Security and Privacy Resources
Last updated 7 September 2021
Security and privacy are essential for MAPs as we are constant targets of hostility. Utilise this collection of important resources related to security and privacy in order to keep yourself and others safe on the internet. MAP Blogs is not affiliated with or endorsed by any of these resources.
If you have and suggestions for this article, please discuss them in the OMC staff channel or contact us!
Guides
Security/privacy for MAPs – A blog article by Miami Autumn outlining basic security and privacy practices for MAPs.
TechLore YouTube Guides – A few detailed guides from TechLore tailored to suit individuals' privacy and security needs without compromising usability more than necessary.
- Become Anonymous: The Ultimate Guide To Privacy, Security, & Anonymity
- The Complete Android Privacy & Security Guide: Your Best Protection!
- The Complete iOS Privacy & Security Guide: Your Best Protection!
- The COMPLETE Linux Hardening, Privacy & Security Guide!
- The Complete MacOS Privacy & Security Guide: BYE Apple!
- The Complete Windows Privacy & Security Guide: YES, It's Possible!
Yet Another Firefox Hardening Guide – A blog article by Chris Xiao that gives detailed guidance on how to customise the Firefox browser to be more secure and private.
Other Resources
PrivacyTools (onion) – A website with services, tools, and knowledge to protect your privacy against global mass surveillance. PrivacyTools has specific information related to web browsers, operating systems, and much more.
r/Privacy – A Subreddit dedicated to privacy and freedom in the information age. r/Privacy contains useful posts about important topics; Reddit users may post their own new questions and comments for discussion.
TechLore – A site built to prove privacy and security are not just achievable but simple and accessible. TechLore manages several projects, communities, and content to allow anyone to be safe in the digital world. TechLore also has a YouTube Channel with information about privacy and security.
Select Software
★ – Important
Browsers
★ Tor Browser (onion) – A free, open-source web browser based on Firefox that routes traffic through the Tor Network, which provides security and anonymity. Use the 'Safest' security setting for activities that require more security. For activities that require best security, use TailsOS or Whonix in QubesOS.
DuckDuckGo Browser – A reasonably private and secure browser for iOS, MacOS, and Android.
Firefox – A free, open-source web browser that can be customised to be secure and private. See Chris Xiao's Yet Another Firefox Hardening Guide for customisation instructions.
Onion Browser – A WebKit-based Tor browser for iOS. Onion Browser is the only iOS Tor browser endorsed by the Tor Project. However, there are some limitations to this browser. See Traffic that leaks outside of Tor due to iOS limitations
Safari – Reasonably secure and private browser for MacOS and iOS. However, Safari is closed-source and has limited options for customisation. With iCloud+ (currently available in MacOS Monterey and iOS 15), Safari also offers a two-hop onion routing service to further preserve privacy and anonymity online.
Devices & Operating Systems
★ TailsOS – A free, open-source, Debian-based live operating system that routes all network traffic through the Tor Network, which provides security and anonymity. For the best security, use the 'Safest' security setting in Tor Browser and disable JavaScript natively by going to about:config and toggling javascript.enabled so that it is set to false.
QubesOS – A free, open-source operating system based on Xen, the X Window System, and Linux. Qubes is designed to preserve the security and privacy of its users.
Whonix – A free, open-source Linux distribution that routes all network traffic through Tor. Whonix runs inside of other operating systems and is best used in conjunction with QubesOS, which it comes preinstalled on. For the best security, use the 'Safest' security setting in Tor Browser and disable JavaScript natively by going to about:config and toggling javascript.enabled so that it is set to false.
Messaging and Email
★ Session – An open-source, end-to-end encrypted (E2EE) messaging app that uses an onion-routing network to ensure that people using the app are anonymous. Session does not require a phone number or email address to register.
Element – An open-source, decentralised messaging software with an option for E2EE. Element does not require a phone number or email address to register.
ProtonMail (onion) – A partially open-source, private and secure email host based in Switzerland. Email is an inherently insecure form of communication. Communication that needs to remain private should use a messaging application, not email.
Signal – An open-source, E2EE texting app. Signal requires a real phone number, and this phone number is shared with others.
Tutanota – A partially open-source, private and secure email host based in Germany. Email is an inherently insecure form of communication. Communication that needs to remain private should use a messaging application, not email.
Virtual Private Networks (VPNs)
Check out the Techlore VPN Chart for detailed information about these and other options.
IVPN – A premium, open-source VPN hosted in Gibraltar (a UK territory) that offers a multi-hop VPN as well as other features that enhance privacy and security.
Mullvad – A premium, open-source VPN hosted in Sweden. Mullvad offers multi-hop VPN and other features in order to enhance users' privacy and security.
ProtonVPN – A free, open-source VPN hosted in Switzerland that offers premium (paid) features such as secure core (multi-hop VPN) and Tor over VPN for added privacy and security.
Other Software
- ★ VeraCrypt – Free, open-source encryption available for Linux, MacOS, and Windows and can be used to encrypt system partitions on Windows as well as to create standard encrypted volumes and hidden volumes.
CC0 Public Domain Work (only applies to pages under #Resources)