• 3 Posts
  • 10 Comments
Joined 1 year ago
cake
Cake day: May 19th, 2025

help-circle


  • While this is certainly true, I’d like to highlight the difference between privacy and anonymity. Kagi is worse because they require payment information (though there is an option which attempts to separate your payment from your searches), but they are better because their privacy policy is better. If you don’t trust the service itself, whether because of its location or any other reason, then you need to be paying in cash or monero, using free services. In both of those cases though, you also need to ensure you don’t deanonymize yourself in other ways. In other words, pay if you don’t want to think about too much, and you more or less trust the company.






  • This template I got from the internet does, though this file is almost certainly not the problematic part.

    Source
    
    %%%%%%%%%%%%%%%
    % This CV example/template is based on my own
    % CV which I (lamely attempted) to clean up, so that
    % it's less of an eyesore and easier for others to use.
    %
    % LianTze Lim (liantze@gmail.com)
    % 23 Oct, 2022
    % 24 Aug, 2024 -- Updated X (Twitter) icon
    \documentclass[a4paper,skipsamekey,11pt,english]{curve}
    
    % Uncomment to enable Chinese; needs XeLaTeX
    % \usepackage{ctex}
    
    
    % Default biblatex style used for the publication list is APA6. If you wish to use a different style or pass other options to biblatex you can change them here. 
    \PassOptionsToPackage{style=ieee,sorting=ydnt,uniquename=init,defernumbers=true}{biblatex}
    
    % Most commands and style definitions are in settings.sty.
    \usepackage{settings}
    
    % If you need to further customise your biblatex setup e.g. with \DeclareFieldFormat etc please add them here AFTER loading settings.sty. For example, to remove the default "[Online] Available:" prefix before URLs when using the IEEE style:
    \DefineBibliographyStrings{english}{url={\textsc{url}}}
    
    %% Only needed if you want a Publication List
    \addbibresource{own-bib.bib}
    
    %% Specify your last name(s) and first name(s) (as given in the .bib) to automatically bold your own name in the publications list. 
    %% One caveat: You need to write \bibnamedelima where there's a space in your name for this to work properly; or write \bibnamedelimi if you use initials in the .bib
    % \mynames{Lim/Lian\bibnamedelima Tze}
    
    %% You can specify multiple names like this, especially if you have changed your name or if you need to highlight multiple authors. See items 6–9 in the example "Journal Articles" output.
    \mynames{Lim/Lian\bibnamedelima Tze,
      Wong/Lian\bibnamedelima Tze,
      Lim/Tracy,
      Lim/L.\bibnamedelimi T.}
    %% MAKE SURE THERE IS NO SPACE AFTER THE FINAL NAME IN YOUR \mynames LIST
    
    % Change the fonts if you want
    \ifxetexorluatex % If you're using XeLaTeX or LuaLaTeX
      \usepackage{fontspec} 
      %% You can use \setmainfont etc; I'm just using these font packages here because they provide OpenType fonts for use by XeLaTeX/LuaLaTeX anyway
      \usepackage[p,osf,swashQ]{cochineal}
      \usepackage[medium,bold]{cabin}
      \usepackage[varqu,varl,scale=0.9]{zi4}
    \else % If you're using pdfLaTeX or latex
      \usepackage[T1]{fontenc}
      \usepackage[p,osf,swashQ]{cochineal}
      \usepackage{cabin}
      \usepackage[varqu,varl,scale=0.9]{zi4}
    \fi
    
    % Change the page margins if you want
    % \geometry{left=1cm,right=1cm,top=1.5cm,bottom=1.5cm}
    
    % Change the colours if you want
    % \definecolor{SwishLineColour}{HTML}{00FFFF}
    % \definecolor{MarkerColour}{HTML}{0000CC}
    
    % Change the item prefix marker if you want
    % \prefixmarker{$\diamond$}
    
    %% Photo is only shown if "fullonly" is included
    \includecomment{fullonly}
    % \excludecomment{fullonly}
    
    
    %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    
    
    \leftheader{%
      {\LARGE\bfseries\sffamily Your Name Here, Ph.D.}
    
      \makefield{\faEnvelope[regular]}{\href{mailto:example@gmail.com}{\texttt{example@gmail.com}}}
      % fontawesome5 doesn't have the X icon so we use
      % the simpleicons package here instead; but some 
      % font size adjustment might be needed
      \makefield{{\scriptsize\simpleicon{x}}}{\!\href{https://x.com/overleaf_example}{\texttt{@overleaf\_example}}}
      \makefield{\faLinkedin}
      {\href{http://www.linkedin.com/in/example/}{\texttt{example}}}
    
      %% Next line
      \makefield{\faGlobe}{\url{http://example.example.org/}}
      % You can use a tabular here if you want to line up the fields.
    }
    
    \rightheader{~}
    \begin{fullonly}
    \photo[r]{photo}
    \photoscale{0.13}
    \end{fullonly}
    
    \title{Curriculum Vitae}
    
    \begin{document}
    \makeheaders[c]
    
    \makerubric{employment}
    \makerubric{education}
    
    % If you're not a researcher nor an academic, you probably don't have any publications; delete this line.
    %% Sometimes when a section can't be nicely modelled with the \entry[]... mechanism; hack our own and use \input NOT \makerubric
    \input{publications}
    
    \makerubric{skills}
    \makerubric{misc}
    
    \makerubric{referee}
    % \input{referee-full}
    
    \end{document}
    

  • For the sake of accuracy: Incoming emails from external services are initially not encrypted. It’s only truly zero knowledge for either emails sent by another tuta user, or for emails that have already been received.

    That being said, they don’t record this information unless specifically required by a court order, which to my knowledge has never happened. I understand that they make the decision of whether your account is spam within 48 hours, and after that it is in the clear. I created my account over Tor, didn’t use it much at all for the first few days, and have been using it fine since. That’s only one data point of course.



  • I’m not entirely sure what you’re trying to say here. To clarify, telegram uses a store-forward architecture, meaning that it deletes messages from the server once they have been received by everyone. Until that time, the messages are stored on the server in plaintext, unless you’re using a secret chat. They do this to avoid having to exchange keys between different clients, but what that really means is that it isn’t actually private most of the time.



  • First off, I would be careful around browser-based VPNs, especially free ones. If it’s in the browser it’s often just a proxy (as opposed to wireguard or openvpn), which is potentially bad for normal functionality or privacy. Also, if it’s a free service then it almost certainly collects your data itself, and won’t necessarily be allowed by sites either.

    That being said, there are two ways to layer the two type of tunnels:

    Connecting to the VPN first is relatively common. This means that your ISP can’t see you connecting to Tor. Furthermore, VPNs are designed to tunnel your entire system, while Tor generally is not. Thus, you can have some traffic that is merely VPN protected and some that runs through the Tor network as well. In this situation my ISP knows which VPN provider I use, my VPN provider knows (1) my identity and (2) my network activity outside of Tor, and sites that I visit can only see that I use Tor.

    The other direction is to connect first to Tor, and tunnel the VPN connection through there. This is very much not intended: Tor only tunnels TCP, while most VPN protocols use UDP (only, or more efficiently). The reason is that it’s actually quite difficult to hide your identity from your VPN provider. If the VPN is the innermost tunnel, then that means that it has access to all your network traffic. I’ll assume that all of it is encrypted with TLS (but be careful because a single error is bad). Then, the VPN only knows which domains you visit, how long, how much data, and at what times. This is still quite significant. Then there’s the issue of payment. If you choose a free service, it almost certainly means it’s selling your data. I will say that this is better than most other uses for free VPNs, but it’s still pretty sketchy. If you’re paying, then you need one which accepts payments in monero (or zcash or another private cryptocurrency) or cash by mail.

    Overall, Tor over VPN is relatively normal. I use this configuration regularly. VPN over Tor is highly unusual, and you should consider if you need it. If you need a recommendation for a VPN though, Mullvad supports both monero and cash by mail (sweden), and is generally a good all around VPN (as long as you don’t need port forwarding). One final thing to note: If for some reason you want to use a VPN on both sides, do not use the same VPN, even with separate accounts. Probably, they won’t check, but at that point you might as well just use straight Mullvad VPN.