The Tor network empowers people to access the uncensored internet from many places around the world. It provides a way for all of humanity to access information in a free and open manner. It includes many tools and options to circumvent censorship and even active measures taken against it. Tor bridges or the Snowflake browser add-on, for example, help people in censored countries connect to Tor even when the known entry node IPs are blocked by the state.

How Tor gives you freedom of speech

But that’s only half of it. The freedom to acquire information is arguably one of the most fundamental qualities of a good life. Freedom of expression is also essential for a free and fulfilling life. Tor also enables people who have to fear the consequences of an authoritarian state to publish their opinions as anonymously as possible and therefore protect those freedoms.

How you can use Tor

For those of you not very tech-savvy, here’s a little summary of how Tor works and how you can access the “darknet”.

If you want to start browsing the Tor network and the “normal” World Wide Web, you need a special browser. This browser is called the Tor Browser and you can download it here. With this browser installed, you can use it like any other browser.

You might notice that it is a bit slow, but this is because of how the Tor network works. Basically, your whole traffic is encrypted multiple times like an onion. That’s also where the name Tor comes from — The Onion Router. This traffic is then sent over multiple computers, so your initial location can only be traced back with difficulty and under very specific conditions. This enables the end user to stay private.

There is also a new type of top-level domain available if you are using the Tor browser. (A top-level domain (TLD) is something like .com, .org, .net, .de, .au, .nz, …) This TLD is .onion and can only be accessed over the Tor network. You can get a domain like that for free and they look kind of weird. Here is mine, for example: lnadevwj2vzomixiunv7i4lahwpoxh6zw56cxbce3uui5ijmwt4czpyd.onion. That is because there need to be many different ones if you want to give them out for free.

These .onion domains allow the creator of the website to hide their IP address and therefore stay (sort of) “anonymous” — similar to the user, but the other way around. This is, like I said before, needed if you want to express yourself from within a repressive country. But even today it is needed for activists, journalists, whistleblowers and many more groups of people needed for a well-functioning and free democracy.

Why does that concern me?

Our world gets more autocratic and dangerous day by day. Looking at you, USA… But even here in Europe, things look bad. Far-right-wing parties with high vote counts and corrupt politicians, for a start. More worrying is that even the more democratic parties are applying more and more autocratic tools like mass surveillance and strengthening the police… Still, the situation in America is way worse — not even speaking of all the other parts of the world like China or Russia, which are the authoritarian powerhouses of this world.

With all this repression, there is a big need in the world for tools like Tor and they need to be supported as much as possible. I wanted to check out how difficult it is to host a website — in my case, this one — on Tor, or as the mainstream calls it, “the darknet”. As it turns out, it is extremely easy, as you’ll see in one of my upcoming blog posts about how my setup works. But for now, let’s just say you can skip a couple of steps compared to a traditional website. You don’t need to buy a domain — you just get one for free. You also don’t need to worry about any firewalls or anything similar. Tor goes straight through it. Remember, Tor was designed to thrive in a censored environment.

With the knowledge to host a website over the Tor network and the information on how easy it is broadly available, we are better prepared for a reality that isn’t as fine as our current situation (in which many people currently live and suffer under).

So for me, it was an experiment to see how this technology works and to gain the knowledge — and hope I never need it. My website is the same here and on the darknet, so I have no anonymity boost because of it. But after all, it’s also just very cool and interesting to me. Censorship-prevention technologies have fascinated me since like forever.

How you can learn more about this topic

There are a couple of good sources about the threat of authoritarianism, Tor and how it can help. The most obvious source is the website of Tor itself. There you can find a lot of information about how Tor works and how to use it. Also consider going through the blog posts on their page to see news and that sort of thing.

The Electronic Frontier Foundation (EFF) has a section about free speech and a bit about Tor.

There are many other resources out there — explore, read and stay curious. The more people understand and support tools like these, the more resilient we become.

Nginx Proxy Manager

Using the default charts in TrueNAS Scale, your application can only be exposed on a high port. Accessing your apps via such a weird port and without a proper domain isn’t cutting it. Is it? Therefore you can run a reverse proxy that manages TLS encryption and directs traffic for each subdomain to its respective app, without needing a special port in the URL.

Until now, I had always used a Traefik proxy when working with Kubernetes, but I found this cool project that seemed to fit perfectly. It’s called Nginx Proxy Manager, or NPM for short. With NPM, you can set up a reverse proxy and also manage your TLS certificates using Let’s Encrypt.

Installation

First of all, we can’t install this app the way we would normally install an app. It is in the default app catalog, but this version can only be hosted on port 9000. Instead, we’ll use the Docker image to deploy it. This won’t make any difference, but we can use our own IP address for it, which also means we can use all ports.

To start, go to the app catalog and click Custom APP in the top right corner. There, you can configure everything. I’ll provide the required settings below.

After installing the app, you can access it via its IP address on port 81. The default username is admin@example.comand the password is changeme. Change them immediately!

Setting Up TLS

Once everything is set up and you’ve changed your password, you’ll see something like this. First of all, I recommend setting up your TLS certificate if you have a domain. If you don’t have a domain, you can still upload a custom certificate.

Click on the SSL Certificates tab to see a list of all the certificates you’ve set up. If you click the button in the top right, you can create a new certificate. Here, you can choose between the Let’s Encrypt certificate authority or upload a custom certificate if you’re using a local domain. But if you can get a domain, I recommend doing so. I will proceed with the setup instructions for Let’s Encrypt.

If your server is reachable from the public internet, you just need to enter your domain name and agree to the Terms of Service. This will spin up a local webpage to verify that you actually own the domain you enter.

You can also set up a TLS certificate for all subdomains by entering *.example.com.

If your server is not accessible from the public or if you want to use another method, you can choose the DNS challenge. NPM has a couple of DNS providers which you can choose from. Take a look at the list and search for your DNS provider.

You just have to enter the API token or log in another way specific to your provider. NPM will then modify the DNS records to prove that you own the domain you have provided.

If you complete any of these methods successfully, you’ll get your SSL certificate.

Setting Up Your Apps

Now we want to configure the Nginx Proxy Manager to relay traffic from specific domains to a specific TrueNAS Scale app. To do this, go to Dashboard => Proxy Hosts.

Here, you’ll see an overview of all the hosts / apps you’ve configured. On the top right, you can add a new host.

In this window, you can finally configure access to your app. You need to enter the domain where you want your app to be available, choose the scheme (http/https) your app runs on (probably http)and enter the port your application uses.

The hostname of your app is its internal DNS entry in the Kubernetes cluster. It usually follows this pattern: <app-name>.ix-<app-name>.svc.cluster.local. So, for Jellyfin, it would be: jellyfin.ix-jellyfin.svc.cluster.local.

You can find the correct port in the app’s configuration or use the default port.

These are the values for your app running in TrueNAS Scale, not the values for accessing the app publicly!

I also recommend enabling Websocket Support and Block Common Exploits.

At this point, your app will be accessible via your domain, but one final step is needed to allow requests over HTTPS. You just have to go to the SSL tab and select the certificate we set up earlier.

After selecting your certificate, I recommend enabling all the available options (Force SSL, HTTP/2 Support, HSTS Enabled, HSTS Subdomains).

Once you click save, the host is set upand your app should be accessible via your domain and the HTTPS protocol.

If you want to point one domain to your Nginx Proxy Manager UI, you can just point it to http://localhost:81.

Footnotes

Hardware

(Looks a bit messy, I know 😅 But I somehow like it 😜)

As you can see, I am using an old PC as my server. This has the advantage that I only needed to buy the hard drives to support my storage needs, but the downside is that electricity consumption is rather high. Last time I measured with all my apps running, it consumed about 60W. A fresh build could be optimized for electricity consumption, which can save you a lot of money if you want the server to run 24/7. ¹

I chose not to do a hardware RAID because I am using the ZFS file system. I will explain this in detail in a dedicated part.

ECC memory?

I unfortunately do not have ECC RAM, but if you can get it, I would recommend it. Error Correction Code (ECC) RAM is able to correct wrong bits, which makes the system more secure against some hardware attacks and especially more reliable. It is not a complete dealbreaker not having it, (especially because it’s kind of rare in the consumer world at the moment) but having it is a nice addon.

Uninterrupted Power Supply (UPS)

I bought a UPS to support my server in case of power outages. The UPS has a battery that can keep my server alive for about 15 minutes, then it gives a signal to the server, which is configured to shut down before the UPS battery runs out. This ensures that most power outages never cause a problem, as they are shorter than the battery time and if the power is out for a while the server shuts down gracefully.

Why I chose TrueNAS Scale

Now to, in my opinion, the most important part: The operating system. I chose TrueNAS Scale for a couple of reasons. First of all I wanted something that is Open Source. I also wanted to run apps on the system and definitely needed some sort of RAID / software RAID. TrueNAS Scale has it all. It is based on Linux and led by the company iXsystems. ² For applications, it supports Docker and Kubernetes, as well as its own VMs. I am actually not really using the VMs yet, but I really like Kubernetes and also Docker. So this was great news for me. These technologies allow you to run basically any app you like on it because most apps are or can be containerized. In addition to this, the system uses OpenZFS as the file system, which is pretty cool in my opinion. We will take a look at it in the next part.

RAID

As I previously mentioned, I am not using a classical RAID system. Instead the ZFS file system which is used by TrueNAS Scale, has something similar to a software RAID built into it.

But first of all, to bring everyone on the same level, I want to explain what RAID actually is. RAID stands for Redundant Array of Independent Disks and as the name suggests brings redundancy into data storage. There are several versions of RAID (0, 1, 5, 6 are the most important ones). RAID 0 just stripes the data across multiple disks and does not provide any redundancy. RAID 1 mirrors every disk on another one so half of the disks could fail without losing any data. The last two versions are the important ones for this blog post. They both work similarly: First the data gets striped like in RAID 0, but a parity part is also calculated, which can be used to recover the data if a drive fails. With RAID 5 you can lose one disk without losing data and with RAID 6 you can lose two disks without an issue. The disadvantage of RAID is that you need more disks because of the redundancy.

OpenZFS

Now let’s talk about ZFS, which is an awesome file system in my opinion. It provides a set of features that make it especially interesting for server operation and other systems where correct data storage is important. A few of its features are RAID-Z (which I’ll discuss later), data compression, data deduplication, snapshots and self-healing. All of these features are very interesting for building a storage-focused server like the one I am building.

RAID-Z is the most important feature of ZFS in my opinion. It allows me to run the server without a physical RAID controller. It works a bit differently from RAID, which brings better performance and it also has the self-healing ability ZFS is known for, all while not needing a physical RAID controller anymore. This is actually only possible because there is no RAID controller and the file system can manage the disks directly. It is not recommended to use ZFS in addition to a hardware RAID because of that.

Setup of the OS

The installation of the OS is pretty straightforward. You can follow the installation guide on the developer’s website.

If you set everything up, this is how the web UI looks. Here you can control pretty much everything about the system graphically. In addition to the UI, I would recommend setting up an SSH connection so you can use the command line on your system. You can do that under credentials => users => upload SSH key.

Under datasets you can set up different folders with different permissions, purposes, shares and much more. You can decide if you want to encrypt your data (you want to 😉) and how you want to do it. There are two options. With the simplest option, a key gets generated and you just have to save it somewhere safe as a backup, while the server stores it securely. But if you are like me and a bit paranoid when it comes to disk encryption, you can also use a really strong password. The difference is that you have to enter this password after every restart. This provides the security that if your system is shut down, it is safe against a lot of hardware attacks.

How I move files

TrueNAS Scale provides you with a few kinds of file shares. I tried them all but did not really like any of them, which actually makes it a lot simpler for me. I am using SSH in my Gnome file explorer if I want to move files or I just do it over the command line. This works perfectly fine for me.

If you want to use shares, you are able to use SMB, NFS and iSCSI to do so. Just play around with it and see what you like most. For me, it’s the good old SSH.

What apps I run

Now to the most interesting part, in my opinion. I want to run apps that support me in my day-to-day life and provide value. This is why I do all of this.

TrueCharts and why I do not use them anymore

But first of all, we need to talk about TrueCharts. They are a pretty big third-party app catalog or at least they were for a very long time. They now said that they are going to drop support for TrueNAS Scale because they claim iXsystems will remove Kubernetes from the OS in a future update. I am not really sure about that because I haven’t read anything significant. But I think sticking with the original apps is not that bad either way. It’s a bit different to set up, but I will guide you through it here.

I also want to mention that I had a few problems using charts from TrueCharts. I do not want to blame them for it, but I think they are less stable than the original ones. But they have advantages like more settings and less performance overhead, so I think the guys from TrueCharts still did a really good job.

Install an app

I do not want to use file shares for everything. That is not very convenient. I want to use an app that works like all the other file cloud providers. This is why I host Nextcloud on my NAS. This is a really cool private cloud software that manages everything like files, contacts, calendars and the list goes on and on. I will talk a bit more about it in a future post. ³ But for now, let’s take a look at how to install an app like that.

The process is actually pretty simple. You can just choose your app from the catalog, which you can open with the discover button.

Here you can choose from many different apps or provide your own if you want to create something not in the default apps. If you have found an app you want to install, you can click on it and configure the app with everything the app allows you to change. Here the TrueCharts apps are a lot better because you can configure way more. But the default apps have a few settings as well and are much simpler. An important thing to keep in mind is that there is a limitation with the default apps, so you cannot use ports below 9000.

If you are finished with configuring, it is just as easy as pressing the install button. After a few minutes, the app is running and you can access it over the port you chose.

The End

You now know the basics of TrueNAS Scale. I hope you took a little bit of information from this post and I hope to see you in the next one of this series😄

There are many reasons someone would want to have a home server. In this post, I want to explain why I chose to build a home server and in the following ones, I will show you how I did it and how you can do it too.

Privacy and Independence

For me, there are a few main reasons why I wanted to get started with self-hosting. I think my journey began about two years ago in 2022 when I first played around with a Synology NAS. This helped me a bit with some of the goals I had. Having a Synology NAS improved my independence, especially from the big tech nightmares and therefore also improved my privacy. But after a while, I felt that something wasn’t quite right with this setup. First, the Synology software is not Open Source and therefore there are still privacy concerns. (I will cover why this is so important to me in a future post.) Also, Synology is a Taiwanese company and the situation with China was worrying me. (There would be a lot of bigger problems in tech, but it was still concerning.)

So the next step was building my own NAS / home server with custom Open Source software. I explain this in another post of this series. For now, let’s just say I built my own server about a year ago in 2023 and now I have all my data at home in an environment I trust and am able to control fully. So I achieved a lot of independence from the shady big tech companies.

Cost

Cost can be an advantage or disadvantage if you start to self-host. On one side, you have to pay for your hardware and the electricity your server consumes, but on the other side, you can cancel a couple of subscriptions which are also pretty expensive. For example, you are probably using some sort of cloud storage. (Or at least you should be using something like that in my opinion. ¹ )

Having a bit of data in such storage can have high costs. For example, buying OneDrive, which is included in the Microsoft Personal subscription, costs about $6.99 a month.² This price only includes 1TB. But if you have large amounts of data, this can get very expensive. To look at another example, Google’s cloud storage costs 9.99€ a month for 2TB.³ Other cloud storages, like a hosted Nextcloud, might even be more expensive.

You also have to keep in mind these are only costs for one service. On your server, you can host a couple of services you need and even share those and also the costs.

Because of all this, you save a bug in my opinion if you start self-hosting and replacing the services you pay for with your own server. But this can vary from person to person.

Just to mention it: OneDrive and a lot of other big tech tools scan your files for illegal content and use filters that might report you to law enforcement. These tools are known to make mistakes and so an image of your child on the beach can lead to your Microsoft account being suspended in the best case and a meeting with the local police in the worst case. Something like that will never happen if you are self-hosting. Be aware!

Knowledge

Another good point for having a home lab is all the knowledge you gain from it. You have to think about the hardware, set everything up physically, learn about RAID, about the operating systems and the software you are running, not to mention security and setting up a safe environment. There is a lot to learn on this journey!

And the good thing here is this is not a one-time thing. You can learn a lot as time goes on. Every now and then, if you feel motivated, you can play around with some settings or try something new.

This knowledge can also pay off in your job as you gain experience you maybe wouldn’t have otherwise. Personally speaking, I learned most of the things I know about IT, especially programming and DevOps, while building my own things. It is just way more motivating building the things you want than just learning by doing exercises you do not care about.

Helping others

Last but not least, I want to mention a small point I think is notable. If you are building all of this for yourself, it is really easy to give a few other people access to the services you are running. So you can help out your friends and family to have better privacy and generally speaking all of the benefits I was talking about. ⁴

In this post, I want to explain what the Fediverse is and why you should join it. I talk very little about the technical stuff, but this post is intended to be understood by anyone.

Another post for the really technical topics is planned for the future.

Where does the name come from?

The name is a portmanteau of federation and universe. So the Fediverse is a federated universe.

This name does represent it pretty well. The Fediverse is decentralized web of social media platforms all connected to each other. Anyone can connect with anybody else, even if they are using completely different services. You can imagine it like email. Every user has an email address by a specific service, but they can write with anyone they want, not just with users of the same service.

For those who are familiar with the classic social networks: Imagine using Twitter and seeing Instagram or Facebook posts in your timeline, just like they would all be using Twitter. But that’s not all. There also could be YouTube videos or anything else. You decide. That is the beauty of the Fediverse.

Why is the Fediverse so important?

Decentralization

The old social media platforms are owned by companies. Not so is the Fediverse. First of all, there are many services in the Fediverse, so the whole thing cannot be owned. Just like the internet. Therefore, nobody can force users into something or exploit their market dominance, as the current big players do.

The creators of the Fediverse platform Peertube explained it in a straightforward way. Here is their explanation. (This video is by the way hosted on Peertube)

Free and Open Source

But even the producers of Fediverse software are very different. It mainly consists of FOSS (Free and Open Source Software), which means the software is genuinely free and independent developers can modify it and help to improve it. FOSS is incredibly important and I will cover its numerous advantages in a future post.

Because of this freedom, making money is more challenging. However, the user doesn’t get treated like trash, as the user contributes to the Fediverse through donations. Also, there are no ads because of that.

So, the software producers of the Fediverse are primarily volunteers or non-profit organizations. Both aim to make the internet a better place and not just want to make a bug.

Moreover, it’s not just the software producers who act fairly, the people who run the servers are mainly volunteers, organizations, or even states!

The force of the masses

Because you can freely choose your service in the Fediverse, no one gets excluded from society anymore. I find this to be a significant issue with classical social media platforms. I am not using any of these because of all the bad things they do. As a result, I sometimes feel a bit excluded in specific contexts.

This is extremely important when it comes to messengers. Not using the specific service that is popular in your region can have a significant impact. Personally, I stopped using WhatsApp for around a year. In Germany, where I’m from, it is used nearly without exception. A few people have Signal or Threema, but that’s about it. Not having WhatsApp did affect my day-to-day life significantly. While I thought that using other services might encourage a few people to switch, it did only to some extent. Not everyone made the transition and some friends or family members remained exclusively on WhatsApp. Beyond the challenge of communicating with those you know, like and love, there are difficulties in meeting new people. I’ve had experiences where some form negative opinions if you don’t use the service that is common. Moreover, the barrier of contacting someone is much higher if they need to install a new app and you cannot contact them because you don’t have the right messenger.

While a social media platform is not a messenger, the effects are quite similar: The people using the big service essentially force you to use it too!

Current culture in the Fediverse

The current culture in the Fediverse is a significant positive aspect. People in this community are exceptionally friendly compared to traditional social networks. Moreover, the Fediverse is highly inclusive. For instance, if you post an image without an alt text (allowing blind people to understand what the image is about), someone will certainly remind you to add it. This inclusivity is crucial to the community, emphasizing that everyone should have the opportunity to participate.

There’s also a good amount of instances for LGBTQ+ to create safe spaces for those people. I consistently see different instances with this objective.

Of course, this depends on which edge of the Fediverse you are at. But overall, I think there are many minorities in the Fediverse who are not as represented elsewhere. I recall a poll someone conducted with around 11,000 votes, asking how many queer people there are in the Fediverse. The result was 60% not queer and 40% queer. These are solid numbers. Of course, this result is biased in some way because of who the poll maker is and who reposts it. But with this number of votes, it definitely gives a good hint.

If someone wants to create artistic content that goes a bit beyond the guidelines of platforms like Instagram, it is acceptable in the Fediverse. You can choose an instance where the rules align with your preferences and create your content there. While most instances may require a content warning for specific posts, you are free to express yourself as you like.

Also, there is no need to upload regularly or avoid using specific words to please the algorithm. There is nothing like that here. There are no ads and therefore no advertisers which do not want you to say something “bad”. You can handle things how you and your instance want them to be.

Another immensely beneficial aspect here is that the moderator count per user is relatively high. This is because each instance is responsible for its moderation. As a result, every instance manages its part, leading to an overall high count of moderators. Moreover, if an instance becomes unmoderated, other servers will block them, ensuring a clean network.

But, after all, the Fediverse is currently a big home for people who are interested in technology. It is relatively new tech and because of that, there are a lot of nerds. Which is great!

Of course, these are not all groups of people, but I hope I could provide you with a bit of an overview of the kinds of people currently in the Fediverse. This may change as new people join us, but at the moment, this is how I perceive the Fediverse. Let’s hope we can maintain this diversity for the future.

Who is in the Fediverse?

For example, nearly all German institutions have an account on their own server of the state. Additionally, the public broadcasting providers ARD and ZDF have their own instances.

I just saw that the Netherlands also have a state owned Mastodon instance. I really like the idea of nations backing the network and hopefully the values, this network comes with.

Mozilla also created its own instance available to the public: Mozilla Social. However, there are another 26,000 servers waiting for you to explore them.

Currently there are around 10,000,000 users in the Fediverse with a total of about 1,200,000 of them being active in the last month. So you hopefully you find someone to connect with.

A good overview of instances and the biggest users can be found at FediDB.

Platforms

In this section, I want to showcase a few of the most important services of the Fediverse. But there are many more to be explored!

This image provides a quick overview of the different categories and services.

Mastodon

Mastodon is the biggest and also the most developed platform of the Fediverse. It is a microblogging service. The company behind it is a German non-profit company (gGmbH). It is comparable with Twitter and gained a lot of attraction during the catastrophic takeover of Elon Musk. At that time, there was a huge mass of people moving to Mastodon from Twitter.

After these events, the “freed” platform attracted even more extreme right-wing individuals. Additionally, many journalists face occasional blocks. If you truly seek a free platform, consider joining Mastodon: https://joinmastodon.org. (They also have a really fancy website: Check it out!)

Pixelfed

Instagram is a really big platform run by Meta, which is known for its extremely bad privacy and they also had a few scandals. For example, they helped manipulate elections. See Cambridge Analytica.

Pixelfed is the pardon from the Fediverse for Instagram. It is developed by a Canadian software engineer and the community.

In my opinion, it is not as widely developed as Mastodon. But it’s almost on a perfect level. It has many features, even some that classical Instagram does not have. But most importantly, it is part of the Fediverse and therefore, you could also consume the great photography available on Pixelfed from your Mastodon feed or whichever service you like the most.

And of course, Pixelfed is developed as Free and Open Source Software / FOSS!

You can join it at: https://pixelfed.org/

Lemmy

Lemmy is Reddit for the Fediverse and it is also FOSS. It seems to have a really active community. I personally did not try it out that much yet but it seems pretty good.

After all, the decision to use Lemmy is not that difficult if Reddit is the current choice. Reddit did screw up hard this year. Same as Twitter. They banned every third-party app and also made a couple of other bad decisions. On the image below, you see a Reddit event where the collective of Reddit users has written “Fuck spez!” which is the CEO of Reddit.

This is a great example that the community cannot do anything against the will of a platform like Reddit, Twitter, Instagram, TikTok… They are extremely powerful companies, maybe monopolies, exploiting their power of having all the users. Let’s break that! Let’s make a real change and go to the Fediverse!

If you are interested in Lemmy: https://join-lemmy.org/

Peertube

Peertube is an alternative to YouTube. Because video streaming is quite expensive and in a decentralized network, there are many smaller communities with less money. Peertube decided to use peer to peer. This means if you watch a video, you help someone else watching because your computer sends bits of the video to other persons. So the server does need less bandwidth and therefore, small communities are able to operate a video streaming platform. This approach comes with downsides, but after all, it makes something possible, which would be really hard to achieve in another way. A really free video platform.

In terms of content, this platform is still a bit niche. There are really good channels, especially in the privacy, tech and Linux community. But for more mainstream content, there is not that much to offer. This, of course, is not a problem of the platform but a problem of the creators who are not feeding the platform. I hope this will change in the future!

Because of the Fediverse, you can, of course, watch and subscribe to Peertube channels from Mastodon and other platforms.

Peertube is developed by the French non-profit association Framasoft as FOSS.

Here you can find more information: https://joinpeertube.org/

What about Threads (Meta)?

Now, bigger companies are starting to join the Fediverse. The biggest is Threads made by Meta.

Currently, Threads is implementing the required ActivityPub logic to join the network. You can already follow the CEO of Instagram and a few of the team. But it seems like the full connection will take a while to implement.

This topic is a controversy in the Fediverse. On one side stands that Meta is bringing a lot of users to the network, but on the other side, Meta is also well-known for incredibly bad privacy and being part of surveillance capitalism, hurting millions of users.

A few instances have even made the “Fedi-Pact” and therefore will block Meta on the server side when they are joining. This has an impact of about 7% of active users on the open side of the Fediverse. (Of course, only Meta will not see them. The rest of the network can still interact with them normally.)

If a server does not block a specific other server, the user still has the power to do that. Here, the founder of Mastodon explains his audience how it is done.

And, of course, Meta will not provide a platform that is nearly as free and open as the other ones I mentioned above. They are only trying to make money and hopefully are not destroying the Fediverse while doing that. The only good they do is that they bring a lot of users with them. That’s it. But this also may open the Fediverse to a lot of people, which would be great.

Meta joining is like a dance with the devil. But we may benefit from it.

Also worth mentioning

You are not stuck with your account on a server. Of course, you have the freedom to choose another one and take all your followers with you. No problem here. Free software doesn’t lock you in place.

Another thing getting weird in the old networks is the account verification. You now need to pay in both Instagram and Twitter to be verified, even if you are not a big creator or another person of interest. This is rather stupid and confusing. In the Fediverse, you do not need to pay anyone. You can just link yourself from another platform/website you own and you get a sign that this account/page is verified to be owned by you. A much better way of verification.

The technical stuff

I decided not to put the really technical stuff in this post. This would have made this blog post even longer than it is now. I have a bit of experience in creating servers for the Fediverse because of Fedodo. I want to share this experience in a future post and talk about the details of ActivityPub. This is the protocol powering most of the Fediverse.

Appreciations

Thanks to the amazing artists providing their work under Creative Commons licenses. They help me so much in illustrating this post. Links are available under each image. Go and check them out!

Also, thanks to you for reading this until the end. I hope I could give you a bit of an overview of the topic. And maybe I even convinced you to join us fighting for a better web. But don’t pressure yourself. Have fun ❤️

Privacy 🕵️

In my opinion privacy is the most important feature of a browser. A modern browser should protect you while you surfe the internet. Brave does have a lot of privacy features build in. And most important a lot more than Google Chrome which lacks a lot of privacy features.

Open Source

Open Source makes sure that what a company promises is what a company gives to its customers. Brave is Open Source on GitHub. This makes sure that everybody can control the software deployments. You can check it out right here.

Shields

The idea of Shields is to stop Online-Tracking. With this in mind Brave blocks following contents by default. The user can optionally disable the blocking for specific websites.

Shield Features

• Block third party ads
• Block third party trackers
• Resource Replacement
• CNAME uncloaking
• Block cross site cookies
• Ephemeral Storage
• Randomizing browser APIs
• Block Browser-language and font fingerprinting
• Block Phishing Sites

Build-in Tor

With Brave it is possible to open a new private window with Tor. It makes it really easy to use the Tor network without installing a new tool. It is also possible to open links with the .onion TLD.

Brave Search 🔍

Of course you can choose every Search-Engine available but Brave Search offers an alternative to Google Search. It is really new and of course at the moment not as good as Google Search but I think it is usable.

Cross-Platform 📲

Brave Browser is available for all major platforms:

1. Linux
2. Windows
3. Mac
4. Android
5. IOS

Sync

Brave offers the feature “Sync”. This feature allows the user to sync whatever the user wants with other devices. So you can have all your Bookmarks and co. on every device. It does not matter if you are on Mobile, Linux, Windows… it just works. In addition to this there is no account required for this feature. To Sync your stuff you just need to scan a QR-Code and select what you want to sync. (It is also possible to display and type in a view words)

Speed 🥇

Brave says it is three times faster than Chrome and uses less memory. In my experience that is true. Just try it out 😉

A new way of advertising 💲

Brave Rewards is a new way of provisioning ads. Brave blocks every ad by default. From a user perspective this is awesome of course. But as a creator point of view this sucks. They just don’t make money anymore. A lot of content is free and the creators get paid with the add revenue. This does not exist if all ads are blocked. So Brave developed a new way of provisioning ads. Brave can optionally serve ads to the user. BUT! this is completely privacy focused and does not track you. Also the user gets 70% of the money in form of the BAT Crypto-Currency, 15% gets the Website-Creator and the last 15% gets Brave itself. I think this is a pretty good deal for everybody. In my opinion the own data should be owned by yourself and this way of advertising supports that. In addition Brave offers the ability to give BAT back to the Creators. This can be done automatically or manually. So you can support the websites you use and like directly and specifically.

Crypto 🪙

Brave offers the ability to store your Cryptocurrency’s directly in your browser. They can be secured with a backup and it offers a lot of different Blockchains out of the box. But it is possible to add any additional networks.

Links 🔗

Brave
Wikipedia Brave Search
YouTube Techlore

In this post I want to join exurb1a on his statement about privacy and the importance of it in our day-to-day life. And much more important than this I want to showcase how to do it better. For this I will create posts about Privacy Tools and Privacy in general from time to time.

Prerequisites

This post is based on this video. I highly recommend watching it. It is a 10 out of 10 video about modern privacy. You can imagine the video to be based more on philosophical standpoint than on a technical one. He uses analogies but also explains a bit of the technical details. But the focus definitely lies on a philosophical point of view.

Why should I care about privacy?

If you say: “I like the amount of privacy I have right now” than you lay the first stones of a more privacy invading future. The way we do the things today shapes… no… determines the future!

If it is ok today than tomorrow it will be not. So in my opinion we have to change how we think about privacy.

The Erosion of Privacy Over Time

The digital landscape is ever-evolving, with technology penetrating deeper into our lives. What may seem like a tolerable invasion of privacy today could escalate into a more significant concern as new technologies and practices emerge. By proactively acknowledging this reality, we can actively participate in shaping the boundaries of our privacy. Especially empowering states or companies is a big issue. Even if your country currently is a well build democracy there can always be a change. As I am from Germany I am well aware of what countries with horrible ideas could do with those technologies at their fingertips.

Empowering People and Shaping How We Live Online

Privacy isn’t just about you or me it ripples through society. The choices we make today set the tone for tomorrow’s norms. The digital on social norms. When we stand up for privacy, we’re giving individuals the power to control their data and build a digital world that respects everyone’s rights in the online world and offline.

Let’s Be Mindful About Privacy

Changing our view on privacy is about making conscious choices. It’s looking at the way things are now, thinking about what could happen and actively finding ways to boost our online privacy. This isn’t just about shielding our own stuff, it’s about joining forces to make a digital world that’s more aware of privacy. Don’t let the powerful decide for us.

In simple terms, caring about privacy isn’t just a personal preference, it’s a shared responsibility that goes beyond just one person. It shapes where our digital journey is headed. Let’s get that, accept the responsibility, and team up for a future where privacy isn’t just talked about but truly looked after.

What should I do now?

I think the best you can do is staying well-informed to make good decisions. And this is not a thing you do once. It is a journey. There are many good sites which showcase good privacy respecting tools. If you are interested I always have a few interesting links at my Link-Page.

I also will showcase a couple of nice software I use and recommend. Stay tuned!