Yes, well, if you want to have the ultimate experience in terms of privacy Brave is not the right choice.
Let’s say, Brave is some kind of better Firefox. It’s something you can recommend easily to anyone else, because it’s easy to use: they don’t have to look for certain plugins, don’t need to install them (we all know: this is already too much for most of the people outside this forum). The most basic stuff you always keep telling them about privacy is already on board.
And it has this nice overview each time when you open a new window/tab, displaying how many trackers already have been blocked.
I mean, sure, it’s flashy, but it’s a neat feature for persons who tend to only believe something they can actually see.
Plus, if they even want to dive in deeper, they can open a TOR window, that acutally works. No extra apps needed.
In total: Brave is a good starting point and best, if you want to have both. As much privacy as possible and usable internet.
Not a lot I can do about that. I live in a world where many(most) people I know care less (or know less) than I do about privacy and “big tech”. I am not going to stop communicating with those people.
To me there is not so much difference between “privacy” and “security”. If security is compromised, privacy will surely be compromised with it… And if privacy is violated, security issues may follow.
Though I am no expert, it would seem foolish to me if someone would declare, he would only care for privacy, but not for security. This would be like saying " I don’t want my private data go to Google, but I don’t care for hacker, spies, criminals to abuse my data…"
It is different. Privacy and Security are not the same subject and does not involve the same tools and techniques.
One is putting curtains on your windows, the other is installing an unbreakable door…
Not the same threat, not the same defense.
Privacy and security are closely connected. You will not long have privacy if you neglect s/e/curity. Curtains on your windows will not stay in place if your windows are easily opened or broken. If your neighborhood does not have effective public (police) or private security services and infrastructure, people who wish to violate your privacy will not be deterred.
This has nothing to do with being security hardened.
/e/OS is not even providing the absolute bare minimum of security and that is directly harmful to you, the users.
/e/OS is a successful project, I want to see it stick around, but I can’t stand to see you all accept this insecure trash you are fed.
Y’all need to get your head out of the sand, and start demanding /e/ team provide you some modicum of security, especially if you’ve bought a device from them.
Thanks for pointing to this interesting statement. Right, Google claims to keep all your data as secure as possible, as does Apple and others. But however one will define “security” and “privacy” as beeing somehow different from a technical (or legal) point of view - in the end they converge as to the effects for the user: My privacy will be destroyed against my will and interest.
I like the emergence of alternative frontends to popular services (twitter, instagram, youtube). It’s the data that users created that is interesting, not how the service envisions it’s representation.
There is some risk: where it is not a platform offered frontend (as in old.reddit.com), these are essentially untrusted proxies that could give you any kind of payload.
The potential benefits are: faster rendering due to less javascript heavy sites, no cookie banners, no recaptchas, less login nags (as in the occasional instagram tap).
Awhile back I posted about deGoogling via the network. I wanted to set up a ROM with that in mind but due to work, laziness, and procrastination it took awhile. By the time I was running such a setup the thread had closed so couldn’t follow up.
For some months I’ve been running a ROM with UnifiedNlp for location services (microG with no Google stuff turned on would be equivalent) and IVPN with its Hardcore AntiTracker turned on (all Google and Facebook domains are blocked). As my daily driver. All good and haven’t felt like I’m missing anything. Have other devices in case I do.
Iceraven with Privacy Redirect addon, UntrackMe Lite for redirecting to other browsers, and doing what little social I do out on the Fediverse.
Only recently did I hit two snags.
Minor: Bandcamp uses Google for logins. Bandcamp has been my Amazon Music alternative for my weird tastes.
Since I’m not a full follower of the anti GAFAM/GAMAM/AAMAM “movement” I just might put Amazon Music on the ROM and see how it fares (it has no trackers at least).
Not so minor: I didn’t realize until last month that Iceraven had not synced bookmarks since November. A little testing and I found that Firefox Sync uses googleusercontent.com.
That’s a bummer as I wasn’t aware of that. Turning off the blocking allowed me to sync.
As an experiment I tried the xBrowserSync addon on Iceraven (as well as on Smart Cookie Web-Preview on another device) but it errors once credentials are entered.
Before anyone mentions it, I’m not in the position to self-host Firefox Sync. My computers are collecting dust at.the moment.
I still use Amazon myself, though, for shopping from the desktop, and for Prime Video with the Roku app. Of course, I use Pi-hole or NoScript to negate as much needless tracking as possible.
I don’t use Amazon Music (limited catalog for discerning tastes maybe…?), and I’ve stopped using Amazon apps on Android since I installed /e/.
Regarding trackers, I’ve maintained my own blocklists along with a combined one from many permissive sources. Notably, using wildcard compression the list size is cut in half and can actually block more!
You can easily add it to your existing blocker such as uBlock Origin, Pi-Hole, Blokada/DNS66, etc.: https://divested.dev/index.php?page=dnsbl
Once again I’m sorry not to find Vivaldi browser mentioned (I know it is because Vivaldi is not 100% open-source but they speak openly about that). I trust them. Yes, it’s a question of trust. It’s good to question things but at some point it’s a question of trust.
Of course, you can have “security” without privacy (and some try to tell us only without privacy you can really be secure…).
But you will not long have much privacy without some decent security to protect you from illegal actions.
So, technically there are maybe different issues (there always are), but finally one has to take into account all of them…
/e/OS WebView and Browser, based on Chromium 96, now totals 129 known security issues.
CVE-2022-0609 and CVE-2021-4102 are both actively being abused in the wild.
