From 227609f768dc6bde165935fe70233dd6f6548c0d Mon Sep 17 00:00:00 2001 From: Jonah Aragon Date: Mon, 27 Feb 2023 13:30:48 -0600 Subject: [PATCH] Use Invidious for Embeds (#2046) --- docs/about/services.en.md | 7 +++++++ docs/advanced/tor-overview.en.md | 4 ++-- docs/basics/multi-factor-authentication.en.md | 2 +- docs/os/linux-overview.en.md | 4 ++-- netlify.toml | 2 +- 5 files changed, 13 insertions(+), 6 deletions(-) diff --git a/docs/about/services.en.md b/docs/about/services.en.md index eb6000db..a645ac77 100644 --- a/docs/about/services.en.md +++ b/docs/about/services.en.md @@ -29,3 +29,10 @@ Access may be granted upon request to Privacy Guides team members, Matrix modera - Domain: [search.privacyguides.net](https://search.privacyguides.net) - Availability: Public - Source: [github.com/searxng/searxng-docker](https://github.com/searxng/searxng-docker) + +## Invidious + +- Domain: [invidious.privacyguides.net](https://invidious.privacyguides.net) +- Availability: Semi-Public +We host Invidious primarily to serve embedded YouTube videos on our website, this instance is not intended for general-purpose use and may be limited at any time. +- Source: [github.com/iv-org/invidious](https://github.com/iv-org/invidious) diff --git a/docs/advanced/tor-overview.en.md b/docs/advanced/tor-overview.en.md index d9599883..4658729a 100644 --- a/docs/advanced/tor-overview.en.md +++ b/docs/advanced/tor-overview.en.md @@ -75,5 +75,5 @@ If you wish to use Tor for browsing the web, we only recommend the **official** ## Additional Resources - [Tor Browser User Manual](https://tb-manual.torproject.org) -- [How Tor Works - Computerphile](https://www.youtube-nocookie.com/embed/QRYzre4bf7I) (YouTube) -- [Tor Onion Services - Computerphile](https://www.youtube-nocookie.com/embed/lVcbq_a5N9I) (YouTube) +- [How Tor Works - Computerphile](https://invidious.privacyguides.net/embed/QRYzre4bf7I?local=true) (YouTube) +- [Tor Onion Services - Computerphile](https://invidious.privacyguides.net/embed/lVcbq_a5N9I?local=true) (YouTube) diff --git a/docs/basics/multi-factor-authentication.en.md b/docs/basics/multi-factor-authentication.en.md index ac193b3a..690cfcf0 100644 --- a/docs/basics/multi-factor-authentication.en.md +++ b/docs/basics/multi-factor-authentication.en.md @@ -77,7 +77,7 @@ When you create an account, the public key is sent to the service, then when you This presentation discusses the history of password authentication, the pitfalls (such as password reuse), and discussion of FIDO2 and [WebAuthn](https://webauthn.guide) standards.
- +
FIDO2 and WebAuthn have superior security and privacy properties when compared to any MFA methods. diff --git a/docs/os/linux-overview.en.md b/docs/os/linux-overview.en.md index 3b9a50e1..dd2119c7 100644 --- a/docs/os/linux-overview.en.md +++ b/docs/os/linux-overview.en.md @@ -33,7 +33,7 @@ For frozen distributions such as [Debian](https://www.debian.org/security/faq#ha We don’t believe holding packages back and applying interim patches is a good idea, as it diverges from the way the developer might have intended the software to work. [Richard Brown](https://rootco.de/aboutme/) has a presentation about this:
- +
### Traditional vs Atomic updates @@ -47,7 +47,7 @@ A transactional update system creates a snapshot that is made before and after a The Atomic update method is used for immutable distributions like Silverblue, Tumbleweed, and NixOS and can achieve reliability with this model. [Adam Šamalík](https://twitter.com/adsamalik) provided a presentation on how `rpm-ostree` works with Silverblue:
- +
### “Security-focused” distributions diff --git a/netlify.toml b/netlify.toml index a9ed5d30..b89ff3fd 100644 --- a/netlify.toml +++ b/netlify.toml @@ -12,7 +12,7 @@ X-XSS-Protection = "0" X-Content-Type-Options = "nosniff" Strict-Transport-Security = "max-age=63072000; includeSubDomains; preload" - Content-Security-Policy = "default-src 'none'; script-src https://www.privacyguides.org https://api.privacyguides.net 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; font-src 'self'; img-src data: 'self'; connect-src https://api.github.com https://api.privacyguides.net 'self'; frame-src https://stats.privacyguides.net; frame-ancestors 'none'" + Content-Security-Policy = "default-src 'none'; script-src https://www.privacyguides.org https://api.privacyguides.net 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; font-src 'self'; img-src data: 'self'; connect-src https://api.github.com https://*.privacyguides.net 'self'; frame-src https://*.privacyguides.net; frame-ancestors 'none'" [[headers]] for = "/about/donate/"