45
Good Privacy Practices (Intermediate) (lemdro.id)
submitted 2 days ago* (last edited 1 day ago) by Normo@lemdro.id to c/privacy@lemmy.ml
13 comments fedilink hide all child comments

These are some practices which worked for me, You can adjust them to match your preferences. Feel free to add your own in the comments

  1. If you are forced to use something that is privacy invasive, Make it isolated from your actual profile. (Ex- Using a 2nd Browser profile, Using an alias to signup)
  1. Always use the services that you use from their official clients. Don't blindly trust 3rd party clients just because they claim that they are "more private", Do some research before using it.
  1. Don't mix up your work life with your personal life. Consider getting a second phone just for work purposes or you could use a second profile for work purposes if your phone has the ability to create multiple user profiles.
  1. Keep a habit of clearing the browser data once in a while. (You can make your browser automatically clear the browser data when closing but it can be kinda annoying when you have to log back into websites everytime)
  1. Strip away the metadata of your photos and documents when sharing them.
  1. Check connected apps/services regularly and revoke unused ones. (on Discord, GitHub, Matrix and etc.)
  1. Audit app permissions regularly (Some apps adds in new permissions or re-enables permissions over updates)

The old #3 tip got removed (The password one) because it served no additional protection and was pretty annoying. It was a mistake by me, sorry

top 13 comments
sorted by: hot top controversial new old
[-] lunatique@lemmy.ml 2 points 1 day ago
  1. Strip away the metadata of your photos and documents when sharing them

Is underrated and extremely useful. Good post

[-] RiQuY@lemmy.zip 13 points 2 days ago

Good advices but an easier solution to point 3 is using an e2e encrypted password manager or a offline only one.

[-] that_one_guy@lemmy.ml 2 points 17 hours ago

Using a password manager also helps alleviate the inconveniences highlighted in point 4. Logging back into a website isn't so bad when you can just auto-fill your way in.

[-] Normo@lemdro.id 1 points 2 days ago

Yeah i agree on that one

[-] irmadlad@lemmy.world 2 points 1 day ago* (last edited 1 day ago)
  1. Silo ALL online accounts. All online accounts should have a separate name, avatar, email alias, etc, and be opened in assigned Firefox containers. Burner email aliases will be your friend here. Do not link these accounts, or if you must, link one or two but have them dead end there. The last thing you want is someone hopscotching all the way to your front door.

In reference to #5, daily use of BleachBit at the end of each computer session. Tick the 'Free Disk Space' box under the System options. Takes about an hour and a half for my system, so I run BleachBit in the evening. It won't free up disk space, nor will it make your computer run faster, but it's certainly good for security aspects. PrivaZer is also a good piece of software but it's windows based.

#3 is a pretty good tip although Bitwarden's track record of breaches that resulted in password leaks, is fairly substantial.

#6 makes me giggle because I do that for rare pictures I post online. Sometimes, I'll inject something like 'The music is reversible but time is not. Turn back, turn back, turn back' in one of the exif slots, just to see if someone is paying attention. BTW, the phrase is from an ELO instrumental that was laced with a backwards message. IIRC, the same song was used by NBC for an intro to one of their sports broadcasts back in the 70s.

[-] pineapple@lemmy.ml 4 points 19 hours ago

Bitwarden’s track record of breaches that resulted in password leaks, is fairly substantial.

Is that, never?

[-] irmadlad@lemmy.world 4 points 19 hours ago

I mean, there have been breaches. In 2023 there were a small handful, and again in 2024/2025. There have been some incidents where passwords were lifted from Have I Been Pwned and some other reused passwords that were already out on the tubes, but none to my knowledge that resulted in user's db being hacked.

[-] N0x0n@lemmy.ml 4 points 1 day ago

opened in assigned Firefox containers

Is there any kind of automate way to do that? Because if you have always to think what account goes in what container :/ This is a lot of brain overheat !

[-] irmadlad@lemmy.world 3 points 1 day ago

Yes there is actually. FireFox Containers is what you are looking for. Now, it does take a little effort to set up, but once set up, it works like a charm. First, I create containers, lets say Lemmy is a container. Then I open Lemmy in the Lemmy container, right click the FireFox Container logo in your url bar, choose 'Always Open Site In Container' (the Lemmy container). The next time you click on your Lemmy bookmark, it will ask you 'Do you always want to open this site in the Lemmy container'. Select yes, and Jack's a doughnut, Bob's your uncle. It will always open Lemmy in the Lemmy container. You can add some other containers say 'General Slop' that you use to open random sites in.

[-] stupid_asshole69@hexbear.net 2 points 1 day ago

3 is stupid.

The point of a password manager is to enable the use of multiple different passwords and usernames. The point of using multiple, hopefully unique, passwords and usernames is that when joes website gets breached and their passwords and usernames get leaked because they were storing them in plaintext it doesn’t mean all your accounts everywhere else are now compromised.

That happens a lot and if you want to learn how affected you are at this very moment just check haveibeenpwned to see what’s osint on your usernames.

So let’s say you’re appending the classic “monkey1” to your autofilled password manager passwords. You’d be protected from a password manager breach until one of your website logins is breached and someone realizes all your gibberish high entropy passwords have “monkey1” on the end. Considering there are billions of leaked credentials and millions get added each week, that’s kind of like putting wallpaper up so the tank coming through your brick wall has to work a little harder.

So what would be actual good advice? Key rotation. At some interval, clear your cache, browsing history etc and change all your passwords. Now you’re actually protected from breaches of old credentials and current credential breaches are rendered moot.

If you read all the way down to here, consider not relying on this community for privacy or security advice. The fact that “stupid asshole” was able to easily articulate why something on the list is a waste of time when no one else has done so should raise some eyebrows.

[-] Normo@lemdro.id 2 points 1 day ago

bruh why you are so harsh. It was clearly a mistake on my end 😭😭

[-] stupid_asshole69@hexbear.net 1 points 1 day ago

That’s not harsh. The closing sentences were not meant as an attack on you but as commentary on a pattern in this community.

It’s worth noting that appending a string to your password manager passwords would protect you from simple automated attacks after a password manager breach. Sometimes that’s enough.

[-] eldavi@lemmy.ml 2 points 1 day ago

firefox makes #1, #4 & #5 easy with tabs & profile manager and #3 sounds clever; thanks for that.

this post was submitted on 09 Oct 2025
45 points (95.9% liked)

Privacy

42443 readers
799 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz