Reolink and one other I can’t remember seem to be the most consistently recommended hardware (actual security companies rather than cheap Chinese hardware rebranded by hundreds of drop shipping start ups). They only need internet access for the initial activation, and can be connected to home assistant or ftp server. I created an account with an alias email, then blocked its internet access from the router. It works fine on LAN and via tailscale.

https://reolink.com/product/e1-zoom/

NOTE: these wifi cams are not a “security” system. They’re for basic monitoring and scaring your cat.

Custom domains mean that if the alias provider enshittifies, you can switch to any other provider near-instantly. As long as you never use the domains to host illegal or dodgy shit it’s extremely unlikely you’ll ever lose them — far less likely than losing a gmail or whatever.

With SL you can avoid spam by using the “beta” (been beta for 3+ years lol) “auto create” option instead of a catch-all, meaning that you can direct emails to different inboxes (or do nothing) based on specific regex strings you control — up to 100 of them. I had a catch-all regex (.*) as my # 100 and it took 2 years to receive catch-all fishing spam. Then I removed it and now have only random strings (e.g. .*fgyu.*) so new emails must have them if they want to get somewhere. Everything else bounces. All previous emails continue to work until you disable them individually.

I use a mix:

• SL-domains: anything I don’t give a shit about.
• Non-PII domain: anything I would want to persist if I changed provider, but don’t need my identity, or can give out a unique email in-person.
• PII-domain: banks and all other services tied to my identity.
• Top-Secret-PII-domain: critical services that could compromise all others (password manager, email/OS accounts, domain name registrar).

Every time I’ve joined a large group chat, I’ve always wished there were hundreds more people talking over the top of each other to make the whole communication thing more efficient!

It means that neither party who interacts with the file if known, as they must access the site via torr.

Very useful for journalists to receive information from whistleblowers, etc.

The obvious solution to me is sponsorblock switching to sampling pixels out of each frame, like that project that encoded data into video streams (yet resilient to compression), there are algorithms that could fingerprint any ad with an extremely high degree of accuracy. It’d be more complex than the current implementation, but it’d also be more resilient. I’d settle for it hiding the video and suppressing the audio for the ads duration, possibly displaying a countdown timer, vs actually watching the ad. Then Youtube would get paid, but have no way of knowing you haven’t seen the ad, and the metrics around their ad effectiveness would ultimately suffer, so users still win.

You could even go so far as to have the client cache the video, several minutes in advance, dropping all the ad frames, so it’s a seamless experience for the user. I got money, but will spend 10x as much ensuring Google gets less from me. It ain’t about money. It’s about sending a message!

They need to decentralize because it was always only a matter of time before they pissed off the wrong capitalist sociopath or piss baby politician.

Great job backdooring the entire EU, EU oligarchs. This is so recklessly dangerous to national, regional, and global security that efforts to implement something so authoritarian and anti-democratic should be considered both treason and a crime against humanity; worthy of the Hague and life in prison.

This is the kind of shit Putin or Xi would try to pass if they corrupted the EU’s institutions.

Your data is securely preserved on your Google Drive / Dropbox account, ensuring complete ownership and privacy

Lol

I was thinking about this and imagined the federated servers handling the index db, search algorithms, and search requests, but instead leverage each users browser/compute to do the actual web crawling/scraping/indexing; the server simply performing CRUD operations on the processed data from clients to index db. This approach would target the core reason why search engines fail (cost of scraping and processing billions of sites), reduce the costs to host a search server, and spread the expense across the user base.

It also may have the added benefit of hindering surveillance capitalism due to a sea of junk queries from every client, especially if it were making crawler requests from the same browser (obviously needs to be isolated from the users own data, extensions, queries, etc). The federated servers would also probably need to operate as lighthouses that orchestrate the domains and IP ranges to crawl, and efficiently distribute the workload to client machines.

I think this question might be missing the point of TOTP and protection it provides. The reason 256/512 is used to encrypt data and passwords is to prevent the possibility of brute force and other attacks (e.g. using other data breaches). This doesn’t really matter with TOTP. They can’t reverse engineer a TOTP password out of you. They can’t use your info from prior breaches to gleen what your TOTP might be anywhere else. It’s not something where “cracking” the hash is likely to be attempted, as an attacker would still have to capture the generated codes and time of input in some way, then brute force hashes until they generate one that produces the correct codes at x time. Why would they ever do that when it would be a thousand times easier to compromise a device or TOTP app, and scrape the hashes directly from it; negating any need to brute force?

Note: I am not a cryptographer and have not implemented a TOTP server, so I could be completely wrong.

TL;DR 256/512 wouldn’t necessarily increase the security of TOTP at all.

For iOS there’s location log. You can export your history too.

Also, don’t kid yourself. If you aren’t using Graphene and have any tech company app installed on your phone they’re logging your location, and sharing it with everyone who pays, even if you opt out.

That’s a declaration of war on democracy and civil liberties

FTFY

a) why the fuck would they go to that effort for a filthy commoner like yourself, and b) what are the chances that 0.01% of recoverable data contains anything useful!?!

Nobody is gonna bother doing advanced forensics on 2nd hand storage, digging into megabytes of reallocated sectors on the off chance they to find something financially exploitable. That’s a level of paranoia no data supports.

My example applies to storage devices which don’t default to encryption (most non-OS external storage). It’s analogous to changing your existing encrypted disks password to a random-ass unrecoverable throwaway.

Rather ironically, miniflux users could add miniflux releases to their miniflux feed using https://github.com/miniflux/v2/releases.atom

So it’s extra extra useless

Most SSD/flash secure erase methods involve the storage having full disk encryption enabled, and simply destroying the encryption key. Without the encryption key the data can’t be deciphered even with the correct password, as the password was only used to encrypt the encryption key itself. This is why you can “factory reset” an iPhone or Android in seconds.

For all average user requirements that just involve backups, PII docs, your sex vids, etc (e.g. not someone who could be persecuted, prosecuted, or murdered for their data) your best bet (other than physical destruction) is to encrypt every usable bit in the drive.

1. Download veracrypt
2. Format the SSD as exFAT
3. Create a new veracrypt volume on the mounted exFat partition that uses 100% of available space (any format).
4. open up a notepad and type out a long random ass throwaway password e.g. $-963,;@82??/@;!3?$.&$-,fysnvefeianbsTak62064$@/lsjgegelwidvwggagabanskhbwugVg, copy it, and close/delete without saving.
5. paste that password for the new veracrypt volume, and follow the prompts until it starts encrypting your SSD. It’ll take a while as it encrypts every available bit one-by-one.

Even if veracrypt hits a free space error at the end of the task, the job is done. Maybe not 100%, but 99.99+% of space on the SSD is overwritten with indecipherable gibberish. Maybe advanced forensics could recover some bits, but a) why the fuck would they go to that effort for a filthy commoner like yourself, and b) what are the chances that 0.01% of recoverable data contains anything useful!?! You don’t really need to bother destroying the header encryption key (as apple and android products do when you wipe a device) as you don’t know the password and there isn’t a chance in hell you or anyone else is gonna guess, nor brute force, it.

Niceties like the rule of law and human rights are merely suggestions to oligarchs and surveillance capitalism.

“Remember, terrorists and pedos exist, so we need to abandon any presumption of privacy and monitor everyone’s activity 24/7… For your freedoms!”

— the oligarchy, including the wealthiest terrorists and pedos in history

More specifically — by matching all of your purchases with every data point about you, and the people you associate with, they can build out statistical models to determine the data points that most strongly correlate to people like you and what motivates or persuades them to GENERATE MORE PROFIT — direct purchases, attention, clicks, discussion, word of mouth, lead generation, etc, etc…

Or… You know… What motivates/persuades you to support a dictator or vote for a specific political candidate or party, as well as what demotivates/dissuades you from the opposition — including what types of psychological warfare, disinformation, deepfakes, “fake news”, and lies are most successful in achieving these goals — all of which benefits the most horrifically immoral and unethical criminals, corporations, and individuals the most (the “good guys” aren’t the ones using deception and lies to profit and win).

It’s not a limit. It’s manufactured outrage. If they supported him prior to now, 99% of them will support him until the end.

I am permanently offended by the level of stupidity on constant display.