For the past year I have unfortunately gone down the rabbit hole as a noob in the realm of privacy, security and all that stuff.Because I broke my former computer I ended up getting a novacustom laptop with HAP disabled IME, no bluetooth and wifi modules, no physical webcam or mic, no windows (I opted for Debian), and LUKS disk encryption. Also an assload of unreasonably long passwords on all my accounts, hardware security keys in physical vaults etc.But recently I have been thinking this would be pretty problematic if I suddenly lose my memory or if I died suddenly, for my family to access any of my stuff.I am questioning it all, it seems kinda more trouble than it is worth. Surely the secret police still has it all backdoored. And at the end of the day I am just a regular guy.Discuss
>>107901250It's not the secret police I'm worried about. It's the vibe hackers and data brokers. The less data they have on me, the harder it is for them to manipulate me.
>>107901468Yes but that doesnt negate the drawbacks
>>107901250Threat modeling.Who's your enemy? Is it your mom, a local jew, your local law enforcement, the FBI (or equivalent), IRS, NSA, CIA, Mossad?What are you protecting? Your bank details? Are you a drug dealer? A protester? An ordinary citizen? A glownigger?Start with these questions, you won't get far without answering them honestly and creating a plan based on those answers.LUKS2 in itself is enough against FBI level threats, but not the CIA or Mossad ($5 wrench method). Disabled IME, no bluetooth etc. is essential if you live in places like Iran or Syria and you're an anti american rebel, but mostly useless if you're a government worker.>unreasonably long passwordsProbably useless if you use plain shitty hashing algorithms like MD5 or SHA1, and also pointless if you use the latest and greatest KDFs, things like Argon2id or PBKDF2 with high enough rounds + SHA3-512 / Blake2. A master password for KeepassXC (or anything else you like) and one for your main drive's LUKS is more than enough for most people. (25-30 characters are more than enough, if it's not just asdasd 14 times, but you get my point)If you just hate corpo spyware, a linux machine with icecat +Tor browser is more than enough.>hardware security keys in physical vaults Don't like them, I consider them useless for most people, a phone with 2FA or a regular pendrive with the keyfile on it is much better imo.
>>107901568I dont know who my enemy is, I believe everyone is until proven otherwiseI am an ordinary citizen, I believe my greatest enemy is the state trying to suck the money out of my ass
>>107901609>I believe my greatest enemy is the state trying to suck the money out of my assWell, you can evade taxes, use Monero/foreign currencies/silver/gold, try bartering, participate in counter-economics or just move to another country. Good luck.
>>107901568>mostly useless if you're a government workerWhy? And what about disabling bluetooth and wifi at Bios level? Can the mossad still remotely activate it?
>>107901669>>mostly useless if you're a government worker>Why?I explicitly mentioned them because at least in my country (not the US) they are basically spied on legally 24/7 via cellular, software, cameras, in person etc. Some levels of access require you to waive away most of your privacy rights so they either bug your PC, use vPro or give you a government-issued laptop/PC and they force you to use it. Oh and loads of people work in this area here.>And what about disabling bluetooth and wifi at Bios level? Can the mossad still remotely activate it?I don't know the capabilities of Mossad specifically, but considering their supply-chain attacks in recent years, it's not impossible. I still remember the WiFi sensing schizoposts from 2009, even some of my HAM operator frens told me about that. A few years passed and it's a commercial product now, like come on.Oh and BIOS level means jack shit if it's closed-source, you can't verify anything until it's 100% open.
>>107901917What a time to be alive
Whats the most private OS?
>>107901967The future is indeed bleak but don't forget, their resources aren't limited either. If tens of millions of people use I2P and host Tor nodes, they're fucked. >>107901976>Whats the most private OS?Private like how? No telemetry? No internet? Active security mitigations? Isolation? Tor enabled by default? It's a retarded reddit tier question.Qubes, Slackware, Alpine (with a Linux-libre kernel) and OpenBSD are pretty nice though.
>>107902033>their resources aren't limited either.aren't unlimited* oops.
>>107901568>>107902033cuck license
>>107902192What did he mean by this?
