of adding each machine separately to a vpn, I just press a button and it deploys all the machines with wireguard and connects them all
No nix is super cool! I really like the idea that guix and nix in having that system as code from build to deployment. I am not sure yet on how I feel about it for fleet/cluster deployments, k8s schedulers, network patterns like service meshes, ETCD, and operating on labels and cluster state are all super powerful.
I have looked too into using nix to make OCI containers and OCI containers to make flatpaks as well. All where they make sense of course.
I don’t know if it even works, but have you considered relying on their Stealth protocol? While its absence on Linux (andWindows) means that you might not even be able to make use of it in the first place, I’m still interested to know if it makes any difference.
I should also add, this would require you to use a GDPR respecting instance. There’s a reason places like Amazon have amazon.com and amazon.co.uk, etc. That’s not tenable for me, or most users.
If you are using LibreTube this is fixable by disabling piped proxies in the setting. HOWEVER do be warned that Youtube will know your IP, so you should only really do this while using a VPN service.
Riddle me this. How exactly does one achieve "Privacy" when engaging with Disney? Netflix?
Presently, no streaming company knows what content of theirs I have consumed. Is that not privacy?
A data breech at Netflix will not reveal any of my personal information as they have none of my information. Is that not privacy?
You see, there's a great big blob where privacy and piracy intersect. Some might say it's a circle.
These companies sometimes list their own movies on torrent sites and then record everyone who downloaded it from them. So, yes, they can see what you download if you don’t mask your IP through some proxy.
privacy
Active
This magazine is from a federated server and may be incomplete. Browse more on the original instance.