Commit Graph

269 Commits

Author SHA1 Message Date
18211ba7ce
Final build of PDF, ODT, and HTML
Signed-off-by: Sharp-tailed Grouse <no@anonymousplanet.org>
2023-04-01 03:50:50 -04:00
588d53b914
Various small fixes and version bump
Signed-off-by: Sharp-tailed Grouse <no@anonymousplanet.org>
2023-03-30 07:12:10 -04:00
49a59294ae
Merge branch 'master' into master 2023-03-01 08:25:35 +00:00
19d0f02b18
Stop repeating ourselves in this section
It's fine to shorten this section to a few lines, in order of technical difficulty.
2023-03-01 03:16:00 -05:00
1e390754e1
Fix incorrect Coreboot and Libreboot information, courtesy of Anon
Signed-off-by: Sharp-tailed Grouse <no@anonymousplanet.org>
2023-02-25 17:02:46 -05:00
1a085f8612
Merge branch 'master' into vbox-edits 2023-02-25 09:35:22 +00:00
4db9da5545
Add compatibility information for macOS M1/M2 chips
Signed-off-by: Sharp-tailed Grouse <no@anonymousplanet.org>
2023-02-25 04:24:19 -05:00
Than Harrison
e2b1e10687
Apply suggestions from code review 2023-01-31 20:55:09 +00:00
Kyle
310a192ecf
Add Bitcoin specific privacy tools
When it comes to using cryptocurrencies as a means for anonymous payments, the guide seems to put a lot of stress on using Zcash and Monero, while outright discouraging the use of Bitcoin. However, Zcash is simply not used by enough people to provide an anonymous means of financial transactions, so long as anonymity requires the ability to hide in a crowd as is relevant here. Just last year, Zcash was attacked by an entity filling up blocks, causing the [chain size to significantly increase](https://blockchair.com/zcash/charts/blockchain-size) without an [increase in transactions](https://blockchair.com/zcash/charts/transaction-count), while only costing the attacker [approximately $10 a day](https://twitter.com/lopp/status/1577718171468972033). Yet Zcash is recommended as the "Extra-Paranoid anonymous option" in "Online anonymous payments using cryptocurrencies". The reasoning stresses that the crypto algorithms would have to be broken in order to harm the anonymity of its users and that isn't true because an anonymity-focused coin that no one uses is **not anonymous** no matter how secure its algorithms are.

The [resources](https://github.com/Anon-Planet/thgtoa/blob/master/guide.md#warning-about-special-tumbling-mixing-coinjoining-privacy-wallets-and-services-wikiless-archiveorg) provided in the warning against special tumbling, mixing, coinjoining privacy wallets and services all target centralized and/or custodial mixing services, while making no mention of modern privacy protocols that work on Bitcoin and give users forward-facing on-chain privacy guarantees today.

This PR hopes to clarify the risks of using centralized mixers/tumblers, point readers to tools that are non-custodial and actually **do** provide users with forward-facing on-chain privacy so that they can use Bitcoin anonymously, and remove recommendations to use Zcash.

Based on a [previous comment](https://github.com/Anon-Planet/thgtoa/pull/28#issuecomment-1145782407), there was hesitancy on adding a recommendation before its gotten significant review. Whirlpool is an implementation of [ZeroLink](https://code.samourai.io/whirlpool/Whirlpool/-/blob/whirlpool/THEORY.md) which breaks all links between a UTXO and its history. Whirlpool has been used on Bitcoin's mainnet since 2019 beginning with its [public beta](https://bitcoinmagazine.com/culture/samourai-wallets-privacy-enhancing-whirlpool-now-in-public-beta) and has since grown to [6743 BTC in unspent capacity](https://twitter.com/SamouraiDev/status/1615708859641004032). This should provide a basis for "significant review" to be able to recommend.
2023-01-24 21:02:00 +00:00
281ea4a6d8
Fix typo
Signed-off-by: Sharp-tailed Grouse <no@anonymousplanet.org>
2023-01-23 11:29:45 -05:00
a6ab204797
Rework IP Filters section regarding reasons for being filtered by services
Signed-off-by: Sharp-tailed Grouse <no@anonymousplanet.org>
2023-01-23 10:20:03 -05:00
Alex Anderson
c89db82802
Merge pull request #258 from Anon-Planet/browser-fingerprinting
Revisiting and updating two sections
2022-11-07 06:29:48 +00:00
Alex Anderson
ce3426bf45
Merge pull request #257 from Anon-Planet/nested-virtualization
Note these factors when using nested virtualization.
2022-10-30 02:47:15 +00:00
Sharp-tailed Grouse
2e803ca7ea
Fix Gait Recognition and Other Long-Range Biometrics
Signed-off-by: Sharp-tailed Grouse <sharptail@riseup.net>
2022-10-29 00:51:54 -04:00
Sharp-tailed Grouse
f8299eb228
Merge branch 'master' into nested-virtualization 2022-10-17 23:04:57 +00:00
Sharp-tailed Grouse
1beb6b07d8
Maybe we don't need this line about VMWare tools
We already use a plethora of VMs in this guide; it's probably not necessary to
make a big deal about VMWare tools.

Signed-off-by: Sharp-tailed Grouse <sharptail@riseup.net>
2022-10-17 19:01:49 -04:00
Sharp-tailed Grouse
c095430067
Fix broken link from #212
The commit https://github.com/Anon-Planet/thgtoa/pull/212/files#diff-dc0dbe13416a77d17f112b7668fb77ba60dc51e684d2cc20e8850df204e53846L4801
seems to have broken a small link in #212 ("Get rid of Archive.org, Wikiless, Nitter,
and Invidious cross-references")

Signed-off-by: Sharp-tailed Grouse <sharptail@riseup.net>
2022-10-14 09:22:22 -04:00
Sharp-tailed Grouse
9b2bd9ef49
Use code tags instead of bold text
Signed-off-by: Sharp-tailed Grouse <sharptail@riseup.net>
2022-10-14 08:58:26 -04:00
Sharp-tailed Grouse
493dd2064e
Revisiting and updating two sections
* Your Browser and Device Fingerprints:
* Microarchitectural Side-channel Deanonymization Attacks

Adds previous documentation on side-channel attacks which can be used
to fingerprint users, presented in 2016. This means this type of
microarchitectural deanonymization attack has been performed
possibly as early on as the first day websites have been able to
perform browser fingerprinting.

Fixes #70: ("Revisiting the Browser and Device Fingerprints &
Microarchitectural Side-channel Deanonymization Attacks sections")

We have two sections for FPing and this clearly defines the meaning of both:
- one section is a brief explanation and intro into Fingerprinting and "why"
- the other provides more technical analysis of things that can be leaked

Signed-off-by: Sharp-tailed Grouse <sharptail@riseup.net>
2022-10-12 23:33:11 -04:00
Sharp-tailed Grouse
66f75641fa
Note these factors when using nested virtualization.
You can still be caught out by some identifiers in a VM.

Signed-off-by: Sharp-tailed Grouse <sharptail@riseup.net>
2022-10-12 22:59:48 -04:00
Than Harrison
ef7c7e6694
Fix typo in Leakuidator
Signed-off-by: Than Harrison <infosecvoid@proton.me>
2022-09-29 22:12:19 -04:00
Than Harrison
814b10cd59
Merge branch 'master' into LINDDUN-changes 2022-09-23 20:14:25 +00:00
Than Harrison
578de5e853
Update guide.md 2022-09-23 20:14:14 +00:00
TwoSixtyThreeFiftyFour
29dd52199c
Adding designed approved quick LINDDUN tutorial video link
Adding designed approved quick LINDDUN tutorial video link for getting started. The video has been reviewed positively by LINDDUN designers/researchers on our demand.
2022-09-23 19:42:53 +00:00
TwoSixtyThreeFiftyFour
0022f64b69
Small useless content deletion
Small useless content deletion
2022-09-23 19:27:12 +00:00
TwoSixtyThreeFiftyFour
40b5d7f207
Disclaimer addition
Disclaimer addition
2022-09-19 04:33:13 +00:00
pterocles
754dfa6603
Rework Appendix V1 regarding Brave Browser Settings
Signed-off-by: pterocles <hidden@anonymousplanet.org>
2022-09-12 02:27:36 +00:00
pterocles
67434d74ac
Fix another broken link
Signed-off-by: pterocles <hidden@anonymousplanet.org>
2022-09-03 08:58:44 -04:00
pterocles
ab14fd3d14
Fix another broken URL
Signed-off-by: pterocles <hidden@anonymousplanet.org>
2022-09-03 08:41:50 -04:00
pterocles
8cd97f16c7
Fix broken link in Safing SPN section
Signed-off-by: pterocles <hidden@anonymousplanet.org>
2022-09-02 20:16:59 -04:00
TwoSixtyThreeFiftyFour
e32f894f83
Merge pull request #219 from Anon-Planet/Addx-video-links-for-LINDDUN
Add video links for LINDDUN
2022-08-31 04:14:59 +00:00
Than Harrison
24cdf2506c
Small grammar correction 2022-08-31 02:34:34 +00:00
TwoSixtyThreeFiftyFour
40f16348b0
Small fixes and updates
Small fixes and updates
2022-08-31 02:01:08 +00:00
Than Harrison
068f7935a7
Apply suggestions from code review
Minor formatting and typo fixes.
2022-08-31 01:53:26 +00:00
TwoSixtyThreeFiftyFour
d8e9c2fb38
Adding reco to install Portmaster on Linux
Adding reco to install Portmaster on Linux
2022-08-30 21:53:41 +00:00
pterocles
b9ace550c9
Fix link
Signed-off-by: pterocles <th.thgtoa@disroot.org>
2022-08-29 16:27:01 -04:00
pterocles
ceb1966148
Can't forget the Dr.
Signed-off-by: pterocles <th.thgtoa@disroot.org>
2022-08-29 16:24:57 -04:00
pterocles
a4df4ac38b
Suggested updates to 04544127f8
Signed-off-by: pterocles <th.thgtoa@disroot.org>
2022-08-29 16:20:51 -04:00
TwoSixtyThreeFiftyFour
04544127f8
Update guide.md 2022-08-29 17:14:14 +00:00
Alex Anderson
1b2345b4d5
Merge branch 'master' of github.com:NobodySpecial256/thgtoa 2022-08-29 05:53:26 +00:00
Alex Anderson
ba67e16e89
Fix type in </sup> tag 2022-08-29 05:53:11 +00:00
pterocles
ed83bf4b44
Fix missing tag for Molly in chart
Signed-off-by: pterocles <th.thgtoa@disroot.org>
2022-08-29 01:39:27 -04:00
Alex Anderson
e59fbbde5a
Update guide.md 2022-08-28 17:39:15 +00:00
TwoSixtyThreeFiftyFour
566ef58ddc
Merge branch 'master' into Adding-caution-session-messenger 2022-08-28 17:26:25 +00:00
pterocles
12b99c9ea9
Update Appendix B7: Caution about Session Messenger
1. Avoid usage of multiple tenses or tense-switching at all costs.
2. Avoid using too many words when you can substitute less.
3. At first mention, use lowercase "perfect forward secrecy" followed
by abbr. "PFS".
4. Use common English words, not "defavorable". Try saying "bad" in
most cases. Prefix "de-" usually means "off, from".
2022-08-28 13:03:49 -04:00
Alex Anderson
1c1da8df66
Merge branch 'master' of github.com:NobodySpecial256/thgtoa 2022-08-28 16:26:35 +00:00
Alex Anderson
b9635680d9
Update guide.md 2022-08-28 16:17:18 +00:00
TwoSixtyThreeFiftyFour
6296e18128
Added caution/warning about Session Messenger
Added caution/warning about Session Messenger
2022-08-28 16:06:39 +00:00
TwoSixtyThreeFiftyFour
df73f7ba68
Update to other messaging apps comparisons charts
- Mentioning those that are outdated/unmaintained and that those will be removed in next releases
- Adding https://github.com/bkil/secuchart which is a  maintained project
- Adding disclaimer that we do not necessarily endorse their opinions
- Removed spaces between list items (and we should consider doing that on the whole guide)
2022-08-28 09:57:17 +00:00
TwoSixtyThreeFiftyFour
d73c049221
Separation Molly
Separation Molly
2022-08-28 09:11:33 +00:00