/r/privacytoolsIO

Photograph via snooOG

As announced on July 27th, and on Sept 14th, 2021, The Team Formerly Known As PrivacyTools.io – the entirety of the team providing privacy-related advice & services to you for the past couple years – has transitioned to PrivacyGuides.org and r/PrivacyGuides.

Please join us there. :)

For more recent news regarding The Reddit Blackout, see: https://lemmy.one/post/74432.


As announced on July 27th, and again on Sept 14th, The Team Formerly Known As PrivacyTools.io – the entirety of the team providing privacy-related advice & services to you for the past couple years – has transitioned to PrivacyGuides.org and r/PrivacyGuides.

Maintaining two subreddits mirroring each other provides few benefits while diverting our team from providing the level of service you deserve and expect. Thus, we’ve restricted r/PrivacyToolsIO, and invite you to join us on r/PrivacyGuides.

Thank you so much for your years of involvement, support and appreciation. We look forward to providing many more years of unbiased, non-commercial and transparent privacy-related news and reviews. Join us!


Please participate with suggestions and constructive criticism.


Resources:


Rules:

For detailed descriptions for each of these rules please consult the rules sidebar in the new Reddit redesign (our canonical set of rules).

  • No closed source software.
  • Developers/employees/etc must contact the mod team before engaging in self-promoting links and comments.
  • All surveys, fundraising and petitions must be approved by the Mods before submission.
  • Do not repost topics already covered.
  • Be nice and respectful.
  • Be constructive.
  • Do not editorialize titles, use titles from the original news source.
  • Meme/image/video posts are not allowed.
  • Conspiracy thinking and spreading FUD is not allowed. Show credible sources.

* No discussions of specific VPNs – please visit r/VPN or our PrivacyGuides coverage of VPNs.

Subreddits:

/r/privacytoolsIO

207,463 Subscribers

561

A New Era. Why r/PTIO Is Now A Restricted Sub.

First and above all, I personally and sincerely want to thank u/BurungHantu for his originally creating the PrivacyTools website and this subreddit, and for inviting me to be one of the Mods here six years ago.

His efforts to raise privacy consciousness, and evaluating the tools to achieve this, is an amazing legacy that he, and we, should commend.

______________

You may have noticed that r/PrivacyToolsIO has been changed to a restricted Subreddit and no longer allows general posts & comments.

Some may see this as a drastic step. We hope everyone understands that the (former) PrivacyTools team – i.e., the current PrivacyGuides team – has enjoyed our shared journey over the years. We want every one of you to be part of our future travels. Just as our site has transitioned to a new home, we sincerely hope all you join us at r/PrivacyGuides.

The growth of this Sub was the result of great effort, across several years, by the PrivacyGuides.org team. And by every one of you.

A Subreddit is a great deal of work to administer and moderate. Like a garden, it requires patient tending and daily care. It’s not a task for dilettantes or commitment-challenged people. It can’t thrive under a gardener who abandons it for several years, then shows up demanding this year’s harvest as their tribute. It’s unfair to the team formed years ago. It’s unfair to you.

I’ve enjoyed – and am proud of – being a Moderator of r/PrivacyToolsIO. I’ve had help – u/Blacklight447-ptio, u/ErkTheErk, and many others. But moderating this site has been largely done by myself, especially these past four years, as it experienced most of its growth.

As we announced, first three months ago, and again a month ago, our mission – providing the best source of reliable, unbiased and non-self-interested advice to restore your online privacy – was being negatively impacted by longstanding problems established in our founding that could no longer be mitigated.

r/PrivacyGuides now exists as the Reddit home for PrivacyGuides.org. Recently, PrivacyTools.io was reverted to a personal site. We feel it engages in practices violating our norms ensuring reliability, being unbiased and not engaging in self-interested practices. This split, and what role r/PrivacyToolsIO has given this recent change, has generated confusion here. We’ve received supportive comments. We’ve been asked why we haven’t yet “ripped the bandaid off”. We’ve been asked when will we complete the migration we promised.

We’ve already done this for our site. We are now doing this for this subreddit.

We really value the community we’ve built here. All of you!

We really hope you continue our shared journey.

Please join us over at r/PrivacyGuides, and at PrivacyGuides.org!

1 Comment
2021/11/01
06:04 UTC

343

Android: Disable fingerprint screen unlock but keep it for programs

I don't want to use fingerprint screen unlock because then the police can just force your finger onto the reader to unlock your phone if they stop you, whereas with a PIN you can just refuse to say anything to them.

However, it's very useful to use the fingerprint to unlock certain programs, like Aegis, rather than having to type a password in, which is annoying as Aegis locks every time you switch to another app, as you do when entering OTP.

As far as I can tell, there's no way to disable the fingerprint screen unlock without it deleting the fingerprint, thus making it unavailable for apps like Aegis to use. Has anyone discovered a hack to let you switch from fingerprint to PIN screen unlock without deleting the fingerprint? I'm using a Poco X3 NFC with Android 11 / MIUI 12.5.2 if that makes any difference.

1 Comment
2021/11/01
03:29 UTC

50

See all the requests of each application on my PC

Hello pros, does anyone know of an app where I can see the requests that my applications make to the network?

Example, in android I have an app: NoRoot Firewall that allows me to see the requests made by the applications, I can allow or block them a normal firewall but what I want is to see the requests of the applications, just that

Edit: windows 10

2 Comments
2021/11/01
02:44 UTC

393

How are the authorities able to monitor criminals through the TOR network?

Recently I remember some news in my country about the police arresting some criminals carrying out their online activities on TOR network. Isn't TOR supposed to make one's internet usage entirely anonymous? How are the authorities able to monitor the activities in it and associate it with the right user?

17 Comments
2021/10/31
23:54 UTC

35

What is the best way to spoof your OS version on Firefox without being detected?

What is the best way to spoof your OS version on Firefox without being detected?

15 Comments
2021/10/31
12:45 UTC

43

Is it safe to connect your online banking to GnuCash?

I'm currently looking into GnuCash (as I don't trust things like YNAB to store all my financial data on their servers) and although a manual import via CSV is not too difficult, it would be very nice to automate the import to make my life a bit easier. Therefore I was thinking about connecting my online banking to GnuCash. However, I don't know much about the general technical infrastructure and the API's that are being used for this and how secure they are. Can you help? Would you recommend using that feature in terms of privacy/security?

5 Comments
2021/10/31
11:06 UTC

28

What is a cheap VPS I could use for an XMPP server?

The title basically says it all. I don't know what VPS services privacy aware individuals recommend the most. I know that the way XMPP works it basically makes it impossible for the VPS company to see what I'm doing, but still, if I'm setting up my own server to chat with my friends, might as well go the extra mile and make sure the VPS I pick is trustworthy, right? Preferably, the servers should be located outside the US.

4 Comments
2021/10/31
00:36 UTC

22

Noob Here: How Does Authenticator/TOTP 2FA Work?

Please explain how this would work without a phone involved, just a laptop. So there's an Authenticator on your laptop and you're signing up for a site that supports it. Now what happens?

I could go study up on it but I'm sure I'd misunderstand something.

Also: To your knowledge, do mainstream services such as Facebook, IG, Youtube, Telegram, Signal, etc. give you an option to NOT register/verify with a phone if you're using an Authenticator/TOTP 2FA if you so choose when signing up? Or will they still make you register a phone number regardless even if you elect to also do Authenticator/TOTP 2FA?

Follow up question: In a situation where you verify with both an SMS/phone verification and later use an Authenticator/TOTP, if you lose access to the phone number you used for the SMS verification, will the site/service be fine with that and simply allow you to fall back on your Authenticator/TOTP 2FA code thingy? (Assuming the site/service lets you use both and not just one or the other.)

Sorry, super new to this. It's very fascinating how this has all evolved and I am completely out of the loop, as you can tell.

10 Comments
2021/10/30
17:56 UTC

40

How safe are launchers.

I am using poco launcher. I don't get how launchers work, like do they send our data and passwords and stuff to their server. I am a bit tensed cause poco launcher is Chinese. Or do they locally store the data and clear the data on deleting the android launcher.

17 Comments
2021/10/30
17:40 UTC

25

My parents just got a Samsung Smart TV. I know to plug no internet or WiFi into it, but what other precautions can I take? Also what is a pihole and how do I get one made to block microphone data and block ads?

I’m new, could someone please answer fully in layman’s terms so no one has to answer again? Thank you so much!

3 Comments
2021/10/30
16:19 UTC

83

App to store private contacts?

25 Comments
2021/10/30
14:04 UTC

59

AdGuard vs uBlock Origin?

Since both of them are open-sauce, are there any difference between either?

9 Comments
2021/10/30
01:24 UTC

24

2FA With No Phone, Using Only a Laptop?

Using a laptop, there are software 2FA solutions for websites but they all seem to involve a phone also. Is there a way to do 2FA on a Linux laptop for a site without involving a phone at all? Or at least using some one-time throwaway SMS to get the 2FA accomplished to where a phone is no longer needed?

15 Comments
2021/10/29
22:07 UTC

36

Why do people tape over their webcams but not their phone cameras?

10 Comments
2021/10/29
21:21 UTC

16

Anonymous domain registration through njalla

What are your guys' thoughts on Njalla (njal.la), the company that lets you fully anonymously register a domain name? They own the domain but give you full access to it. I noticed that they have some weird political bias against Epik which got me a bit confused. Would they run off with my domain name if they wanted to (without reason)?

6 Comments
2021/10/29
16:43 UTC

7

Xmanager safe or not

Is xmanager , the "open source" spotify mod safe? Also vanced manager?

2 Comments
2021/10/29
12:28 UTC

19

Looking for active missleading Adblocking and anti/fake-fingerprinting tool

Hello!

I've been playing with an idea for a more aggressive anti-tracking and adblocking tool, that would not only block adds and trackers (which is something that can be kind of used to fingerprint and track you), but instead actively work to misslead and harm the fingerprinting process by feeding it false data.

It's still only a vague concept, and I suppose someone else has already come up with something like this. If someone knows about a project like this, I'd love to see it and contribute, if it's open-source.

So, what exactly I have in mind? A tool that would run in background/in a browser, and not only work as an adblocker, but actively render and click on all the adds in background (If I'm not mistaken, you pay/get money for clicks per add, right? So auto-clicking is against ToS and can hurt the advertisers and will probably get your IP banned, which is a plus). It would also constantly search for various unrelated topics, click on links, chat with bots/other fake profiles (this may be taking it to extremes), and basically run a fake Selenium in background that would try to appear as a real user that does random stuff and is trackable. Which should make it impossible to distill the "real you" from all the data, which will in turn make it worthless.

Does it make sense? The idea is to not only passively defend against fingerpringing, but actively and maliciously fight back. Have something like this been made? Is it a idea that could be worth pursing and developing? I have to admit that I don't know much about how fingerprinting exactly works, so are there any serious pitfalls or holes in the plan that could make it unfeasible? What do you think about it? It's mostly a brainstorm right now. Would anyone be interrested in developing an app like this?

Thank you for any kind of reply.

4 Comments
2021/10/29
09:51 UTC

13

Do websites report which port you're on?

I know websites track your IP history. In particular, reddit logs your IP address for the last 100 days. But do they keep a record of which port you also used?

I downloaded a copy of my data from reddit on another account, and there was no port history.

Cheers!

15 Comments
2021/10/29
07:19 UTC

55

Private alternative to YouTube for iOS?

I can’t seem to find a good enough youtube replacement for my iPhone. Anything helps, thanks!

11 Comments
2021/10/29
05:56 UTC

13

Can anyone suggest a good custom ROM for samsung phone?

1 Comment
2021/10/29
05:33 UTC

12

Are custom roms overrated(except calyx and graphene)

In privacy focused forums you often hear the benefits of custom roms like lineage os, e os etc but these Roms lack verified boot which is a clear security problem even though it might not affect most people. The question so becomes is it worth it for most people to use these Roms. Another possible solution I don't see people talking about is just using the stock rom that comes with your phone but removing all gapps and other services by using Adb. You can basically remove all apps you don't want like gapps, system apps and just download Foss alternative. I'm not a security expert but I think it's a better strategy than using roms that don't have verified boot but if someone more knowledgeable than me knows some reason why it's not a good idea pls point it our in comments.

7 Comments
2021/10/29
05:29 UTC

9

The iPhone Is Going, That's A Given. What About The Watch?

I use my iWatch a lot for fitness doing multiple activities. I have also got used to the convenience of such a smart watch. However, due to Apples plan to use spyware to scan and read every document on your phone, I have made the decision to change my phone. Now i will be left with an Apple watch that loses a lot of its functionality.

What are the options for:

  1. Watches with regards to open source software?
  2. Watches for privacy but multi-functional usability, especially regarding fitness
  3. Watches that could potentially hook up with Graphine OS or some other Linux OS for Phone?

Just sitting here thinking about this issue and size of the market, I do believe that there is a niche here for Linux and other developers. I hope this becomes an interesting conversation.

9 Comments
2021/10/29
03:45 UTC

21

I Don't Get It: Google Pixel Phone

I thought that Google was a privacy erode'r, not a go to. So i am confused as to why i am being suggested to buy one to install the Graphine OS. Surely Google would have some sort of sneaky work around no?

What other options are there on the market?

One thing i can safely say....... My iPhone's day is coming.

6 Comments
2021/10/29
03:21 UTC

242

Voice changing app

Apparently anywhere you call now , like the bank/ credit card company, cell phone company, you are being verified by your voice signature. Wtf is that shit! You can't walk on the street now cameras with ai tracking you, cell phone towers tracking you, fucking google/android/apple is tracking you. Covid fucking app tracks you Ring the doorbell , WiFi triangulation, and the feds too , just cause they can. To keep it kinda short, looking for an app to run on my degoogled calyx phone , that will change my voice when I call on an open line. Preferably something open source. Thank you

14 Comments
2021/10/29
00:44 UTC

2

Managing email

Hello, so this year I've switched from gmail to protonmail. But unfortunately protonmail was getting expensive as my requirements, so I've switched to tutanota. Also bought my first domain.

So currently I'm using tutanota with my own domain.

I'm using catchall, instead of creating alias.

eg. reddit@mail.domain.com / twitter@mail.domain.com

Is this recomendable or should i use anonaddy? Currently seeing a lot of people using catchall with anonaddy and not in the mail provider(protonmail, tutanota).

So I'm curious about you guys currently setup?

2 Comments
2021/10/29
00:27 UTC

22

What threat model is appropriate for only using a VoIP number and not using your SIM number at all?

I rarely make phone calls and try to use services that don't require a phone number. However, after trying out several VoIP options, I've had mixed to bad experiences with call quality and reliability.

Is this overkill for most people? What or who would you have to be shielding yourself from to only ever use VoIP numbers?

6 Comments
2021/10/29
00:00 UTC

6

Hardened FF is really slow

Hey everyone,

after applying all privacy settings for firefox it became so damn slow e.g. at loading youtube videos etc...
What's the reason?

5 Comments
2021/10/28
20:48 UTC

5

Best 2FA Application

If suggesting, please try to explain why not the other two?

  1. Google Authenticator ( 50 Million play store downloads : 3.9 Rating )

Link --> https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2 2) Microsoft Authenticator ( 50 Million play store downloads : 4.7 Rating ) Link --> https://play.google.com/store/apps/details?id=com.azure.authenticator 3) Twilio Authy 2- Factor Authentication ( 10 Million play store downloads : 3.9 Rating ) : Link --> https://play.google.com/store/apps/details?id=com.authy.authy

My single point advantage of these apps :

  1. Google Authenticator : Google trust
  2. Microsoft Authenticator : Rating on play store
  3. Authy : Mostly suggested by others.

My single point disadvantage of these apps :

  1. Google Authenticator : Not easy transferable to new device.
  2. Microsoft Authenticator : Never heard anyone suggesting this.
  3. Authy : Can this be easily accessed if someone has our phone?

Do let me know your thoughts , on best app. Also please tell why not to use the other two.

Thanks folks.

9 Comments
2021/10/28
20:36 UTC

6

Alternative to Twilio to receive SMS from Alphanumeric sender?

I hate phone numbers.

Banks and other websites increasingly refuse to function without a phone number and they tend to send SMS with sender ID a string of characters instead of a phone number.

Some companies can give you a virtual phone number like Twilio, but they cannot receive SMS from senders using alphanumeric ID.

What can I do to receive those SMS and forward them to Slack/email/whatever?

6 Comments
2021/10/28
11:41 UTC

Back To Top