For the extreme privacy enthusiasts, how do you use your device?

N1b

Very nice, and it's not crazy, just dedicated. I too think it's kinda fun to dig deep into privacy and see how far one can go without affecting personal and professional life (biggest social challenge so far was to be "the one guy" not using WhatsApp at work).

Regarding apps, the most important thing is to not use many apps at all, especially if you can do things in Vanadium or just not do them, period. For everything that needs to be done with apps and services, I look for:

open source (obviously up to date, good track record and adoption)
compartmentalization
permissions as limited as possible
offline when possible
aliasing and pseudonyms
anonymous payment

What I'd add to your ideas (without applying all of them myself):

Proton might be too centralized, I like to have my eggs in more baskets (mullvad, tuta and bitwarden in my case)
one alias mail per service, always with a random element to avoid it being guessed
making use of the many user profiles in GOS
Strong password manager with salt (added characters only you know and are not saved in Bitwarden) plus 2FA via Aegis or hardware keys
payment via XMR, in cash/vourchers or at least with a unique credit card (in Europe Revolut is my best bet, privacy.com and mysudo seem to be better where available).
Try using fake names or just initials when asked for the name on the credit card (works most of the time)
Use GrapheneOS when possible (Pixel phone or tablet instead of Linux Laptop)
no Bluetooth, SIM cards, WiFi calling etc., airplane mode always on
using NewPipe/Libretube, Innertunes, Gadgetbride etc. to work around data collection but still enjoy some art and gadgets.
Extra phone plus silent.link for times when you really need a true phone number (signal account, banking, some other 2fa stuff)
Download signal beta and make use of usernames and hiding your phone number
checking kycnot.me, privacyguides.org and other online resources to discover better apps and services
for mobile internet, use a GL.iNet Mudi router with blue-merle to randomize the IMEI (illegal in many countries though)

That's my ideas off the top of my head. What's always worth mentioning is to have a good threat model and making sure to not get overwhelmed, stressed or lonely over all the things we learn about security, privacy and anonymity. Compromise where necessary and beneficial for a healthy and happy life and pick your battles effectively. Everyone will have different limits and needs so I'd like to see some more ideas from other forum and GOS users here.

43t34fg4

N1b I actually do a lot of these that you listed! Interesting info about the GL router & the KYCNot site.

[deleted] Yep, have actually been buying those books for years now!

[deleted]

N1b

I don't know if Silent.link is trustworthy, there was a reddit post about it where someone noticed the red dot of their camera turning on when it was installed.

[deleted]

43t34fg4

If you want to go extreme I suggest you buy an eBook from Michael Bazzell. He has a mobile devices book that is almost exclusively how to set up GrapheneOS in the most extreme way.

DeletedUser370

43t34fg4 Reminds me of Michael Bazzel's (of Inteltechniques) strategies.

43t34fg4

DeletedUser370 Exactly ;)

N1b

43t34fg4 you might enjoy some of the other lists and websites I found over time. :)

43t34fg4

N1b Thanks for the lists! Some of those links seem outdated, though, unfortunately. One I clicked was last updated in 2022 and another I clicked was still recommending stuff that either isn't recommended anymore or not even around anymore.

N1b

43t34fg4 yes, even back when I posted they were not all up to date, which is why we always need to double check everything. Bromite for example is not recommended anymore.

hemlockiv

43t34fg4 I personally only use Signal, Sudo,

What is Sudo in this context?

N1b

hemlockiv they probably refer to mysudo

43t34fg4

hemlockiv MySudo. But even then, I am careful with this one since it is still closed-source. I pay my subscription to it on a separate device that isn't associated to me. Turn it on once a year to renew it.

applesbana

43t34fg4

Have you looked into Jmp.chat and their cheogram app? Completely kyc free and open source.

43t34fg4

applesbana I have.

applesbana

[deleted]

Happen to have a link handy? would like to learn more about that

N1b

[deleted] I'm not sure about this. Yes you shouldn't trust silent.link (or any app and services, especially regarding mobile networks which are inherently designed for tracking). But if I decided that I need a SIM/eSIM but want to retain as much privacy as I can get, silent.link seems like a solid choice. They allow for XMR payments and don't force you to create an account or give away any personal data (except the hardware identifiers that every eSIM requires to function). They deliver what they promise which is a functional, no KYC eSIM in roaming mode.

Whatever a reddit post is saying about a red light doesn't seem well-founded. There's no silent.link app that could request camera access and run in the background. Only when you register the eSIM with the system app you are asked to unlock the camera to scan the qr code, and it's a green dot indicator that shows whenever the camera is accessed (not a red one).

So my best bet is the reddit post was just FUD. But you're right to not blindly trust anyone on the internet, including this post. We always need to educate ourselves, cross check our information and make sure to have a threat model to base our decisions upon. I personally don't trust silent.link, but I still use them because I trust any other eSIM vendor even less.

[deleted]

applesbana

https://www.reddit.com/r/PrivacyGuides/comments/vzpkl2/is_silentlink_anonymous_esim_trustworthy/

Look for user Sector7313 at the bottom.

[deleted]

N1b

I was considering them as well, but went for Cheogram. Maybe it is FUD, it is hard to tell. Cheogram is very similar to silent.link, except in that cheogram has an app and you first can pay with BTC, but with Cake wallet's swapping just swap the BTC to XMR and send to another Cake wallet you have created. Then swap the XMR to BTC to make the payment. After you have an account active you are able to pay with XMR.

applesbana

[deleted]

Cheogram doesn’t provide cell phone service afaik, silent link does. Those are two different things…

[deleted]

applesbana

Cheogram provides unlimited text, 2 hours of talk a month and you can choose to buy an physical or esim with data that never expires.

applesbana

[deleted]

Jmp.chat allows you to buy a SIM card, not Cheogram (the app that connects jabber/voip). I think that may have been the confusion.