Wow thank you, this is the most useful reply I've received so far!
This means I don't need to mess around with QBT's "proxy" settings? I was pretty confused since the only options available are SOCKS/SOCKS5 and HTTP, but I'm guessing that's a different kind of proxy than what I need...
Yes I already have that set up with Wireguard, what I'm figuring out is how to route traffic through it.
Thank you for the links, I had found a few of these but some are new. The basic idea is there, I'll see if any of these can work for us. I'm growing more convinced though that hosting a whole app for this super simple use case might not be worth it, I think we might pivot to just hosting a really basic static page for it.
This is way too overkill for what we need. I'm sorry, I've been intentionally vague about the context for this but I guess it's too unclear. We're an activist group planning a protest. We might have to get this set up literally tomorrow and every penny comes out of (mostly my) pocket. We're also all paranoid about opsec and anonymity, which is why the requirement about avoiding corporate services is there. Perhaps I should have posted this in a privacy focused comm instead, I apologize.
It's pretty overkill for what we need, and it would still fall under "corporate" for us. At that point I could just go for the static Notion page which I can get live in 5m for free.
We can set up all of those but again, that's kinda expensive for us rn. What's the benefit of using a CMS like Joomla versus wishthis, or even a basic Caddy/Nginx webserver with a static page?
Oh I mean, sure, but I don't think IP logging is the main privacy concern with spy pixels.
I'm assuming this trick uses the user agent string and other request metadata to identify clients. Even if it didn't recognize Jerboa as a client, it did guess that I was on mobile. That's not possible just by tracking IPs, unless they're cross-referencing it with other datasets. Also, I was on VPN anyway, so the IP would have been useless.
It should be possible for clients to obfuscate/fake the metadata of image requests to make tracking with spy pixels less effective.
The article makes piracy sound synonymous with and exclusive to torrenting
It was only meant to be a guide about torrenting pirated software specifically, not pirating software in general. I also started by linking to the megathread to link people to other resources.
I don't really want to add a whole other section about DDL just because I feel I couldn't do it justice, and people have probably already done a better job at that.
I already have a paid one, but I wrote this for people who don't care enough to pay for one. Basically the alternative is either a free one or none. If I'm talking to a friend I'd rather they use a shady free VPN than none at all.
Well it has embedded GIFs and videos, it's not gonna work without JS...
On a side note, people are way too paranoid about JavaScript for privacy. Browsers are much better at sandboxing and restricting webpages than they used to be. Sure, I guess only viewing static pages like it's 1995 is better for privacy, but it's a bit unreasonable of a tradeoff to make.
Yeah what's being described there is basically a P2P model. I still think it wouldn't make a huge difference in the chattiness of the protocol. At best it would redistribute the load for outgoing federation messages, but not for incoming ones. An instance still has to receive each message individually, regardless of where they comes from.
Fantastic, thank you