this post was submitted on 11 Oct 2024
342 points (98.3% liked)

Privacy

32096 readers
541 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

TL;DR: I accidentally deleted the old repository with 107 stars, and have moved the project to GitLab because GitHub requires a paid account to recover deleted repositories. I take full responsibility for this, it was an extremely stupid mistake on my part. I deeply apologize for the inconvenience. I understand if this damages the trust in the project.

I appreciate all the support you all have given towards the project, it truly means a lot to me! For those of you who bookmarked the repo, please update it to the new GitLab page which will now be actively maintained.

If you don't know what Open Source Everything is, see my original post. It's my own curated list of open source software.

Update: GitHub was able to restore the repository! Special thanks to Seve from GitHub Support for bending the rules a bit. GitLab will still be the primary place where the repository is hosted.

top 45 comments
sorted by: hot top controversial new old
[–] BearOfaTime@lemm.ee 61 points 1 month ago (1 children)

Hey, your upfront, honest, no-excuses post goes a long way, in my opinion.

Shit happens. We've all screwed things up - letting everyone know immediately what's going on means we won't guess when our shortcut doesn't work, etc.

Also thanks for the effort you put into this. It's really helpful.

[–] Charger8232@lemmy.ml 13 points 1 month ago

Thank you! I tried my best to get things back on track ASAP, but GitHub's support ticket system was in an outage at the time. I'm just happy to get it resolved.

[–] GravitySpoiled@lemmy.ml 38 points 1 month ago* (last edited 1 month ago) (1 children)

Why did you choose gitlab and not codeberg/forgejo for open source everything?

[–] Charger8232@lemmy.ml 33 points 1 month ago* (last edited 1 month ago) (2 children)

I may mirror it to Codeberg in the future. The honest answer is that I was in a panic and needed somewhere to quickly get the project back up in case GitHub never resolved itself. GitLab was a good choice since it's open source and has a lot of other big open source projects on there.

[–] gi1242@lemmy.world 13 points 1 month ago

please mirror to codeberg. (or move completely to codeberg). they are more in line with your mission.

[–] toastal@lemmy.ml 11 points 1 month ago

since it’s open source

Open core with an open community edition. 100% better than fully proprietary & Microsoft.

[–] barsquid@lemmy.world 30 points 1 month ago (1 children)

I'd like to urge you not to use GitLab for your source code due to the ridiculous numbers of severe CVEs. I don't think they have any idea how to write secure code and I don't think they care to learn.

Here is the most recent one I know of. The article mentions it's the fourth in a year. Here is the most egregious one IMO, how are they so bad at coding they would accept unverified inputs to send emails to?

[–] Charger8232@lemmy.ml 7 points 1 month ago

I will consider making changes once I get around to mirroring to other platforms. Thank you for the information, and providing links.

[–] somerandomname@lemmy.ml 14 points 1 month ago (1 children)

Nice list! Btw draw.io is not optimized for mind maping. For mind maping I use Freeplane and realy like it.

[–] Charger8232@lemmy.ml 3 points 1 month ago (1 children)

Good to know! What would you like me to call the section for draw.io, since it is still great software?

[–] somerandomname@lemmy.ml 4 points 1 month ago (1 children)

Not sure, maybe "diagramming". Btw there is a good alternative to draw.io for self-hosting called Excalidraw. Very easy to set up with docker.

[–] zzx@lemmy.world 2 points 1 month ago

Diagramming would be a good fit imo

[–] OfficerBribe@lemm.ee 13 points 1 month ago* (last edited 1 month ago) (2 children)

Any reason why Firefox is not under Browser section?

I would personally also add original KeePass, Notepad++ and ShareX (Maybe also Greenshot). These are Windows only, but great pieces of software.

[–] Charger8232@lemmy.ml 3 points 1 month ago

Firefox is less private than some forks (Librewolf, etc.) and less secure than Chromium-based browsers due to a lack of Per-Site Process Isolation. Mullvad Browser and the Tor Browser are the only two Firefox-based browsers I can recommend due to their high privacy standards.

I'm still on the fence about adding KeePass, since I don't see anything it provides over KeePassXC. Notepad++ I will definitely look into, as well as ShareX and Greenshot. Thanks so much for the suggestions!

[–] agegamon@beehaw.org 2 points 1 month ago* (last edited 1 month ago)

Greenshot is so handy. I've successfully converted several of my coworkers to using it. Some of our corpo contract IT folks are secretly pissed about it because unlike us they aren't allowed to use open source software (LOL) so they have to put up with windows snipping tool

[–] dont@lemmy.world 9 points 1 month ago

Finally, I can give it a star, being only on gitlab and not on github

[–] XpeeN@sopuli.xyz 8 points 1 month ago* (last edited 1 month ago) (1 children)

Nice list. I'd at least add Librewolf, Mull, portmaster, RethinkDNS, protonVPN and Bitmask\riseupvpn to the list. They're must have imo.

[–] Charger8232@lemmy.ml -1 points 1 month ago (2 children)

Gecko based browsers are less secure to Chromium based browsers due to a lack of Per-Site Process Isolation. Mullvad Browser and the Tor Browser are exceptions due to their high privacy standards. Brave was recently added, since the list previously had no Chromium-based browsers.

ProtonVPN will not be added due to their slow action taken towards fixing multicast packet leaks. Once they fix this, I will consider adding them back.

I will eventually add a section for firewalls and public recursive name servers, but there are complications finding those at the moment. Thank you for the suggestions!

[–] XpeeN@sopuli.xyz 1 points 1 month ago

Yeah first point is true for mobile, not for desktop tho. You can add Mulch tho, it's chromium based. Thanks for 2nd point, didn't know about it.

[–] hangonasecond@lemmy.world 1 points 1 month ago

I thought Firefox desktop did have site isolation, and I think it might be in mobile too or at least the nightly builds.

[–] agegamon@beehaw.org 8 points 1 month ago (1 children)

Look on the bright side: I bet a fair number of folks like me didn't know about this and now it's on my front burner to-do list to check it out! Thanks for the good work.

[–] Charger8232@lemmy.ml 3 points 1 month ago

Thank you! I'm glad this inadvertently raised some awareness

[–] ram@bookwormstory.social 8 points 1 month ago (1 children)
[–] Charger8232@lemmy.ml 19 points 1 month ago* (last edited 1 month ago)

GitHub may be able to restore it, we'll see if support is willing to bend the rules a bit...

Edit: They were able to. The project is still moved to GitLab permanently, though.

[–] nullpotential@lemmy.dbzer0.com 8 points 1 month ago (1 children)
[–] menturi@lemmy.ml 1 points 1 month ago

What's wrong with gitlab?

[–] CosmicTurtle0@lemmy.dbzer0.com 6 points 1 month ago (1 children)

I thought audacity was purchased by some Venture Capital bros and was being enshittified.

Or am I remembering something else? Didn't they put some sort of tracker or something in their code, causing a fork?

[–] Charger8232@lemmy.ml 12 points 1 month ago* (last edited 1 month ago) (1 children)

The fork you are thinking of is Tenacity. They explain in their history why it was made. Yes, Audacity was bought by Muse Group. There were talks of adding trackers, but nothing ever actually got added. They changed the privacy policy at one point, but reverted it after backlash. The reason I am keeping Audacity there is because I believe it is better to have quick security/feature updates from upstream (Audacity) so long as the upstream project does not have any current code issues that warrant a fork (Tenacity). If Audacity ever does add any telemetry, etc. I will absolutely change it to Tenacity.

[–] toastal@lemmy.ml 3 points 1 month ago

Weren’t the trackers opt-in? This doesn’t seem like a bad thing if you don’t mind giving up those user metrics for them to build something better. It is the opt-out stuff with no transparency over the kind of data collected to be worried about.

He tried to break free from the corpo world and they grabbed onto him.

[–] some_guy@lemmy.sdf.org 3 points 1 month ago (1 children)

Agreed. You fucked up and now hopefully you learned from it. The reason any of us have (typical local) backups is because we lost data, whether a little or a lot. This is no different.

[–] Charger8232@lemmy.ml 3 points 1 month ago (1 children)

I did keep local backups of the project, which is how I was able to get it up and running on GitLab quickly.

[–] some_guy@lemmy.sdf.org 1 points 1 month ago (1 children)

I meant general computer backups, I just had trouble phrasing it correctly. As in, you and I probably didn't backup our computers properly until we lost something. That's how most of us get into backups. Similar here.

[–] Charger8232@lemmy.ml 2 points 1 month ago

Ah. I was always good about backups, but I never tested them. I used Timeshift for backups, and when I needed to recover a backup whoops! No user data. I fixed it to backup user data, and whoops! Still no user data.

Another time I used a proper backup client, but when I went to restore it it overwrote itself and so it failed and I lost the backup. Always test your backups.

[–] chottomatte@lemdro.id 2 points 1 month ago

Good luck...

[–] andylicious1337@lemmy.world 2 points 1 month ago (1 children)

it is still a great list so thanks for getting it back up 👍

but i have a few questions: is there a reason (or privacy concern) why Linux Mint isn't one of the recommended distros? and am I wrong or isn't bitward a good privacy friendly password-manager?

[–] Charger8232@lemmy.ml 2 points 1 month ago

The recommended distro section will get overhauled, as it doesn't quite meet my standards. I personally don't like Linux Mint because Cinnamon is less than what I would like it to be, but it is getting a makeover.

Bitwarden was heavily considered as a password manager, and it is a great option, but they make you pay to use certain features (hardware security keys, etc.) that KeePassXC and others offer for free. Hence, KeePassXC is a better option and Bitwarden didn't make the cut.

Good questions! Thanks for taking a look!

[–] cordlesslamp@lemmy.today 2 points 1 month ago (1 children)

Can we donate for you to get a paid account? Or is it just simply not something you want to do?

[–] Charger8232@lemmy.ml 4 points 1 month ago (1 children)

I do not accept donations, although I appreciate it! I would rather not support Microsoft/GitHub if they are going to make you pay to use features that costs them nothing.

[–] XTL@sopuli.xyz 3 points 1 month ago* (last edited 1 month ago) (1 children)

https://sfconservancy.org/GiveUpGitHub/

Also, it's Microsoft. A more evil company has never existed.

[–] Gumus@lemmy.world 1 points 1 month ago

I bet I could come up with some contenders... I won't though, because I hate that M$ controls the major open-source repository.

[–] yamanii@lemmy.world 2 points 1 month ago (2 children)

I remember some panic after Audacity was sold, so it's good again?

[–] MrSoup@lemmy.zip 2 points 1 month ago

No, use Tenacity instead.

[–] Charger8232@lemmy.ml 1 points 1 month ago

I'm going to mostly copy paste a similar reply I made in this thread: A fork of Audacity was made called Tenacity. They explain in their history why it was made. Yes, Audacity was bought by Muse Group. There were talks of adding trackers, but nothing ever actually got added. They changed the privacy policy at one point, but reverted it after backlash. The reason I am keeping Audacity there is because I believe it is better to have quick security/feature updates from upstream (Audacity) so long as the upstream project does not have any current code issues that warrant a fork (Tenacity). If Audacity ever does add any telemetry, etc. I will absolutely change it to Tenacity.

I will be creating an FAQ section that answers this question in more depth.

[–] Onihikage@beehaw.org 1 points 1 month ago

The dreaded onosecond happens to the best of us.