If you don’t know me, I make frequent write ups about privacy and security. I’ve covered some controversial topics in the past, such as whether or not Chromium is more secure than Firefox. Well, I will try my hand again at taking a look at some controversial topics.

I need ideas, though. So far, I would like to cover the controversy about Brave, controversy around Monero and other cryptocurrencies, and controversy around AI. These will be far easier to research and manage than Chromium vs. Firefox, for example. I’d like to know which ideas you have!

Which controversial privacy topics do you know of that you would like to see covered?

PLEASE DO NOT ARGUE ABOUT THEM IN THE COMMENTS!

Please save any debate for if/when I make a write up about the topic. Keep the comments clean, and simply upvote ideas you would like to see covered. I won’t be able to cover everything, so it helps bring attention!

Above all else, be kind, even if you don’t agree with an idea or topic :)

  • toastal@lemmy.ml
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    1 month ago

    Matrix is defacto centralized around Matrix.org & servers they provide (where the cost of hosting makes it largely inaccessible to low-spec & medium-sized servers causing them to inevitably shut down & recommending users back to Matrix.org). All the metadata gets synced back to the mothership that was funded by Israeli intelligence. Avoid it.

    Cloudflare is a CIA front. They offer “free” DDoS protection + static proxy thereby giving Cloudflare the ability to MitM all TLS connections thru their servers. They convinced so many ‘developers’ via ‘influencers’ that every tiny site needs Cloudflare in front of it as a precaution/optimization, but it is an entirely premature optimization that doesn’t need to so widely deployed, but it is. 🤔

    Microsoft has always been an enemy but somehow managed to Trojan horse their way into the minds of developers again (neo-EEE) trying to centralize how software is created. Like we avoid Microsoft Windows, the rest of the Microsoft ecosystem should equally be avoided: Copilot, LinkedIn, Outlook, Exchange, Office, Teams, Azure, VSCode, npm, GitHub (Sponsors, Codespaces, Copilot). Literally none of these projects/services can’t be replaced to help protect the privacy of your clients, coworkers, contributors.

    • Chulk@lemmy.ml
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 month ago

      Cloudflare is a CIA front. They offer “free” DDoS protection + static proxy thereby giving Cloudflare the ability to MitM all TLS connections thru their servers.

      I just started to learn about privacy in depth this year, and this little fact about Cloudflare has sat with me more than most things that I’ve learned. I feel like very few people think about the implications of Cloudflare’s practices. Even if its not a CIA front (I feel like it is), we should feel uncomfortable giving any private entity such power. Unrelated, but their crazy lava-lamp wall, as cool as it is, kinda gives me bad vibes lol.

      • chappedafloat@lemmy.wtf
        link
        fedilink
        English
        arrow-up
        1
        ·
        29 days ago

        I learned about Cloudflare mitm quickly because when you use Tor browser you will see how many websites use cloudflare because you can’t access all those sites. So I did a little research about this problem about cloudflare and found out how serious and huge problem it is.

  • m_f@midwest.social
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 month ago

    Browsing with JS disabled by default and expecting most sites to have basic functionality like “display this text”

  • SpicyAnt@mander.xyz
    link
    fedilink
    arrow-up
    1
    ·
    1 month ago

    Step 1 of installing GrapheneOS for de-googling your life: Buy a Google Pixel phone

    Look - I know, I know. I get it. Google allows you to unlock the bootloader while maintaining the phone’s unique and excellent hardware security features. The argument makes sense. It is compelling. Other manufacturers do not give you this freedom. I am not arguing about that. I have a Pixel phone running GrapheneOS myself.

    However… It is just so very obviously ironic that one needs to trust Google’s hardware and purchase a Google product to de-google their life through GrapheneOS. I think that it is a perfectly valid position for someone to raise their eyebrows, laugh, and remain skeptical of the concept either because they do not want to support Google at all, or because they simply will not trust Google’s hardware.

    The reason why I think that this is “controversial” is because I have seen multiple instances of someone pointing out the irony, followed by someone getting defensive about it and making use of the technical security arguments in an attempt to patch up the irony.

  • undefined@lemmy.hogru.ch
    link
    fedilink
    arrow-up
    0
    ·
    1 month ago

    Browser extensions aren’t the answer to preventing tracking (as apps and other processes outside the browser aren’t blocked)

      • undefined@lemmy.hogru.ch
        link
        fedilink
        arrow-up
        0
        ·
        edit-2
        1 month ago

        I use primarily DNS blocking myself, but it’s a custom solution that pulls in a ton of blocklists. I get tired of the “just use a browser extension” as the solution for everything, and any time I bring up IP/DNS-based solutions people say “but that doesn’t block everything” as if browser extensions do.

        • Zerush@lemmy.ml
          link
          fedilink
          arrow-up
          0
          ·
          1 month ago

          The biggest scam is with Browser VPN, they are simply proxies, good to watch country restricted movies but not for more. They don’t protect privacy, because they only can create the tunnel, after the browser is already connected to your ISP server. Bad in countries with dictatorship or teocracies with controlled servers, there only steganographic methods can help in comunications (Hidden messages in Photos, music, or even innocent text files)

          But normally 100% privacy isn’t possible, almost every actuation online can be tracked. You can only avoid the worst with your shitty PC against the server and AI power of big companies, goverments and secret services with their hacker squads. Tey can spy other goverments, they are swallowing this little geeks with their laptop and VPN in a breaktime if needed (China even employ savants (isle gifted autistic people) as hackers in their secret services)

          • undefined@lemmy.hogru.ch
            link
            fedilink
            arrow-up
            1
            ·
            1 month ago

            Hard agree, except I do have an issue with the last paragraph in that I think it’s far dumber than you’ve described.

            Simply blocking (a shit ton of) domains can really get you 99% of the way there. I’m a web developer and it’s stupid dumb how third-party stuff is hosted. It’s either exactly that (third party hosted) or a CNAME or a third party which is easily blocked.

            Look, I know how complex tracking and fingerprinting can be. But from my experience, it’s really not hard to block. Of course, I’m not really speaking to first party tracking where blocking would destroy the entire experience. But for the most part, you can prevent a profile being built about you (at least for tracking and advertising) by blocking with DNS.

  • Zagorath@aussie.zone
    link
    fedilink
    arrow-up
    0
    ·
    1 month ago

    There is no expectation of privacy in public.

    By which I mean that things like blurring a house from Street View are unreasonable.

    • RiderExMachina@lemmy.ml
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 month ago

      IMO, blurring a house in Street View could lead to the Streisand effect, especially when 99% of all other property is unblurred.

      If you want to remain private, in the case of Street View, your best bet is to keep it as inconspicuous as possible, otherwise people will start looking closer and ask questions; the exact opposite of what you want, even if you have nothing to hide.

  • tehn00bi@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    1 month ago

    What about the issue of, the more accessible private browsing and messaging has become, the harder it has become to track down child porn producers.

    • interdimensionalmeme@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      1 month ago

      It is a non issue, a fabulation of a pretext to strip away all your rights. Just look at all the gross politics wonks slinging pedophile accusations at each other all the time. How could anyone even believe this was anything other than the latest tool of character assassination after homo, commie and anarchistshave worn out their usefullness. Anyone going around yelling pediphile this pedophile that, recognize them for the troll that they are and tune them out, they have absolutely nothing valid to say.

  • bruhSoulz@lemmy.ml
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 month ago

    Its not private if it needs a phone number (cough SIGNAL cough)

    “Its to protect the kids”, “Its to fight terrorism”

    That one filthy muslim country banning VPN’s with the guise of it being impermissible (“haram”)

    • Zagorath@aussie.zone
      link
      fedilink
      arrow-up
      1
      ·
      1 month ago

      I don’t even care about the privacy aspect per se. Phone number as user ID is a crappy UX that fundamentally does not work when international travel, multiple devices, or needing to get a number changed. It also doesn’t work for shared accounts or people who might want multiple identities.

      Some of these relate to privacy, secondarily, but my primary concern is the UX.

  • gibson@sopuli.xyz
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    1 month ago

    Private gun ownership e.g. via home manufacture (not illegal contrary to popular belief) or p2p sale. Also mandated gun registries.

    Edit: so controversial I’m getting downvoted haha

    • interdimensionalmeme@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      1 month ago

      There is no such thing as too many layers of obfuscation. At least until we abolish all empires, states, religions and corporations.