Use -F so you can keep getting those live reports even after the forest you're watching vanishes
Mikelius
joined 2 years ago
I wish there were some descriptions per provider with the ratings. Mullvad gets constant tests by third party against their network and has proven many times they have a no log policy that's working, yet they got a 4 out of 5...
With only numbers and generic descriptions that don't quite match the truth, feels like this sheet is a little misleading. Also, I find it ironic that it's on Google sheets.
Got mine connected to the network so I can take advantage of a local install of Emby, but blocked from Internet access, and every time it makes a DNS request (still blocked, but logged), it's added to a personal hosts file for the entire network just in case the kill switch doesn't work for some anomalous reason
Agreed! I tend to see what he can offer on regards to privacy for real life stuff like home address, data broker scrubbing (his extensive lists I mean), etc. But when it comes to the technology portion of it, I go with what I prefer, albiet I still hear what he has to say in case he introduces me to something I didn't know about before.
Oh gotcha, I misunderstood this post as talking about a self hosted VPN, not external provider. That explains it! :D
Out of curiosity, why not just leave ssh access to the local network so you can only reach it by VPN in the first place? Note I might be misunderstanding what the goal of this was, so feel free to lmk if I'm off the field with my question lol
Just got flashbacks of Lemmings from my childhood when reading this comment, lol
Check out opengarage.io if you're looking for a replacement. Been using it on mine and works perfectly.
Check out the latest Protectli devices. They have 2.5g ports on them and are very powerful little machines.
I've heard and seen folks say rooting Android is a huge security risk and adds an attack surface, but haven't seen anything to support the claims, really. Yes it's less secure for the average person, who doesn't know anything about security, to root an Android, but to say it's completely insecure without any supporting explanation (not you in particular, just in general when this is said) doesn't help. I like to imagine it like installing Linux and being told to trust the distribution you installed, but they disabled root and removed sudo because it's insecure.
The reason I root is actually for both security and privacy. Without it, I can't use custom firewall rules to restrict apps and system processes from reaching out to the internet or local network devices (AFWall+), have a local hosts setup (Adaway), run a VPN to my home network (Wireguard), and monitor all app network process calls (PCAPdroid) at the exact same time. It also prevents me from being able to create custom cron jobs and custom system changes I need that have only root access.
Being that I am also home 95% of the time with my phone on my person at all times, physical attack surface is less concerning for me, too.
With that all being said, the (assumed) excuse that "malware" is the security risk with root makes no sense to me because whether or not I have root access, phone malware probably doesn't need it in most cases since they're exploiting non-root things so that they can target the majority, not minority. Not to mention I rarely ever even install apps on the phone and most of my web surfing is done on my laptop, not my phone.
Only 2 problems I have with Graphene personally is the need to give Google money, which the irony is just too much, and no option for rooting. Otherwise it seems like a pretty good OS overall. In the meantime, while I wait for those options to be more flexible so I can have full control, I just use a rooted lineage os with all the extra Google stuff (ntp, DNS, etc) stripped and replaced with my own self hosted systems.
Even if it's removed from fdroid because they want to close source it, I assume my current installations of their apps would be unaffected - just become stale and obsolete over time since they won't get updates... But as they're offline anyway, not too concerned in the short term. Hopefully the company respects the privacy amd care of the open source community and won't take that away from us, though. One way to find out.