I have media server which is using a commercial VPN that I got with my Usenet subscription. This is the only device on my home network that is using a VPN.

I tried to set up pihole on the same server with my router redirecting all traffic to it but couldn’t get it to work while the VPN was active. I’m now looking at getting a Pi 4B solely for pihole and considering running OpenVPN on my router so that my phone can run back to the pihole while I’m out.

My concern is that running the dual VPN setup may expose the traffic on my server. The commercial VPN does have an OpenVPN configuration that I could apply on my router but that’s not my preferred option.

Will my server traffic still be masked if I’m running a private OpenVPN configuration on the router?

I was looking at browsers in the Play store and saw the Ghostery browser. It's now apparently based on Firefox, and I assume the Ghostery (plugin/extension) functionality is built in. Does it protect privacy better than other browsers and is it worth trying out? I currently use Firefox on android but I detest it's UI decisions. I've no idea if Ghostery has a different UI or not.

Following the news that "Beeper becomes first RCS chat app for iPhones, introducing support for Google Messages with RCS" what are your thoughts on the app and on the RCS forced by Google? Is it worth a try? Or should I stick to Matrix and Signal?

Edit: source

Hi, I was wondering if there is an app that enables loyalty cards sharing. When you open it, you can enter your card code of the Store. Now you can use a card of any other participant who entered his own card for the Store (the backend will send a random one) and your code can be used by anyone else using the service. Usually the cards are just permanent ID (shown as a bar code), so it shouldn't be that hard to implement.

While using this, the shop would have no chance of creating a profile on you and tracking you (as the purchases would be “random”), they have these data anyway. You would only give up the data you fill in when you ask for the card.

Do you know something like this? Or am I missing something important, or do you see some major flaws in this design (I don't use loyalty cards, but sometimes they could be quite useful)? Thanks

Are there any VPNs that support both IPv6 AND Port Forwarding (PF) and if so, what is the best one for privacy and security? I know Mullvad is #1 right now and supports IPv6 but not PF. So what about others like OVPN, AirVPN, Windscribe, IVPN, etc.? I have PIA right now and am eager to switch.

I was using brave before and decided to switch to firefox but I did some research and turns out firefox collects way more by default than brave and I am switching back, what do you think?

cross-posted from: https://sh.itjust.works/post/3346046

Firefox used to be on top of the world with almost a third of all internet users using Firefox. These days, they make up a pitiful 2.7% of the market share. What happened? In this video, I want to show how Mozilla's terrible management and decisions have brought this once beloved browser down.

Hi guys

What 2FA for iOS would you recommend after Raivo OTP been sold?

I read a post here a while back claiming that graphine is less private but somehow more secure. Of course the only person I have to ask is the graphine Matrix who claims are the opposite of this. Generally my main concern about Calyx is it's Fake google play thing. Apparently this is less private than graphineOS's sandboxed google play since it is still connecting to Google, and is just as privileged as Google play usually is.

cross-posted from: https://feddit.cl/post/366747

I was reading this issue from LibreWolf project when I read that some of new GitLab users were asking to give credit card information.

I had no idea this was a thing. According to the forum it's a measure to avoid bots to use free CI workers time to mine shitcoins.

Apologies if this is the wrong forum, but I figured this group would have the most experience with this problem.

When using a /e/os phone and turning on the "hide my IP" feature, which enables For for everything, I noticed that Jerboa throws a full screen HTML dump. I can get to the Lemmy.world server (for example) via a browser on the same phone, even log in and use it that way.

Has anybody else experienced this? Is it a bug in Jerboa? Is it some sort of IP blocklist on the Lemmy.world api? Unfortunately, the full screen HTML dump is useless because I can't scroll and it's centered vertically, so all it really shows is the top few lines of some JavaScript function. I may report it as a Jerboa bug if nobody knows anything.

Many in the crypto and privacy community mistakenly trust Telegram because it's "end to end encrypted", but there are huge issues including not hiding the metadata, censorship, centralization, and phone numbers.
Send this video to your friend that asks why you won't join: https://video.simplifiedprivacy.com/why-telegram-sucks/

Hey all,

I'm looking for something that can track location of my preschooler who starts new school soon. He's too young to get a smartphone, so I have to rule out app based solutions I guess.

My initial research found virtually nothing. One candidate is GeoZilla, which sells nice devices and their pivacy policy looks okayish regarding location data, but it still relies on their servers of course. Another option would be an iWatch, which again puts trust into 3rd party, and the device is quite expensive for a small kid.

Any privacy-oriented trackers out there that I'm missing. Maybe there are some smartphone alternatives that can have cell connectivity and GPS and apps installed, but with much simpler interface?

Update: Thanks everyone! I got GeoZilla tag for now. The app doesn't require personal information, which is good. However, it's annoyingly reminds to enable location for itself to track "me", which I don't need at all. Garmin came as a strong second, mainly due to my child age. Garmin devices are not for very young kids, I believe. And it costs more than GeoZilla. I still have some time to think if I really want this, though. It's not too late to return GeoZilla tag

cross-posted from: https://programming.dev/post/1924228

Hey everyone, check the Linguist

• you can translate texts offline (with sent no one single byte to a Google and stay private)
• a lot of features and flexible configuration
• dictionary + history for learn languages
• it is are hackable - you can write code to use your own translation service

Where or what apps are you using to listen podcasts and still protect your privacy?

Hello there! Im looking for increased privacy when it comes to my network connections. So far I know of TOR as an almost absolute bastion of security, but how do I ensure the remaining network traffic is encrypted and private? I know of signal for communication, and I’m aware of VPN’s. However I’m not sure whether to trust most providers regarding government interference as their software often isn’t open source. Is there a federated VPN of sorts, similar to how lemmy and other fediverse apps work?

I use Firefox and Firefox Mobile on the desktop and Android respectively, Chromium with Bromite patches on Android, and infrequently Brave on the desktop to get to sites that only work properly with Chromium (more and more often - another whole separate can of worms too, this...) And I always pay attention to disable google.com and gstatic.com in NoScript and uBlock Origin whenever possible.

I noticed something quite striking: when I hit sites that use those hateful captchas from Google - aka "reCAPTCHA" that I know are from Google because they force me to temporarily reenable google.com and gstatic.com - statistically, Google quite consistently marks the captcha as passed with the green checkmark without even asking me to identify fire hydrants or bicycles once, or perhaps once but the test passes even if I purposedly don't select certain images, and almost never serves me those especially heinous "rolling captchas" that keep coming up with more and more images to identify or not as you click on them until it apparently has annoyed you enough and lets you through.

When I use Firefox however, the captchas never pass without at least one test, sometimes several in a row, and very often rolling captchas. And if I purposedly don't select certain images for the sake of experimentation, the captchas keep on coming and coming and coming forever - and if I keep doing it long enough, they plain never stop and the site become impossible to access.

Only with Firefox. Never with Chromium-based browsers.

I've been experimenting with this informally for months now and it's quite clear to me that Google has a dark pattern in place with its reCAPTCHA system to make Chrome and Chromium-based browsers the path of least resistance.

It's really disgusting...

If anyone can recommend me a better community to post this in, please do so.

I have an Exchange email that was given to me by my company, but they disabled IMAP/POP support, and they won't turn it on. I don't want to use an email client that requires access over my device (ex: screen lock control). Is there a good app that allows me to bypass that (like Davmail for a computer)? It doesn't need to be open source, I just need something that works without crazy control over my phone.

Hi. I recently had some issues with my lemmy client which made me accidentally post the exact same thing here twice. The posts were about privacy on my school issued computer. I could have made it more clear, but I wanted privacy from the companies that make their spyware not from the school that owns the computer. Anyway, as of now one post has more than 40 upvotes and less than 5 down. The other has 10 up and 5 down as well as significantly less helpful and more critical comments. My hypothesis is whether the early comments were helpful or critical determined what other people said. I am curios to see what everyone thinks of this.