34
Probably should assume everything will be leaked, anyone using Tor/VPN for Fediverse apps? (infosec.pub)
submitted 1 year ago by Yeah2206@infosec.pub to c/asklemmy@lemmy.ml
32 comments fedilink

Hello,

Since your Lemmy posts, comments, related activities, and your basic profile information will be stored in the databases across the fediverse, possibly never to be deleted (or kept by somebody who can), do you:

  1. Always use Tor/VPN with a fediverse app?
  2. Recommend others do the same?

If you feel that it is unnecessary, why do you feel that way? If you think it is necessary, why so?

Thanks. I am trying to get a feel of what I should do. For example, if my instance loses its data (due to a hack, sale, vulnerability, etc.), I am pretty sure all the information is lost (including my IP addresses). If other instances lose their data, or keep the data for their own purposes, then my posts/comments/related activities are lost (maybe excluding some of my profile information, my settings, and my IP addresses).

I look forward to hearing your thoughts.

monday left me broken by Yeah2206 in c/lemmyshitpost@lemmy.world
[-] Yeah2206@infosec.pub 5 points 1 year ago

Instruction: Put in water to return to normally fucked looking state.

Looking for tech news alternative to LinkedIn by Yeah2206 in c/asklemmy@lemmy.ml
[-] Yeah2206@infosec.pub 8 points 1 year ago

For on-line RSS reader, try https://www.inoreader.com . I love it. You can search for feeds right on the site, or can go to a specific site to look for a feed sign. For example, Lemmy has a feed URL right next the question mark on top, so you can read your Lemmy's subscriptions as a feed as well.

Lookin very suspicious over there. by Yeah2206 in c/aww@lemmy.world
[-] Yeah2206@infosec.pub 4 points 1 year ago

Or, do you want to give me a kiss?

Anybody else gets more upvotes in here than over THAT site? by Yeah2206 in c/asklemmy@lemmy.ml
[-] Yeah2206@infosec.pub 5 points 1 year ago

One upvote means at least one person appreciates you. More than that, there are no karmas or anything. You can use the votes to see the most appreciated comments, though.

Other than blue bubbles, why do you use iPhone? by Yeah2206 in c/asklemmy@lemmy.ml
[-] Yeah2206@infosec.pub 4 points 1 year ago

I personally wouldn't voluntarily use Apple products myself, but I have people close to me that buy iPhone because they think that's the best smartphone they can buy. There are some truths to it from the standpoints of warranty policies, technologies, privacy policies, update policies, securities, and reputations.

Announcing OpenLemmyStats.org: Publicly Queryable Vote History + Other Hidden Data for Any Lemmy User! by Yeah2206 in c/fediverse@lemmy.world
[-] Yeah2206@infosec.pub 6 points 1 year ago

Shh... The NSA is already working on it, and the EU won't sue the NSA either.

Here by Yeah2206 in c/linuxmemes@lemmy.world
[-] Yeah2206@infosec.pub 5 points 1 year ago

I pledge allegiance...

Twitter refuses to pay for arbitration it forced on 891 ex-employees, suit says by Yeah2206 in c/worldnews@lemmy.ml
[-] Yeah2206@infosec.pub 8 points 1 year ago

It's like, he doesn't know whether or not it's going to work, so delays paying anybody (except obviously the lawyers) as long as possible. When it really doesn't work out, nobody gets paid. If it somewhat works out, he negotiates the payment down. Do you want it, or do you want more delay?

LEAKED Titan Sub Transcript Shows Crew In Battle For Lives by Yeah2206 in c/videos@lemmy.world
[-] Yeah2206@infosec.pub 9 points 1 year ago

This is most likely a sensational waste of time. For all accounts, they communicated every 15 mins via short messages, and the last recorded communication was at 11:15a, which is definitely different from the claimed "transcript."

Opinion - What are your thoughts on password managers? Do you use one? Would you recommend it to others? by Yeah2206 in c/android@lemmy.world
[-] Yeah2206@infosec.pub 9 points 1 year ago* (last edited 1 year ago)

I also use Bitwarden. I would recommend it to anyone who can benefit from a cloud-based password manager because the basic functionality is free and the more advanced features (premium, family) are very affordable.

Using Bitwarden safely will make your digital life safer, but it will most likely be more complicated than it is now. You will need to:

  • Use a randomly generated password for the master password, which is unintuitive but increases your safety
  • Enable two-factor authentication (2FA) for all of your accounts that offer it.
  • Make an encrypted backup of your Bitwarden vault.
  • Create an emergency sheet with your master password, 2FA recovery key, and other important information.
  • Plan for what will happen to your passwords if you become sick or die.

You can think about increasing your safety/convenience step by step by keeping a book of password (which can be lost, so has to be kept secure and probably make backup) with

  1. Random password/passphrase generator
  2. Yubikey + recovery numbers
  3. Drop the book, use an offline password manager (which some consider safer)
  4. Switch to cloud-based cross-platform password manager, which maximizes convenience
YSK there are sites that offer you a temporary email address for signing up for services that require one (like some Lemmy servers) by Yeah2206 in c/youshouldknow@lemmy.world
[-] Yeah2206@infosec.pub 31 points 1 year ago

There are also more permanent alias services including Firefox Relay, SimpleLogin, AnonAddy, and DuckDuckGo. You can turn off each alias that you no longer need afterward.

Do you believe Lemmy/Mastodon can become mainstream and fully replace their centralized counterparts? by Yeah2206 in c/nostupidquestions@lemmy.world
[-] Yeah2206@infosec.pub 5 points 1 year ago

Need the money to work out; definitely not the same dynamics. Maybe more of the people who care for their communities.

view more: next ›

Yeah2206

joined 1 year ago