This morning I was asked to find an archived email with photos of some scientific equipment. I searched "Powerlab," the name of one of the instruments, in gmail, and the email came right up. Great! But then I noticed that the word "powerlab" never appeared in the text of the email. I tried searching "ML206", an arbitrary character string from one of the photos in the email, and again, the email appeared in the search, without the search phrase highlighted in the search result, as it normally would be. I tried different phrases from jpgs in emails; not all yielded search results but some did.

I'm not happy about this. I accept some compromises to privacy when using Gmail, but sending text as an image can be a way of specifically avoiding information being harvested. All I ask for is a way to turn it off.

Can anyone replicate this? Did anyone already know about this?

I have been an advocate for privacy for a long time, but recently I don't even know why I am doing this anymore. I do most of my browsing through TOR, and that has made me give up a lot of conveniences. And that's what I miss. I miss not having to think about privacy. I also miss not feeling like I am being spied on. Now I am torn. I don't like companies like Google mining my data, but I also think I am being paranoid (the people in my life have shared this sentiment). I don't want to leave a permanent cache of my mind. But I also feel like doing so won't really affect me. Not to mention that I despise the predatory nature of advertisers, and I hate giving them even more info about me.

What do I do, Tildes? Have any of you felt this way? How do you balance running from Google while still staying sane?

I'm genuinely curious. I'm a late adopter FWIW and am still rocking an older iPhone that doesn't support any face recognition or finger prints. But I don't use a pass code either, and never have, and doubt I ever will. I just don't get it... what are folks afraid of happening if they don't lock their phone? I suppose the "nightmare" scenario would be someone steals your phone and then messages your contacts asking for $. Is that it?

I've always practiced greater digital security than physical security (counting the phone unlock as physical) as I think it much more likely that a ne'er-do-well would attack some large company than to single me out in person. I mean if the FBI or some hacker is going through my garbage then I probably have larger problems, right?

For me it's cost/benefit - swiping/fingerprinting/face IDing multiple times a day is not worth the slim chance that my phone is stolen by someone who going to use the info in it for something nefarious. I wouldn't lock my car if I was in/out of 20x a day, I just wouldn't leave anything terribly valuable in it.

Please let me know why locking your phone is/isn't important to you.

EDIT: To be clear, I have one banking app and it requires an additional password to get in. It's an app so there isn't a saved password for it anywhere.

EDIT2: Made this as a comment below, but thought I'd add it up here as well - "I find it strange that people in general seem to be OK with putting up with an inconvenience (even though minor to many) that affects them multiple times a day, but we hold large companies almost wholly unaccountable for major data breaches. "

EDIT3: This just occurred to me. We lock our phones, but not our wallets/purses. The argument that a pass-code is a protection against identity theft rings sort of hollow when we consider we have much of the same info on an ID card that we keep unprotected. Some states will even list the SSN on a driver's license.

EDIT4: I'm convinced everyone thinks their personal lives are terribly interesting to strangers and my suspicion is they're not. Only two real cases of bad things happening when a phone is unlocked that I've counted so far: 1) long distance calls 2) pokemon themed contacts.

EDIT5: That said, sounds like the fingerprint scanner is the way to go for convenient security. I'll be checking that out. Sincere thanks!

EDIT6: Some folks said that edit 4 came off as condescending. Not my intention. I was trying to tie in the idea of "everyone being the main character in their own story." I'm definitely not implying that people should leave their phones unlocked because others wouldn't find their lives uninteresting.

I think many have a personal connection to their devices that I do not feel. Intellectually I find that very interesting as this seems less a monetary issue and more a privacy issue. It'd be as if a stranger picked up a lost diary and started reading. I fear my diary would be more like a ship captain's logbook and wholly uninteresting. If I were to have my phone stolen I'd simply change a couple passwords and buy a new one.

I had a thought, which I'm not sure I agree with, but figured it would be a good conversation.

So much of our social discourse, and exploitation of our social platforms, can be associated with anonymity. Given the divisiveness of our times, it feels like it's almost a pre-req for a platform like this (this has already been discussed in other threads).

A slightly different question: Is there ever a place for folks that want to announce their identity, and go through something like a Twitter verification process? This could feed into the future trust/reputation feature.

This is more focused towards those that use custom domains for their email. My current plan is up at Zoho for my team in a month, and even though I've used them for the past few years its been hit-or-miss (especially when using third-party apps or programs).

Who do you use? Who do you not trust? Who would you never go back to?

Sidenote: I hope this might eventually kick off a ~privacy group, one day.

Had an interesting conversation with my colleagues this morning. We were pretty split whether phones listen to us for advertising or not.

On one hand, we anecdotally see Google news and ad suggestions based on what we say. We know our mics are on at all times for voice assistant and music detection. But we also read online talking about how there is no evidence about the phones recording us. It's hard to trust anything nowadays.

So one of the things I really liked about the project is point 1 of the privacy section of the Mechanics (Future).

Proactive not reactive; preventative not remedial: When creating new features, think about what data will need to be stored, and consider how harmful it might be if that data was to be leaked in the future. Is it possible to reduce the amount of data being stored to lower the potential harm? Can the data eventually be aggregated or anonymized so that we're only storing recent data instead of a full history?

I think a good first step would be to not have a public comment/submission history. Users should evaluate other users contributions based on the conversation the are having/reading, not past submissions.

This doesn't make you anonymous, but at least it can prevent nosy people from knowing too much. (I get there are valid reasons to want to find other posts by the same user, but I think individual privacy is more important). At least, if not enforced for everyone, this should be an option, making your profile not display your history to others.

Now, one of my biggest problems with reddit is that it doesn't make it easy for you to stay anonymous and also keep your content on the site.

Let me explain. I don't like people being able to see my submission/comment history, because I don't want to give the chance for people to identify me if I don't choose to do so personally. It's not about reddit knowing what I like or do (I mean, I use Google, they know everything I do), it's about individuals, about other users knowing things I'm not happy sharing with them for whatever reason.

There are only two options on reddit: deleting my content (using a script or whatever or going one by one) or deleting my account. This results in me deleting all my comments and submissions on reddit every few weeks.

Now, I would love to be able to leave most of what I post on reddit online, because sometimes I have really interesting conversations and I try to be detailed and clear and other people might find (some of) my posts useful. But I don't want anyone who knows my username or anyone who sees a comment of mine going through my history. There's too many crazy people. Also, I haven't suffered doxxing, but that's just not nice.

There are many reasons why someone could prefer to not be identifiable. Just to give some examples that come to mind: people might have an ideology that other users don't like/respect, people might post pictures of themselves (think fitness groups, for example), people might post in local groups revealing their location, people might look for counsel and talk about their personal problems, etc. Putting all of that together might make it easy to identify someone.

So, what I would like to propose is a way to leave my content online if I wish to and giving other people the option to read it in the future, without it being publicly tied to my username.

How could this be done? Well, I think users should be able to anonymize their participation in a thread individually and throughout the site. There could be an button (on every thread for thread only anonymization and on your profile for full site anonymization) that you tap and your username is replaced all through each thread with a randomly generated username (it'd be great if the username is consistent within the thread, so people reading would know its the same person).

These usernames should be words, ideally, not difficult to parse by humans. Of course this would generate a great number of usernames, but there are some solutions.

One could be using something like Google Docs uses when several anonymous viewers are watching a document. Each gets a name (RedFox, whatever) which is consistently used throughout the thread. The same username (RedFox) can then be reused in another thread for any other anonymous user. (So RedFox wouldn't be referring to the same person in different threads, but to two random, anonymized persons).

I'm sure it wouldn't be difficult to generate these (similarly to how reddit gives you suggestions to new usernames when you open an account).

Also, in order to avoid the admins having to reserve many usernames in advance, these usernames could have a special mark (like *RedFox or °RedFox, or ~RedFox~, for example). This way, a new user can register any available name without interfering with these anonymous usernames. A thread could have some non-anonymized user called RedFox and an anonymized user called °RedFox (or whatever mark is used).

In any case, the user should be able to access all of their submissions and comments on their profile even after anonymizing, being able to edit or delete them if they wish to.

Ok, I think that's it, I hope I was clear. I'm also not gonna be able to log in again until tomorrow. So please, go ahead and discuss and tell me what you think and I'll come back when I can.

EDIT: User karma should not be public either. I can make an argument for it tomorrow if needed or we can discus it on another thread.

I will shortly be travelling for work. I do not have the capacity to bring anything other than my work machine. In addition to working every day I would like to: legally stream movies in the evening, work on writing, email friends etc. At home of course I use a separate laptop for this but in this case I won't have that option. Any thoughts on how best to achieve a separation of concerns while travelling? How do people on Tildes manage this case?

p.s I know in a best case scenario it's not ideal, hence my behaviour at home, I just need a working method for this particular case.

I try to be privacy focused. I don't use social media, I use Firefox with adblock and tracker protection, with duck duck go as my search engine. I also pay for proton vpn. My question is, when should I use it? I use it when I'm on open networks on my phone, but that's about it. Do you guys run it 24/7 on your computer?

I do the following:

• Use a VPN (NordVPN)
• Use Firefox with a tweaked about:config and the following security extensions:
  • uBlock Origin
  • NoScript
  • HTTPS Everywhere
  • Privacy Badger
  • Decentraleyes
  • Cookie Autodelete
  • Skip Redirect
  • CanvasBlocker
• Run Linux Mint (I know, Ubuntu-based distros aren't ideal but I'm a Linux beginner)
• Don't have any social media as of a year ago
• Don't use any Google services, including YouTube, Google Search, or Gmail
• Use a password manager (KeePassXC)

The next step would be for me to switch from iPhone to Android running Lineage OS, but money is a bit tight right now. As for day-to-day lifestyle choices, I try to use cash whenever possible and never sign up for things like store rewards programs.

What's your setup? Do you consider yourself a privacy-minded individual? Are you more concerned with protecting yourself from corporate or government entities?

Let's take Google, for example. Google tracks where you physically are - why are some people so much against it? It doesn't hurt me, google just uses it to serve me personalized ads. Why are people so concerned about it?

Google even tracks, which websites do I visit - again, why should I care? When I want to browse anonymously, I use VPN. If I wanted to do something illegal, I guess I won't use google at all and install tor? I'm not sure what should I do in that case, but I'm sure, there are ways to get away from google's sight when people need to.

I don't understand, why some people fight for internet privacy so much. Could someone help me to understand it? What's your opinion on privacy and internet tracking?

I have self-hosted my email for many years, but am finally encountering some straws that may be breaking the camel's back. A few email providers are now rejecting my server's mail, Microsoft in particular (@hotmail, @outlook). (In case you're wondering, I already set up SPF, DKIM, DMARC, etc. and none of that is the issue.) Self-hosting was fine, and the technical admin work was never really an issue. I'm just tired of the external factors that are beyond my control, like belonging to an IP range that is scored badly by some random blocklist company.

So, I'm now shopping for a good email provider. Privacy and security are important to me, and I am more than willing to pay for email, so all the usual "free" email providers are out of the question. (Update) Also, client access (IMAP, SMTP) is a must.

For now, I am eyeing

• Fastmail Standard plan @ 5 USD / mo
• Proton Unlimited plan @ 10 USD / mo

Proton is looking to be my choice among those two, as I like the replyable email aliases feature. 16 times the storage doesn't hurt, either.

Any other recommendations in the same vein as these two, and in the same price range?

I've always been a bit of a privacy enthousiast. Have had everything blocked that Google and by extension YouTube wants to scrape off you. This means I've also blocked my view history.

Recently YouTube started giving out a warning on the homepage that you have blocked your view history, that you can change it in your privacy settings and that it helps them serve you better content. What it also means is that your homepage is just one big popup to guilt trip you into sharing your data. The homepage won't show any suggested content anymore.

While it is in their interest to do so and since they are a company wanting to make money it is understandable. Nevertheless it seems harsh from going to see content that you might like to only seeing a big warning sign right now.

What are you experiences with this?

While there were numerous reasons for my exit from Reddit, privacy was a large one. This was something that when I joined here I thought was a fairly widespread view. For me my view of Reddit started to waiver a few years ago when their warrant canary was tripped. I've always been of the idea that the less of what I do online that can be traced back to me, the better. I also abhor the state of privacy online and in the US.

Despite this, what I thought was fairly universal viewpoint, there have been several threads(like here and here) where people give out identifying information about themselves. This, combined with many people using their real names as their usernames or revealing their real names in the introduction threads, made me realize that this is not an ideal that we all share to the same extent.

I guess that leads into my question, how privacy conscious are you guys online and what the the general vibe you've gotten from the ~'s community?

Almost every content provider online tries to access some of your personal info, whether it's to keep itself afloat, improve functionality, or create profits. In 2014, Google made [89.4%] (https://revenuesandprofits.com/how-google-makes-money/) of its profits from advertising, all of which attempts to target users with their interests (though Google does allow this to be disabled).

What do you do to try and protect yourself from data collection? What software, programs, or browser extensions do you trust to protect you, and not just also monitor your activities?

If you don't do any of this, why not? To what extent do you think companies should be allowed to use your data?

Tildes is 100% donation-supported. It sounds great but I'm doubtful it's a sustainable model. Countless sites have started this way but ended up seeking other ways to monetize, including...

1. Showing ads on the site
2. Intermingling "sponsored posts" or "promoted posts" with regular posts, basically giving preferential treatment to content from users who paid for extra visibility (native advertising)
3. Selling user data
4. Cryptocurrency mining (either with user permission or on the sly)
5. Opening a store for selling branded merch
6. Periodic "pledge drive" fundraising campaigns
7. Enacting paywalls

I've been thinking a lot about site monetization in the abstract lately. Some of these options are better than others. Personally, I'd draw a hard line against 1-4 on Tildes. I think all of those are in direct opposition to what this site is all about.

I think 5 is a "good in theory, but not in practice" idea. A merch store might generate enough revenue for the first few months but would see rapidly diminishing returns. It would have to resort to increasingly gimmicky promotions just to reach eyeballs and meet its goals.

I think 6 could be a popular option but I personally recoil from the annual hard-sell guilt trip. The recurring drama of "THIS COULD BE OUR LAST YEAR IF YOU DO NOTHING" is exhausting and paints the site's future as constantly in turmoil.

Finally we come to 7, the paywall. Traditionally I hate these too, especially when they block content like news that is available for free elsewhere. Sometimes they are "soft" paywalls that give you free access to an article (or the first few paragraphs of one) before they ask you to pony up. I feel that these are the worst form of paywall because they tease and frustrate users, and are often easily circumventable anyway.

That said, I think a "hard" paywall might actually be a good choice for Tildes. For starters, this is already a walled garden. We're actively trying to cultivate a community by not exposing the site to the wider world. That would at least make the transition to a paywall easier to swallow than if the site had been open the whole time.

It's 2018. By now it's evident to me that TANSTAAFL online. If you're not paying for something, you are the product. I'm a dyed in the wool cheapskate and I don't like opening my wallet to use a website, but at this point I'm even more tired of being treated like a commodity. If I'm going to invest in an online community, I'd much rather pay a small subscription for access than be jerked around in shady ways. I feel it's the most honest and straightforward solution for a site like this.

Caveats are that it would need to be cheap. Really cheap, like $1 a month. I don't know what the site's operating expenses are, but I would hope something in that ballpark would cover them, at scale. Also @Deimos would face the temptation to implement multiple options from the list as time goes on. Like, after we're used to the paywall, he might want to add "unobtrusive" ads too, or start selling "non-identifiable" user information. I think it's vital that the site never compromise like that. Raise the price if it comes to that, but don't get greedy. A page in the docs formalizing some promises about respecting users would be a nice thing to put on the record.

What are your thoughts? I should say that I'm talking about the future here, I think it's way too early to put up a paywall now. The community would have to be large and mature enough to justify a paid subscription to it, and we're not there yet.

In light of the seemingly increasing rate of data breaches and privacy violations in general, I've decided to take some steps further regarding my online presence.

Among other things, I decided to switch all my online accounts to custom domain email addresses, so I grabbed two domain names (with WhoisGuard enabled): one for use with stuff related to my real identity (think @firstlast.com), and the other for all else (think @randomword.com). Then, I changed the email address of each one of my existing online accounts, taking advantage of the catch-all feature. To make things short, it goes like this:

Accounts not related to my real identity:

• tildes.net.187462@randomword.com -> tildes.net
• reddit.com.178334@randomword.com -> reddit.com
• ...

Accounts related to my real identity:

• amazon.com.113908@firstlast.com -> amazon.com
• bankofamerica.com.175512@firstlast.com -> bankofamerica.com
• ...

As you might have guessed, the 6 digits ending the local part of email addresses are meant to be randomly generated, in order to mitigate easy guesses by spammers due to catch-all (though I've also created a specific sieve filter to mark incoming emails with "unknown" recipient as spam).

Before you ask, I don't intend to start a discussion about threat modelling here. I just want—as anyone who is not a complete tech-illiterate—to have a reasonable weapon against spam caused by recurrent data breaches, so that if an email address is leaked, I can toss it and replace it with a new one without much effort.

Also, I value owning my email addresses, in the sense that if I decide to change email provider in the future, I won't have to change my addresses too as a consequence. For communicating with real humans (e.g., my doctor), I could use a non catch-all address like first@firstlast.com.

I wonder what do you think of this approach... Is it overkill? Do you see any major concern from a privacy or security standpoint? Are you doing something similar and are happy with it? I would very much like to hear your experiences with email, especially about the approach you settled with.

The reason why is to make more accounts for reddit, YouTube (one for entertainment and Portuguese content each) news sites where signing up is an alternative to pass a paywall and other sites with comment sections. ^{Bad euphemism bro.} Also some sense of "praxis" in order to gain privacy.

Edit: And also getting anxious at the idea of remembering all my passwords, and putting them in a note in my old phone, which I am not bringing into my new phone and want to use this to delete.

According to these two articles, I can save my old passwords I had before and maybe even still make new ones after, and put them in a folder behind one true (master) password, which is the one you will truly care about, and they will be saved in a way in which the managing company won't know your password?

There's also figuring out which provider to use (and probably a similar post for alt-mail providers.) This is overwhelmingly for mobile (Android). No real space constraints for apps, only price, because I'm not working age.

It's obviously bad when "real" data like full names and credit card info leaks, but most data companies collect is probably email address and some anonymous things like which buttons and when the user clicked.

Nevertheless, such data collection, tracking and telemetry is considered quite bad among power users. I don't support those practices either. But I'm struggling to consolidate my arguments agaist data collection. The one I'm confident about is effects on performance and battery life on mobile devices, but why else it's bad I'm not sure.

What are your arguments? Why is it bad when a company X knows what anonymous user Y did and made money on that info? What's the good response to anyone who asks why I'm doing the "privacy things"?