/r/privacy on reddit won't allow this post because:

While we (vastly) prefer the Tor Browser over the Brave one, you'll need a better source than the one you found. Can you find something from a more widely recognized NetSec expert? Something along the lines of Bruce Schneier's blog or something at that level of credibility?

Does anyone else wish to replicate this to confirm?

Definitely always just use Tor Browser on desktop, if only to prevent sites from fingerprinting you.

It's disappointing, I'm wondering if it has something to do with how Chromium works? Perhaps using Chromium as a base was a mistake.

there is no "anti censorship community" but there is a pro-censorship lobby.

This, x1,000.

anti censorship is the default position.

there is no "anti censorship community" but there is a pro-censorship lobby.

Actually, e-mail verification is fine for me, as long as it will let me use aliases, like those Riseup has. But yes, I do hate CRAPTCHAs, especially the Goolag one. Sure, I can use Buster (https://github.com/dessant/buster, clear net only), but it doesn't really help when you're continuously using a service that requires it because you're still supporting the cancer.

using (((yandex)))

email verify is out too, just let users register with username and password, and they have to complete non js 8 or more character image captcha. how hard is it to store usernames and passwords in db, prune old/unused accounts that haven't logged in for a while. no log vpn.

BitWarden looks pretty dang nice. Its free tier is capable enough that I don't feel the need to administer a local instance. That's just one more thing to maintain and back up.

Ubuntu has an established history of spying (or at the very least privacy invasion). Frankly I'd be more likely to trust The Reds don't have hidden code in Deepin Linux, than trust Canonical has learned its lesson.

true

don't use jewbuntu, its amazon honeypot and backdoor to YOUR PC you dumb fucking idiots.

based

keepass or bitwarden if you want to sync between devices.

I'll echo that Bitwarden seems pretty good. If you're the only user it might be somewhat overkill, though.

I'd recommend https://www.passwordstore.org/ but I don't think it satisfies the online requirement out of the box. But it's likely a problem someone else solved if you look around.

BitWarden seems to be pretty well liked and lately it seems to be more preferred than LastPass, and I assume with LastPass adjusting their tiers that more people will flock to BitWarden. You can self host it, as well. I believe it's all open source, unlike LastPass.

There is also KeyPassX which is pretty popular. It's not an online password manager, however. Still a pretty good option for general password management.

Great site! don't let the javascrip bs talk get to you..... i visited your site, it has potential!

most of these people who keep using the same excuse "reguires javascript" doesn't even know what that means...

Covers or at least block ipv6. Some VPNs are leaking out the real ipv6!

"See this flashing IR light? It's recording. If you're recording, you need a flashing light. Them's the rules. You can't just record without a light on. That'd be against the rules."

Yep!

Those are the essentials I think that any VPN provider, and any provider of any service, really, should have to be even considered by me:

• Tor support - that means having an onion mirror for the VPN site itself; Tor with the VPN itself is not necessary, as Tor is kind of easy to set up, at least on Linux
• If it's paid, Monero acceptance - obviously, one might not want to be using some kind of anonymity-hating VPN, like with the point above
• No personal data for registrations - that means confirming your phone number is out
• Compatibility with standards - in the case of VPNs, that's OpenVPN or possibly WireGuard
• No Cloudflare - MitM, especially Clownflare, likes being a honeypot: https://codeberg.org/baobab/cloudflare-tor (clear net only)
• not a privacy-related issue, but if the service likes to go down often, it goes out too

Okay, I don't actually pay with Monero or any other cryptocurrency, but other people might, so if I'm going to recommend a service, I want to check that.

Isn't IR used to measure distance too? I thought that was just to determine if the phone was pressed up against your face or something.

What is Canonical even selling? Isn't ubuntu open source?

everyone in russia mad

Wordpress CORE is relatively secure. They've got a giant team that is always pushing out updates. The trouble usually comes from a variety of plugins and users not updating their Wordpress or not changing default values.

I'm not sure what a good alternative would be unfortunately. I have a HTMLy flat-file blog instance running on I2P that I never update and it's... okay. Pretty simple.