@SudoDnfDashY
link
23
edit-2
2M

I personally use Metager. Open source, and funded by a nonprofit. Its also carbon neutral which is really nice.

@pinknoise
link
82M

There cool and around since forever. Sadly according to their privacy policy they forward parts of user agent and ip to third partys to show “non-personalized ads”. But you can use them via their onion service :)

@Echedenyan
link
42M

You can also donate in quantity or, if you know German, submit the membership form to receive a key to remove partnered suggestions in their instance.

@roastpotatothief
link
82M

thanks. now I’m using it too.

IngrownMink4
link
5
edit-2
2M

You’re right, it’s a very interesting search engine and it complied on its promise to be good for the environment.

@Echedenyan
link
22M

I would recommend you using the English version because the Spanish one has not the translations finished.

Other idea would be helping to translate it.

They own a GitLab instance.

IngrownMink4
link
12M

Other idea would be helping to translate it.

How can I help with the translation?

@Echedenyan
link
22M
mickie
link
22M

Is going to be very difficult. Despite being an open source project, they are very closed to collaborations.

@Echedenyan
link
22M

I tried to submit membership form for their Organization and given that is set in Germany, all membership is required to know German just enough to speak/write using it to a native user.

I think that the language are the major limitations here.

IngrownMink4
link
22M

Okay, ty for the info. I was interested in translating into Basque too :'(

@pinknoise
link
2
edit-2
2M

From the “website carbon calculator”:

When a website is loaded, the energy used is roughly proportional to the amount of data transferred.

Thats not entirely true, maybe they should measure the power their useless animations and javascript waste too -.-

@TheImpressiveX
link
42M

Thanks for the recommendation!

@ttmrichter
link
102M

There’s a certain irony to a page that’s accusing DDG of being “a privacy abuser in disguise” whose site causes this:

@Lightbritelite
link
32M

Dang, they need to update that ssl!

@gmate8
creator
link
32M

I looked at the information they provided, and Gabriel Weinberg really made NamesDB.

@ttmrichter
link
62M

I looked at the malformed certificate and said “I’m not stepping past this point”.

I’m not sure what point you’re trying to make here. I’ve written code that is still used by SWIFT to this day. Does that make me a banker apologist? (Also which of approximately 10,000 projects named NamesDB?)

@pinknoise
link
92M

The certificate isn’t “malformed” it’s just not signed by one of the holy approved certificate authorities.

@ttmrichter
link
92M

Allow me to rephrase.

I looked at the dodgy certificate and said “I’m not stepping past this point”.

@pinknoise
link
52M

You certainly didn’t miss anything, but the certificate isn’t any more dodgy than that of any other site.

@ttmrichter
link
32M

Self-signed certificates are too silly to bother with. Might as well go straight http if you’re going to go self-signed.

A CA-signed cert reduces the chance of a bad actor between me and the target site. A self-signed cert opens the door to trivial MitM attacks.

@pinknoise
link
52M

A CA-signed cert reduces the chance of a bad actor between me and the target site.

Because bad actors that can hijack your traffic are unable to get a fake certificate signed?!

A self-signed cert opens the door to trivial MitM attacks.

How would that be?

@ttmrichter
link
22M

Getting a fake certificate signed requires state level opposition or entities with that level of resources, and frankly if your opposition is state level, you’re fucked anyway.

Self-signed certs let Jimmy-Joe-Bob’s Rifle Range and Real Good Hacker Script Kiddie Ring fake you out in minutes.

@pinknoise
link
2
edit-2
2M

Getting a fake certificate signed requires state level opposition or entities with that level of resources

Yeah like I said, if they can hijack your traffic, they can easily get a fake cert signed.

Self-signed certs let Jimmy-Joe-Bob’s Rifle Range and Real Good Hacker Script Kiddie Ring fake you out in minutes.

How? They would have to steal the CA key and could only impersonate the site with the self signed cert. (At least if you don’t add it to your certificate store)

@ttmrichter
link
22M

The cert is self-signed. There is by definition no CA key! Anybody accessing that sight, unless they did something phenomenally stupid, is going to have to validate access by self-signed cert on each access. And that means that any MitM isn’t going to flag any alarms … because they’d be inserting themselves as a self-signed cert.

@pinknoise
link
12M

The cert is self-signed. There is by definition no CA key!

Sure, it’s even in the terminology you use self-signed. They used their own CA to sign the certificate.

And that means that any MitM isn’t going to flag any alarms

The fingerprints are going to change and it will be signed by another CA. So MitM-attempts are pretty obvious.

@ttmrichter
link
12M

Are you thick or are you trolling? (Serious question.)

@Lahusen@feddit.de
link
82M

I’ve setup a searx instance just a couple of days ago. For me it’s perfect.

Dessalines
admin
link
32M

Is it difficult to self host?

@TechieDamien
link
22M

No, just clone the repo, copy and alter the config, use their uwsgi config and reverse proxy with your web service

@leanleft
link
82M

it’s been i have seen it pushing link tracking into their html(non-js) site. that has prompted me to quit. i’m using qwant for the time being although it kinda sucks for things that i research.
i use a searx instance(google) for one of my browsers on mobile.
the best solution is going to have to be to build something custom.

@gmate8
creator
link
62M

And it should be custom, beautiful, and open source.

@TheAnonymouseJoker
mod
link
1
edit-2
2M

It is not more beautiful than you. uwu

@onlooker
link
62M

Oh no, not techrights. DDG is privacy unfriendly, I’ll give the article that, but the website itself is a cesspool. Don’t take my word for it, just… browse the website for a minute or two. Techrights’ idea of content is cringey memes and inflammatory content, which ranges from sensationalist bullshit to straight-up misinformation.

kazutrash
link
22M

IngrownMink4
link
22M

Their website is a bloated mess…

@lovehumanityx
banned
link
12M

Searx for the win baby!

RandomSomeone
link
-52M

I stopped reading on “capitalist”. If you see the words “capitalist” or “communist” or something similar, close the tab, the content is rarely worth it

@omegaplot
link
6
edit-2
2M

deleted by creator

kazutrash
link
1
edit-2
2M

yeah i heard Michael from Destination Linux is running SearX. guess ima try it

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

  • 0 users online
  • 6 users / day
  • 34 users / week
  • 162 users / month
  • 570 users / 6 months
  • 3.93K subscribers
  • 2.04K Posts
  • 9.66K Comments
  • Modlog