"WhatsApp cannot be trusted, because META (Facebook) is likely spying on everyone."
"Oh yeah, totally! They're working closely with the United States government, and who knows what they'll do now that they've embraced fascism?!"
"So, what should we use?"
"I have an idea! Let's use Signal — supposedly super secret and private — but also based in the United States. And let’s just completely ignore that fact."
"Sounds good to me!"
🤦
I don’t understand — perhaps I never will — why, when people are given unlimited choices, society collectively picks the dumb one.
There are alternatives, and they’re outside the reach of the United States:
I am looking for some recommendations on how to secure the data of my physical servers (against physical theft), that I am about to set up. I am new to selfhosting but have a few years of experience running Linux on a desktop. ...
TL;DR: store half of the decryption key on the computer and another half online and write a script that at boot fetches the second half and decrypt the drive. There is a timewindow where a thief could decrypt your data before you remove the key if they connect your computer to the network, but depending on your thread model can be acceptable.
you can also decrypt the root portion with a similar approach but you need to store the script in the initramfs and it is not trivial.
Another option I've seen suggested is storing the decryption key on a USB pendrive and connect it with a long extension cord to the server. The assumption is that a thief would unplug all the cables before stealing your server.
For many years, people have asked me if it's safe to keep 2FA codes in the same place as your passwords. Here's my opinion on whether or not you should do it: https://youtu.be/xHEX6wWYgS0
@techlore proton pass is good in that your data on proton pass is fully #encrypted. So if you use a hardware based #passkey such as a #yubikey to secure the main account, and have all your other accounts within use software based passkeys and 2FA, wouldn't be as much of a risk even if Proton Pass got breached as a service.
Some of the data used by Cambridge Analytica highlighted gun owners’ most personal information, like:
• If they owned cats
• Whether they were dieting
• If they were recently divorced
• Their political opinions
@ProPublica Get you act behind a #vpn, #firewall, #encrypted email, #burnerPhone and #pw protected computer. Just bc you're paranoid doesn't mean #MAGAmron and #muskrat aren't out to get you! Even if you're not the target, you don't want to end up as collateral damage.
Encrypting data on local servers?
I am looking for some recommendations on how to secure the data of my physical servers (against physical theft), that I am about to set up. I am new to selfhosting but have a few years of experience running Linux on a desktop. ...