ŞİFRE DEĞİL, SİSTEM KUR: PAROLALARINI KAFADA TAŞIMA

2025’e geldik, hâlâ “123456” mi? Hâlâ doğum tarihini şifre yapıp sonra “Benim niye Facebook’um çalındı?” diye dert yananları mı konuşacağız? 🎯 Dijital Hayat = Şifre Labirenti Gmail, Instagram, Netflix, e-Devlet, bankalar, Steam, bir ara açtığın forum hesabı, 4 yıl önceki bir online market üyeliği… Hepsi birer anahtar istiyor.Ama sen ne yapıyorsun?Hepsine aynı anahtarı veriyorsun. Evine 20 kapı…

KeePassXC Debian package situation

gemini://namno.duckdns.org/blog/2024-05-15.gmi

On 23rd of April 2023 Julian Andres Klode, Debian maintainer of keepassxc package have removed all networking and IPC features, including support for YubiKeys, from that package, following a very slow-flowing bugreport thread that complained that additional features may increase attack surface. Additionally, keepassxc-full package was created, that retained all these features. I consider this move to be misguided and harmful for following reasons: Everyone expects full KeePassXC by default In one of the threads created following this decision Julian have said that he would expect complains for a year because no one reads NEWS file. He is correct that no one reads NEWS file (or knows about it in general) but he is wrong in his estimate of complains. Complains will not stop after a year, they will continue until keepassxc package stops giving people cut-down version of KeepPassXC, like it does on all other distros. KeePassXC is advertised with all these features, they are the main reason to choose this package manager over any other. Even Debian package description mentions them: >In contrast to KeePassX (package keepassx), KeePassXC is actively developed and has more features, e.g., connectivity to a Web Browser plugin (package webext-keepassxc-browser).

https://packages.debian.org/testing/keepassxc [HTTPS] If someone needed "more secure" option, they could have picked one of the many alternatives that support same database format, but without features that are unnecessary for them. So the only useres that this "benefit" are those who don't know difference between different package managers and just install what's popular, in which case they probably are even more confused as to why their version of program doesn't work like it does for other people. These are not plugins Many other people defended this decision by saying that many other Debian packages do not include plugins by default. First of all, there is plenty of packages that have (1st party) plugins included in their package, or as a dependency. Second of all. they are not plugins. They are #ifdef-ed pieces of code, that only tested with all of them enabled. Option to disable all of the options (as is the current debian situation) is tested only for its ability to compile and no further. This leads to my third point. Disabling everything decreases safety Many features disabled by Julian are necessary for keeping the security. From physical USB keys, to browser plugin, that among other things helps distinguishing between real and phishing sites, they activly increase security. Disabling these features leads to users opting into less secure options, like transfering password using clipboard. Conclusion I hope that Julian eventually reevaluates his decision and if not reenables these features in main keepassxc package with optional keepasssc-core/minimal/whatever package that you could opt in, at least enables some of the features that actually provide security, like browser integration or secret provider. I also hope that Debain stops thinking that they are center of the universe and stops breaking packages for no good reason.

Passkeys being supported so many places lately are the best thing to happen to authentication in the last 20 years.

If you have a good password manager and save passkeys to it, it’s finally as convenient to sign in as it was back when nothing had multifactor and you just typed your one memorized password into everything.

Maybe I should wait for the PDF, but I’ve been thinking about password managers lately and might forget to check for that. My problem is that if there’s one thing I want to never ever put on the cloud to potentially get compromised, it’s my password information. But if there’s one thing I don’t want to lose access to, it’s also my password information. This seems to rule out both local options like KeePassXC and remote ones like Bitwarden.

I've started to become somewhat annoyed by the "there is no cloud, there is only someone else's computer" thing (this is a general thing, not specifically directed at you but you reminded me of it).

The risks of putting things on the cloud are that the internet or the provider will go down and you'll lose access to your data OR that the data will be compromised because the information is essentially public because it's on someone else's device.

Losing access because the provider crashes and burns or because there is a global internet outage is a distinct possibility, however with most password managers it is very very easy to download a copy of your data, which you can then store as an encrypted file on your desktop.

With companies like Bitwarden and Proton, which have open source encrypted cloud storage, your risk of compromise from being on someone else's computer is essentially zero. It IS important to make sure that you're finding a provider who is actually encrypting your shit and is not holding onto your password, which is why Bitwarden and Proton are the providers I keep recommending (privacyguides.org has recommendations here; bitwarden, protonpass, and keepassxc are all on the list, all of these are extremely safe options).

And that's where I have the problem with the "other people's computer" thing. I would have zero problems with storing a properly encrypted file in the comments of a facebook page. If a document had good encryption I would post it on livejournal and not worry about people getting into it. If you are working with good encryption, there is zero risk of compromise when keeping your shit on someone else's computer.

So I actually think the solution for either side of this conundrum is the same: If you're worried about losing access to your password manager because a service shuts down or the internet blows up, download a copy of your data to your desktop and store it in an encrypted folder on your computer. If you're worried about losing access to your password manager if your physical hardware is damaged in a disaster, export a copy of your data, save it as an encrypted file, and upload your encrypted file to gmail for all it matters - they will straight up not be able to get into it.

But that's also all kind of beside the point because a major feather in Bitwarden's cap is that you can self-host. It doesn't need to go on someone else's cloud, you can put it on your own server and never worry that someone else is going to tinker with your password manager.

Either way, you are sort of worrying beyond your means because if you're not using a password manager right now you are almost certainly at greater risk of credential stuffing attacks than anything else and need to put out that fire.

Anyway if you're at Harvey Mudd have you tried Dr. Grubbs across from where Rhino used to be? Everything on the menu is great but there is this jalapeño garlic sauce they've got to go with their mains that is so good that I want like two gallons of it.

what is the best way to get safer/more anonymous online

Ok, security and anonymity are not the same thing, but when you combine them you can enhance your online privacy.

My question is: how tech literate are you and what is your aim? As in do you live in a country where your government would benefit from monitoring private (political) conversations or do you just want to degoogle? Because the latter is much easier for the average user.

Some general advice:

Leave Windows and Mac operating systems and switch to Linux distributions like Fedora and Ubuntu (both very user friendly). Switch from Microsoft Office or Pages/Numbers/Keynote (Mac) to LibreOffice.

You want to go more hardcore with a very privacy-focused operating system? There are Whonix and Tails (portable operating system).

Try to replace all your closed source apps with open source ones.

Now, when it comes to browsers, leave Chrome behind. Switch to Firefox (or Firefox Focus if you're on mobile). Want to go a step further? Use LibreWolf (a modified version of Firefox that increases protection against tracking), Brave (good for beginners but it has its controversies), DuckDuckGo or Bromite. You like ecofriendly alternatives? Check Ecosia out.

Are you, like, a journalist or political activist? Then you probably know Tor and other anonymous networks like i2p, freenet, Lokinet, Retroshare, IPFS and GNUnet.

For whistleblowers there are tools like SecureDrop (requires Tor), GlobaLeaks (alternative to SecureDrop), Haven (Android) and OnionShare.

Search engines?

There are Startpage (obtains Google's results but with more privacy), MetaGer (open source), DuckDuckGo (partially open source), Searx (open source). You can see the comparisons here.

Check libRedirect out. It redirects requests from popular socmed websites to privacy friendly frontends.

Alternatives to YouTube that value your privacy? Odysee, PeerTube and DTube.

Decentralized apps and social media? Mastodon (Twitter alternative), Friendica (Facebook alternative), diaspora* (Google+ RIP), PixelFed (Insta alternative), Aether (Reddit alternative).

Messaging?

I know we all use shit like Viber, Messenger, Telegram, Whatsup, Discord etc. but there are:

Signal (feels like Whatsup but it's secure and has end-to-end encryption)

Session (doesn't even require a phone or e-mail address to sign up)

Status (no phone or e-mail address again)

Threema (for mobile)

Delta Chat (you can chat with people if you know their e-mail without them having to use the app)

Team chatting?

Open source options:

Element (an alternative to Discord)

Rocket.chat (good for companies)

Revolt.chat (good for gamers and a good alternative to Discord)

Video/voice messaging?

Brave Talk (the one who creates the talk needs to use the browser but the others can join from any browser)

Jami

Linphone

Jitsi (no account required, video conferencing)

Then for Tor there are various options like Briar (good for activists), Speek! and Cwtch (user friendly).

Georestrictions? You don't want your Internet Provider to see what exactly what you're doing online?

As long as it's legal in your country, then you need to hide your IP with a VPN (authoritarian regimes tend to make them illegal for a reason), preferably one that has a no log policy, RAM servers, does not operate in one of the 14 eyes, supports OpenVPN (protocol), accepts cash payment and uses a strong encryption.

NordVPN (based in Panama)

ProtonVPN (Switzerland)

Cyberghost

Mullvad (Sweden)

Surfshark (Netherlands)

Private e-mails?

ProtonMail

StartMail

Tutamail

Mailbox (ecofriendly option)

Want to hide your real e-mail address to avoid spam etc.? SimpleLogin (open source)

E-mail clients?

Thunderbird

Canary Mail (for Android and iOS)

K-9 Mail (Android)

Too many complex passwords that you can't remember?

NordPass

BitWarden

LessPass

KeePassXC

Two Factor Authenticators?

2FAS

ente Authenticator

Aegis Authenticator

andOTP

Tofu (for iOS)

Want to encrypt your files? VeraCrypt (for your disk), GNU Privacy Guard (for your e-mail), Hat.sh (encryption in your browser), Picocrypt (Desktop encryption).

Want to encrypt your Dropbox, Google Drive etc.? Cryptomator.

Encrypted cloud storage?

NordLocker

MEGA

Proton Drive

Nextcloud

Filen

Encrypted photography storage?

ente

Cryptee

Piwigo

Want to remove metadata from your images and videos? ExifCleaner. For Android? ExifEraser. For iOS? Metapho.

Cloak your images to counter facial recognition? Fawkes.

Encrypted file sharing? Send.

Do you menstruate? Do you want an app that tracks your menstrual cycle but doesn't collect your data? drip.

What about your sexual health? Euki.

Want a fitness tracker without a closed source app and the need to transmit your personal data to the company's servers? Gadgetbridge.

Privacy is in a terrible situation right now.

Especially on the internet. You know, Google, Facebook, Microsoft, Twitter(X), Apple, and even Tumblr all collect information about you to show you scarily accurate advertisements among other things.

Why does this matter?

This isn't about hiding information, it's about protecting information. You wouldn't let me know your entire life, your diary, all your photos and text messages, so why do you let random companies do the same?

Privacy Guides - Why Privacy Matters

So how do you stop this?

You can't. But you can lessen this. So I'm going to show you a non-exhaustive list of what I've used and what I know of that may help your privacy. I would recommend you go to privacyguides.org after if you want a better explanation. I'm just here to show you cool things.

Disclaimer

I am not a library on this sort of information and this is what I choose to use. I may be incorrect and you may have differing opinions. Also, this may be too extreme for everybody. Use what works for you. Again, I would recommend you go to privacyguides.org after you read this for a more in-depth and better explanation.

VPNs

You know what a VPN is. You've seen the sponsorships. VPNs are one of the most popular privacy tools, but know that they are not the only tool that you'd need. This list is evidence of that.

I would recommend Proton VPN, Mullvad, and IVPN for most users, as they provide a far better amount of privacy and features than VPNs such as Nord VPN, Surfshark, and Express VPN. If you really want unlimited devices go with Windscribe.

I personally use Proton VPN due to the fact that I use their other services.

Browsers

You should probably know that Google Chrome is basically spyware at this point. The issue here is, almost all Chromium-based browsers are. These include, Edge, Opera, and Vivaldi. The only real exception would be Brave, but they've got leadership issues, which may not be a deal breaker for you.

So what do you use? A Firefox-based browser. This obviously includes Firefox, but most Firefox-based browsers are privacy-focused. The browsers that I recommend are Firefox, Librewolf, the Mullvad Browser, Waterfox, and Brave.

There is also the Tor Browser, but that is a whole 'nother can of worms that I will not go into. All I will say is that if you are in a high-risk environment(such as an oppressive regime) or you need absolutely no one to know that you searched that one thing, you may want to use the browser for anonymity.

I use Firefox as my main browser, with Brave as the browser that I use if something doesn't work on Firefox. I also use Tor if it is a high-risk situation.

Search Engines

Google, Bing, and Yahoo! all log your searches, you need alternatives. This is relatively straight-forward.

I recommend, Qwant, DuckDuckGo, SearXNG, Brave Search, and Startpage. Both Qwant and DuckDuckGo are fairly similar as they both use Bing search results and say that they don't track you. SearXNG is more complex, and I will not go into detail here. If you really want Google search results, use Startpage. And if you don't want your search to rely on Bing or Google, use Brave Search.

I use Qwant, mainly just cause its European.

Passwords

Passwords are the keys to your digital life. And most of the time they're not that great. You know the drill here, make passwords like this- XmaE7PEj2hq9ed$w - but you can't really remember them. For that you need a password manager.

I recommend Bitwarden, Proton Pass, and KeepassXC. Bitwarden and Proton Pass are more convenient, but you are trusting a single entity, reputable ones, but still. KeepassXC isn't as convienent, but you have near full control over what happens to it.

I use Proton Pass, as I use other Proton services.

Email

Email is identity, you almost always use your email in order to register for sites like Tumblr, and sites that aren't anything like Tumblr. Companies like Google, Microsoft, and Yahoo! all use your email inbox in order to gain more information about you for their companies. There are quite a few email providers, but I've only used and recommend two.

I recommend Proton Mail and Tuta Mail. Both are good email providers, although Proton would be better if you use other Proton services, like I do.

I use both Proton Mail and Tuta Mail for separate email addresses.

Aliases

Email Aliases are also very important for private email. Your email is your name, if you want to private, you'd go under pseudonyms. That's what email aliases are.

I recommend and have used Simplelogin and Firefox Relay. Email providers like Proton and Tuta also give you aliases when you pay. I don't know how well these work, but I assume that they work the Same as Simplelogin and Firefox Relay.

I use Simplelogin.

Devices/OSes

Phones

Now let's turn up the extremity to 11 as we look at your devices. Phone-wise, avoid Apple, they say that they care about your privacy, but they don't. Apple is better than Google, but I'd only recommend using an iPhone if you already have one, and it still has support left. If that's the case, then follow privacy guides like this one by Techlore(His channel is also really great for privacy guides). You should probably use a Google Pixel. Sounds weird as it's owned by GOOGLE, one of the companies that we don't want to be tracked by, but if we go with the Pixels we can use custom ROMs.

Most ROMs exist for your privacy, they are based on the Android Open Source Project(AOSP) which means they can run most of your favourite Android apps without messing them up with Google. In order to run most of your apps however, you're going to need some way of running Google Play Services. This is a backbone black-box that Google forces most of your apps to use in order to function. CalyxOS and LineageOS with MicroG both have MicroG, an open source implementation of Google Play Services. GrapheneOS just straight up uses Google Play Services but sandboxes it so that it can't get its tentacles all up in your phone.

I recommend going like this:

You have a modern-ish Google Pixel phone, go with GrapheneOS.

You don't have a Google Pixel, but your phone is still supported by CalyxOS, go with CalyxOS.

Your phone isn't supported by either of these but still is supported by LineageOS with MicroG, go with LineageOS.

Your phone isn't supported by any of these, you can do as much degoogling as you can.

Techlore also has a fantastic guide on Android Privacy.

Desktops/Laptops

Apple isn't actually that bad here, its better than Windows at least. But Linux is KING when it comes to privacy and security. There is definitely a learning curve here. Pin the terminal, you're going to use it a LOT. Also be aware that on Linux you won't have every single app that you're used to. If you don't really want that hassle, just go with Mac.

Linux distros that I recommend(for beginners) are: Ubuntu, Linux Mint, Pop!_OS, and Elementary OS.

I use Ubuntu as it's the only one that I could get working on my computer.

Other Pieces of Advice

Use an Ad-blocker! Ads are terrible for privacy as companies can get their trackers in completely unrelated sites via their ads. I use and recommend uBlock Origin.

Don't use any personally identifying information online. Don't use your real name, a picture of you, your voice. The less you give to the internet, the more private you are.

Mix and Match! Explore what works for you. You might be okay with changing OSes but you might be a bit too reliant on GMail. That's fine! Just use what works.

Again, please go to privacyguides.org after this. This did not even scratch the surface but I hope this was useful to you in some way.

how would you recommend starting a NSFW account? like, protecting email and privacy and stuff. i’m worried about Big Data, idk

There's A LOT of ground to cover here, so bear with me: I am writing this under the assumption you are an artist who wants to draw gay kink stuff, and you wish to protect this identity from your irl peers and maybe employers. The FIRST major thing to handle is your accounts. Signing up for services require you to give information about yourself, which is something that could easily be leaked #1) have a separate email for your NSFW stuff. all accounts for your NSFW life will use this email. I recommend using Proton Mail or Tuta. (Warning: the free version of proton mail and tuta will auto delete accounts that have remained inactive for more than 6 months) #2) Being an artist on the internet means having 10 billion social media accounts. DO NOT give them all the same password. Ever. Get a password manager. They will generate strong passwords for you, all of which are unique. I recommend Bitwarden, KeepassXC, or Protonpass. #3) Any accounts that handle finances (paypal patreon etc) should be under your irl email. Your government ID and bank will be linked to those. Also taxes. #4) Do not provide your phone number for your nsfw accounts. This will provide a link between your nsfw life and your personal life. Discord and Twitch force you to provide a phone number. Either make a new email, or link your non nsfw email to them. You could spoof a phone number but that comes with risks. Your call. #5) If you can, set up 2 Factor Authentication with your emails. This will also help you log in to them more often, keeping them active. Now that your accounts are secured and compartmentalized the next thing to do is BE MINDFUL WHEN TALKING ABOUT YOURSELF. You dont need to be too mysterious and aloof just don't get too careless when sharing your life with others. maybe strangers dont need to know you have a brother, or where you normally shop. what's left now are dealing with websites tracking your browsing habits. This post is too long so a very quick and easy set up is: -Switch to a privacy respecting browser. I recommend Firefox. -Avoid installing browser extensions. -Except for Ublock Origin. It will block so many ads, trackers, and malware. -Pick a privacy respecting search engine. Duckduck go is a popular choice Theres still a shitload more you can do but this will put you so far ahead of everyone else, without requiring you to spend money, and its not too difficult to set up. anyway i wrote all of this for you so pls be nice to me

can you actually talk about bitwarden / password managers, or direct me to a post about them? Idk my (completely uneducated) instinct says that trusting one application with all your passwords is about as bad as having the same password for everything, but clearly that isn’t the case.

So it is true that online password managers present a big juicy target, and if you have very stringent security requirements you'd be better off with an offline password manager that is not exposed to attack.

However, for most people the alternative is "reusing the same password/closely related password patterns for everything", the risk that one random site gets compromised is much higher than the risk that a highly security focussed password provider gets compromised.

Which is not to say it can't happen, LastPass gets hacked alarmingly often, but most online password managers do their due diligence. I am more willing to stash my passwords with 1Password or Bitwarden or Dashlane than I am to go through the rigamarole of self-managing an array of unique passwords across multiple devices.

Bitwarden and other password managers try to store only an encrypted copy of your password vault, and they take steps to ensure you never ever send them your decryption key. When you want a password, you ask them for your vault, you decrypt it with your key, and now you have a local decrypted copy without ever sending your key to anyone. If you make changes, you make them locally and send back an encrypted updated vault.

As a result, someone who hacks Bitwarden should in the absolute worst case get a pile of encrypted vaults, but without each individuals' decryption key those vaults are useless. They'd still have to go around decrypting each vault one by one. Combining a good encryption algorithm, robust salting, and a decent key, you can easily get a vault to "taking the full lifetime of the universe" levels on security against modern cryptographic attacks.

Now there can be issues with this. Auto-fill can be attacked if you go onto a malicious website, poorly coded managers can leak information or accidentally include logging of passwords when they shouldn't, and obviously you don't know that 1Password isn't backdoored by the CIA/Mossad/Vatican. If these are concerns then you shouldn't trust online password managers, and you should use something where you remain in control of your vault and only ever manually handle your password.

Bitwarden is open source and fairly regularly audited, so you can be somewhat assured that they're not compromised. If you are worried about that, you can use something like KeePassXC/GNU Pass/Himitsu/ (which all hand you the vault file and it's your job to keep track of it and keep it safe) or use clever cryptographic methods (like instead of storing a password you use a secret key to encrypt and hash a reproducible code and use that as your password, e.g. my netflix password could be hash(crypt("netflixkalium", MySecretKey)), I know a few people who use that method.

Now with any luck because Apple is pushing for passkeys (which is just a nice name for a family of cryptographic verification systems that includes FIDO2/Webauthn) we can slowly move away from the nightmare that is passwords altogether with some kind of user friendly public key based verification, but it'll be a few years before that takes off. Seriously the real issue with a password is that with normal implementations every time you want to use it you have to send your ultra secret password over the internet to the verifying party.

Yo saw your asks to ms-demeanor about PWM solutions and local vs cloud. I feel your pain. Personally, I don't trust my own sysadmin chops enough to rely entirely on self-hosting (big corpo servers have a lot more failsafes and redundancies built in than my rpi does!)

My preferred solution is using KeePassXC on your local computer, and keeping it synced with multiple free cloud providers, e.g. OneDrive and Google Drive desktop, using one of those to sync it to your other devices if you want.

(The encryption on the kdbx file is enough protection, but if you want an extra layer of encryption, use something like Rclone, which can actually create an encrypted folder within cloud providers to keep your stuff extra hidden from Google/Microsoft and mount it like it's a local folder on your device. There's Rclone apps for desktop and Android, and a similar app, ccViewer, for iPhone. Otherwise, Cryptomator does a similar job and I believe is available on all platforms.)

I would consider that but I’d worry about race conditions, if I used it on multiple devices. Last I checked, which to be fair was ages ago, it did not handle that well.

I love your art. sorry if you've been asked this before but do you have any advice for someone who's just getting into art. I know there isn't some magic ritual to draw good but some advice on where to start would be appreciated

Here is my personal advice as someone who has done furry commission work for about 4 years. I consider the following to be highly essential information that I think about to this day: 1: Don't forget to have fun and be yourself! 2: Keep your room clean and try to sleep well. It goes a long way! 3: Get a password manager. You're gonna need it for all the accounts you will be making. Bitwarden and KeepassXC are good. 4: Backup all your stuff on either an external hard drive, cloud, usb storage, etc. Backup your password manager info too. 5: Name your files thoughtfully and keep everything sorted. 6: Try to draw every day. A 5 second doodle counts! 7: Do not compare your skill level, popularity, and age with other artists. All that does is inflict damage to yourself. 8: Don't worry about originality or "cringe." None of that matters. Don't be ashamed of your fetish, either. 9: Engaging with drama, callout culture, and policing people is bad for you. It doesn't really do much besides make enemies. 10: Put your art on different websites! You never know when a platform decides to fall apart. 11: Don't draw for clout. Draw what you want. You'll be way happier in the long run. 12: Sometimes you'll get a weird dm or a rude comment. Such is life. I highly recommend finding a healthy way to handle it. 13: RESEARCH!!!!!!! Look for references! Study anatomy, color, composition, plants, animals, poses, anything. If you see anything and think "woah that looks cool!" STUDY IT!!!! Knowledge will always help you!!! 14: Don't think too much about your art style. It develops eventually and even then it's something that constantly changes.

Tired of Paying for Tools? These 40 Open-Source Alternatives Have You Covered?

Let’s be real for a second.

We’ve all been there—mid-project, mid-semester, or mid-burnout—when a paid tool throws up a paywall and asks for $19.99/month just to export your file. It stings, especially when you’re trying to keep your budget lean.

But here’s the good news: the open-source community has your back. 💪 There are dozens of completely free, insanely powerful tools that can do (almost) everything their paid counterparts can—without locking your best features behind a subscription.

Whether you're a freelancer, student, startup founder, or just someone who loves great software, this list is your new toolbox.

🚀 Why Open-Source Is the Underdog That Wins Before we dive in, let’s clarify something: Open-source ≠ low quality. In fact, some of the world’s biggest companies (Google, NASA, Netflix) use open-source tools every day. These aren’t sketchy knockoffs—they’re community-powered, security-tested, and constantly evolving.

Now, let’s talk about the 40 free tools that could save you hundreds—or even thousands—of dollars a year.

🧠 Smart Swaps for Everyday Tools

LibreOffice → Ditch Microsoft Office Docs, Sheets, Presentations—all offline, all free.

OnlyOffice → Google Docs Vibes, but Yours Looks and feels like MS Office, works online or self-hosted.

Joplin → Evernote for Nerds Markdown-based, syncs securely, and doesn’t sell your notes.

Zettlr → Perfect for Writers & Academics Citation support + distraction-free writing.

🌐 For Browsing, Email & Team Chat

Firefox → More Privacy, Less Google Extensible and fast—and they don’t track you.

Brave → Built-in Ad Blocker? Yes Please Faster browsing + rewards system.

Thunderbird → Outlook Without the Overkill Email, calendar, and to-do list in one clean interface.

Mattermost → Slack Without the Bill Your team chat, your server, your rules.

Jitsi Meet → Free Video Calls—No Sign-Up Needed Start a call with a link. Done.

🎨 Designers & Creators, Rejoice

GIMP → Photoshop for the People Yes, it’s that powerful. Yes, it’s free.

Inkscape → Vector Design Like a Boss Great for logos, icons, and print design.

Krita → Digital Painting Heaven Designed by artists, for artists.

Blender → Hollywood-Grade 3D Modeling Used in actual movies. Free forever.

Darktable → Lightroom Without the Monthly Bill RAW editing + professional workflow.

🎧 Audio & Video Editing

Audacity → Podcasting, Remixing, Editing, Easy Intuitive multi-track editor.

OBS Studio → Streaming & Screencasting Gold What Twitch streamers use. Seriously.

Shotcut → Video Editing That Just Works Cross-platform and powerful.

Olive → Modern Video Editor in the Making Sleek, promising, and growing fast.

👨‍💻 Developers, You’re Going to Love These

VSCodium → VS Code Without Microsoft Tracking Same editor, privacy-respecting build.

Atom → Hackable to the Core Loved by web devs and hobbyists.

Eclipse → Java Devs’ Old-School Favorite Still rock-solid.

NetBeans → Full IDE for Polyglot Coders Good for Java, PHP, and C++.

Hoppscotch → Postman Without the Bloat Runs in your browser, free forever.

MariaDB / MySQL → Free SQL Workhorses The backbone of many web apps.

SQLite → Tiny, Powerful, Portable Database No server required. Zero config.

✅ Organize Your Life (and Work)

Wekan → Trello Clone, But Open Kanban boards made simple.

Focalboard → Self-Hosted ClickUp Alternative Task management that respects your data.

Redmine → Jira's Open Twin Great for bug tracking & agile workflows.

Taskcafe → Asana-Style, Cleaner Interface New kid on the block, with potential.

🔐 Privacy Tools That Feel Like Superpowers

Bitwarden → Best Password Manager, Hands Down Cloud, browser, and mobile support.

KeePassXC → Local, Bulletproof Password Vault For privacy purists.

Tutanota → Private Email That Just Works End-to-end encrypted email, minimal design.

Pi-hole → Block Ads on Your Entire Network Install it on a Raspberry Pi and say goodbye to web ads.

☁️ Sync, Store, and Share Files Securely

Nextcloud → Your Own Google Drive Private cloud, full control.

Syncthing → Dropbox, But Peer-to-Peer No servers. Just your devices talking securely.

rclone → Cloud Storage on the Command Line Sync anything, anywhere.

📊 Data, Dashboards & Decisions

Metabase → BI Dashboards Without the Headache Plug in your data, get answers fast.

Grafana → DevOps’ Favorite Dashboard Tool Real-time, customizable graphs.

Apache Superset → Data Exploration for Pros Used by Airbnb, Netflix, and more.

🤖 Bonus: Automate All the Things

AutoHotKey → Make Your Computer Work For You Automate anything on Windows. Seriously.

🌍 Your Wallet and Your Future Will Thank You Switching to open-source isn’t just about saving money (though that’s nice). It’s about:

💻 Owning your tools

🔐 Protecting your privacy

🌱 Supporting innovation and community

🧰 Having control over your workflow

These tools are built by people like you, for people like you. Try just a few of them, and you’ll wonder why you ever paid in the first place.

KeePass vs. KeePassXC – Vergleichstabelle

Unterschiede zwischen #KeePass (meist gemeint ist #KeePass2 für Windows) und #KeePassXC (eine moderne Cross-Plattform-Version) aufzeigt. Außerdem findest du unten Beispiele, wann #KeePassXC besser geeignet ist. 🔐 KeePass vs. KeePassXC – Vergleichstabelle 🧩 Merkmal🪟 KeePass (Windows)🧭 KeePassXC (Cross-Platform)🛠️ PlattformNur Windows (nativ), mit Mono auf macOS/LinuxWindows, macOS, Linux – nativ…

Herramientas Esenciales para Proteger tu Privacidad Online

En la era digital, proteger tus datos personales es más importante que nunca. Afortunadamente, existen herramientas de privacidad que te ayudan a navegar de forma segura, evitar rastreos y mantener el control de tu información.

1. Navegadores Privados

Brave: Bloquea anuncios y trackers por defecto.

Firefox + Configuraciones de Privacidad: Con extensiones como uBlock Origin y Privacy Badger.

2. VPNs (Redes Privadas Virtuales)

ProtonVPN y Mullvad: Encriptan tu conexión y ocultan tu IP.

Windscribe: Opción gratuita con buen rendimiento.

3. Buscadores que No Rastrean

DuckDuckGo: No almacena tu historial de búsquedas.

Startpage: Ofrece resultados de Google sin tracking.

4. Correo Electrónico Seguro

ProtonMail: Correo encriptado de extremo a extremo.

Tutanota: Alternativa open-source con fuerte enfoque en privacidad.

5. Gestión de Contraseñas

Bitwarden: Open-source y gratuito.

KeePassXC: Almacena contraseñas offline.

6. Bloqueo de Trackers y Anuncios

uBlock Origin: Filtra anuncios y scripts maliciosos.

Privacy Badger: Aprende y bloquea trackers automáticamente.

🔗 Descubre más herramientas en: Guía Completa de Privacidad

Create a Secure File Encryption Tool in a Weekend

Introduction Data breaches often come from lost or stolen devices. Encrypting your files ensures that even if someone gets their hands on them, they can’t access the content without your password. Let’s build a secure file encryption routine you can complete in a weekend.

1. Choose and Install a Tool Good options include:

VeraCrypt (full-disk or volume encryption)

AxCrypt (file-by-file, simpler interface)

7-Zip with AES-256 (lightweight, widely used)

Let’s use VeraCrypt as an example. Download and install it from https://www.veracrypt.fr.

2. Encrypt Files With VeraCrypt:

Create a new volume.

Select "Create an encrypted file container".

Choose AES (Advanced Encryption Standard).

Set the size and mount the volume.

Move sensitive files into the container.

3. Save and Secure the Password Never store passwords in plain text or reuse them across services. Use a password manager like:

Bitwarden

1Password

KeePassXC

Set a password that meets strong criteria. Example using a generator:

plaintext

CopyEdit

T#dL!r8$zP1&ExQv

Conclusion Encrypting files is a must-do for anyone handling sensitive data. Whether it’s client documents, tax forms, or personal records — this project is quick, practical, and immediately useful.

Το KeePassXC είναι ένας σύγχρονος, ασφ...