I recently realized that some apps were able to “link” my identity to Facebook. I checked my off facebook activity and could see some apps that I’ve never given my email.
Investigating further, I believe it boils down to a setting that’s set under
Settings > Privacy > Advertising on my iPhone. There’s a way to either reset the advertising identifier, or
Limit Ad Tracking, which I believe prevents this completely (perhaps generating a unique identifier each time?)
“Solving” this was easy obviously by limiting ad tracking, but I’m wondering: How come it’s not limited by default? Shouldn’t GDPR protect me from this kind of default? Shouldn’t Apple get my explicit consent for something like this? I don’t recall having given such consent…
Do E-Mail proxy services exists to improve privacy and security?
Privacy in the sense that one wouldn’t need to give a website his/her username (possibly even in the email@example.com form) and in a security sense that the used e-mail couldn’t be used to log into the e-mail service (thereby making it useless for a leaked password, because the e-mail address couldn’t be used to login).
firstname.lastname@example.org could be someone’s e-mail. If there were a Google Privacy/Proxy service then one could generate as many random e-mails as possible and if one would be sent spam to, or leaked, it could be disabled:
could both redirect mail to email@example.com.
One could be blocked/disabled/removed if wanted without abandoning the real account (e.g. because
firstname.lastname@example.org has been compromised or spam is being sent to it).
Would it really improve security and privacy? Or am I missing something?
And does such a service exist? (as a bonus, replying from such proxy e-mails would be even better, converting the real account
from field to the proxy mail address)
If a person wins a massive lottery prize, in the order of 200 million € or £ or $ , and this prize is versed to the person’s bank account, how can they avoid that their bank balance is gossipped upon by bank employees to the extent of it known by people outside the bank, in case the person DOES want to keep their own privacy? How can they possibly avoid that, assuming that bank employees will definitely not respect privacy laws?
The Mozilla Foundation has a “privacy browser” called Firefox Focus that is available for example iPhone (here). This browser has an always-on ad blocking function.
I was checking the third-party licenses used by this iPhone version (image shown below) and noticed that it includes the use of GCDWebServer.
The GitHub page for GCDWebServer says that:
GCDWebServer is a modern and lightweight GCD based HTTP 1.1 server designed to be embedded in iOS, macOS & tvOS apps.
There is a support information for this browser here but the documentation does not mention the use of an internal web server.
This issue has relevance in evaluating the risks from possible open ports in connection with determining whether to allow this browser in corporate bring-your-own-device configuration.
Question: What use would a mobile device web browser have for running an embedded web server?
Supposing my VPN provider allows me to route all kinds of internet traffic through its servers, can I access to my cloud VPS using ssh?
I have been asked to review a form. At the bottom of the form are these two fields
My question: can I not assume the ‘Please tick….’ checkbox acts as a kind of Captcha and therefore it follows that the Captcha checkbox is redundant, ie can I remove the Captcha?
In a same fashion, is there a risk (for one’s privacy) that if someone shares a single photo somewhere on the web, then we can find all photos shared by the same person on internet?
Indeed, photos metadata (EXIF) are sometimes present on photos that people upload to their website (people sometimes don’t remove them), containing:
- name of the device (ok, many people in the world have the same device)
- maybe firmware version (then the number of people having the exact same version is lower) or OS version?
- sometimes geolocation
- other unique IDs?
Then won’t using a service like images.google.com (or a similar tool which offer metadata advanced search) allow anyone to find all photos uploaded by the same user?
More precisely: given a set of metadata coming from a photo, can people easily search all photos on internet made by the same device (thus creating a privacy risk)? Or do major image search engines prevent this to happen (by rejecting metadata search)?
Example for a photo:
---- File ---- FileName : ... Directory : ... FileSize : ... FileModifyDate : ... FilePermissions : ... FileType : JPEG MIMEType : image/jpeg ExifByteOrder : Little-endian (Intel, II) ImageWidth : ... ImageHeight : ... EncodingProcess : Baseline DCT, Huffman coding BitsPerSample : 8 ColorComponents : 3 YCbCrSubSampling : YCbCr4:2:0 (2 2) ---- EXIF ---- ImageWidth : ... ImageHeight : ... Make : ... Model : ... Orientation : Rotate 180 XResolution : 72 YResolution : 72 ResolutionUnit : inches Software : Ai0j1i567fs ModifyDate : ... YCbCrPositioning : Centered ExposureTime : ... FNumber : ... ExposureProgram : Program AE ISO : ... ExifVersion : 0220 DateTimeOriginal : ... CreateDate : ... ComponentsConfiguration : Y, Cb, Cr, - ShutterSpeedValue : 1/132 ApertureValue : ... BrightnessValue : ... ExposureCompensation : 0 MaxApertureValue : ... MeteringMode : Center-weighted average LightSource : Unknown Flash : Fired FocalLength : ... UserComment : ... FlashpixVersion : 0100 ColorSpace : sRGB ExifImageWidth : ... ExifImageHeight : ... InteropIndex : R98 - DCF basic file (sRGB) InteropVersion : 0100 SensingMethod : One-chip color area SceneType : Directly photographed ExposureMode : Auto WhiteBalance : Auto FocalLengthIn35mmFormat : 31 mm SceneCaptureType : Standard ImageUniqueID : H07RA02XP GPSVersionID : 188.8.131.52 ImageWidth : 512 ImageHeight : 288 Compression : JPEG (old-style) Orientation : Rotate 180 XResolution : 72 YResolution : 72 ResolutionUnit : inches ThumbnailOffset : ... ThumbnailLength : ... ---- MakerNotes ---- MakerNoteVersion : 0100
can anyone tell me what are the best free privacy email accounts? Thanks, Sasha