- 3 Posts
- 10 Comments
spinning_disk_engineer@lemmy.cato
Privacy@lemmy.ml•Premium Privacy Services: are they really that private ?
1·2 months agoWhile this is certainly true, I’d like to highlight the difference between privacy and anonymity. Kagi is worse because they require payment information (though there is an option which attempts to separate your payment from your searches), but they are better because their privacy policy is better. If you don’t trust the service itself, whether because of its location or any other reason, then you need to be paying in cash or monero, using free services. In both of those cases though, you also need to ensure you don’t deanonymize yourself in other ways. In other words, pay if you don’t want to think about too much, and you more or less trust the company.
spinning_disk_engineer@lemmy.cato
Privacy@lemmy.ml•I'm questioning the privacy focused choices that I made
51·3 months agoI generally agree, but I’d avoid gmail with very few exceptions. They are going to read your email, so whether your solution as another protonmail account, an alias, simplelogin, or another service entirely, it’s almost certain to be an improvement. Keep in mind that you can tell gmail to forward your emails, for anyone who hasn’t updated their address book yet.
It is an option, but not a particularly good one seeing as it’s run by amazon. I personally use Signal just because it’s popular, but Wire seems equally good, and I’m glad they exist to provide competition.
The server is physically connected to my laptop with only a switch in between. However, my Qubesos config has two routers (one of which is a firewall) between the hardware and what I’m actually working on. I checked with curl, and I have access to ports 2049 and 111, as well as the webui on 443.
spinning_disk_engineer@lemmy.caOPto
Linux@lemmy.world•Setting up LaTeX on debian?English
4·6 months agoThis template I got from the internet does, though this file is almost certainly not the problematic part.
Source %%%%%%%%%%%%%%% % This CV example/template is based on my own % CV which I (lamely attempted) to clean up, so that % it's less of an eyesore and easier for others to use. % % LianTze Lim (liantze@gmail.com) % 23 Oct, 2022 % 24 Aug, 2024 -- Updated X (Twitter) icon \documentclass[a4paper,skipsamekey,11pt,english]{curve} % Uncomment to enable Chinese; needs XeLaTeX % \usepackage{ctex} % Default biblatex style used for the publication list is APA6. If you wish to use a different style or pass other options to biblatex you can change them here. \PassOptionsToPackage{style=ieee,sorting=ydnt,uniquename=init,defernumbers=true}{biblatex} % Most commands and style definitions are in settings.sty. \usepackage{settings} % If you need to further customise your biblatex setup e.g. with \DeclareFieldFormat etc please add them here AFTER loading settings.sty. For example, to remove the default "[Online] Available:" prefix before URLs when using the IEEE style: \DefineBibliographyStrings{english}{url={\textsc{url}}} %% Only needed if you want a Publication List \addbibresource{own-bib.bib} %% Specify your last name(s) and first name(s) (as given in the .bib) to automatically bold your own name in the publications list. %% One caveat: You need to write \bibnamedelima where there's a space in your name for this to work properly; or write \bibnamedelimi if you use initials in the .bib % \mynames{Lim/Lian\bibnamedelima Tze} %% You can specify multiple names like this, especially if you have changed your name or if you need to highlight multiple authors. See items 6–9 in the example "Journal Articles" output. \mynames{Lim/Lian\bibnamedelima Tze, Wong/Lian\bibnamedelima Tze, Lim/Tracy, Lim/L.\bibnamedelimi T.} %% MAKE SURE THERE IS NO SPACE AFTER THE FINAL NAME IN YOUR \mynames LIST % Change the fonts if you want \ifxetexorluatex % If you're using XeLaTeX or LuaLaTeX \usepackage{fontspec} %% You can use \setmainfont etc; I'm just using these font packages here because they provide OpenType fonts for use by XeLaTeX/LuaLaTeX anyway \usepackage[p,osf,swashQ]{cochineal} \usepackage[medium,bold]{cabin} \usepackage[varqu,varl,scale=0.9]{zi4} \else % If you're using pdfLaTeX or latex \usepackage[T1]{fontenc} \usepackage[p,osf,swashQ]{cochineal} \usepackage{cabin} \usepackage[varqu,varl,scale=0.9]{zi4} \fi % Change the page margins if you want % \geometry{left=1cm,right=1cm,top=1.5cm,bottom=1.5cm} % Change the colours if you want % \definecolor{SwishLineColour}{HTML}{00FFFF} % \definecolor{MarkerColour}{HTML}{0000CC} % Change the item prefix marker if you want % \prefixmarker{$\diamond$} %% Photo is only shown if "fullonly" is included \includecomment{fullonly} % \excludecomment{fullonly} %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% \leftheader{% {\LARGE\bfseries\sffamily Your Name Here, Ph.D.} \makefield{\faEnvelope[regular]}{\href{mailto:example@gmail.com}{\texttt{example@gmail.com}}} % fontawesome5 doesn't have the X icon so we use % the simpleicons package here instead; but some % font size adjustment might be needed \makefield{{\scriptsize\simpleicon{x}}}{\!\href{https://x.com/overleaf_example}{\texttt{@overleaf\_example}}} \makefield{\faLinkedin} {\href{http://www.linkedin.com/in/example/}{\texttt{example}}} %% Next line \makefield{\faGlobe}{\url{http://example.example.org/}} % You can use a tabular here if you want to line up the fields. } \rightheader{~} \begin{fullonly} \photo[r]{photo} \photoscale{0.13} \end{fullonly} \title{Curriculum Vitae} \begin{document} \makeheaders[c] \makerubric{employment} \makerubric{education} % If you're not a researcher nor an academic, you probably don't have any publications; delete this line. %% Sometimes when a section can't be nicely modelled with the \entry[]... mechanism; hack our own and use \input NOT \makerubric \input{publications} \makerubric{skills} \makerubric{misc} \makerubric{referee} % \input{referee-full} \end{document}
spinning_disk_engineer@lemmy.cato
Privacy@lemmy.ml•Warning to new tutamail users, your account could be temporary
10·6 months agoFor the sake of accuracy: Incoming emails from external services are initially not encrypted. It’s only truly zero knowledge for either emails sent by another tuta user, or for emails that have already been received.
That being said, they don’t record this information unless specifically required by a court order, which to my knowledge has never happened. I understand that they make the decision of whether your account is spam within 48 hours, and after that it is in the clear. I created my account over Tor, didn’t use it much at all for the first few days, and have been using it fine since. That’s only one data point of course.
spinning_disk_engineer@lemmy.cato
Privacy@lemmy.ml•What's with Telegram? Heard mixed opinions on it.
41·7 months agoI’m not entirely sure what you’re trying to say here. To clarify, telegram uses a store-forward architecture, meaning that it deletes messages from the server once they have been received by everyone. Until that time, the messages are stored on the server in plaintext, unless you’re using a secret chat. They do this to avoid having to exchange keys between different clients, but what that really means is that it isn’t actually private most of the time.
spinning_disk_engineer@lemmy.cato
Privacy@lemmy.ml•What's with Telegram? Heard mixed opinions on it.
5·7 months agoBy default, yes. It is possible to create a so-called secret chat, which is standard for signal and similar, but that’s something you have to manually do. Furthermore, it’s not even possible to make secret chats for groups. When it was initially released, I was cautiously optimistic that it could turn into a good, secure application, but knowing it’s been this long and it hasn’t, I wouldn’t consider that likely.
First off, I would be careful around browser-based VPNs, especially free ones. If it’s in the browser it’s often just a proxy (as opposed to wireguard or openvpn), which is potentially bad for normal functionality or privacy. Also, if it’s a free service then it almost certainly collects your data itself, and won’t necessarily be allowed by sites either.
That being said, there are two ways to layer the two type of tunnels:
Connecting to the VPN first is relatively common. This means that your ISP can’t see you connecting to Tor. Furthermore, VPNs are designed to tunnel your entire system, while Tor generally is not. Thus, you can have some traffic that is merely VPN protected and some that runs through the Tor network as well. In this situation my ISP knows which VPN provider I use, my VPN provider knows (1) my identity and (2) my network activity outside of Tor, and sites that I visit can only see that I use Tor.
The other direction is to connect first to Tor, and tunnel the VPN connection through there. This is very much not intended: Tor only tunnels TCP, while most VPN protocols use UDP (only, or more efficiently). The reason is that it’s actually quite difficult to hide your identity from your VPN provider. If the VPN is the innermost tunnel, then that means that it has access to all your network traffic. I’ll assume that all of it is encrypted with TLS (but be careful because a single error is bad). Then, the VPN only knows which domains you visit, how long, how much data, and at what times. This is still quite significant. Then there’s the issue of payment. If you choose a free service, it almost certainly means it’s selling your data. I will say that this is better than most other uses for free VPNs, but it’s still pretty sketchy. If you’re paying, then you need one which accepts payments in monero (or zcash or another private cryptocurrency) or cash by mail.
Overall, Tor over VPN is relatively normal. I use this configuration regularly. VPN over Tor is highly unusual, and you should consider if you need it. If you need a recommendation for a VPN though, Mullvad supports both monero and cash by mail (sweden), and is generally a good all around VPN (as long as you don’t need port forwarding). One final thing to note: If for some reason you want to use a VPN on both sides, do not use the same VPN, even with separate accounts. Probably, they won’t check, but at that point you might as well just use straight Mullvad VPN.


That’s possible. Everything after it is much faster, so I’d assumed it was reacting to some kind of failure event, but I’m not that knowledgeable about this. Edited for clarity.