What is DNS4EU? DNS4EU is an initiative by the European Commission that aims to offer an alternative to the public DNS resolvers currently dominating the market. Supported by the European Union Agency for Cybersecurity (ENISA), the European Union's DNS4EU secure-infrastructure project provides a protective, privacy-compliant, and resilient DNS service to strengthen the EU’s digital sovereignty and enhance digital security for European Union citizens, governments, and institutions.

The program provides robust DNS security for public institutions and their employees, ministries, local governments or municipalities, healthcare, education, and other critical services such as telecommunications providers. By working with the latter, for example, it ensures DNS resolution service for all of a telco’s customers, with minimum manual overhead for their teams.

Additionally, the DNS4EU solutions aid organizations in complying with regulatory requirements (such as GDPR) to keep data within European borders.

As these organizations often face challenges to independently developing and maintaining high-level cybersecurity measures (such as election cycles or funding), the DNS4EU project solves these challenges by providing a Europe-based, centralized, scalable solution to ensure the highest standards of security and privacy, compliant with EU regulations.

I'm looking to get a card for general spending that's not tied to any account. Is a gift card the way to go? Are these reloadable?

Don't say cash - lots of places don't take cash any more.

If you were running a LLM locally on android through llama.cpp for use as a private personal assistant. What model would you use?

Thanks for any recommendations in advance.

A translation of this article with a few (minor additions). I could not find an English-language article. The original article has informative illustrations.

“Archive.Today” is a popular website for access to paid media content. Well-known domain names for the website are archive.is and archive.ph (and archive.md, archive.fo, archive.li, archive.vn).

What many users do not know: The website provides users' data to Russia.

The data goes to Mail.ru and thus to the Russian Internet company VK. A look at the website with Webbkoll shows the following Russian domain names:

• privacy-cs.mail.ru
• r.mradx.net
• rs.mail.ru
• top-fwz1.mail.ru

First and foremost, top-fwz1.mail.ru/js/code.js is integrated. Further code from Russia is then loaded.

The following applies to Russian Internet companies:

“Russia demands unconditional cooperation and extensive control options from its flourishing IT economy. It is not just about the full possession of the largest social network (VK) and the largest payment service (Mail.ru), but in the case of Yandex also to influence the entire output of Yandex News.

The data collected show which Paywall content is particularly popular in western media, but could also provide insight about their users. One can speculate about the importance of such data in the hybrid Russian war against Europe and the rest of the West.

(the following part is about the most common originating news sites in Switzerland that are to be archived. It refers to the above mentioned paywall content)

Incidentally (and in addition), anyone who pays for the paid media content must (also) expect for user data to go to Russia:

«Until recently, Ringier sent - thanks to these cookies - the IP addresses of "Blick" readers to the Russian tech company Yandex. […] Yandex is also listed at «20 Minuten». The free news portsal of the TX Group also works with the platform of the Interactive Advertising Bureau. […] The NZZ also sent data to the east. The traditional company on Falkenstrasse has integrated dozens of trackers, including from Yandex and also from Rutarget, an advertising company that belongs to the Russian Sberbank, is fully controlled by the state and is on the sanction list of the United States. »

The operators of «Archive.Today» do not open their identity. Neither an impressum nor a data protection declaration can be found on the website.

“Liberapay” in France should be able to say who operates “archive.today”. If you click on the "Donate" button at "Archive.Today", you will be forwarded to the donation platform "Liberapay".

A (more) reputable alternative is the Internet Archive at Archive.org, best known for the archiving of websites at web.archive.org.

Posted to [email protected], [email protected] and [email protected]

edit 2 days later:

I'm aware this isn't the biggest smoking gun ever. But this particular service is in such widespread use that I feel it's important to shine a light on it.

Of course any post with certain keywords in the title will attract weird commentary, but I think you'll find that even the most contrary ones do not dispute the facts outlined in the article - just try to play them down, or ridicule them.

It's free, it has fast servers, it doesn't ask questions of you. It's a godsent!

By embedding tracking code into millions of websites, Meta’s Pixel and Yandex Metrica have been able to map Android users' browsing habits with their persistent identities (that is to say, with the account holder logged in). This method bypasses privacy protections offered by Android's permission controls and even browsers' Incognito Mode, affecting all major Android browsers. The international research team has disclosed the issue to several browser vendors, who are actively working on mitigations to limit this type of abuse. For instance, Chrome's mitigation is scheduled to go into effect very soon.

These tracking companies have been doing this bypass for a long time: since 2017 in the case of Yandex, and Meta since September 2024. The number of people affected by this abuse is high, given that Meta Pixel and Yandex Metrica are estimated to be installed on 5.8 million and 3 million sites, respectively. It is also worth noting that evidence of this tracking practice has been observed only on Android.

In the GrapheneOS forum, I encountered a claim that F-droid is insecure (and not good at privacy as well). These links (and more) were given as an evidence:

• https://privsec.dev/posts/android/f-droid-security-issues/
• https://xcancel.com/GrapheneOS/status/1883895255142932816#m
• https://github.com/obfusk/fdroid-fakesigner-poc

While there are some attitude against FOSS app, I think the arguments are generally sound and in good-faith. Which makes me confused, as I've been hearing good words about F-droid in lemmyverse.

I am not good at assessing arguments, so I want to ask you guys for more aspects and information.

Also, if not F-droid, what should I use? Is Aurora store, a frontend of play store, not fine to use as well?

Some might say that no one needs LinkedIn at all but there are some jobs that people struggle to attain so they get on LinkedIn. I have noticed though that I've mostly seen users who are in things like tech, marketing, business, and blue collar jobs on that platform. I didn't see many people on there who work in medical professions but it could have just been a tailored experience for me. Are there career fields where you wouldn't even think about making a LinkedIn?

Hey Lemmy!

Exactly as the title says, where self-destructing means that no matter what email provider I, or my recipients use, the email will be gone after a set amount of time.

The methods I have come up with are:

• using a PrivateBin or PasteBin link.
  • requires the recipient to click on a link that opens in another app/tab
  • easy to set up
• using an HTML remote content stylesheet with CSS ::after to inject the body text of the email; then, if I control the server, I can delete the stylesheet and the email will be gone.
  • embedded in the email, but plain text only. I'm not even sure if it can do line breaks.
• loading an SVG from a remote source

Does anyone have more methods?

I have received emails about updates to privacy policies from at least 5 companies yesterday. What is going on? Has government done something? Is it a scheduled thing?

Edit- As most companies have started messing with data for AI training, I have proceeded to delete my accounts with them. I should have done this a long time back.

cross-posted from: https://lemm.ee/post/65474221

https://archive.is/Htwxm

The EU is launching a new age verification app in July, establishing a tool that will potentially allow for tighter enforcement of rules requiring online platforms to protect minors online.

Basically, my entire system is FOSS but I'm tempted to install the Spotify .deb package. Would that give Spotify access to info about my system?

I want to move away from Google and was ready to make the shift to proton exactly the day before all that drama started about the CEO being a trump bootlicker and stuff…

Then I looked into some alternatives and haven’t moved yet. So I really can’t decide which one from tuta, Mailbox, kSuite or maybe still proton provides the best service. And recommendations or experiences y’all want to share to help me decide? :)

Either a good UI (web/iOS) or very good compatibility with third party apps, good spamfilters and maybe an integrated calendar would be important features.

Hello I'm looking for private and secure calendar and note apps for android. Would love some recommendations!

I currently use iCloud+ for storing photos and files. I also use Hide my email that comes bundled in the plan. I use Cryptomator in files app for encrypting some files.

I want to switch to a more privacy focused provider for my files. The photos can stay in iCloud because I don't think it matters as Apple already has access to the camera.

So, I want to switch to a cheaper iCloud plan and start a new cloud subscription. I would also like an alternative to Hide my mail but I don't want to spend too much for it. What would you recommend?

publication croisée depuis : https://lemmy.bestiver.se/post/410366

Comments

Hey everyone.

I make Peersuite, an opensource free communication platform.

It's private by default, there's no sign-in or email collection.

It's peer-to-peer, there's no server, after discovery you are connected directly to your friends my AES-GCN encrypted WebRTC channels. It forms a mesh and identifies superpeers. Because there is no server, in order to save your data between sessions, you can download your workspace into a password encrypted file. Happy to answer any questions.

FEATURES:

• chat with images, PMs, channels, and file send
• group audio/video calling
• screensharing
• kanban board
• whiteboard for diagrams/flowchartswith PNG export
• collaborative document editing with formatted PDF export

The best way for self hosting is docker, its on dockerhub as openconstruct/peersuite. You can also download desktop versions from the github or use on the web at https://peersuite.space/

github - https://github.com/openconstruct/Peersuite

So, I found some Firefox forks. Those would be: floorp, zen browser, tor browser and librewolf. Could anyone help me decide which one to use?

In the absence of privacy-focused ROMs for my tablet, I settled on flashing an AOSP GSI without Google apps. TrebleDroid to be specific, which is essentially vanilla AOSP, but with some additional drivers to maximize compatibility. Compared to privacy-focused ROMs like GrapheneOS, what exactly does AOSP send back to Google?

before buying expensive routers check OpenWRT's table of hardware and buy one that is supported by the current OpenWRT release and has decent specs. There is a detailed installation guide for each supported device in the wiki too so there are no excuses it's dead simple. Free yourself from stupid hardware manufacturers and their planed obsolescence products.

• Edit: also here is the new version of the table of hardware with more details They seem to have buyers guide too in the wiki.
• Edit2: seems like GL.iNet devices ship with OpenWRT out of the box with their GUI on top and you still have access to openwrt under the hood if you need it which sounds awesome so look into them if you're interested. Thanks you guys who brought them up.
• Edit3: there is firewall sulotion called OPNSense which is not limited to commercial routers like OpenWRT and can be run on any x86 hardware of your choice (like N100 mini pcs) so look into it if you're interested. Many thanks to the guys who contributed in the comments
• Edit4: Sorry for the multiple edits but some of you guys suggest some fantastic insights that I had to add. Anyways here is a list of good candidate devices for hassle free installation and yet powerful enough hardware from OpenWRT's Forum
• I promise it's gonna be the last Edit. OpenWRT has a official device they made themselves called OpenWRT ONE (I think the second one is also in the works). It hase good specs for home network and you support the project too. Here is the link to official Retailers

Has anyone tried Saily? (https://saily.com/) It claims to be an app to easily setup international eSIMs.

I am curious about its setup process and the information they collect. Can you sign up without the app? How about the app on a separate user profile (android)? Do they require ID to signup (or similar)?

It is a part of NordVPN, which gives some confidence that it is not a scam, however Nord doesn't have a good reputation for privacy, but neither do SIM's in general.

Is it worth bothering with anything like Saily for travel, or does the tried and true pre-paid SIM's?

I realized I was at risk by having smart devices on my normal network, so decided to move them to my guest network.

I don't like my smart tv, but it's all I have to work with for now. I want to keep it on my guest network, but still stream using jellyfin. I see on my netgear router there is an option to "let devices on guest network see other devices and access local network" which would probably allow it to see my jellyfin server, but then doesn't that defeat the point of a guest network? Maybe I need to learn what a reverse proxy is...jellyfin server is currently on windows (not my pc) but could move it to my linux pc if needed.

And yes, I plan to get a media center linux box in the future so I don't have to deal with the garbage smart tv os!