Password managers are thankfully becoming a mainstream topic. In addition to seeing commercials for certain ones from time to time, it’s becoming more common for me to attempt to spread the word about good passwords only to be met with something like “oh I already use Dashlane/1Password/etc.” While it’s good for consumers that there are more options available, that also means it can be difficult for people to know what’s best since many companies are prone to exaggeration or poor practices (as we saw in the somehow still-ongoing LastPass data breach). So this week, I'd like to examine the three recommended passwords on the website and explain what I believe to be their use-cases, strengths, and weaknesses to help readers decide on the best password manager for them.
Threema is an end-to-end encrypted (E2EE) messenger available on Android, and iOS. Linux, Mac, Windows, and web clients also exist, but you’ll have to create an account on mobile first before connecting them (similar to Signal). I have long advocated for the need for E2EE in your daily communications for both practical and philosophical reasons. Practically, it can protect sensitive communications like financial discussions, upcoming plans, and NSFW content (if that's something you choose to engage in with another consenting adult). Philosophically, I believe that everyone should use encryption whenever possible to normalize it and make mass surveillance less feasible/practical/economical.
About nine months ago, Henry and I made a comment on Surveillance Report 106 about how there's not enough privacy content out there aimed at parents. Neither of us are parents – and I can't speak for Henry but personally I've decided not to have kids – so while we may possess the “technically correct” answers to the problems parents face, we both know that the reality is much more complicated and nuanced: kids are people, too, and while they may still need the guidance and protection of their parents, there is no one-size fits all solution for every child, let alone every age. Children mature differently, have different personalities, and come from different backgrounds. When we talked about this on air oh so long ago, Henry quipped that a great name for such a project would be “The Privacy Dad” or “The Privacy Mom.” We never expected anyone to actually take up the mantle. I should really stop expecting to stop being taken seriously these days.
Disclosure: I have an affiliate link with SimpleLogin that gives me credit towards my own SL account. You do not have to use this link, I provide a non-affiliate link at the end, and I tried my best to be unbiased in this review.
In this review, I’ve decided to lump both AnonAddy and SimpleLogin into the same review because they’re so incredibly similar in their offerings and features, though I will note any differences between them. I don’t think of this blog as “AnonAddy vs SimpleLogin,” though I’m sure it will help anyone who’s on the fence decide between the two. Rather, I present this as simply two tools you can use to achieve the same protection. I keep referring to AnonAddy first because I’m listing them in alphabetical order.
Did you know that drinking too much water can kill you? (You'd have to really chug a lot of it do so, so don't really worry about it, but technically it's a thing.) Same thing with too much oxygen. You probably already knew that, but did you know too much Tuna (or any seafood, really) can give you mercury poisoning? Or that too much of certain teas can cause kidney failure? That swallowing too much toothpaste can cause flouride poisoning? (Source for all these claims.) Most of us are familiar with the idiom “too much of a good thing can be bad,” and most – if not all – of us have probably experienced this at least one time when we ate or drank to the point of feeling sick (even if you don't touch alcohol) or slept in way too much and felt groggy the rest of the day. Our bodies and minds are primed for balance. Introverts, for example may need the balance of staying at home with Netflix or a good book the night after going out to a friend's birthday party.
Amazon’s now-legendary “Prime Day” is July 11-12. Boy that sneaks up on you fast when you avoid them and don't have ads in your life. Much like Black Friday or Cyber Monday, this means sales on lots of items on Amazon’s vast marketplace, and as such many people flock to the giant’s website to get sweet deals on everything from computers to small kitchen appliances and more. But this year – as with all years, hence why this repost – I urge you to resist the allure. Far be it from me to compel you by force what you to spend your money on or where, but in this week’s post I hope to lay out a convincing case for everyone for why Amazon is full-stop evil, no caveats, and is undeserving of your money on a moral and ethical level. Amazon needs to be stopped, and legislation will not do so. Only its loyal consumers – who keep the beast alive – can do that by taking their money elsewhere. No matter your political or ethical beliefs, I'm certain Amazon violates them in one way or another, and you should vote with your dollar by buying from other places whenever possible.
Here are five reasons that you should stop supporting Amazon with your money and purchases.
A few months ago, as my wife and I sat in the study doing out separate things, she suddenly asked if I noticed a certain smell in the room. Truthfully I had – a “chemically” smell is the only way I know how to describe it – but I have a notoriously bad sense of smell that sometimes plays tricks on me so as the scent came and went I simply assumed it was just another thing that was all in my head. However, once she spoke up I realized that I had been getting slightly light-headed, so we popped open a window, set up a fan, and moved to the living room to give the study time to air out. Afterward – the smell still very present but at least mixed with some fresh air – we went to hunt down the source of the issue. It ultimately ended up being a power strip that was going bad (did you guys know those things only have a shelf-life of a couple years? Be sure to replace your power strips periodically). Perhaps as a part of this problem or perhaps totally unrelated, it turned out that the power supply for my Jellyfin server had died (we initially incorrectly diagnosed this as the source of the problem). Never one to let an opportunity go to waste, I thought this might make a good blog post to share.
A VPN is a service that creates an encrypted tunnel between the device and the provider's server, protecting all your traffic from prying eyes along the way like your ISP or whoever owns the router (think public Wi-Fi, for example). After reaching the provider's server, your traffic continues on to your desired destination like normal. Mullvad is one such service, very popular in the privacy community for their low price, lack of required data at signup, and other privacy-first policies which will be discussed in this review.
In the past week, I’ve had a number of people ask me the same question: namely what are my thoughts on privacy and banking (with some variation and additional expansions). This is a topic I’ve covered before, however with so many asking about it it’s clear that it wouldn’t hurt to bring some updated thoughts to the discussion. So without further ado, let’s talk about financial privacy.
Among the more hardcore privacy enthusiasts, the cloud is anathema. To be fair, this isn't a bad philosophy – the saying that the cloud is simply “someone else's computer” may not be entirely accurate, but it's also not totally wrong either. However, we live in a world where advising most people to simply avoid the cloud is on par with advising most people to avoid getting a job: it's just not realistic advice. Most of us have come to rely on the cloud to easily sync and share files, and on the website I acknowledge the cloud as the most feasible off-site backup solution for many people (though for the record, a regularly-updated non-cloud backup – such as a USB stick stored at your desk in the office – is preferred whenever possible).
Normally when I do reviews, I pick 1-2 services and highlight the good and the bad. In this review, however, I want to roll all the cloud options listed on the site into a single snapshot review, so in this blog post I will be listing each service (in alphabetical order, as always) and giving it a paragraph or two of a review. I hope this helps for those who have decided that a cloud service – for backups or for any other reason – is right for their threat model. In this review I have included affiliate links where I have them, but as always feel no pressure to use them if you don't want to. Also in this blog post I'll be talking a lot about encryption, not in a technical way, but if you're unfamiliar with encryption or some of the common phrases like “zero-knowledge” and “end-to-end,” you can get a quick rundown here.