nitrohorse Ⓐ☭🏳️‍🌈☠️🌹 @andreas@nitro.horse

Excellent post “Looking back at the Snowden revelations”

https://blog.cryptographyengineering.com/2019/09/24/looking-back-at-the-snowden-revelations/

#Privacy

@szbalint @starseeker so if a user saves their logins in Firefox which connects with Firefox Monitor [1] (which then relies on HIBP [2]?), they could get notified of breaches such as Door Dash’s in Firefox via a similar in-browser notification I think.

[1] https://monitor.firefox.com/
[2] https://haveibeenpwned.com/

> DoorDash has no mention of its massive data breach on its homepage. There's nothing on its Twitter or Facebook page, either.

> What's also weird is DoorDash's robots file (https://www.doordash.com/robots.txt) hides "/securitynotice" from Google, so people can't even search it.

- https://nitter.net/zackwhittaker/status/1177620079074332672

#Privacy

@drastiko@social.privacytools.io @privacytools I think you can then set the upstream encrypted DNS provider to an ad-blocking one such as AdGuard [8], dnswarden [9], NextDNS [10], or NixNet [11].

[8] https://adguard.com/en/adguard-dns/overview.html#instruction
[9] https://github.com/bhanupratapys/dnswarden/blob/master/README.md
[10] https://nextdns.io/
[11] https://nixnet.xyz/dns/

@drastiko@social.privacytools.io @privacytools AlgoVPN [4] and Streisand [5] are also easy-to-setup self-hosted WireGuard VPNs. They don't come preconfigured with Pi-hole but Algo comes with dnscrypt-proxy [6] and Streisand with cloudflared [7] for encrypted DNS.

[4] https://github.com/trailofbits/algo
[5] https://github.com/StreisandEffect/streisand
[6] https://github.com/trailofbits/algo/pull/875
[7] https://github.com/StreisandEffect/streisand/pull/1591

@drastiko@social.privacytools.io @privacytools hmm 🤔 I think you can only have one iOS VPN profile active at a time.

For a VPN + ad/tracker blocking + encrypted DNS solution, you could look into self-hosting a WireGuard VPN [1] + Pi-hole (blocklist management) + cloudflared [2] or dnscrypt-proxy [3] (encrypted DNS).

[1] https://www.reddit.com/r/pihole/search?q=wireguard&restrict_sr=on
[2] https://docs.pi-hole.net/guides/dns-over-https/
[3] https://github.com/pi-hole/pi-hole/wiki/DNSCrypt-2.0

#Privacy

@Connor yeah, this is also really helpful 👍🏼

@bartleby yeah definitely!

@bartleby I just got it too! ✌🏼

Looks like Nitter is struggling atm, here’s a bird site link:
https://mobile.twitter.com/Snowden/status/1175430722733129729

Whoa, #Snowden shares his prefs for messenger/OS/and more:
https://nitter.net/Snowden/status/1175430722733129729

#Privacy

Oh this is helpful, https://nitter.net (alt open source frontend for bird site like https://invidio.us for YouTube) supports RSS!

For instance:
https://nitter.net/privacytoolsio/rss

#Privacy

> FWIW I no longer see this kinda thing as anxiety really. So long as it doesn’t disrupt my life too much security steps are just peace of mind that make me feel better, even if I don’t need all of em. It’s like taking away a constant low level anxiety I got used to. Good for me.

- https://nitter.net/sehurlburt/status/1171838249783836672

#Privacy #Security

> If you requested money from Equifax for leaking your personal data, you’ll need to provide more information by October 15th. The Equifax settlement administrator sent an email with details over the weekend. It asks consumers to confirm that they’re actually signed up for credit monitoring, which is a prerequisite for requesting the money. If they can’t do that, they can amend their claim to request free credit monitoring. Otherwise, the claim will be denied.

https://www.theverge.com/2019/9/9/20857058/equifax-data-breach-money-settlement-request-credit-monitoring-update-requirement

#Equifax