Or HPE software
- 0 Posts
- 9 Comments
Joined 3 years ago
Cake day: June 4th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
4·4 months agoYes, the cell tower can see the unique IMEI of your phone, so as long as the cell radio is on, the cell company can at least see what tower that IMEI is in range of. And if they can track the purchase of the phone to you, then they can identify your signal.
And they keep making it harder and harder to not use a Microsoft Account.
Assuming that you trust what Proton says, when they receive a (possibly unencrypted) message they re-encrypt it with your key as soon as possible and they don’t log the content. So, after that point, they (or anyone else) can’t read the email contents. If it was also encrypted in transit, then there’s only a small window inside their email processing system where the plaintext was passed from one encryption to the other. It’s only decrypted again in your browser or proton mail app with the key that only you have. It’s not bulletproof, but it’s better than most providers.
Your domain name could be ordered to be removed from US-based dns providers, no matter which TLD it is. That would essentially block your website from most US-based viewers without actually shutting down your hosting. Advanced users could still get to it, though. Consider hosting through Tor and a .onion address for more resiliency.
Look into https://simplelogin.io/
They make creating random aliases for custom domains like this easy.
As for the domain name itself, anything that already looks like a mail service is good. “examplemail.com” or “mailexample.com”
Tailscale (https://tailscale.com/) works great for remote access to your private services. Once the wireguard tunnel is established, then the traffic is peer-to-peer (assuming it’s configured correctly) and not through their centralized servers. Even from a mobile device.
You might enjoy reading Extreme Privacy by Michael Bazzell
Convenience rarely comes with security and/or resilience. TOTP is about having two separate parts of the auth process so that compromise of one is protected by the other. Don’t keep them in the same place.