stefan911
/
elpengu
1
0
Fork 0
Code Releases Activity

Patch 2/3 online privacy post

Browse Source
master
Stefan 1 year ago
parent e903d26133
commit da1d4b9477
13 changed files with 227 additions and 85 deletions
Show Stats Download Patch File Download Diff File

2
config.toml
Unescape View File

@ -27,6 +27,8 @@ relativeURLs=true
name = "SOURCE"
url = "https://git.elpengu.com/stefan911/elpengu"
[markup.goldmark.renderer]
unsafe = true
[Permalinks]
posts = "/posts/:filename/"

133
content/posts/privacy-guide.md
Unescape View File

@ -1,18 +1,20 @@
---
title: "Online Privacy Guide"
date: 2022-12-05T09:41:23+02:00
date: 2022-12-08T09:41:23+02:00
draft: true
toc: false
images:
tags:
- open-source
- privacy
- open-source
- privacy
---
One benefit of using [libre software](../why-libre-software/) is the privacy
you're getting. Libre software usually contains **no spyware**, **no trackers**
and **no ads**, because if it did, it could be easily pointed out in the source
code **and removed by forking the project**.
code **and removed by forking the project**.
The same can't be said about closed-source software, because, not being able to
audit the source code, its privacy is as good as the developer promises. There
@ -24,6 +26,7 @@ software only. However, even with libre software, there are some additional
steps required to ensure better privacy.
# Identifying a threat model
You cannot have both **privacy** and **convenience**. There is always a tradeoff
between the two. For this reason it is important to establish a personal threat
model you want to protect against, to know how far to go. The goal should be
@ -32,6 +35,7 @@ obtaining a balance between the two, not going all out on one.
{{< image src="/images/pepe-paranoid.webp" position="center" style="width: 50%" >}}
### Possible thread models
1. Strangers
2. Family, friends
3. Stalkers
@ -45,8 +49,10 @@ last two, you should also look into hardware privacy, such as [libre boot](https
and [degoogled Android phone](https://grapheneos.org/).
# Step 1 - Browser
The browser is the program you use the most, so it makes sense to secure it.
There are a few things to look out for in a good browser:
* Provides a way to disable **javascript**
* Is **open-source**
* Does not phone home (or provides a way to disable phoning home)
@ -55,84 +61,118 @@ There are a few things to look out for in a good browser:
Knowing this, we can definetely say that the following browsers are a threat
for your privacy: **Google Chrome**, **Opera**, **Safari**, **Microsoft Edge**.
## Good practices
1. Clear your cache everytime you close your browser.
2. Use only non-javascript website when possible.
3. Spoof your **user agent** to fit in with the others. Make sure you [are not
unique](https://amiunique.org/fpNoJS).
4. Use privacy friendly alternatives for popular websites (see the guide below)
## Good practices
1. Clear your cache everytime you close your browser
2. Use only non-javascript website when possible
3. Spoof your **user agent** to fit in with the others. Make sure you [are not unique](https://amiunique.org/fpNoJS)
4. Use privacy-friendly alternatives for popular websites (see the guide below)
5. Only use HTTPS
6. Check what connections your browser is making, with a tool such as **iftop**
There are a few browsers out there that provide good privacy, while also having
modern features. I will rank them based on the privacy they provide outside the
box. You should choose a browser based on your threat model, needs and
experience with tinkering with configurations.
## [Firefox](https://www.mozilla.org/en-US/firefox/)
[{{< image src="/images/firefox.webp" position="center" style="width: 25%;" >}}](https://www.mozilla.org/en-US/firefox/new/)
## Browser list
Privacy Level: **Low**
<details class="post-box">
<summary class="post-box-title">
<img class='box-logo' src="/images/firefox.webp">
<h2>Firefox</h2>
<p class="box-privacy">{{< text-icon privacy "#FF5555" >}} Privacy Level: <b><span style="color: #FF5555">Low</span></b></p>
</summary>
<hr>
**Firefox** is the default browsers on **most Linux distributions**. This makes it
a solid option for new users and people just begining their privacy journey.
Although not a good solution in the long run, Firefox provides an undispensable
**Firefox** is the default browser on **most Linux distributions**. This makes it
a solid option for new users and people just beginning their privacy journey.
Although {{< color "not a good solution" "#FF5555" >}} in the long run, Firefox provides an indispensable
basis for other browsers, being a direct competitor to Chromium.
Firefox phones home by default and has javascript enabled. Firefox can have a
**high** privacy level if applying [arkenfox's
**decent** privacy level if applying [arkenfox's
user.js](https://github.com/arkenfox/user.js/) and installing
privacy extensions. A simple and efficient guide for hardening Firefox can be
found [here](https://spyware.neocities.org/guides/firefox.html).
## [Librewolf](https://librewolf.net/)
[{{< image src="/logos/librewolf.svg" position="center" style="width: 25%;" >}}](https://librewolf.net/)
If you are not willing to configure Firefox, you should look into its forks that provide better privacy defaults.
Privacy level: **Medium**
<span class="i-blog">
<a style='margin-right: 10px' href="">[Download]</a>
<a href="">[Website]</a>
</span>
</details>
<details class="post-box">
<summary class="post-box-title">
<img class='box-logo' src="/logos/librewolf.svg">
<h2>Librewolf</h2>
<p class="box-privacy">{{< text-icon privacy "#FFAA00" >}} Privacy Level: <b><span style="color: #FFAA00">Medium</span></b></p>
</summary>
<hr>
**Librewolf** is a fork of Firefox aiming to fix all of its parent's problems. It
hardens firefox and ships **uBlock Origin** by default, a powerful ad blocking and
hardens Firefox and ships **uBlock Origin** by default, a powerful ad blocking and
javascript blocking tool.
Librewolf phones home at startup, although it can be disabled from
**about:config**. If all you want is a browser that works, Librewolf is the
middle ground for privacy and convenience.
## [GNU IceCat]()
[{{< image src="/logos/icecat.svg" position="center" style="width: 25%;" >}}]()
Privacy level: **Very high**
middle ground for privacy and convenience. Definitely use over vanilla Firefox.
<span class="i-blog">
<a style='margin-right: 10px' href="">[Download]</a>
<a href="">[Website]</a>
</span>
</details>
<details class="post-box">
<summary class="post-box-title">
<img class='box-logo' src="/logos/icecat.svg">
<h2>GNU IceCat</h2>
<p class="box-privacy">{{< text-icon privacy "#55FF55" >}} Privacy Level: <b><span style="color: #55FF55">Very High</span></b></p>
</summary>
<hr>
**IceCat** is GNU's fork of Firefox. It is the best Firefox alternative because
it provides the most privacy features, however they come at the cost of
usability. IceCat is known for easily breaking website due to its LibreJS feature.
usability. IceCat is known for easily breaking website due to its **LibreJS** feature.
It is a good option if you need to browse the internet safely and don't care
about some sites that require javascript not working. If your thread model is
high enough you should only use non-javascrript website anyways.
high enough you shouldn't use websites that require javascript anyway.
<span class="i-blog">
<a style='margin-right: 10px' href="">[Download]</a>
<a href="">[Website]</a>
</span>
</details>
## [Ungoogled Chromium](https://github.com/ungoogled-software/ungoogled-chromium)
[{{< image src="/logos/chromium.svg" position="center" style="width: 25%;" >}}](https://github.com/ungoogled-software/ungoogled-chromium)
Privacy level: **High**
{{< text-icon privacy "#00FF11" >}} Privacy level: **{{< color "High" "#00FF11" >}}**
**Ungoogled Chromium** is Google Chrome without **trackers**, **ads**,
**phoning home**, **Google search engine**, **Google Extension Store**,
**Google accounts**. Therefore it is very minimal and does not provide any
privacy features out of the box.
**Google accounts**. Therefore, it is very minimal and does not provide any
privacy features out of the box.
Its downside is that you have to compile it and it is not user friendly,
installing extensions being a tidious taask. However, if you need a chromium
Its downside is that you have to compile it and it is not user-friendly,
installing extensions being a tedious task. However, if you need a chromium
based browser, it is the best solution out there.
## [Brave](https://brave.com/)
[{{< image src="/logos/brave.svg" position="center" style="width: 25%;" >}}](https://brave.com/)
Privacy level: **Medium**
{{< text-icon privacy "#FFAA00" >}} Privacy level: **{{< color "Medium" "#FFAA00" >}}**
**Brave** is the browser based on Chromium that advertised itself as **the**
browser for privacy. It comes with good privacy features outside the box,
however it is known for adding spyware features in the past, such as
**telemetry**, **auto-updates** and **Brave Rewards**.
**telemetry**, **auto-updates** and **Brave Rewards**.
Should be used if Chromium engine is required and Ungoogled Chromium cannot be
compiled in a reasonable amount of time.
@ -143,10 +183,10 @@ compiled in a reasonable amount of time.
Even if you have a secure browser, your data is still accesible if you **simply
hand it over** to Google, Facebook or other companies. You should aim to
replace **all of your services** from these companies with privacy friendly
replace **all of your services** from these companies with privacy-friendly
alternatives.
You can see the privacy friendly services **hosted by ElPengu** [here](../../services).
You can see the privacy-friendly services **hosted by ElPengu** [here](../../services).
## Search Engines
@ -154,23 +194,20 @@ You can see the privacy friendly services **hosted by ElPengu** [here](../../ser
{{< image src="/images/librex-interface.webp" position="center" style="width: 75%" >}}
Privacy level: **Very high**
{{< text-icon privacy "#55FF55" >}} Privacy level: **{{< color "Very high" "#55FF55" >}}**
**LibreX** is a meta search engine that pulls Google results. It uses **no
javascript**, therefore your search queries can't be tracked.
javascript**, therefore your search queries can't be tracked.
Other useful features are torrent search and onion link search.
### {{< image src="/logos/searx.png" position="relative" style="height: 2.15rem; width: 2.15rem; margin-right: 15px" >}} [SearXNG](https://github.com/searxng/searxng)
{{< image src="/images/searxng-interface.webp" position="center" style="width: 75%" >}}
Privacy level: **High**
{{< text-icon privacy "#00FF11" >}} Privacy level: **{{< color "High" "#00FF11" >}}**
**SearXNG** is a fork of Searx, a meta search engine that pulls results from
**a lot** of search engines, including Google, DuckDuckGo, Startpage. It
**SearXNG** is a fork of SearX, a meta search engine that pulls results from
**a lot** of search engines, including Google, DuckDuckGo, StartPage. It
requires javascript for proper use, which can be maliciously modified by the
host, but has the advantage of customizability.
host, but has the advantage of being customizable.

69
layouts/index.html
Unescape View File

@ -15,13 +15,13 @@
</p>
<p>Here we promote the following concepts:</p>
<ul>
<li>Software freedom, and the use of <u>libre software</u> such as: <b>Linux</b>, <b>*BSD</b>,
<li>Software freedom, and the use of <b>libre software</b> such as: <b>Linux</b>, <b>*BSD</b>,
<b>Matrix</b>,
<b>IRC</b>, <b>Fediverse</b> etc.
</li>
<li>Decentralisation. Having all your eggs in the same basket has never been a worse idea than today.
<li>Decentralisation. Having all your eggs in the same basket has never been a worse idea than today.
</li>
<li>Minimalism and the UNIX philosophy: all programs should do one thing, do it well and in a simple
<li>Minimalism and the UNIX philosophy: all programs should do one thing, do it well and in a simple
manner.
</li>
<li>Abstinence from consumerism. The web is a powerful tool, but at the same time a weapon for
@ -31,19 +31,19 @@
</ul>
<a href="./about" class="i-button">
<span class="i-small-icon">
{{- $fname:=print "/static/icons/link-solid.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"white\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/link-solid.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"white\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
About me</a>
<h2>
<span class="i-big-icon">
{{- $fname:=print "/static/icons/server.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/server.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
Services
</h2>
@ -53,20 +53,20 @@
<a href="./services" class="i-button">
<span class="i-small-icon">
{{- $fname:=print "/static/icons/link-solid.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"white\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/link-solid.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"white\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
Services</a>
</div>
<div class='right'>
<h2>
<span class="i-big-icon">
{{- $fname:=print "/static/icons/user.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/user.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
Blog
</h2>
@ -75,17 +75,18 @@
<ul class='i-blog'>
<!-- Ranges through content/posts/*.md -->
{{ range where .Paginator.Pages.ByDate.Reverse "Section" "posts" | first 8 }}
<li>{{.Date.Format "2006 Jan 02"}} - <a href="{{.RelPermalink}}">{{.Title}}</a></li>
<li>{{.Date.Format "2006 Jan 02"}} - <a
href="{{.RelPermalink}}">{{.Title}}</a></li>
{{ end }}
</ul>
<p class="i-blog"><a href="./posts">Read more...</a></p>
<h2>
<span class="i-big-icon">
{{- $fname:=print "/static/icons/address-card.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/address-card.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
Contact
</h2>
@ -102,7 +103,7 @@
{{- $fname:=print "/static/icons/email.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#ffffff\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
</a>
<a href="/keys/contact-gpg-key.txt" style="float: left">
@ -110,17 +111,17 @@
{{- $fname:=print "/static/icons/key.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#ffffff\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
</a>
</div>
<h2>
<span class="i-big-icon">
{{- $fname:=print "/static/icons/dollar.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/dollar.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"#D092FC\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
Donate
</h2>
@ -129,10 +130,10 @@
</p>
<a href="./donate" class="i-button">
<span class="i-small-icon" style='margin-right: 15px; top:-1px'>
{{- $fname:=print "/static/icons/monero.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"white\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
{{- $fname:=print "/static/icons/monero.svg" -}}
{{- $path:="<path" -}}
{{- $fill:="<path fill=\"white\"" -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>
Donate!</a>
</div>

1
layouts/shortcodes/color.html
Unescape View File

@ -0,0 +1 @@
<span style="display: inline-block; color: {{- ( .Get 1 ) -}};"> {{- ( .Get 0 ) -}} </span>

6
layouts/shortcodes/text-icon.html
Unescape View File

@ -0,0 +1,6 @@
<span class="text-icon" style="">
{{- $fname:=print "static/icons/" ( .Get 0 ) ".svg" -}}
{{- $path:="<path" -}}
{{- $fill:=print "<path fill=" ( .Get 1 ) -}}
{{ replace (readFile $fname) $path $fill | safeHTML }}
</span>

2
resources/_gen/assets/scss/scss/main.scss_de1a7f5f1c8c46959803c429bb697ff0.content
View File

File diff suppressed because one or more lines are too long

2
resources/_gen/assets/scss/scss/main.scss_de1a7f5f1c8c46959803c429bb697ff0.json
Unescape View File

@ -1 +1 @@
{"Target":"main.52057b03a260e4d73534d54ce15ce2083ced0db3e0659fb3a9b120df31e1c98e.css","MediaType":"text/css","Data":{"Integrity":"sha256-UgV7A6Jg5Nc1NNVM4VziCDztDbPgZZ+zqbEg3zHhyY4="}}
{"Target":"main.ba988ff049f79c88f2e3e2f30fba1a412a31d4076ae35e033072c35268206b53.css","MediaType":"text/css","Data":{"Integrity":"sha256-upiP8En3nIjy4+LzD7oaQSox1Adq414DMHLDUmgga1M="}}

1
static/icons/privacy.svg
Unescape View File

@ -0,0 +1 @@
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><!--! Font Awesome Pro 6.2.1 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license (Commercial License) Copyright 2022 Fonticons, Inc. --><path d="M416 208c0 45.9-14.9 88.3-40 122.7L502.6 457.4c12.5 12.5 12.5 32.8 0 45.3s-32.8 12.5-45.3 0L330.7 376c-34.4 25.2-76.8 40-122.7 40C93.1 416 0 322.9 0 208S93.1 0 208 0S416 93.1 416 208zM288 176c0-44.2-35.8-80-80-80s-80 35.8-80 80c0 48.8 46.5 111.6 68.6 138.6c6 7.3 16.8 7.3 22.7 0c22.1-27 68.6-89.8 68.6-138.6zm-48 0c0 17.7-14.3 32-32 32s-32-14.3-32-32s14.3-32 32-32s32 14.3 32 32z"/></svg>
Side by Side

After

Width:  |  Height:  |  Size: 627 B

9
themes/hello-friend-ng/assets/scss/_icons.scss
Unescape View File

@ -7,6 +7,15 @@
margin-right: 15px;
}
.text-icon {
display: inline-block;
height: 1.15rem;
width: 1.15rem;
top:0.15rem;
position: relative;
margin-right: 5px;
}
.big-icon {
display: inline-block;
height: 2.15rem;

4
themes/hello-friend-ng/assets/scss/_index.scss
Unescape View File

@ -22,6 +22,10 @@
margin-right: 30px;
}
.main-container li {
font-size: 14px !important;
}
.title hr {
width: 80%;
}

2
themes/hello-friend-ng/assets/scss/_main.scss
Unescape View File

@ -74,7 +74,7 @@ h1 {
h2 {
font-size: 1.625rem;
margin-top: 2.5em;
margin-top: 1.5em;
}
h3 {

80
themes/hello-friend-ng/assets/scss/_post.scss
Unescape View File

@ -0,0 +1,80 @@
.post-box {
display: block;
justify-content: center;
width: 100%;
max-width: 1000px;
margin: 40px 0 0;
border: 1px solid #A337F0;
border-radius: 15px;
padding: 35px 35px 20px;
}
.post-box-title {
height: 70px;
vertical-align: middle;
list-style: none;
}
.post-box-title::-webkit-details-marker {
display:none;
}
.post-box-title h2 {
display: inline-block;
margin-top: 0;
margin-bottom: 0;
vertical-align: middle;
font-size: 35px;
}
.post-box hr {
margin-bottom: 30px;
}
.post-box-title h2:hover {
color: #D092FC
}
.post-box-title img {
display: inline-block;
width: 50px;
margin-right: 10px;
vertical-align: top;
}
.post-box-title p {
float: right;
margin-top: 10px;
}
.content li {
font-size: 16px;
}
//.post-box details {
// margin-top: 30px;
//}
//
//.post-box summary {
// color: #D092FC;
//}
//.post-box summary:hover {
// color: white;
//}
@media only screen and (max-width: 768px) {
.post-box-title {
height: 100px;
text-align: center;
justify-content: center;
}
.post-box-title p {
float: none;
clear: both;
margin-top:20px;
}
.post-box hr {
width: 0;
}
}

1
themes/hello-friend-ng/assets/scss/main.scss
Unescape View File

@ -20,3 +20,4 @@
@import "index";
@import "taglist";
@import "donation";
@import "post";

Write Preview
Loading…
Cancel
Save