• 2 Posts
  • 7 Comments
Joined 1Y ago
cake
Cake day: Jul 23, 2021

help-circle
rss

So at first i got frustrated with comments on reddit and such linking to imgur pages (non-direct images such as albums or gifs), which were broken on Tor and in browsers where they work just laggy and privacy invasive. I think you’re right that main page would be a good feature, i don’t intend on fully replicating all functionality though.


Imgin - Alternative-frontend to Imgur
Over the weekend i made a simple read-only frontend for Imgur in the spirit of Invidio.us and nitter It doesn't support gifs/videos yet but it does handle albums. It is open source under AGPLv3 https://git.voidnet.tech/kev/imgin and has 0 javascript. It has a configurable cache. Here is an example gallery view https://imgin.voidnet.tech/gallery/9wkPUsZ The reason i made it is because for me, at least on desktop Imgur craps out on Tor Browser even just for viewing. You can append /layout/blog to albums but that still requires JS. Imgur also has lots of trackers and junk by default. I still need to add tests and clean up the code, so it may be buggy. The idea is that it would be eventually added to privacy redirect addon to auto-redirect imgur links. It is pretty small Python code so if you want to help me you can reach out. Sopuli isn't syncing comments for some reason, i'll reply from onionr https://lemmy.ml/u/onionr
fedilink

This is cool and I don’t fault anyone for using it but for me personally I don’t trust proprietary games and trust pirated games even less, one of the only times I ever got malware was from a pirated game


(For other people to see): I tested it on keytrac and typingdna while i was writing the code and it worked, but i haven’t been able to thoroughly test it with another person (it should either detect 0% for each person or ~100% for each person on the same entry). So please report tests to me if anyone tests it.


The best one that doesn’t seem too sketchy is http://jmp.chat/


I’m quite familiar with voipms since I have a reseller account with them for my sms service . They aren’t very privacy friendly, so if you are trying to maintain anonymity there are probably better options. I successfully ported a MySudo number to my voipms.

I’ll point out that MySudo seems to only use Twilio which is a developer oriented voip/sms company. You can directly make account them them and use a web interface but they aren’t very private either and require a non voip number to be confirmed on the account.

If you really want MySudo (note they are proprietary) you could try running it in android-x86 which includes standard google apps I believe. Haven’t tried this


Yes as adrianmalacoda said, it’s AGPLv3. You can see the source go by going to my gitea or by extracting the addon file (addon files are just zip and mine isn’t compiled or obfuscated in anyway)


PrivateKeyboard: Firefox addon to reduce keyboard biometric tracking
Greetings Lemmy I have been developing a Firefox addon to throw off [keystroke fingerprinting](https://www.whonix.org/wiki/Keystroke_Deanonymization) https://addons.mozilla.org/en-US/firefox/addon/private-keyboard/ I suspect most people on lemmy are aware of browser fingerprinting, but i think alternate routes of fingerprinting are less talked about. Basically, websites can track your keystroke timings which are fairly unique to each person. Addons like Ublock origin can address this problem, but that is inherently a blacklist approach which is not a good security method. I suspect that sites could do it partly server side anyways by using legit features like typing notifications on chat sites. I developed this addon to defeat basic keystroke analysis by randomizing the time it takes keystrokes to be processed by a webpage with a floor of 150ms and a max of 300ms. I'm working on improving the UX, so i anticipate the typing speed to be increased eventually (I admit it is frustrating to type currently). I may add an iframe overlay approach/option that is mildly less secure but much more usable. You can whitelist sites that you trust. I tested it on typingdna[.]com and keytrac[.]net which are two spy companies that advertise keyboard biometrics as an alternative to 2fa (cringe) and for anti-fraud or creepy test proctoring purposes. This is experimental and may not solve all issues (in particular it doesn't prevent stylometry analysis yet). Also it may be possible for spies aware of the addon to account for the randomization. There's a downside aside from the frustration of slow typing, which is cpu spikes during typing, which is a side effect i haven't been able to avoid due to JS limitations. If i'm able to make the iframe approach that would be fixed. Ironically the cpu spike may make it easier to use [power analysis](https://www.inderscienceonline.com/doi/abs/10.1504/IJACT.2014.062722) Other software that attempts keystroke anonymization is the kernel level Kloak project and the Keyboard Privacy chrome addon that doesn't seem actively maintained. If you know JS and want to help shoot me a message.
fedilink

I completely understand if you don’t want to say, but what ISP is banning njala? I find that as bad as if they banned whole hosting providers or TLDs