Keep a super long story short, getting a Laptop from my University as the course starts in September, and the benefit I have applied for which covers my university course in the UK includes a Laptop.

They pay for the majority of the price.

Intel i5 10th generation or AMD Ryzen 5 4000 8 GB 512 SSD graphics Onboard

Onboard graphics Operating system Windows 10 64 Bit 10 64 Bit 2.8 kg

These are the minimum specs it will come with.

As a privacy consciousness individual, and since I will require the Laptop formy course at university, andpotentially a job, one day perhaps, I would like to make the laptop as privacy friendly and hardened as possible.

I want to basically make it a safe device. I need it to be not monitoring me, or watching me.

Potentinally there will be some sort of system or software that can monitor my activities through my.university orbenefitss people.

As it is for studying and for working, I think best to keep the same operating system (OS) Also I have only ever used windows in my life. Never Linux other than a virtual system on my host windows 11 pro edition PC.

My PC has an amd ryzen 55 000 CPU.

Thanks.

This is a concept still in the making. I came across a few people discussing it, and I found next to nothing about it online. I thought it is important and I post it here to give it some traction.

The core idea that appealed to me is that it extends the idea that the processing power and bandwidth of modern devices is not used for our own sake, but to better funnel behavioral data to corporations.

So it is not just "so stupid design" that "we don't even feel devices are 10x faster than 15 years ago", but deliberate design to use the hardware capabilities for the sake of other people's computers.

The countercomputing philosophy asks, down to the chipset, what is the most repairable, reusable component, that can help the user fortify their computing and harness it as independently as possible.

It is obviously a thought that resonates with the right-to-repair movement, privacy, and other politics related with renewable energy, but with a particular focus in selecting each and every component so that we own the hardware and we can use it as we see fit. Other links can be drawn to the smallnet initiatives such as gemini protocol, alternative nets like Reticulum, and of course open hardware.

The retro angle can offer flexibility to movements to rely on simpler components and adjust their needs, something that will also lead to greater independence from Nvidia and the like.

As I said, there are very few people discussing this idea right now, and you can't find much online, but it is worth to "look out for" possible developments in the future.

I found this, it's about the data broker loophole. The problem is, in the US we have 4th Amendment protection against warantless searches. Many other nations, have a similar right, by another name. Canada has Section 8 of the Charter of Rights and Freedoms.

These are more and more bypassed by data brokers. The government purchases data from data brokers. Data it could not get without a warant in the past.

Maybe this is not as much a problem yet in Canada as in the US? I'm not sure, hope some Canadians can say how it is? But here in the US, it's a massive prob now.

Related: We Built a Surveillance State: What Now?

Co worker just got one of these. Looks pretty neat! I didnt find anyone on Lemmy talking about it yet. Thoughts ?

https://unplugged.com/

Was getting truly tired of my Smart TV android experience. Recently discovered launchers. But realized ultimate it’s just a mask on top of Google still. Was considering taking a larger leap and try converting the TV to use something else. Recently came across Plasma Bigscreen an open source Linux based OS designed to at least bring a TV friendly experience to compatible hardware. Has anyone tried this ? Has anyone had any success flashing a Sony Smart TV with it ?

TL;DR tried to leave Gmail for Proton Mail, but ended up running them both simultaneously which created a mess. Later added Proton Pass over Bitwarden and SimpleLogin, but run into autofill bugs and a growing sense of vendor lock-in. I'm planning to consolidate everything into Mailbox.org, Bitwarden and either SimpleLogin or Addy and use a personal domain this time to avoid being locked in again. My fumble was never fully committing to one solution.

Sometime in 2018 I wanted to get off Google (Gmail). I did research and created a Proton account. I imported all my email from Gmail to Proton. It looked good. I bought a domain name, attached it to Proton, redirected all future Gmail emails to Proton to catch them all and update the addresses in the services that I use. I was also using Bitwarden at the same time.

After a few months I needed to look up some purchases in my email archive. I couldn't find them. I was doing it on my Android phone. I tried various combination. I KNEW what I bought and the keywords to find it. It was not there. Did Google lose my email?! Was I going crazy? No, it's just that the mobile Proton Mail app does not support fulltext search. I know why, but I still think it's doable the same way as in the web browser. Anyway... that was a deal breaker to me. But now I already had Gmail + Gmail imported into Proton Mail + emails I received while already on Proton. I started to look for ways to go back to Gmail but also to take my Proton mail with me. I set up Thunderbird with IMAP and started to move them around. I didn't finish that process because it was manual and there was just too much, I couldn't keep track of it properly. I just created a mess for myself with doubled emails, etc. Sigh. I went back to Gmail for a few years.

Then as I started using Thunderbird more and more I realized its fulltext search works across all inboxes even if the provider doesn't support it. I had the urge to give Proton another go. This time I was also already using SimpleLogin (before Proton bought them). I had a different personal domain. What I now created is that I have TWO inboxes (Gmail and Proton) and never moved fully away from Gmail. But I do use SimpleLogin for both. It was because I wasn't sure if I could commit 100% to Proton, given my past experience.

At this stage, I was still using Bitwarden. So I had Bitwarden + Proton Mail + Gmail + SimpleLogin. But I knew of Proton Pass, which a couple years earlier was lacking compared to Bitwarden, but supposedly has improved. I decided to give it a try after Proton bought SimpleLogin, because it seemed like it would be cheaper to user Proton Mail + Proton Pass + SimpleLogin, I wouldn't need Bitwarden anymore. I really like the UX of Proton Pass. The desktop app is pretty and functional. I love how 2FA codes in desktop web browsers are displayed automatically in a notification and I can use them by clicking a single button. Autofill on Android also works 90% of time. So I imported everything from Bitwarden into Proton Pass and decided to "test drive" for a bit. Part of the test was creating new logins in PP. At first I manually added them to Bitwarden. After some time, I didn't. I created a bunch of passkeys in PP, also part of the functionality test. So they are now not in Bitwarden.

Meantime, I started to be bothered by some Proton things. Some login forms don't autofill, for example a bank website that I use many times every month. I reported it to Proton on November 6 last year. They said they forwarded it to their team and that it will get fixed in the next release. It didn't. It still does not work 5 months later. In the meantime I stumbled upon several other websites where Proton Pass' autofill does not work. But at least Proton launched a few half-baked products since then. Fulltext search on Android doesn't work, either. It's been only 8 years or so, I can wait.

I also realized that I probably don't need an encrypted inbox. It's not even E2EE, because that's simply impossible in email domain (unless it's something like S/MIME or PGP, but both parties have to use it). It's only encrypted on rest. I am no activist nor a journalist. I just add extra work for myself, having to run Proton Bridge, having to use their apps, not having a working fulltext search in the mobile app, not having normal IMAP.

I feel like them launching more and more apps and services is going the way of creating an "ecosystem". I was happy having SL as an independent service, now it's also Proton. I feel like an Apple customer (been there), I see the garden walls being built around me and have an encroaching feeling of vendor lock-in.

I regret my choices. I did fumble. I want to go back.

I'm thinking of subscribing for Mailbox.org. I looked at Tuta (have to use their apps, not easy to export), Posteo (doesn't allow for custom domains) and FastMail (I had issues in 2018, don't remember what exactly, besides I want an EU product). Because of how butchered my Proton inbox is, I think the best approach will be to delete all Gmail messages from it (after I confirm they are still in Gmail) and then export all and import to Mailbox.org. Separately, export all from Gmail and also import into Mailbox.org. That should give me a clean slate. I will also change ownership of aliases in SL. Sadly, I used many passmail.com aliases which are probably bound to Proton Mail and I am not sure I can continue using them if I pay for SL, but not for Proton (though, my subscription is still valid for many months).

I want to migrate back to Bitwarden. Based on my search it's not possible to selectively import entries from Proton Pass to Bitwarden. Currently my Bitwarden vault is outdated, Proton Pass has many newer logins and other items and several passkeys. I think what I have to do is backup my Bitwarden vault (just in case) and then create a new empty vault and import everything from Proton Pass. I also need to re-create any PP passkeys in Bitwarden and either switch the websites to use that or add Bitwarden passkeys if a website supports more than one passkey.

I am also not sure about staying on SL. I am considering Addy, but it's run by just one guy, so I'm not sure about it. This time, I plan to buy another personal domain and use it for email aliases rather than to rely on the domains provided by the service. This way I can migrate in the future if I need to.

btw I also switched from Windows 11 to Linux

The core issue here is that I couldn't commit . I wanted to try things and instead of committing to one and sticking to it, I used both at the same time. Chaos.

I just need to get this off my chest. Thanks for reading. I appreciate if you have anything constructive to say.

I'm looking for privacy-conscious options for a cycling computer or possibly a wearable fitness tracker.

Recording activities has become sort of a journal for me. I like being able to look up when I did a particular ride/hike, or how long it took, where I hit a max speed, whether or how often I've taken a certain road, etc. I also like seeing basic metrics like average speed/distance/time YTD, year over year, or for specific date ranges.

I do track heart rate and time in zones, but would be willing to let that go. I never wear a wearable 24/7 and don't track sleep/hydration/stationary workouts.

I've been using Garmin devices for years, and really like them for ease of use - getting all of my data into one place "just happens automatically" and is available for further analysis. But, I don't like that that one place is, well, Garmin, not to mention that their supporting and data visualization apps are completely enshittified at this point.

Three alternatives spring to mind:

• go back to a "dumb" computer (maybe not such a bad thing!)
• keep my Garmin devices but take them offline - mount them as USB and copy the files locally
• use a phone-based app like CoMaps

Are there any good alternatives out there? Maybe even an all-in-one platform like Garmin, but where the company really puts privacy front-and-center... or platforms that facilitate storing data locally?

Thanks!

cross-posted from: https://lemdro.id/post/38681402

I'm looking for sites that offer free instances of self hosted apps.

Like these:

• https://hostux.network/en/
• https://gravitywell.xyz/#services
• https://riseup.net/
• https://www.inventati.org/services/
• https://disroot.org/#services
• https://nolog.cz/en/#services
• https://www.systemli.org/en/service/
• https://www.esiliati.org/
• https://cheredeprince.net/
• https://facil.services/
• https://services.siick.fr/
• https://woodpeckersnest.space/
• https://bloat.cat/
• https://garbaye.fr/
• https://canine.tools/services
• https://www.chapril.org/-services-.html
• https://tchncs.de/en/
• https://wiki.bsd.cafe/

Indeed from outside STF seem like a pretty strong foundation with a plan lied out and everything, but the reality says a different story.. Session is on life support

Session is asking for a community investment of 1million dollars, which i would say is alot considering the short period of time they have left, but not alot considering the size of operations that they have

the STF has received approximately $65,000 in donations. This is enough to maintain critical Session infrastructure for the next 90 days. We are extremely grateful for the support Session has received from the community, but unfortunately this is not sufficient to retain full-time developers. As a result, all paid staff and developers will have their final working day on April 9, 2026. After this date, some team members will continue on a primarily volunteer basis to help maintain Session until July 8, 2026.

If the fundraising is successful, the foundation would be able to continue active development of Session, including launching Session Pro and Session Protocol v2.

If it is unsuccessful, the lack of funding would mean the foundation is not able to support Session in any capacity and will need to be shut down. As a result, Session would be removed from the app stores, and critical infrastructure like the Session file server, push notification server and seed nodes will go offline.

Session plans to donate the rest of the money to the EFF in case this fundraising campaign turns out to be unsuccessful

We also want to assure you that if the STF is unable to secure funding sufficient enough to meet its goals within the next 90 days, any donations that cannot be used in accordance with the STF's constitution will be publicly donated to the Electronic Frontier Foundation.

Turns out catbox is blocked by like everyone, are there any good private alternatives that are not blocked by the masses that I can use to send files under 2gb with a "delete after X hours" feature?

Before you say Lufi, it refuses to finish requesting the file on the DL end, times out every time, on a 22.15MB file no less.

Any help would be appreciated. Trying to send a relative who "doesn't want to turn off her wifi" on her iPhone lest "it mess something up" a video. No shot I can get her to log into her router and disable the stupid "security" hijack that blocks catbox.

Publication croisée depuis https://feddit.org/post/28359831

also an article on itsfoss:

https://itsfoss.com/news/session-call-for-donations/

Crossposted from https://lemmy.dbzer0.com/post/66918676

Reason number 5,386 to delete your Reddit account and encourage your friends & loved ones to do the same.

(This is a question for people like me who don't self host their email.)

I've noticed more and more companies are able to detect when emails are from a temporary or alias email service. With emails being as important to identity as a phone number or address nowadays, I use proxy emails to bypass corporate registration and tracking, at least to an extent. I don't give out my actual email unless it's for something genuinely important.

Are there services anyone out there uses that are reliable in getting around company filters that detect when an email is a temp mail?

I've noticed more and more things that require an email signup to be able to detect when an email is from a temp service. I've been using Smailpro.com for years now but it seems companies are wising up to proxy emails like those. With email being as important to identity as a phone number or address nowadays, I only use proxies unless it's something I deem important enough to use my real email for.

Anyone out there experienced with temp emails? Are there services that can still get through company filters?

Hard to imagine this is an important message from 1998...

I had one SIM-card left that had been "grandfathered" into the current system, in which you are required by law to have the card registered with your social security number. Because Gestapo, that's why. Anyway, I was keeping it hidden away in my wireless earbuds' case, taped under the lid, but it must've gotten loose. Ah well... I wasn't really using it for anything, keeping it around just in case.

Friends,

We're happy to announce that we have funding available to package BusKill in QubesOS as a contrib package.

Thanks to a generous donation from NovaCustom, we're offering a bounty to anyone (including you!) who packages BusKill as an official contrib package for QubesOS.

About BusKill

BusKill is a laptop kill-cord. It's a USB cable with a magnetic breakaway that you attach to your body and connect to your computer.

Watch the BusKill Explainer Video for more info youtube.com/v/qPwyoD_cQR4

If the connection between you to your computer is severed, then your device will lock, shutdown, or shred its encryption keys

thus keeping your encrypted data safe from thieves that steal your device.

About NovaCustom

In Mar 2015, Wessel klein Snakenborg (founder of NovaCustom) started selling highly-customizable Linux laptops from Europe.

In Aug 2021, NovaCustom released their first laptop (NV40) with coreboot pre-installed with Dasharo.

NovaCustom offers anti-tamper options, including glitter nail polish applied to the chassis screws (photos sent to you via Proton Mail before shipment — specify PGP key at checkout for e2ee)

Since 2023, NovaCustom has been a leader in hardware security:

• In Apr 2023, NovaCustom started offering Intel ME disabling
• In May 2023, NovaCustom demonstrated their commitment to free software and the security community by obtaining Qubes certification on their NV41 Series laptop.
• In Sep 2023, NovaCustom started offering anti-interdiction services, which includes applying a unique glitter pattern to your new laptop's chassis screws before shipment. This was inspired by Michael Altfield's article about Trusted Boot,
• In Feb 2024, NovaCustom started selling their NV41 laptop with Heads pre-installed
• In Sep 2024, NovaCustom's V56 laptop became Qubes Certified
• In Nov 2024, NovaCustom partnered with BusKill to bundle their security laptops with BusKill Kits, including the option to purchase BusKill Kits in-person (with cash) at their brick-and-mortar office in The Netherlands
• In Feb 2025, NovaCustom's V54 laptop became Qubes Certified
• In Mar 2026, NovaCustom donated $200 to BusKill, for packaging and documenting BusKill in apt, making it easier (and safer) to install BusKill on Debian-based Linux distros

And now, in Apr 2026, NovaCustom is further working to increase the accessibility of BusKill to QubesOS users, by sponsoring the submission of an official QubesOS contrib package.

Funding Available

If you'd like to claim this bounty for yourself, please

1. Read the details of the bounty, and then
2. Submit a proposal by commenting on this GitHub issue

Claim Bounty

opencollective.com/buskill/projects/qubes-package

Moreover, if you're a QubesOS user and you'd like to donate additional funds in support of this bounty, you can do so here.

• opencollective.com/buskill

Stay safe,

The BusKill Team
https://www.buskill.in/
http://www.buskillvampfih2iucxhit3qp36i2zzql3u6pmkeafvlxs3tlmot5yad.onion/

Your smartphone tracks your location, listens to your conversations, and sells your intimate moments to data brokers.

The law pretends to regulate this, but lobbyists write the rules and enforcement is a joke.

Encryption apps aren't enough when the hardware itself is designed to betray you.

The phone is a spy device marketed as a lifestyle accessory.

We need radical technical solutions, not incremental privacy policies that change nothing.

The surveillance economy depends on your ignorance and inaction.

Break the chain: use open hardware, de-Googled Android, or build your own tools.

#privacy #surveillance #digitalrights #antitrust

How much of your life are you willing to sell for a slightly more convenient map app?