No-nonsense tools for thriving in the digital space

I'm convinced that the human existence in the cyberspace would be significantly better off if everyone were using those. All the tools in this section have something in common – they are open-source. This is an important aspect of trust since anyone can independently inspect the source code (even you) to evaluate its functions.

Bitwarden

You need a password manager. Adopt one early if you still aren't using one already. Bitwarden is a fantastic choice. I highly recommend to explore and get its premium features although you can use it for free. Proton Pass seems to be a solid choice as well. If you wish to go fully offline without relying on any providers, then go for KeePassX.

How to do it right:
• Open an account with Bitwarden or Proton. If you go for KeePassX no account is needed, but you will have to manage its password database yourself
• Create a Master Password which will be easy for you to remember, but difficult for machines to guess. It should be 16 characters or longer. Passphrases aka sentences are ideal for this purpose. If feasible, add another authentication factor. For example, mobile apps will let you use biometrics, or you can get a physical key like YubiKey
• Add all the accounts you know of into the password manager. There are only two passwords you should really remember from now on – the first one is to your password manager and the second one to your primary e-mail account. Also, it is a very good idea to change all the weak passwords in the process. Each of your accounts should have its unique password. Thus if one of the accounts gets hacked, all other services will remain safe
• Your master password is sacred. If you ever forget it, you will not be able to get access to the password manager again. No support will be able to help you either. So, if you do not trust your mind, write your passphrase down on a physical note and store it somewhere where you can find it if necessary. For example, it can be as simple as a diary entry or a book note without any context mentioning what the code in there is actually meant for

Protonmail

Your e-mail provider matters. Proton was established in Switzerland by a team of scientists at CERN (the European Organization for Nuclear Research) with a vision of Internet where privacy is the default. It is open-source, ad free, privacy oriented and very secure. Since then, Proton has grown up to provide several more services developed in the same philosophy. E-mail is however still the most central one.

How to do it right:
• Create a free account on Proton and choose a strong passphrase
• Begin using Protonmail as your primary e-mail. Ideally, get a paid plan for extra features. It is well worth it
• If you got a personal domain, connect Protonmail with your domain name by adding it in the settings. This will enable you to use your own e-mail domain hosted on Proton

Signal

State-of-the-art end-to-end encrypted communication messenger. If you should install only one app on your mobile phone, this is the one. Conversations are stored exclusively on your and recipient's device – not on any servers on the internet. Moreover, it is free to use without any ads. No other messenger app is comparable to Signal's privacy and security features. If you can, consider supporting the Signal developers with a donation. They definitely deserve it.

How to do it right:
• Simply install the Signal app on your phone and go through the initial setup
• Start using it with your contacts who are Signal users as a default communication platform for messaging, videocalls and calls.
• Encourage your friends and enemies to use Signal!

___________________________

Taking it to the next level

These are optional, however if you are concerned about security and privacy in the cyberspace, then it is essential to know the basic use of the following technologies:

DNS

Nearly everything you do on the Internet begins with DNS. Each time you visit a website, there is a request asking some DNS server for its IP address. Most people never change DNS settings on their devices, so why bother? Three reasons: speed/performance, security and privacy. Whoever controls the DNS can see in the logs which sites you're looking for or visiting, can blocklist certain content or in extreme scenarios do nasty tricks to your traffic. That is why DNS monitoring is loved by governments to gather intel on the internet use and by internet providers to use the data for marketing purposes. If this is not convincing enough, choosing the right DNS servers will often speed up and enhance the performance of your internet connection.

Your device will by default check with the DNS servers of your ISP (Internet Service Provider). However, DNS servers can easily be changed to any of your preference. It is crucial to choose the right ones. Just set it up once (each time when you get a new device like a phone or a laptop) and forget about it. You will typically find DNS options under the networking settings of your OS.

Here is a couple of DNS servers with focus on security & privacy:
• Quad9 IPv4: 9.9.9.9 IPv6: 2620:fe::fe
• NextDNS IPv4: 45.90.28.0 IPv6: 2a07:a8c0::

If you primarily care about the speed, the fastest DNS in the world is currently Cloudflare:
• Cloudflare IPv4: 1.1.1.1 IPv6: 2606:4700:4700::1111

VPN & Tor

If more people were using VPN's, the digital world would be a significantly safer space to navigate. Broader user base would ultimately lead to the normalization of VPN usage and higher acceptance. It would also help those who are dependent on using these services to get hidden within a larger crowd.

VPN which stands for 'virtual private network' sends your internet traffic through an encrypted tunnel to a remote VPN server. Typically, this is a server in another country which will mask your real IP address. VPN session keeps your browsing data protected even over untrusted internet connections – like public or airport WiFi, foreign mobile networks, or any other internet hotspots. Another, different solution for private browsing is to connect to the Internet via Tor. In that case will all traffic get routed through a worldwide, volunteer network of relays that conceal your location and activity.

The downside is that VPNs, and especially Tor, are causing significant friction in the overall browsing experience. As of now, too many digital content providers directly dislike when someone tries to access their services privately. They will spam you with captchas, extra verification steps or even block you from visiting their sites. This is often a form of penalty hidden behind terms as 'fighting bots' or 'content rights' to force you to stop using the privacy services which prevents them to gather (and sell) your user data or to gain profits from ad revenues. If you're using VPN, you kind of stand out from the mainstream due to the relatively low adoption, so they can still afford to do that.

When to use VPN or Tor:
• Use VPN when your main concern is security of the internet connection, whenever you need to browse the Internet privately, or in order to access online services otherwise unavailable to you due to georestrictions. VPN's will effectively bypass third party monitoring, censorship and geographical borders. It is crucial to choose a VPN provider that can be trusted, like ProtonVPN, IVPN or Mullvad
• If your life depends on it, choose Tor instead of VPN. Tor is primarily used to attain strict anonymity or in order to access the dark web. It is commonly used by personell, journalists and activists operating under repressive regimes, in war zones and in other life-death scenarios. Tor is always free to use
• Keep in mind that VPN and Tor are outright illegal in several countries governed by regimes which fight against human freedoms and privacy. Take additional precautions if you find yourself in one of those countries