"Saying that you don't care about privacy because you have nothing to hide, is like saying that you don't care about freedom of speech because you have nothing to say" -Edward Snowden
@404-"" The point being made by those whom use that phrase is "I'm NOT(no way in hell) CHANGING (me, all inclusive) FOR YOU!!!! A CRIMINAL! A THIEF! A BERGLER! "F that"; let them get caught!
I have a self hosted KASM instance which I can spin up a Firefox container, do my browsing, then destroy it at the end. The container is set to use my VPN connection as well. There are lots of containers that can be spun outside of just Firefox.
I have been using & comparing VPN-providors for a long time (like many years), trying them on live systems. Above all others I'd recommend Proton VPN (for my location - Western Europe). Superior performance, and very limited loss in speed (contrary to others). My 2 cents.
You should also consider doing a video on how to contact various data brokers and request data removal. There are paid services that also do this for you. Great video.
I've used the free tools to remove me from advertisers and brokers. Typically I can purge 100 out of 105, the rest can't be purged. And if I try again a month later? There are another 100 new ones. Looking into deleteme because this is just too much manual nonsense, often 1/2 hour each month.
What happens when you use Unbound on a Raspberry Pi and use a commercial VPN (like PIA) on top of that? What happens to your DNS queries? And similarly, what happens if I set Firefox to use DoH when I'm using Unbound (which uses DoT) on my Network? What is the DNS stack so to speak?
I use a pihole but use unbound to do my own DNS lookups. Is the exposure of that worse than using DoH to one of the big DNS sites like CloudFlare or Quad9?
Definitely some good tips here but I feel like two of them conflict - DoH and Pi-hole. It might be worth outlining how to get Pi-hole to resolve DNS over HTTPS as enabling it in the browser would skip straight to the chosen provider rather than filter through Pi-hole.
Yes - but you can also enable it at the Pihole level...especially if you're securing your business or family, most non-tech folks aren't going to be changing browser settings.
@@CrosstalkSolutions Am I missing something? Not seeing DoH in my Pi-hole, at least without installing Cloudflare's own resolver on it which might be a little beyond most non-tech people trying to get PI-hole working to begin with.
@@Petie88 DNSSEC is the Pi-Hole equivalent. Select a DNSSEC compatible upstream DNS server in settings and then hit the checkbox further down to enable it and then you’re good.
@@GamesMaster-HD Thanks but DNSSEC and DoH are different technologies. DoH is not natively supported on Pi-hole but can be enabled by installing something like cloudflared or another DNS server that supports it.
@Petie88 To my knowledge it is preferred to run unbound as your DNS resolver together with pi-hole. You are not using DoH this way, but your DNS request cannot be tracked either.
Great video, thank you! What would be the proper browser setting for DOH, and whether it is needed, if one uses Pihole with unbound throughout the network?
What has been concerning me lately is the hacks on large corporations that have stolen all my data, I have been involved in three lately.....how do we stop these companies
How do you stop a bully? Easy, you ambush them and unleash mayhem. Sadly, I think a lot of people would have to physically destroy a lot of data servers and backup servers, in order to convince these companies to go into some safer line of business. Of course, that's dangerously illegal to do, but even the USSC has said that when the law gives men no recourse, it should not be surprised when they find other ways.
I am a pc user, how do you transition to or add to your home arsenal Linux? Which distro, Mint, Ubuntu, or Tails? Would you run it as a dual OS boot or set it up on the older PC? For some reason, I tried Mint as a stand-alone OS (new HD and loaded from a CD/thumb drive) on the older HP desktop and never passed the initialization black screen, so I just gave up on Linux.
Help! A) Should I use TOR with a VPN? B) Should I use TOR without a VPN? C) Or does it not matter with the way hops work on TOR? Like it would never see the IP making the initial request?
A) Using TOR with a VPN can provide an extra layer of security and privacy. The VPN encrypts your internet traffic before it enters the TOR network, adding another barrier between your activities and your ISP. B) Using TOR without a VPN is still effective for anonymity and privacy. TOR routes your traffic through multiple nodes, making it difficult to trace back to your IP address. C) The order of using TOR and a VPN can depend on your specific needs and threat model. TOR's design ensures your IP address is not easily visible to websites or services you access. Whether you use a VPN or not, TOR's layered encryption and routing are designed to protect your anonymity. Ultimately, the choice between TOR with or without a VPN depends on your desired level of privacy, and both methods can offer effective protection depending on how you configure them.
The privacy test website you showed is wrong about opera. The things in this video will make identifying you slightly more difficult, but none of them make you private online. I particularly get a bee in my bonnet about people claiming onion nodes make you invisible or that it's impossible to track you. This is completely false. It's harder for sure, but the thousands of cp fiends who were getting traced on TOR each month before they jumped ship say otherwise. TOR is just a proxy chain and it's owned by the yankville government. It doesn't matter that private entities operate nodes in the chain, you'd have to be daft to not understand it's compromised.
can you make a video showing how to set up a remote-user VPN between an android phone (or tablet) and a pfsense? 18:29 erm, an LCARS UI? did you install an add-on, or does that interface come as standard in the latest version? it's been a while since my pihole stopped working. first i thought the pi had crapped out, but then the replacement did the same, so now my prime suspect is the SD card...
Privacy Badger is very susceptible to browser fingerprinting in the smart learning mode. It makes you more identifiable than not using it. The latest versions now default to just a blacklist mode because even the developers don't recommend learning mode for privacy inclined users and it's stated on the very front page. I just found it funny after the part on fingerprinting and Privacy Badger is recommended and having the very mode the developers turned off discussed like it helps in privacy.
Nice tagline for the Dark Web: "A place for people to buy drugs and order hookers!" LMAO! Reminds me of that Powerball video where reporter asked guy filling out his numbers what he would do with his winnings... "A bunch of hookers and cocaine"
What about using email aliases such as from a service like SimpleLogin? Also, I would add using a NAS for storing personal media rather than the cloud.
You can dig way deeper into different ways to protect your online privacy. It all comes down to level of effort to implement and finding the balance between ease of use on the Internet and the level of privacy you're comfortable with.
Hahahahahahahaha. Private only for Apple's eyes.. and maybe for sale for enough money. Lots of VPNs aren't as private as one might presume.. but they're likely to sell easier than Apple. 🤷♂️
@@SpookyLurker this video seems to me is intended to give a objective information and advice, your comment is not either and your biased view is obvious
I recommend considering Cloudflare DNS or Google Public DNS for reliable and fast custom DNS services. Both are easy to set up; you don't need to sign up to use them. Just change your DNS settings on your device or router to start benefiting from improved security, speed, and privacy.
"Saying that you don't care about privacy because you have nothing to hide, is like saying that you don't care about freedom of speech because you have nothing to say" -Edward Snowden
NAILED IT !
Everyone has something to hide. Job searching, troublesome relative, health situation, masterbation fetish, etc.
@404-"" The point being made by those whom use that phrase is "I'm NOT(no way in hell) CHANGING (me, all inclusive) FOR YOU!!!! A CRIMINAL! A THIEF! A BERGLER! "F that"; let them get caught!
Great video! While Tor is a good tool for privacy, just know the government runs a large amount of exit nodes.
Slight correction: quad9 is totally non-profit based in Switzerland.
I have a self hosted KASM instance which I can spin up a Firefox container, do my browsing, then destroy it at the end. The container is set to use my VPN connection as well. There are lots of containers that can be spun outside of just Firefox.
Considering that Linus Tech just got hacked, a security video would be useful.
Yes, I'd like another video on security
I have been using & comparing VPN-providors for a long time (like many years), trying them on live systems. Above all others I'd recommend Proton VPN (for my location - Western Europe). Superior performance, and very limited loss in speed (contrary to others). My 2 cents.
The irony of advertising your DISCORD channel on a privacy video. Oh well. Either way, thanks for talking about this stuff and raising awareness
And that he has a data-leaking TikTok account!!
@@andrewwaite4931 yeah right exactly lol
You should also consider doing a video on how to contact various data brokers and request data removal. There are paid services that also do this for you. Great video.
I use DeleteMe (joindeleteme.com) personally, and they seem to be pretty good (not affiliated with them).
I've used the free tools to remove me from advertisers and brokers. Typically I can purge 100 out of 105, the rest can't be purged.
And if I try again a month later? There are another 100 new ones.
Looking into deleteme because this is just too much manual nonsense, often 1/2 hour each month.
What happens when you use Unbound on a Raspberry Pi and use a commercial VPN (like PIA) on top of that? What happens to your DNS queries? And similarly, what happens if I set Firefox to use DoH when I'm using Unbound (which uses DoT) on my Network? What is the DNS stack so to speak?
Thank's Chris for yet another great video!
I use a pihole but use unbound to do my own DNS lookups. Is the exposure of that worse than using DoH to one of the big DNS sites like CloudFlare or Quad9?
same here + gravity-sync
Don't poison that VPN connection by logging in to facebook while connected.
Very good tip. Also don't use fb.
Great videos as always. Been binging on ur videos.
I2P - like TOR, but from what I understand, is more secure.
You say Tails. What about Qubes OS?
pihole by default don´t use DoH to anwere request from the clients .. so if you enable DoH in your browser, pihole is useless. Or i am wrong Chris?
If you enable DoH in your browser then your browser will tunnel to a DNS server for the lookup which will totally bypass your pihole.
Proton (mail/VPN) should sponsor you :-)
i run a pi hole server in a proxmox container and was very surprised at how much of the DNS quires were ads.
Definitely some good tips here but I feel like two of them conflict - DoH and Pi-hole. It might be worth outlining how to get Pi-hole to resolve DNS over HTTPS as enabling it in the browser would skip straight to the chosen provider rather than filter through Pi-hole.
Yes - but you can also enable it at the Pihole level...especially if you're securing your business or family, most non-tech folks aren't going to be changing browser settings.
@@CrosstalkSolutions Am I missing something? Not seeing DoH in my Pi-hole, at least without installing Cloudflare's own resolver on it which might be a little beyond most non-tech people trying to get PI-hole working to begin with.
@@Petie88 DNSSEC is the Pi-Hole equivalent. Select a DNSSEC compatible upstream DNS server in settings and then hit the checkbox further down to enable it and then you’re good.
@@GamesMaster-HD Thanks but DNSSEC and DoH are different technologies. DoH is not natively supported on Pi-hole but can be enabled by installing something like cloudflared or another DNS server that supports it.
@Petie88 To my knowledge it is preferred to run unbound as your DNS resolver together with pi-hole. You are not using DoH this way, but your DNS request cannot be tracked either.
Thanks Chris for another great content❤. I filled up a contact form on your website but nothing happened as yet. It's been 2 weeks
Great video, thank you! What would be the proper browser setting for DOH, and whether it is needed, if one uses Pihole with unbound throughout the network?
Private is important very important even if you don't have nothing to hide
Thank you, great for me the none IT guy.
What has been concerning me lately is the hacks on large corporations that have stolen all my data, I have been involved in three lately.....how do we stop these companies
How do you stop a bully? Easy, you ambush them and unleash mayhem.
Sadly, I think a lot of people would have to physically destroy a lot of data servers and backup servers, in order to convince these companies to go into some safer line of business. Of course, that's dangerously illegal to do, but even the USSC has said that when the law gives men no recourse, it should not be surprised when they find other ways.
I use wireguard to my home and for dns, pihole...
If sites can't serve you ads how will they survive? Take UA-cam for example if they don't serve ads how will creators earn money?
Great great tips Chris . Thanks!
Cyber prepper?
@@infotruther At the time I started, CyberPrepper or Cyber Prepper wasn't available in several places so I went with SyberPrepper.
I am a pc user, how do you transition to or add to your home arsenal Linux? Which distro, Mint, Ubuntu, or Tails? Would you run it as a dual OS boot or set it up on the older PC? For some reason, I tried Mint as a stand-alone OS (new HD and loaded from a CD/thumb drive) on the older HP desktop and never passed the initialization black screen, so I just gave up on Linux.
Do I need to enable DNS over HTTPS if I use my own PiHole DNS?
Both
You should enable DoH on your pi-hole but not on your browser otherwise your browser will bypass the pi-hole.
Help!
A) Should I use TOR with a VPN?
B) Should I use TOR without a VPN?
C) Or does it not matter with the way hops work on TOR? Like it would never see the IP making the initial request?
A) Using TOR with a VPN can provide an extra layer of security and privacy. The VPN encrypts your internet traffic before it enters the TOR network, adding another barrier between your activities and your ISP.
B) Using TOR without a VPN is still effective for anonymity and privacy. TOR routes your traffic through multiple nodes, making it difficult to trace back to your IP address.
C) The order of using TOR and a VPN can depend on your specific needs and threat model. TOR's design ensures your IP address is not easily visible to websites or services you access. Whether you use a VPN or not, TOR's layered encryption and routing are designed to protect your anonymity.
Ultimately, the choice between TOR with or without a VPN depends on your desired level of privacy, and both methods can offer effective protection depending on how you configure them.
Startpage
Excellent video. Thank you.
The privacy test website you showed is wrong about opera.
The things in this video will make identifying you slightly more difficult, but none of them make you private online. I particularly get a bee in my bonnet about people claiming onion nodes make you invisible or that it's impossible to track you. This is completely false. It's harder for sure, but the thousands of cp fiends who were getting traced on TOR each month before they jumped ship say otherwise. TOR is just a proxy chain and it's owned by the yankville government. It doesn't matter that private entities operate nodes in the chain, you'd have to be daft to not understand it's compromised.
can you make a video showing how to set up a remote-user VPN between an android phone (or tablet) and a pfsense?
18:29 erm, an LCARS UI? did you install an add-on, or does that interface come as standard in the latest version? it's been a while since my pihole stopped working. first i thought the pi had crapped out, but then the replacement did the same, so now my prime suspect is the SD card...
The LCARS ui is now an option in Pi-Hole. It used to be a manual addition, but they made it official some time back.
@@BenWolkWeiss cool! gotta see if i can get one of my pis on pihole again. probably at the weekend...
Some people are arrested in France for doing the same thing lately.
Have you ever done a video on hardening Firefox? If not why don't you.
Why don’t you refer Safari browser ?
Whonix guards against some attacks that TAILS fails to.
Good video
please @Crosstalk Solutions YT Channel make a similar video for online security.
Privacy is important
Need more sound deadening in the room.
What about IVPN? and regarding secure DNS I use NextDNS, Do you know this service?
Security video please
Tor video and alternatives please
Can I please hire you? I am not huge commercial I'm a home business.
Goto his website and send him an email.
The other NUCLEAR OPTION would be to use Qubes OS. The Snoden approved OS.
1:41 Ironic that your promoting online privacy using so many social media options!😂
What is he going to send it to you using carrier pigeons? 😂😂😂😂
Right? 😂
NuclEar
How can you preach about privacies when you are on TicToc China best invader
Why are you a crook?
Privacy Badger is very susceptible to browser fingerprinting in the smart learning mode. It makes you more identifiable than not using it. The latest versions now default to just a blacklist mode because even the developers don't recommend learning mode for privacy inclined users and it's stated on the very front page. I just found it funny after the part on fingerprinting and Privacy Badger is recommended and having the very mode the developers turned off discussed like it helps in privacy.
How does Safari score for Mac?
It's actually pretty good - you can check out the side-by-side at privacytest.org.
What a great content!! Thank you!
Nice tagline for the Dark Web: "A place for people to buy drugs and order hookers!" LMAO! Reminds me of that Powerball video where reporter asked guy filling out his numbers what he would do with his winnings... "A bunch of hookers and cocaine"
What about using email aliases such as from a service like SimpleLogin? Also, I would add using a NAS for storing personal media rather than the cloud.
You can dig way deeper into different ways to protect your online privacy. It all comes down to level of effort to implement and finding the balance between ease of use on the Internet and the level of privacy you're comfortable with.
Ty for bringing up this issue.about kape
Nice shirt lol
the big problem for me at least is how to purchase bitcoins anonymously in the US?
Turn of the wifi
Sure
Masterfully explained.
Why not just remove the Roku? I think you'd find an Apple TV or Nvidia Shield is much easier.
If you use a VPN (Tip #4) doesn’t that route your DNS request through the VPN, thus bypassing the ad blocker in Tip #5?
@Ben ok, so still useful but only for devices on the LAN not using the VPN. Got it, thanks!
It's the same wit DNS over HTTPS.
@@10vingers I didn’t think of that, but it makes sense. All DNS (along with all other traffic) would go thru the encrypted VPN tunnel.
Fantastic Video Chris!
Thank you.
Thank yoo 🎉
Mullvad
Can you comment on Apple private relay
Hahahahahahahaha. Private only for Apple's eyes.. and maybe for sale for enough money. Lots of VPNs aren't as private as one might presume.. but they're likely to sell easier than Apple. 🤷♂️
@@SpookyLurker this video seems to me is intended to give a objective information and advice, your comment is not either and your biased view is obvious
@@gerrymoloney8339 The Mullvard and Proton would be the trusted ones.
Thank you
@@SpookyLurker which vpns are you thinking of?
Which custom DNS would you recommend? and would you need to sign up and et up this service?
I recommend considering Cloudflare DNS or Google Public DNS for reliable and fast custom DNS services. Both are easy to set up; you don't need to sign up to use them. Just change your DNS settings on your device or router to start benefiting from improved security, speed, and privacy.
Yo Chris where did you get that t-shirt?
The Crosstalk Solutions online store of course!
blue amongus!
Say what?
How would you access remotely your PCs? IS Guacamole and Cloudflare Tunnels a secure way as described here? ua-cam.com/video/tg1CbMEzCsc/v-deo.html
The best step is never to use the internet. No one can find you