171

Go

10

In the last months I have seen some operational security mistakes from people on our side that cost us dear, but could have been easily avoided with a little bit of technical knowledge. So I decided to write a basic digital security guide that might come in handy for more non-technical people.

Who is this guide for? This guide is aimed at the average Joe that wants to get active, at people who audit votes, organize peaceful demonstrations, local politicians or even parents fighting Critical Race Theory. It recommends tools that are either free or cheap, are easy to use and require little technical knowledge.

Who is this guide NOT for? Any kind of illegal activity or people who need military grade protection (e.g. high ranking politicians). If you plan to go full 1776, leave your phone at home.

A few general security tips

Nothing that is transmitted digitally is ever 100% private. Even if it is encrypted in transmission, the receiving device might be backdoored, your conversation may be uploaded in plain text to a backup service or your contact might screenshot your messages and sell you out a few weeks later. If you need to communicate safely, meet in person, have a walk in the park, and leave your phone at the office.

When you send an unencrypted e-mail or a text message, government agencies can read the content of your communication the second you send it. Each and every mail and text you ever send is stored in gigantic databases, often for years, sometimes forever, depending on how high ranking of a target you are. Your phone calls are easily accesible and are recorded and automatically transcribed as well. The same goes for data stored in cloud services like Dropbox, OneDrive or iCloud. If your data is not end-to-end encrypted, assume that every low ranking FBI agent and up can access it.

You might ask yourself, if the feds can get to your data anyways, why even bother with security? Because using secure means of communication buys you time, reduces the attack vector they have against you and potentially exposes people and companies collaborating with the enemy.

Security for your data consists of many layers, from physical access to your devices to using non-guessable passwords. First step is to make sure that only you can use your devices. Secure the laptop with a password, put it into a lockable drawer and lock the room where it is in.

If you are active on internet forums like this there are additional threats. There are a few ways the enemy could try to get your true identity, even if they don't have access to server logs. That's why you should open as little third party content as possible that gets linked on patriotic sites. PDFs can be an infection vector, Google Docs leak your Google account, even simple images can hide malicious code. Do not take offers to "collaborate" if you get them on patriotic forums that are under close scrutiny by the powers that be.

What you can do to improve your privacy and security

Signal app for mobile messaging: Signal is a classic for secure messaging, it was developed after the Snowden leaks and uses state of the art end-to-end encryption. Use this app to send messages, organize a group, and make phone calls. All patriots should have Signal installed on their phone.

ProtonMail for e-mail communication: ProtonMail has come under attack lately for some dubious decisions they made, like logging the IP address of their users, but they are still the best privacy focused mail service out there. The company's original goal was to protect Swiss scientists and EU parliamentarians from foreign intelligence services. Based in Switzerland, it enjoys their solid privacy laws and the encryption they use has never been broken. Note that you only get encrypted communication if you send from your ProtonMail to another ProtonMail user.

A Virtual Private Network (VPN) for posting information on the web: A VPN hides the actual IP address of your device behind an IP address of the VPN company. It protects you from being identified when you surf the web, post a comment on social media, YouTube or any other place. Note that the company that provides the VPN can obviously see everything you do, therefore use only privacy focused VPNs with a good reputation. I recommend Mulvad, Windscribe or AirVPN, but the reliability and ownership of these companies may change at any time.

Avoid Google Chrome: Replace Chrome with an alternative browser that isn't collecting your data 24/7. Safari, Firefox, Brave browser are all better options. I recommend Firefox with the uBlock Origin addon. Firefox has the advantage of encrypting your bookmarks if you sync them via your Firefox account with other devices.

iPhone over Androids: In general I would recommend iPhones over Androids, since Apple is pretty privacy focused and Google basically lives off collecting and selling your data. There is a reason why there is a lot of talk about law enforcement hacking into iPhones but you never hear them having any problems with Android phones. Disk encryption with the secure enclave on modern Apple SOCs is top notch. But you need to be aware that both phone operating systems can be backdoored by three letter companies quite easily. The picture changes if you start to install custom ROMs on your Android phone, but this is out of reach for most people.

Avoid cloud storage like iCloud or Dropbox: All the major cloud storage providers have full access to the data you upload there and liberally give access to this data to federal agencies. It is hard to find a free and secure cloud storage but MEGA checks the most important boxes. It was founded by Kim Dotcom, the German entrepeneur that got swatted by police because Hollywood demanded so. All data is end-to-end encrypted which is very rare among cloud storage providers.

Use full disk encryption on your laptop and your phone: For Windows this means you need to activate BitLocker which comes with Windows 10 pro and up. All iPhones and many modern Android phones come with full disk encryption already enabled. If you lock your device by biometric means, e.g. your fingerprint or your face you can be forced to unlock it on the spot. If you use a passcode you can claim to not remember it. Note that a judge can put you in prison indefinitely until you agree to unlock your device.

Feel free to point out better alternatives to my suggestions or where I got it wrong. This topic is quite complex and I plan to improve this guide and keep it up-to-date.

10

google or Microsoft?

I personally would much rather trust google

20
21
stay safe (media.communities.win)
posted ago by apchrkey ago by apchrkey
14

Looking to start carrying a degoogle phone and wondering what the best ones are to degoogle.

13
23
19
14

There are a lot of platforms to choose from. Does anyone have any recommendations? I've never installed an OS on a computer before, so any advice on that would be appreciated.

21
16
11

PRIVACY-BASED ALTERNATIVES TO BIG TECH - The best list I've found so far! https://ghostbin.co/paste/hwzn6

I would recommend an unlocked Google Pixel 3 ($150) or 4a ($350) (Pixel 4 XL is also supported now) and install GrapheneOS. The only thing Google about Google Pixels is the software (the hardware is HTC Taiwan and Qualcomm American-based companies, as good you'll get for the price atm) and for some reason they leave it open for you to uninstall the OS and add in your own. GrapheneOS is much more secure than your stock Android or Apple software and gives you complete control. A phone with GrapheneOS will run like lightning compared to what you have now because it's not sucking up data.

For Linux based instructions, will be on their website somewhere and there will be youtube videos on what to do. https://grapheneos.org/install/

GRAPHENE OS INSTALLATION INSTRUCTIONS USING WINDOWS COMP.

--Web-Based installer-- IS RECOMMENDED (Less chance for screw up) Officially supported operating systems for the web install method:

  • Windows 10
  • macOS Big Sur
  • Arch Linux
  • Debian 10 (buster)
  • Ubuntu 20.04 LTS
  • Ubuntu 20.10
  • ChromeOS
  • GrapheneOS
  • Google Android on GrapheneOS-supported devices

https://grapheneos.org/install/web


Officially supported operating systems for the CLI install method:

  • Windows 10
  • macOS Big Sur
  • Arch Linux
  • Debian 10 (buster)
  • Ubuntu 20.04 LTS
  • Ubuntu 20.10

https://grapheneos.org/install/cli


  1. Install or update the Android SDK Platform Tools:

    • Download and unpack the Standalone Android SDK Platform-Tools package: https://developer.android.com/studio/releases/platform-tools
    • Add a PATH Environment Variable to the unpacked folder (Windows 10: Control Panel > Advanced System Settings > Environment Variables)
    • Make sure that there are no other versions of Android SDK Platform Tools in your computer. Old versions will result to failures in image flashing.
    • (I saw LeAndroid in Device Manager once this was working)
  2. Install or update the Google USB Device Driver:

    • Download the Google USB Device driver: https://developer.android.com/studio/run/win-usb
    • Open Start menu, press power button, hold Shift and restart computer, Select Troubleshoot > Advanced options > Startup Settings and click Restart.
    • Open Windows OS Device Manager and find the new device that shows up when you plug in your phone
    • Update device driver (Windows 10: Device Manager > Universal Serial Bus devices > [Device Name] > Update driver) using the Google USB Device driver
    • (If you haven't been able to get this to work, I think being able to see results for "fastboot devices" in Powershell script later on means everything for this step is already good.
  3. Prepare the system image:

    • Download the factory system image that is appropriate for the device:
    • If possible, verify the system image ( open sunfish-factory-xxxxxxxxxxxxx.zip.sig file in notepad and look at SHA256 (sunfish-factory-xxxxxxxxxxxxx.zip.sig) = "Some Hash Tag". Now open up command prompt (start -> cmd -> enter) then type "certutil -hashfile "ZIP FILE LOCATION AND NAME" sha256" and press enter. Both numbers should be the same from zip.sig file and cmd prompt)
  4. Flash the system image into the device:

    • Notes:
      • First make sure that the stock system image is updated to the latest release to avoid any problems.
      • There is no need to turn on USB Debugging in Developer Options to flash a system image (even when sideloading with ADB in Recovery Mode.)
      • Enable OEM unlocking in Developer Options (Important: This requires internet access on devices with Google Play Services as part of Factory Reset Protection (FRP) for anti-theft protection.)
    • Unlock the bootloader:
      • Put the device in Fastboot Mode (Turn off the device then press and hold the Power and Volume Down Buttons at the same time until you see the Fastboot Mode Screen)
      • Connect to the computer and verify the connection on Powershell (Admin): "fastboot devices"
      • Unlock the bootloader: Open a Powershell (Admin) and type in "fastboot flashing unlock" (use the Volume then the Power buttons to confirm)
      • Unlock the bootloader: in Powershell type in"fastboot flashing unlock" (use the Volume then the Power buttons to confirm)
      • The device performs a factory reset then boots back to Fastboot Mode
  • Install the system image: - Open a Command window, go to the unpacked system image folder and run the flash-all.bat script (Go to the grapheneOS or sunfish-factory.xxxxxxxxx folder, click flash-all.bat) ( If you get a windows smartscreen error that doesn't let you run flash-all.bat, search in apps "windows security", go to "virus & threat protection", click manage settings, turn off "Real-time Protection", go back and click flash-all.bat, click more info on smartscreen window, then press run anyway) - During the update, the device will reboot to fastbootd. Do not do anything and let the update continue - After it is done, choose option 'Reboot to bootloader' from the fastbootd menu to go back to Fastboot Mode
    • Re-lock the bootloader:
      • Lock the bootloader: In Powershell, type in "fastboot flashing lock" (use the Volume then the Power buttons to confirm)
      • The device performs a factory reset then boots back to Fastboot Mode
    • Complete the device configuration
      • Unplug the device from the computer and choose option 'Start' in Fastboot Mode to load the device OS
      • Perform device configuration

Find FOSS apps, use F-Driod to find apps, OpenOSM for maps, Newpipe/Freetube for Youtube, Signal/Session/Element for Messaging/Calling, Exodus to see if your apps have trackers (delete ones that do).

I also recommend Swiss-based VPN like Protonmail and Mullvad, I don't trust the PIA Chief Tech Officer with his history in the Mt Gox hack (the first major cryptocurrency exchange and it got hacked for millions of Bitcoin, investigations found that some part of the company was involved in their own hacking).

16

Hi, right off the bat I'm sorry. Also though as much as I would love a step by step "for dummies", if you will, let me just say I would equally love many replies each with nuggets. I'm of a personality type that collects all the data, even useless, then sort thru for what I need. In this case I need it all. I've been meaning to wrtie this for a very long time. Well when "TheDonald" was all we had. I just didn't wanna bother anyone. Since I've never had an issue with asking for help I'm finally asking. My problem, I need it all.

I live in a small town in a "fly overstate". My options are limited so are my resources. I'm very self sufficient & resourceful. The kind of person that'd be useful in a "zombie Apocalypse" but since we're not quite there I'm just someone learning stuff for projects that take up all my time.

Back when I was a kid I loved science & tech. But as a young adult science became "Science" & abandoned me & my poor lil surf brain. Tech became something I could no longer "reconcile" so I left it all to drown my future into a meaningless life & went to sleep.

Although I loved computers as a kid & even learned as much as I could it was the early 80's & I was poor. I even learned how to make computer animations before pixar was known. I used to make logos & business letterhead/bus cards etc on the side before windows was a thing. That being said the 15 years that followed I tried to fry any knowledge I had previously known. Successfully I might add because "c:" is all that remains.

I had a cell phone once in my mid 20's but cingular charged my 1st bill every min of every day for one month. That ended that. I dabbled in photoshop, had a myspace for a week & used facebook as an old fashioned "message board". Meaning I would "hang a note" then eventually come back for a reply note. Since I was as irresponsible as they come this was how my family knew I was alive. I loved the internet though for the only purpose I used w/any regularity was to "google". I "googled" anything & everything "data data give it meee"!

Perhaps because it wasn't everyday I noticed changes. Ex: when googles results now came after ads. Then after almost a page of ads. Then the results we off a little like at 1st it was the result with the most in common w/ur question. Now it was the most clicked then more in common so sometimes it wasn't relevant at all. So on & so forth.

Okay, sorry. 2015 I wake slowly but surely. Never having been on twitter, reddit, 4chan, 8chan, instgram, even youtube. Never posted something private, taken a pic of my food, taken a selfie you get it. I knew about anonymous & kinda secretly hoped they would save the world. I had noticed after getting a "smartphone" that google apps were already there & I coudnt delete them (this pissed me off). Very quickly dove into everything & just as quickly realized we had censorship. Angry that I was only then learning we secretly lived in Chy-na I tried to "learn up".

Well it is very possibly that I went too fast & hurt myself. I was taking everything from anywhere I wanted to know all the things that I ignored. Watched things that broke me. Learned truths that sometimes I wish they were lies & I was just crazy. Tried to share to no avail. This was the straw. I had a nervous breakdown & have not been right sense. Im still me, still the same but my brain doesnt work the same. I loose time like crazy like a slow clock. I cant retain info in the short term like before the way you do when your learning. I can no longer finish anything or see it through.

I have done searches, downloaded, read tried, tried& failed every privacy thing possible. I dont fully grasp any of it really. I know the gist like ip being like my devices fingerprint & its location is my router. Vpn would lie to prying eyes & say rather Im so & so from denmark. I know Im a noob. I have wanted to root my android but Im afriad to brick it. Ive never been on the deep web for research cuz Im scared to come across child porn. I know to save things of importance offline. I have watched pirated movies although I no longer partake of Hollywood in any way shape or form. I have burned a mixed cd or 2 back in the day. I still type using 5 fingers on 2 hands. I know what omg, idk, imo,irl,but that is prob the extent of that list. I have a chromebook because when I purchased it I didn' know it was just a big cell phone with a keyboard. I have downloaded linux, ubuntu, tor on it. I did the dual so it was still a chrome os. I used it kind of successfully. The thing is since I don't have much $ to spare & even less understanding the entire privacy thing is not in my vocabulary. I used to say "I don't care who am I hiding from anyways" but now I understand because I can't do anything online anymore.

I have not been able to get on video.maga.host for aprox 6 weeks. I have spent HOURS attempting everything noting works not even on any other device I have access to in any other location. Not to mention even though I have "updates" & anything else similar to be done manually or not at all I keep coming home to find my devices completely wiped. A few times so wiped I could not even long in as anything other than a guest including "new user". The only good thing about any of this is I have routinely stored everything offline, & there is a lot.

So, my request for anyone still reading this is please help me. I will take anything you have to give. even just a link. Beggars can't be choosers & I am begging. I want to root my phone or do anything to it that lets me decide what I do & don't want. I want to do the same to my laptop. I also know my wifi is prob part of the prob. Is it a really big part? If so then what do I need instead. I want a desktop but need funds first what would be my best lest expensive option but not ness the cheapest. VPN what is it, how does it work, does it work, who is best all around? Just for research I dont play video games anymore or download movie I only research thats it so whatever for that purpose. My bf does do those things but he's still asleep & refuses anything I say so I no longer say anything. If he wants a vpn for movies he can figure it out. I want to use a browser & search engine that does not censor at all. duckduckgo does I can tell & firefox acts suspect too. I loahe 404! I want to understand coding basics like whats http, https, html, whats all the stuff in the developer menu about? What is a server exactly or hosting & whats open source all about? These types of things & more. Anything & everything, please overwhelm me, I need it. But from where I stand w/what I have & the internet I am "allowed" to use there is soooo much & often conflicting info. I know many on here have tech running through their veins (metaphorically I hope) so this stuff is like breathing. I hope that something I wrote is something you wouldn't mind sharing. Like I said it can be winded extremely detailed on 1 part of one question or a link to a site that covers a topic. I don;'t care I'll take it all. I just want reliable answers coming from a place of actual desire to assist me in this struggle. My intention is to download & prob print for reference. I want to learn it all.

Im at my wits end. Im sick of being silenced. I can not longer stand being told what information & may & may not have. And I am just done with my inability to tackle this problem w/my broken defiant brain. I am begging PLEASE for the love of God someone help me I feel abandoned & alone, trapped in a box & my only source of light is a crack that as we speak is being plastered. Im soory for the length & the drama but I am in no way exaggerating. Thank you.

27
23

Because I dont need glowies or political antagonists to destroy my life, career, or families safety.

17
21
13

If so, how was your experience? What are some other good exchanges without kyc to buy monero?

27
20

See above. The game itself seems fairly innocuous - akin to the "mafia" game that youth groups used to play - but I realize that whenever a product costs nothing to play, you are the product.

Supposedly a more private mapping app that uses OpenStreet Map data. I've read elsewhere that they don't track you, but not sure how much of that to believe (not sure of the posters' expertise). Where's a reputable repository to get the APK that won't force me to install appgallery?

view more: Next ›